last executing test programs: 11m54.649435041s ago: executing program 1 (id=139): fanotify_mark$auto(0xffffffffffffffff, 0xa, 0x0, 0xffffffffffffffff, 0x0) 11m54.382654306s ago: executing program 1 (id=143): prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) 11m54.066437832s ago: executing program 1 (id=150): prctl$auto(0x27, 0x0, 0x0, 0x0, 0x0) 11m53.857864759s ago: executing program 1 (id=154): syz_clone3(&(0x7f0000000340)={0x305000, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 11m53.527074391s ago: executing program 1 (id=161): rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) 11m52.918395253s ago: executing program 1 (id=171): flistxattr$auto(0x1, 0x0, 0x9) 11m52.608608049s ago: executing program 32 (id=171): flistxattr$auto(0x1, 0x0, 0x9) 6m40.548103261s ago: executing program 0 (id=5175): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/state\x00', 0x20a42, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)="48fca9fce87c944c01b8294348d59fc327dd2324b3227bb0f3ab8cfc9f1a2af72398441d049fa2239e00db60e040770ddc585cf93134ee5ffd950b25b6d6313d0df88c656a49c19a4ccf7cfe7734be012fb567ec156663bfc910854064afb220850b0c319971b90d70332350730381dd5aeb760a16", 0x75) 6m40.315210891s ago: executing program 0 (id=5179): r0 = socket(0x15, 0x5, 0x0) bind$auto(r0, &(0x7f0000000000)=@in={0x2, 0x1, @dev={0xac, 0x14, 0x14, 0x34}}, 0x62) 6m40.083711626s ago: executing program 0 (id=5183): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0xc8, 0x5452, 0x0) 6m39.852708411s ago: executing program 0 (id=5187): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/virtual/block/ram12/events\x00', 0x101480, 0x0) read$auto(r0, 0x0, 0x9) 6m39.623782716s ago: executing program 0 (id=5191): tkill$auto(0x1, 0x7) keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x0, 0x0, 0x0, 0x48eafc79) 6m39.009756211s ago: executing program 0 (id=5200): mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0xffffffffffffffff, 0x300000000000) capget$auto(0x0, 0x0) 6m38.488365127s ago: executing program 33 (id=5200): mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0xffffffffffffffff, 0x300000000000) capget$auto(0x0, 0x0) 1.425567263s ago: executing program 5 (id=11244): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x40, r1, 0x1b, 0x74bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x16, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x33}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828848"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) 1.249644769s ago: executing program 5 (id=11248): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) munmap$auto(0x8000, 0xffffffff) 1.226985535s ago: executing program 2 (id=11249): openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/36u\x00', 0x26040, 0x0) close_range$auto(0x2, 0x8, 0x0) 991.353673ms ago: executing program 3 (id=11251): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x2584, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0xc0045540, 0xb551) 977.61359ms ago: executing program 2 (id=11252): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x100000000000034, 0x0) fsopen$auto(0x0, 0x1) 849.406703ms ago: executing program 3 (id=11253): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1p\x00', 0x800, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_STATUS_EXT64(r0, 0xc0984124, 0x0) 820.360935ms ago: executing program 2 (id=11254): close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x5, 0x21ea, 0x7ff, 0x3, 0x9, 0x7, 0x2e}, 0x6f4) bpf$auto(0x3, &(0x7f0000000040)=@query={@target_ifindex, 0x4, 0x7, 0x9, 0x6, @prog_cnt=0x4, 0x0, 0x7ffffffc, 0xc, 0xb, 0x1}, 0x7) 767.177034ms ago: executing program 4 (id=11255): r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000000)=0x200000000) close_range$auto(0x2, 0x8, 0x0) 678.445258ms ago: executing program 5 (id=11256): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) ioctl$auto(0x20000000000003, 0x8947, 0x2) 667.133028ms ago: executing program 2 (id=11257): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dsp1\x00', 0x0, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, 0x0) 638.682778ms ago: executing program 3 (id=11258): madvise$auto(0x8000000000000001, 0xfffffffffffffffd, 0x4) setreuid$auto(0x80000000, 0x7fffffffffffffff) setreuid$auto(0x0, 0x0) 617.236648ms ago: executing program 4 (id=11259): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_psample(&(0x7f0000007a40), 0xffffffffffffffff) sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r0, &(0x7f0000007b00)={0x0, 0x0, &(0x7f0000007ac0)={&(0x7f0000007a80)={0x14, r1, 0x311, 0x70bd29, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0xf0}, 0x0) 456.348846ms ago: executing program 2 (id=11260): socket(0x10, 0x2, 0x0) r0 = fanotify_init$auto(0xba, 0x0) fanotify_mark$auto(r0, 0x205, 0x100002, 0x4, 0x0) 453.154137ms ago: executing program 3 (id=11261): r0 = socket(0x10, 0x2, 0xc) setresuid$auto(0x2, 0x7, 0x8080) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x14, 0x0, 0x10, 0x70bd2c, 0x25dfdbfb, {0xa, 0x0, 0xa00}}, 0x14}}, 0x10004010) 447.436861ms ago: executing program 4 (id=11262): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_SOCK_GET(r0, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000002280)={&(0x7f0000000300)={0x14, r1, 0xe77c815741d6438d, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x42010}, 0x8cc) 320.905523ms ago: executing program 5 (id=11263): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x5, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x20, 0x0, 0x4) 319.156214ms ago: executing program 4 (id=11264): socket(0x2, 0x3, 0x2) setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4) close_range$auto(0x2, 0xa, 0x0) 278.200614ms ago: executing program 2 (id=11265): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) sendfile$auto(r0, r0, 0x0, 0x3) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0) 208.758364ms ago: executing program 3 (id=11266): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = open(&(0x7f0000000100)='.\x00', 0x591083, 0x408) linkat$auto(r0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) 196.242335ms ago: executing program 4 (id=11267): mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) io_uring_setup$auto(0x6, 0x0) 184.622128ms ago: executing program 5 (id=11268): r0 = getpgid(0x0) r1 = pidfd_open$auto(r0, 0x0) setns(r1, 0x4800007d) 83.992685ms ago: executing program 3 (id=11269): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r0, 0x0, 0x81) write$auto(r0, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) 39.793008ms ago: executing program 5 (id=11270): r0 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000006900)='/sys/kernel/config/target/dbroot\x00', 0x189002, 0x0) write$auto(r0, &(0x7f0000000040)='/sys/kernel/config/target/dbroot\x00', 0x6e) write$auto(r0, &(0x7f0000000000)='/dev/audio1\x00', 0x4) 0s ago: executing program 4 (id=11271): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001cc0)='/dev/input/event1\x00', 0x101242, 0x0) ioctl$auto_EVIOCREVOKE(r0, 0x40044591, 0x0) ioctl$auto_EVIOCGREP(r0, 0x80084503, 0x0) kernel console output (not intermixed with test programs): sim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.899591][ T5947] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.916773][ T5939] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.925864][ T5939] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.935661][ T5939] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.946719][ T5939] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.970017][ T2968] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.979601][ T2968] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.275553][ T5940] Bluetooth: hci2: command tx timeout [ 113.281826][ T5940] Bluetooth: hci1: command tx timeout [ 113.282894][ T5900] Bluetooth: hci0: command tx timeout [ 113.293530][ T1333] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.310680][ T1333] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.354647][ T5900] Bluetooth: hci3: command tx timeout [ 113.437796][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.460951][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.541691][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.573860][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.661517][ T1103] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.670616][ T1103] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 115.355386][ T5900] Bluetooth: hci0: command tx timeout [ 115.361346][ T5900] Bluetooth: hci1: command tx timeout [ 115.367143][ T5940] Bluetooth: hci2: command tx timeout [ 115.435622][ T5945] Bluetooth: hci3: command tx timeout [ 116.128164][ T6103] mmap: syz.0.111 (6103) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 119.271602][ T798] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.412069][ T798] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.529055][ T798] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.699091][ T798] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.149738][ T798] bridge_slave_1: left allmulticast mode [ 120.165442][ T798] bridge_slave_1: left promiscuous mode [ 120.172148][ T798] bridge0: port 2(bridge_slave_1) entered disabled state [ 120.253948][ T798] bridge_slave_0: left allmulticast mode [ 120.274535][ T798] bridge_slave_0: left promiscuous mode [ 120.280380][ T798] bridge0: port 1(bridge_slave_0) entered disabled state [ 120.418280][ T5940] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 120.431401][ T5940] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 120.445312][ T5940] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 120.464810][ T5940] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 120.479607][ T5940] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 121.403469][ T798] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 121.439652][ T798] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 121.468932][ T798] bond0 (unregistering): Released all slaves [ 121.831182][ T6311] syz.0.213(6311): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 122.571505][ T5940] Bluetooth: hci2: command tx timeout [ 122.678414][ T798] hsr_slave_0: left promiscuous mode [ 122.746292][ T798] hsr_slave_1: left promiscuous mode [ 122.752511][ T798] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 122.786364][ T798] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 122.833842][ T798] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 122.856421][ T798] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 122.967730][ T798] veth1_macvtap: left promiscuous mode [ 122.973582][ T798] veth0_macvtap: left promiscuous mode [ 122.992838][ T798] veth1_vlan: left promiscuous mode [ 123.010152][ T798] veth0_vlan: left promiscuous mode [ 123.960649][ T5940] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 124.190141][ T798] team0 (unregistering): Port device team_slave_1 removed [ 124.326462][ T798] team0 (unregistering): Port device team_slave_0 removed [ 124.634898][ T5940] Bluetooth: hci2: command tx timeout [ 125.051276][ T6256] chnl_net:caif_netlink_parms(): no params data found [ 125.598919][ T6256] bridge0: port 1(bridge_slave_0) entered blocking state [ 125.638077][ T6256] bridge0: port 1(bridge_slave_0) entered disabled state [ 125.675022][ T6256] bridge_slave_0: entered allmulticast mode [ 125.704698][ T6256] bridge_slave_0: entered promiscuous mode [ 125.741158][ T6256] bridge0: port 2(bridge_slave_1) entered blocking state [ 125.774606][ T6256] bridge0: port 2(bridge_slave_1) entered disabled state [ 125.814502][ T6256] bridge_slave_1: entered allmulticast mode [ 125.859611][ T6256] bridge_slave_1: entered promiscuous mode [ 126.021754][ T6256] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 126.139601][ T6256] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 126.416671][ T6256] team0: Port device team_slave_0 added [ 126.448806][ T6256] team0: Port device team_slave_1 added [ 126.710075][ T6256] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 126.721380][ T5940] Bluetooth: hci2: command tx timeout [ 126.724328][ T6256] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 126.770118][ T6256] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 126.842641][ T6256] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 126.867160][ T6256] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 126.934428][ T6256] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 127.187528][ T6256] hsr_slave_0: entered promiscuous mode [ 127.203730][ T6256] hsr_slave_1: entered promiscuous mode [ 127.237200][ T6256] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 127.254704][ T6256] Cannot create hsr debugfs directory [ 128.196447][ T6256] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 128.233655][ T6256] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 128.315784][ T6256] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 128.379211][ T6256] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 128.717402][ T6256] 8021q: adding VLAN 0 to HW filter on device bond0 [ 128.773887][ T6256] 8021q: adding VLAN 0 to HW filter on device team0 [ 128.799570][ T5940] Bluetooth: hci2: command tx timeout [ 128.860570][ T1333] bridge0: port 1(bridge_slave_0) entered blocking state [ 128.867787][ T1333] bridge0: port 1(bridge_slave_0) entered forwarding state [ 129.039752][ T1103] bridge0: port 2(bridge_slave_1) entered blocking state [ 129.047005][ T1103] bridge0: port 2(bridge_slave_1) entered forwarding state [ 130.530250][ T6256] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 131.105013][ T6572] kexec: Could not allocate control_code_buffer [ 131.339558][ T6256] veth0_vlan: entered promiscuous mode [ 131.410417][ T6256] veth1_vlan: entered promiscuous mode [ 131.563084][ T6256] veth0_macvtap: entered promiscuous mode [ 131.601029][ T6256] veth1_macvtap: entered promiscuous mode [ 131.719510][ T6256] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 131.761688][ T6256] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 131.825388][ T6256] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 131.834131][ T6256] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 131.898198][ T6256] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 131.926987][ T6256] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 132.157719][ T1103] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 132.179391][ T1103] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 132.304076][ T1333] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 132.339776][ T1333] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 137.781402][ T30] audit: type=1326 audit(1748999469.795:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6843 comm="syz.2.415" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f292118e969 code=0x0 [ 137.924512][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.931425][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.787068][ T6879] ptrace attach of "./syz-executor exec"[6256] was attempted by "./syz-executor exec"[6879] [ 143.409472][ T30] audit: type=1800 audit(1748999475.454:3): pid=7023 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.488" name="discovery_nqn" dev="configfs" ino=11411 res=0 errno=0 [ 144.291025][ T7050] syz_tun: tun_chr_ioctl cmd 1074025677 [ 144.313305][ T7050] syz_tun: Linktype set failed because interface is up [ 146.886013][ T5940] Bluetooth: hci0: unexpected event 0x20 length: 123 > 7 [ 148.526732][ T30] audit: type=1800 audit(1748999480.611:4): pid=7223 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.581" name="version" dev="configfs" ino=11183 res=0 errno=0 [ 149.508106][ T7268] syz_tun: tun_chr_ioctl cmd 1074025676 [ 149.513739][ T7268] syz_tun: owner set to 3 [ 151.288966][ T7348] syz_tun: tun_chr_ioctl cmd 2147767521 [ 156.329982][ T30] audit: type=1800 audit(1748999488.451:5): pid=7544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.711" name="dbroot" dev="configfs" ino=12156 res=0 errno=0 [ 157.159375][ T7579] random: crng reseeded on system resumption [ 157.639640][ T7597] Process accounting resumed [ 157.981901][ T7619] ptrace attach of "./syz-executor exec"[5939] was attempted by "./syz-executor exec"[7619] [ 159.476519][ T7691] random: crng reseeded on system resumption [ 160.027370][ T7712] ima: policy update failed [ 160.032862][ T30] audit: type=1802 audit(1748999492.171:6): pid=7712 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.778" res=0 errno=0 [ 160.282266][ T7721] random: crng reseeded on system resumption [ 160.415428][ T7728] syz_tun: tun_chr_ioctl cmd 1074025684 [ 163.494273][ T5940] Bluetooth: hci3: unexpected event 0x17 length: 123 > 6 [ 166.084828][ T7988] capability: warning: `syz.0.903' uses 32-bit capabilities (legacy support in use) [ 166.797611][ T8022] __vm_enough_memory: pid: 8022, comm: syz.3.920, bytes: 4398046511104 not enough memory for the allocation [ 167.126277][ T30] audit: type=1800 audit(1749000526.301:7): pid=8038 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.928" name="members" dev="configfs" ino=14452 res=0 errno=0 [ 168.050348][ T30] audit: type=1800 audit(1749000527.226:8): pid=8086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.953" name="trace_pipe" dev="tracefs" ino=1298 res=0 errno=0 [ 169.305047][ T30] audit: type=1800 audit(1749000528.493:9): pid=8153 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.985" name="lu_gp_id" dev="configfs" ino=13967 res=0 errno=0 [ 170.069884][ T8192] futex_wake_op: syz.4.1005 tries to shift op by 64; fix this program [ 171.509320][ T8267] syz_tun: tun_chr_ioctl cmd 2147767520 [ 171.603596][ T5940] Bluetooth: hci2: unexpected event 0x36 length: 123 > 7 [ 176.090540][ T8492] nfs: Bad value for 'source' [ 176.572344][ T8518] syz_tun: tun_chr_ioctl cmd 1074025672 [ 176.595541][ T8518] syz_tun: ignored: set checksum disabled [ 179.351414][ T30] audit: type=1800 audit(1749001562.590:10): pid=8656 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1232" name="trace_pipe" dev="tracefs" ino=1255 res=0 errno=0 [ 182.032518][ T8792] syz.3.1301 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 183.078490][ T30] audit: type=1800 audit(1749001566.330:11): pid=8840 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1324" name="dummy_udc" dev="gadgetfs" ino=5837 res=0 errno=0 [ 187.129389][ T9038] Unable to find swap-space signature [ 187.641909][ T9059] Process accounting paused [ 187.747563][ T5940] Bluetooth: hci0: unexpected event 0x23 length: 127 > 13 [ 189.817911][ T9152] Unable to find swap-space signature [ 193.729576][ T30] audit: type=1800 audit(1749001577.055:12): pid=9334 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1566" name="features" dev="configfs" ino=18468 res=0 errno=0 [ 195.460147][ T9422] capability: warning: `syz.3.1608' uses deprecated v2 capabilities in a way that may be insecure [ 196.723408][ T9487] ptp ptp0: only physical clock in use now [ 196.847270][ T9491] can: request_module (can-proto-0) failed. [ 197.109232][ T9507] futex_wake_op: syz.0.1649 tries to shift op by 64; fix this program [ 198.855301][ T9597] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 199.028947][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.035409][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.644228][ T9635] nfs: Unknown parameter 'w`_I+; HY Lu>>uh*C<+ ' [ 199.698365][ T9641] syz.2.1710 uses obsolete (PF_INET,SOCK_PACKET) [ 200.098820][ T9660] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1048706]. [ 203.798475][ T9837] sysfs_service_op_store: Client not running :-5: [ 204.064575][ T5940] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 204.164981][ T9855] ceph: Failed to parse sending metrics switch value 'P^' [ 204.920649][ T9888] usb usb24: check_ctrlrecip: process 9888 (syz.4.1810) requesting ep 01 but needs 81 [ 204.947512][ T9888] usb usb24: usbfs: process 9888 (syz.4.1810) did not claim interface 0 before use [ 207.102238][ T30] audit: type=1400 audit(4294967307.610:13): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=9990 comm="syz.2.1860" [ 207.148218][ T9995] vivid-007: ================= START STATUS ================= [ 207.171156][ T9995] vivid-007: Generate PTS: true [ 207.176281][ T9995] vivid-007: Generate SCR: true [ 207.199594][ T9995] tpg source WxH: 320x240 (Y'CbCr) [ 207.204763][ T9995] tpg field: 1 [ 207.221009][ T9995] tpg crop: (0,0)/320x240 [ 207.237635][ T9995] tpg compose: (0,0)/320x240 [ 207.243069][ T9995] tpg colorspace: 8 [ 207.254905][ T9995] tpg transfer function: 0/0 [ 207.267159][ T9995] tpg Y'CbCr encoding: 0/0 [ 207.290446][ T9995] tpg quantization: 0/0 [ 207.294823][ T9995] tpg RGB range: 0/2 [ 207.299067][ T9995] vivid-007: ================== END STATUS ================== [ 208.256573][T10050] block2mtd: illegal erase size [ 208.266895][T10051] queue_state_write: operation too long [ 208.279751][T10051] queue_state_write: use 'run', 'start' or 'kick' [ 209.768924][T10126] process 'syz.0.1928' launched '/dev/fd/3' with NULL argv: empty string added [ 210.627750][ T30] audit: type=1806 audit(4294967311.148:14): xattr="" res=-22 [ 211.054886][T10180] usbcore.quirks: string doesn't fit in 127 chars. [ 211.750837][T10212] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.296405][T10240] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 212.297199][T10239] ima: policy update failed [ 212.323999][ T30] audit: type=1802 audit(4294967312.867:15): pid=10239 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.1982" res=0 errno=0 [ 212.982555][T10276] [ 213.421697][T10292] block2mtd: illegal erase size [ 217.511105][T10479] Process accounting resumed [ 217.957273][T10508] rnbd_client L202: map_device: Unknown parameter or missing value '(' [ 218.064311][T10512] vivid-003: ================= START STATUS ================= [ 218.078760][T10512] vivid-003: Radio HW Seek Mode: Bounded [ 218.087230][T10512] vivid-003: Radio Programmable HW Seek: false [ 218.114375][T10512] vivid-003: RDS Rx I/O Mode: Block I/O [ 218.135014][T10512] vivid-003: Generate RBDS Instead of RDS: false [ 218.150752][T10512] vivid-003: RDS Reception: true [ 218.160980][T10512] vivid-003: RDS Program Type: 0 inactive [ 218.166774][T10512] vivid-003: RDS PS Name: inactive [ 218.195154][T10512] vivid-003: RDS Radio Text: inactive [ 218.209829][T10512] vivid-003: RDS Traffic Announcement: false inactive [ 218.226201][T10522] mmap: syz.0.2121 (10522): VmData 39489536 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data. [ 218.228025][T10512] vivid-003: RDS Traffic Program: false inactive [ 218.270164][T10512] vivid-003: RDS Music: false inactive [ 218.275718][T10512] vivid-003: ================== END STATUS ================== [ 218.935723][ T30] audit: type=1800 audit(4294967319.501:16): pid=10558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2140" name="lu_gp_id" dev="configfs" ino=21477 res=0 errno=0 [ 219.140785][T10566] program syz.3.2144 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 219.730580][T10593] binder: 10592:10593 ioctl c0306201 2000000000c0 returned -14 [ 221.399791][ T22] process 5937 (syz-executor) no longer affine to cpu1 [ 221.451870][ T927] smpboot: CPU 1 is now offline [ 222.786793][T10719] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations! [ 228.895057][T10912] ptrace attach of "./syz-executor exec"[5937] was attempted by ""[10912] [ 229.108167][ T5155] Bluetooth: hci0: command 0x0406 tx timeout [ 229.115290][ T5943] Bluetooth: hci3: command 0x0406 tx timeout [ 229.124880][ T5943] Bluetooth: hci1: command 0x0406 tx timeout [ 231.545826][T11000] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.721910][T11000] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.886426][T11000] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.049926][T11000] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.406099][T11060] kAFS: Invalid Command on /proc/fs/afs/cells file [ 234.135279][T11080] block2mtd: illegal erase size [ 235.056612][T11107] ptrace attach of "./syz-executor exec"[6256] was attempted by "./syz-executor exec"[11107] [ 235.554365][T11121] [U]  [ 236.271376][ T5945] Bluetooth: hci3: unexpected event 0x3e length: 0 < 1 [ 238.536775][T11201] ima: policy update failed [ 238.564662][ T30] audit: type=1802 audit(4294967339.223:17): pid=11201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.2458" res=0 errno=0 [ 242.373350][ T5940] Bluetooth: hci2: unexpected event 0x3e length: 0 < 1 [ 242.475608][ T5940] Bluetooth: hci2: command 0x0406 tx timeout [ 244.612018][T11381] program syz.2.2545 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 244.658093][T11381] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 246.854537][T11442] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 247.142860][T11450] Line length is too long: Should be less than 4094 [ 247.420877][T11456] Process accounting paused [ 247.808577][T11471] delete_channel: no stack [ 249.136942][ T5945] Bluetooth: hci0: unexpected event 0x3e length: 0 < 1 [ 250.632176][ T5945] Bluetooth: hci1: unexpected event 0x3e length: 0 < 1 [ 252.077573][T11592] program syz.4.2647 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 256.705543][T11723] Invalid ELF header magic: != ELF [ 257.185098][T11739] synth uevent: /devices/virtual/block/ram11: unknown uevent action string [ 257.233132][T11739] block ram11: uevent: failed to send synthetic uevent: -22 [ 257.446082][ T5945] Bluetooth: hci3: unexpected event 0x3e length: 0 < 1 [ 258.140583][T11769] usb usb36: usbfs: process 11769 (syz.2.2733) did not claim interface 0 before use [ 258.771856][T11789] i2c i2c-0: delete_device: Extra parameters [ 258.956019][T11793] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 259.926880][T11817] cougar: G6 mapped to space [ 260.149629][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.156091][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 260.717757][T11797] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 260.902528][T11840] usb usb8: usbfs: interface 0 claimed by hub while 'syz.4.2767' sets config #32769 [ 261.741884][T11871] synth uevent: /module/l2tp_ip6: unknown uevent action string [ 261.904930][T11877] bond0: option mode: unable to set because the bond device is up [ 262.684611][T11904] QAT: Invalid ioctl 21531 [ 265.785152][T12004] WARNING! power/level is deprecated; use power/control instead [ 265.874856][T12006] bond0: no command found in slaves file - use +ifname or -ifname [ 266.679795][T12030] vhci_hcd: invalid port number 21 [ 266.717927][T12030] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub. [ 268.797518][T12088] block nbd8: NBD_DISCONNECT [ 269.200101][T12098] aoe: can't write to that file. [ 271.503946][ T5945] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 271.573174][T12167] program syz.3.2926 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 272.671101][T12199] Setting dangerous option i915.mitigations - tainting kernel [ 277.074580][T12308] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes [ 277.483784][T12317] Process accounting resumed [ 280.506566][T12403] binder: 12402:12403 ioctl c018620c 0 returned -14 [ 280.610549][T12405] bond0: no command found in slaves file - use +ifname or -ifname [ 282.619479][T12458] ICMPv6: process `syz.2.3066' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 284.690227][T12510] warning: `syz.3.3091' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 285.985665][T12543] Setting dangerous option i915.mitigations - tainting kernel [ 286.226166][ T30] audit: type=1800 audit(4294967339.258:18): pid=12547 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3109" name="members" dev="configfs" ino=28862 res=0 errno=0 [ 290.678230][T12675] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 295.397637][T12804] delete_channel: no stack [ 295.625162][ T30] audit: type=1800 audit(4294967348.707:19): pid=12811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3239" name="lu_gp_id" dev="configfs" ino=29715 res=0 errno=0 [ 295.668107][T12811] kstrtoul() returned -22 for lu_gp_id [ 296.233827][T12830] binder: 12826:12830 ioctl 541b 38 returned -22 [ 297.874700][T12880] kAFS: No cell specified [ 301.331866][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 301.338254][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 301.811410][T12992] : Can't lookup blockdev [ 305.778062][ T5992] Process accounting resumed [ 307.410901][T13164] Process accounting paused [ 309.798198][T13234] kmem.limit_in_bytes is deprecated and will be removed. Writing any value to this file has no effect. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 311.320080][T13271] synth uevent: /bus/hid/drivers/zeroplus: unknown uevent action string [ 314.369820][T13372] ======================================================= [ 314.369820][T13372] WARNING: The mand mount option has been deprecated and [ 314.369820][T13372] and is ignored by this kernel. Remove the mand [ 314.369820][T13372] option from the mount to silence this warning. [ 314.369820][T13372] ======================================================= [ 314.404707][ C0] vkms_vblank_simulate: vblank timer overrun [ 315.188917][T13396] i2c i2c-0: delete_device: Can't find device in list [ 315.277984][ T30] audit: type=1800 audit(4294967368.459:20): pid=13400 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3529" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 319.886015][T13549] binder: 13547:13549 ioctl c0306201 2000000000c0 returned -14 [ 321.268826][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 321.277357][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 321.649895][T13600] block2mtd: illegal erase size [ 324.468778][ T5945] Bluetooth: hci2: unexpected subevent 0x04 length: 122 > 11 [ 329.736246][T13855] random: crng reseeded on system resumption [ 330.590170][T13884] random: crng reseeded on system resumption [ 332.903457][T13954] scsi_dev_info_list_add_str: bad dev info string ')zD 5fk+*X#R84*VsndvqQW}~YrȀ-8VGDƘLB%v†v}Ypq|?O[,! 7xWDr%[}E$3?G9Ff=lrGH;2L<=|8 -c Fո"[v9q4Mmvqk[(iNDСMX PSqqX4X`V!;r֍)y]WzfIH0,v{q8שUܹ䑉m؛HTwCz-nR%2]x05oՕ|3>lS*L/Cdgӑ[C=Cwem)l#' ''S.sHgi-TY%ܹF*8nFTH?i{' '' [ 332.950367][ C0] vkms_vblank_simulate: vblank timer overrun [ 333.916102][T13985] afs: Bad value for 'source' [ 334.130356][T13992] nfsd: Unknown parameter '^B-' [ 337.265255][ T30] audit: type=1800 audit(4294967390.564:21): pid=14080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3857" name="discovery_nqn" dev="configfs" ino=33745 res=0 errno=0 [ 337.384259][T14078] Process accounting resumed [ 342.281556][T14238] program syz.4.3931 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 343.723263][T14279] syz.0.3951: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 343.857650][T14279] CPU: 0 UID: 0 PID: 14279 Comm: syz.0.3951 Tainted: G U 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 343.857683][T14279] Tainted: [U]=USER [ 343.857690][T14279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 343.857704][T14279] Call Trace: [ 343.857713][T14279] [ 343.857723][T14279] dump_stack_lvl+0x16c/0x1f0 [ 343.857761][T14279] warn_alloc+0x248/0x3a0 [ 343.857793][T14279] ? __pfx_warn_alloc+0x10/0x10 [ 343.857827][T14279] ? __lock_acquire+0xb8a/0x1c90 [ 343.857863][T14279] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 343.857886][T14279] __vmalloc_node_range_noprof+0xff5/0x14b0 [ 343.857912][T14279] ? __pfx___mutex_trylock_common+0x10/0x10 [ 343.857941][T14279] ? __pfx___might_resched+0x10/0x10 [ 343.857962][T14279] ? rcu_is_watching+0x12/0xc0 [ 343.857984][T14279] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 343.858004][T14279] ? __mutex_lock+0x1ca/0xb90 [ 343.858022][T14279] ? tomoyo_path_number_perm+0x295/0x580 [ 343.858054][T14279] ? dvb_dvr_do_ioctl+0x7e/0x290 [ 343.858076][T14279] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 343.858102][T14279] ? __pfx___mutex_lock+0x10/0x10 [ 343.858122][T14279] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 343.858157][T14279] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 343.858177][T14279] __vmalloc_node_noprof+0xad/0xf0 [ 343.858203][T14279] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 343.858227][T14279] dvb_dvr_do_ioctl+0x15d/0x290 [ 343.858252][T14279] dvb_usercopy+0x167/0x340 [ 343.858271][T14279] ? __pfx_dvb_dvr_do_ioctl+0x10/0x10 [ 343.858294][T14279] ? __pfx_dvb_usercopy+0x10/0x10 [ 343.858323][T14279] ? __fget_files+0x20e/0x3c0 [ 343.858356][T14279] dvb_dvr_ioctl+0x29/0x40 [ 343.858375][T14279] ? __pfx_dvb_dvr_ioctl+0x10/0x10 [ 343.858396][T14279] __x64_sys_ioctl+0x18b/0x210 [ 343.858422][T14279] do_syscall_64+0xcd/0x490 [ 343.858443][T14279] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 343.858463][T14279] RIP: 0033:0x7fd82838e969 [ 343.858478][T14279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 343.858497][T14279] RSP: 002b:00007fd8291cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 343.858514][T14279] RAX: ffffffffffffffda RBX: 00007fd8285b5fa0 RCX: 00007fd82838e969 [ 343.858527][T14279] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000003 [ 343.858539][T14279] RBP: 00007fd828410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 343.858551][T14279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 343.858581][T14279] R13: 0000000000000000 R14: 00007fd8285b5fa0 R15: 00007ffd67d9a7e8 [ 343.858606][T14279] [ 343.858850][T14279] Mem-Info: [ 344.950075][T14311] random: crng reseeded on system resumption [ 345.070789][T14279] active_anon:4647 inactive_anon:1035 isolated_anon:0 [ 345.070789][T14279] active_file:20395 inactive_file:37963 isolated_file:0 [ 345.070789][T14279] unevictable:768 dirty:118 writeback:0 [ 345.070789][T14279] slab_reclaimable:10359 slab_unreclaimable:94019 [ 345.070789][T14279] mapped:25103 shmem:2065 pagetables:1221 [ 345.070789][T14279] sec_pagetables:0 bounce:0 [ 345.070789][T14279] kernel_misc_reclaimable:0 [ 345.070789][T14279] free:1325737 free_pcp:12658 free_cma:0 [ 345.116401][ C0] vkms_vblank_simulate: vblank timer overrun [ 345.461133][T14279] Node 0 active_anon:18588kB inactive_anon:7104kB active_file:81520kB inactive_file:151720kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:101660kB dirty:576kB writeback:0kB shmem:9584kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10512kB pagetables:4740kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 345.494710][ C0] vkms_vblank_simulate: vblank timer overrun [ 345.667634][T14279] Node 1 active_anon:0kB inactive_anon:0kB active_file:60kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 345.699175][ C0] vkms_vblank_simulate: vblank timer overrun [ 345.859149][T14279] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 345.888064][ C0] vkms_vblank_simulate: vblank timer overrun [ 346.019517][T14279] lowmem_reserve[]: 0 2481 2483 2483 2483 [ 346.049870][T14279] Node 0 DMA32 free:1376800kB boost:0kB min:34332kB low:42912kB high:51492kB reserved_highatomic:0KB free_highatomic:0KB active_anon:18552kB inactive_anon:12404kB active_file:80844kB inactive_file:150836kB unevictable:1536kB writepending:608kB present:3129332kB managed:2541060kB mlocked:0kB bounce:0kB free_pcp:31296kB local_pcp:31296kB free_cma:0kB [ 346.082535][ C0] vkms_vblank_simulate: vblank timer overrun [ 346.120015][T14335] cougar: G6 mapped to F18 [ 346.246718][T14279] lowmem_reserve[]: 0 0 1 1 1 [ 346.251575][T14279] Node 0 Normal free:20kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:676kB inactive_file:884kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:20kB free_cma:0kB [ 346.280845][ C0] vkms_vblank_simulate: vblank timer overrun [ 346.500989][T14279] lowmem_reserve[]: 0 0 0 0 0 [ 346.527161][T14279] Node 1 Normal free:3910292kB boost:0kB min:55548kB low:69432kB high:83316kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:60kB inactive_file:132kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:11516kB local_pcp:11516kB free_cma:0kB [ 346.558491][ C0] vkms_vblank_simulate: vblank timer overrun [ 346.773948][T14279] lowmem_reserve[]: 0 0 0 0 0 [ 346.801811][T14279] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 346.842208][T14350] syz_tun: tun_chr_ioctl cmd 1074025694 [ 346.873703][T14279] Node 0 DMA32: 1473*4kB (UME) 1272*8kB (UM) 658*16kB (UME) 371*32kB (UME) 292*64kB (UME) 222*128kB (UME) 147*256kB (UM) 60*512kB (UME) 18*1024kB (UM) 7*2048kB (UME) 290*4096kB (UM) = 1374532kB [ 346.892941][ C0] vkms_vblank_simulate: vblank timer overrun [ 347.025885][T14279] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB [ 347.085831][T14279] Node 1 Normal: 143*4kB (UME) 57*8kB (UME) 45*16kB (UME) 232*32kB (UME) 91*64kB (UME) 18*128kB (UME) 5*256kB (UME) 3*512kB (UME) 1*1024kB (M) 1*2048kB (E) 949*4096kB (M) = 3910292kB [ 347.193574][T14279] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 347.236416][T14279] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 347.285807][T14279] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 347.340532][T14279] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 347.399704][T14279] 64779 total pagecache pages [ 347.419701][T14279] 0 pages in swap cache [ 347.438567][T14279] Free swap = 124996kB [ 347.463683][T14279] Total swap = 124996kB [ 347.486848][T14279] 2097051 pages RAM [ 347.504759][T14279] 0 pages HighMem/MovableOnly [ 347.537963][T14279] 429744 pages reserved [ 347.557539][T14279] 0 pages cma reserved [ 359.450857][T14656] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed. [ 360.282004][T14681] misc userio: Invalid payload size [ 361.021536][T14704] block2mtd: Using custom MTD label '' for dev [ 361.055470][T14704] block2mtd: error: cannot open device [ 361.283416][T14710] nvme_fcloop: unknown parameter or missing value '' [ 361.987960][T14730] i2c i2c-0: new_device: Can't parse I2C address [ 363.195699][T14768] QAT: failed to copy from user. [ 365.419666][ T30] audit: type=1800 audit(4294967418.870:22): pid=14827 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4216" name="discovery_nqn" dev="configfs" ino=36186 res=0 errno=0 [ 365.675282][T14831] Setting dangerous option i915.mitigations - tainting kernel [ 365.720356][T14831] Bad "i915.mitigations=!h@S", 'h@S' is unknown [ 367.353288][T14873] Process accounting paused [ 368.291577][ T5945] Bluetooth: hci1: unexpected event 0x3e length: 728 > 260 [ 368.291606][ T5945] Bluetooth: hci1: unexpected subevent 0x03 length: 727 > 9 [ 372.252279][T15017] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 373.283268][ T30] audit: type=1800 audit(4294967426.771:23): pid=15051 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4324" name="dbroot" dev="configfs" ino=36883 res=0 errno=0 [ 373.547277][T15055] QAT: failed to copy from user cfg_data. [ 373.946320][T15062] hub 8-0:1.0: USB hub found [ 373.975827][T15062] hub 8-0:1.0: 1 port detected [ 375.688404][T15114] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 375.834480][T15114] CIFS mount error: No usable UNC path provided in device string! [ 375.834480][T15114] [ 375.891823][T15114] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 379.762072][T15232] hub 8-0:1.0: USB hub found [ 379.785198][T15232] hub 8-0:1.0: 1 port detected [ 380.333821][T15249] futex_wake_op: syz.2.4422 tries to shift op by -9; fix this program [ 380.944194][T15264] Format for deleting device is "id" (uint). [ 381.947389][T15292] hub 8-0:1.0: USB hub found [ 381.968519][T15292] hub 8-0:1.0: 1 port detected [ 382.419607][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 382.425927][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 383.352025][T15330] bond0: option lp_interval: invalid value (/sys/devices/platform/vkms/graphics/fb0/rotate) [ 383.428927][T15330] bond0: option lp_interval: allowed values 1 - 2147483647 [ 385.239475][T15383] hub 8-0:1.0: USB hub found [ 385.274866][T15383] hub 8-0:1.0: 1 port detected [ 385.765931][ T30] audit: type=1400 audit(4294967439.316:24): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=15399 comm="syz.3.4495" [ 387.986768][ T30] audit: type=1800 audit(4294967441.547:25): pid=15465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4525" name="members" dev="configfs" ino=38186 res=0 errno=0 [ 388.390669][T15475] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7fe08 [ 388.433777][T15475] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 388.486999][T15475] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 388.524887][T15475] page_type: f5(slab) [ 388.543252][T15475] raw: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000 [ 388.607336][T15475] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 388.664183][T15475] head: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000 [ 388.724365][T15475] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 388.759656][T15475] head: 00fff00000000003 ffffea0001ff8201 00000000ffffffff 00000000ffffffff [ 388.844785][T15475] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 388.883003][T15475] page dumped because: unmovable page [ 388.921864][T15475] page_owner tracks the page as allocated [ 388.953273][T15475] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 36, tgid 36 (kworker/u8:2), ts 385064000067, free_ts 385019321036 [ 388.973928][ C0] vkms_vblank_simulate: vblank timer overrun [ 389.057111][T15475] post_alloc_hook+0x1c0/0x230 [ 389.101862][T15475] get_page_from_freelist+0x1321/0x3890 [ 389.183276][T15475] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 389.242066][T15475] alloc_pages_mpol+0x1fb/0x550 [ 389.280943][T15475] new_slab+0x23b/0x330 [ 389.289887][T15475] ___slab_alloc+0xd9c/0x1940 [ 389.306519][T15475] __slab_alloc.constprop.0+0x56/0xb0 [ 389.366230][T15475] __kmalloc_node_track_caller_noprof+0x2ee/0x510 [ 389.420078][T15475] kmalloc_reserve+0xef/0x2c0 [ 389.424902][T15475] __alloc_skb+0x166/0x380 [ 389.429345][T15475] nsim_dev_trap_report_work+0x2b1/0xcf0 [ 389.482249][T15475] process_one_work+0x9cf/0x1b70 [ 389.519383][T15475] worker_thread+0x6c8/0xf10 [ 389.534323][T15475] kthread+0x3c2/0x780 [ 389.538461][T15475] ret_from_fork+0x5d7/0x6f0 [ 389.586002][T15475] ret_from_fork_asm+0x1a/0x30 [ 389.616933][T15475] page last free pid 5823 tgid 5823 stack trace: [ 389.655713][T15475] __free_frozen_pages+0x7fe/0x1180 [ 389.677311][T15475] __put_partials+0x16d/0x1c0 [ 389.709749][T15475] qlist_free_all+0x4d/0x120 [ 389.714395][T15475] kasan_quarantine_reduce+0x195/0x1e0 [ 389.747866][T15475] __kasan_slab_alloc+0x69/0x90 [ 389.788353][T15475] kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 389.817977][T15475] jbd2__journal_start+0x193/0x6a0 [ 389.844578][T15475] __ext4_journal_start_sb+0x195/0x690 [ 389.880502][T15475] ext4_dirty_inode+0xa1/0x130 [ 389.885356][T15475] __mark_inode_dirty+0x1eb/0xe50 [ 389.925082][T15475] generic_update_time+0xcf/0xf0 [ 389.948815][T15475] file_update_time+0x17d/0x1c0 [ 389.973399][T15475] ext4_page_mkwrite+0x35e/0x1760 [ 390.001432][T15475] do_page_mkwrite+0x171/0x380 [ 390.023887][T15475] do_wp_page+0xb10/0x4f20 [ 390.054333][T15475] __handle_mm_fault+0x2223/0x5490 [ 390.944873][T15537] ubi0: attaching mtd0 [ 391.002378][T15537] ubi0 error: ubi_attach_mtd_dev: bad VID header (3969) or data offsets (4033) [ 392.833070][T15592] CIFS mount error: No usable UNC path provided in device string! [ 392.833070][T15592] [ 392.895173][T15592] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 394.068452][T15629] kafs: addr_prefs: Invalid Command [ 394.177662][T15633] vmstat_refresh: pgdemote_proactive -6144 [ 397.473838][T15730] Process accounting resumed [ 400.393876][T15817] i2c i2c-0: new_device: Invalid device name [ 400.849454][T15831] XFS: irix_symlink_mode sysctl option is deprecated. [ 401.220682][T15846] block2mtd: error: cannot open device inX±jFBB>U;߸Ilk [ 402.429052][T15885] rtc_cmos 00:00: in use; can't configure [ 403.163638][T15908] syz_tun: tun_chr_ioctl cmd 1074025698 [ 406.718680][T16018] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 411.581304][T16174] program syz.2.4870 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 412.406218][T16199] syz.4.4879 (16199): attempted to duplicate a private mapping with mremap. This is not supported. [ 412.500106][T16203] vhci_hcd: invalid port number 255 [ 415.925169][T16298] block2mtd: device name too long [ 417.240916][T16337] syz.3.4950 (16337): drop_caches: 0 [ 424.447424][T16567] block nbd14: the capability attribute has been deprecated. [ 424.529822][T16573] blkio.reset_stats is deprecated [ 427.074946][T16656] ICMPv6: process `syz.2.5107' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead [ 427.789098][T16658] Process accounting paused [ 428.123096][T16686] bond0: Unable to set down delay as MII monitoring is disabled [ 428.481673][T16699] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 428.481673][T16699] M' is too long [ 428.531690][T16699] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 428.531690][T16699] W ' is too long [ 433.247524][ T1103] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 433.360854][ T1103] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 433.435895][ T1103] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 433.849492][ T1103] bridge_slave_1: left allmulticast mode [ 433.855456][ T1103] bridge_slave_1: left promiscuous mode [ 433.946377][ T1103] bridge0: port 2(bridge_slave_1) entered disabled state [ 434.041452][ T1103] bridge_slave_0: left allmulticast mode [ 434.047122][ T1103] bridge_slave_0: left promiscuous mode [ 434.128906][ T1103] bridge0: port 1(bridge_slave_0) entered disabled state [ 435.113470][ T5940] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 435.123362][ T5940] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 435.131483][ T5940] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 435.139803][ T5940] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 435.177933][ T5940] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 436.469190][ T1103] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 436.506086][ T1103] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 436.540223][ T1103] bond0 (unregistering): Released all slaves [ 437.302338][ T5940] Bluetooth: hci0: command tx timeout [ 437.326995][ T1103] hsr_slave_0: left promiscuous mode [ 437.410753][ T1103] hsr_slave_1: left promiscuous mode [ 437.456470][ T1103] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 437.489561][ T1103] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 437.562829][ T1103] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 437.606296][ T1103] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 437.756064][ T1103] veth1_macvtap: left promiscuous mode [ 437.815994][ T1103] veth0_macvtap: left promiscuous mode [ 437.843581][ T1103] veth1_vlan: left promiscuous mode [ 437.864351][ T1103] veth0_vlan: left promiscuous mode [ 438.770336][T16970] Invalid input. Must be >= 4608 [ 439.134738][T16978] sysfs_service_op_show: Client not running :-5: [ 439.370641][ T5940] Bluetooth: hci0: command tx timeout [ 440.238790][T16996] could not allocate digest TFM handle [ 440.361632][ T1103] team0 (unregistering): Port device team_slave_1 removed [ 440.508401][T17011] Per memcg swappiness does not exist in cgroup v2. See memory.reclaim or memory.swap.max there [ 440.508401][T17011] [ 440.564641][ T1103] team0 (unregistering): Port device team_slave_0 removed [ 441.441654][ T5940] Bluetooth: hci0: command tx timeout [ 442.433418][T17023] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 442.850203][T17065] program syz.4.5293 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 443.132315][T16880] chnl_net:caif_netlink_parms(): no params data found [ 443.513273][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 443.519656][ T5940] Bluetooth: hci0: command tx timeout [ 443.525072][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 443.748191][T16880] bridge0: port 1(bridge_slave_0) entered blocking state [ 443.770362][T16880] bridge0: port 1(bridge_slave_0) entered disabled state [ 443.834009][T16880] bridge_slave_0: entered allmulticast mode [ 443.889010][T16880] bridge_slave_0: entered promiscuous mode [ 443.940394][T16880] bridge0: port 2(bridge_slave_1) entered blocking state [ 443.977011][T16880] bridge0: port 2(bridge_slave_1) entered disabled state [ 444.015700][T16880] bridge_slave_1: entered allmulticast mode [ 444.053213][T16880] bridge_slave_1: entered promiscuous mode [ 444.285720][T16880] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 444.377903][T16880] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 444.677387][T16880] team0: Port device team_slave_0 added [ 444.730661][T16880] team0: Port device team_slave_1 added [ 444.975207][T16880] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 445.019005][T16880] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 445.162453][T16880] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 445.232493][T16880] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 445.289589][T16880] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 445.430371][T16880] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 445.755129][T16880] hsr_slave_0: entered promiscuous mode [ 445.793151][T16880] hsr_slave_1: entered promiscuous mode [ 446.827045][T16880] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 446.956094][T16880] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 447.014155][T16880] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 447.120099][T16880] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 447.578114][T16880] 8021q: adding VLAN 0 to HW filter on device bond0 [ 447.655210][T16880] 8021q: adding VLAN 0 to HW filter on device team0 [ 447.813623][ T1333] bridge0: port 1(bridge_slave_0) entered blocking state [ 447.820793][ T1333] bridge0: port 1(bridge_slave_0) entered forwarding state [ 447.921989][ T1333] bridge0: port 2(bridge_slave_1) entered blocking state [ 447.929157][ T1333] bridge0: port 2(bridge_slave_1) entered forwarding state [ 449.307601][T16880] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 450.853626][T16880] veth0_vlan: entered promiscuous mode [ 450.899561][T16880] veth1_vlan: entered promiscuous mode [ 451.171356][T16880] veth0_macvtap: entered promiscuous mode [ 451.239604][T16880] veth1_macvtap: entered promiscuous mode [ 451.364530][T16880] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 451.424129][T16880] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 451.460872][T16880] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 451.498677][T16880] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 451.518811][T17301] udc dummy_udc.0: soft-connect without a gadget driver [ 451.576140][T16880] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 451.631311][T16880] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 452.005847][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 452.074294][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 452.257341][ T798] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 452.332174][ T798] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 453.608422][T17355] writes to the poll attribute are ignored. [ 453.646702][T17355] please use driver specific parameters instead. [ 456.068627][T17421] Setting dangerous option i915.mitigations - tainting kernel [ 457.661770][T17463] Process accounting resumed [ 462.257645][T17592] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5) [ 468.301742][T17787] bcache: register_bcache() error : Not a bcache superblock (bad offset) [ 471.709283][T17893] block2mtd: parameter too long [ 471.911529][T17897] vhci_hcd: invalid port number 16 [ 473.838268][ T5940] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 473.838294][ T5940] Bluetooth: hci2: unexpected subevent 0x0e length: 725 > 15 [ 473.856352][ T5940] Bluetooth: hci2: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 476.619878][T18026] syz_tun: tun_chr_ioctl cmd 1074812117 [ 476.760664][T18032] kafs: addr_prefs: Invalid Command [ 479.026409][T18095] syz_tun: tun_chr_ioctl cmd 35111 [ 482.128179][T18180] usb usb2: usbfs: process 18180 (syz.3.5743) did not claim interface 1 before use [ 483.473214][T18217] kafs: addr_prefs: Too many elements in string [ 486.726988][ T30] audit: type=1806 audit(4294967540.811:26): res=-14 [ 487.649356][T18336] program syz.4.5802 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 487.692420][T18334] Process accounting paused [ 487.802414][T18336] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 489.395336][T18383] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 490.100428][T18403] usb usb16: usbfs: process 18403 (syz.3.5830) did not claim interface 0 before use [ 490.822797][T18426] sg_write: data in/out 589824/1 bytes for SCSI command 0x7b-- guessing data in; [ 490.822797][T18426] program syz.4.5840 not setting count and/or reply_len properly [ 492.632812][ T5940] Bluetooth: hci1: unexpected event for opcode 0x7c89 [ 503.798182][ T30] audit: type=1800 audit(4294967557.949:27): pid=18803 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.6024" name="dbroot" dev="configfs" ino=48877 res=0 errno=0 [ 503.827629][T18803] db_root: not a directory: /dev/audio1 [ 504.651395][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 504.657797][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 508.135200][T18930] i2c i2c-0: delete_device: Can't parse I2C address [ 510.004750][T18990] syz_tun: tun_chr_ioctl cmd 2147767517 [ 516.685846][T19204] ecryptfs_miscdev_write: memdup_user returned error [-14] [ 517.562823][T19228] Process accounting resumed [ 517.832501][T19240] vhci_hcd: invalid port number 21 [ 517.837659][T19240] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub. [ 519.658637][ T30] audit: type=1807 audit(4294967573.902:28): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 519.680601][T19299] ima: policy update failed [ 519.748304][ T30] audit: type=1802 audit(4294967573.932:29): pid=19300 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.6267" res=0 errno=0 [ 519.894511][ T30] audit: type=1802 audit(4294967573.972:30): pid=19299 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.6267" res=0 errno=0 [ 519.992637][ T5940] Bluetooth: hci2: command 0x0406 tx timeout [ 520.003782][ T9] Bluetooth: hci2: Opcode 0x0c1a failed: -110 [ 522.061320][ T5940] Bluetooth: hci2: command 0x0406 tx timeout [ 522.072315][ T9] Bluetooth: hci2: Opcode 0x0406 failed: -110 [ 522.737340][T19388] vhci_hcd: invalid port number 16 [ 522.742471][T19388] vhci_hcd: invalid port number 16 [ 522.949233][T19394] ubi0: attaching mtd0 [ 522.970745][T19394] ubi0: scanning is finished [ 522.992781][T19394] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 523.183963][T19394] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 524.094470][T19430] zram0: detected capacity change from 0 to 8 [ 525.216350][T19468] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 528.986923][T19582] usb usb24: usbfs: process 19582 (syz.4.6406) did not claim interface 0 before use [ 529.977124][T19610] aoe: invalid device specification [ 530.409798][T19620] synth uevent: /bus/mei: unknown uevent action string [ 531.325573][T19649] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 531.535987][T19656] ecryptfs_miscdev_write: Error while inspecting packet size [ 533.643182][T19719] rtc_cmos 00:00: Alarms can be up to one day in the future [ 533.666309][T19721] overlayfs: "check_copy_up" module option is obsolete [ 534.189612][T19734] synth uevent: /bus/mei: unknown uevent action string [ 535.208419][T19768] synth uevent: /bus/mei: unknown uevent action string [ 535.710828][T19780] ecryptfs_miscdev_write: Error while inspecting packet size [ 538.221268][T19851] overlayfs: "check_copy_up" module option is obsolete [ 538.814578][T19869] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 541.099985][T19933] syz_tun: tun_chr_ioctl cmd 2147767511 [ 544.369932][T20031] zram: Cannot change disksize for initialized device [ 545.396457][T20063] zram: Cannot change disksize for initialized device [ 545.794279][T20071] ecryptfs_miscdev_write: memdup_user returned error [-14] [ 547.533131][T20114] Process accounting paused [ 547.662814][T20121] ubi0: attaching mtd0 [ 547.686195][T20121] ubi0: scanning is finished [ 547.726996][T20121] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 547.892218][T20121] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 549.725701][T20174] usb usb24: usbfs: process 20174 (syz.3.6691) did not claim interface 0 before use [ 550.412901][T20195] rtc_cmos 00:00: Alarms can be up to one day in the future [ 552.305645][T20241] ima: policy update failed [ 552.310375][ T30] audit: type=1807 audit(4294967606.732:31): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 552.383667][ T30] audit: type=1802 audit(4294967606.732:32): pid=20242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.5.6723" res=0 errno=0 [ 552.401234][ C0] vkms_vblank_simulate: vblank timer overrun [ 552.504207][T20245] vhci_hcd: invalid port number 16 [ 552.509360][T20245] vhci_hcd: invalid port number 16 [ 552.584684][ T30] audit: type=1802 audit(4294967606.732:33): pid=20241 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.6723" res=0 errno=0 [ 552.833500][T20255] rtc_cmos 00:00: Alarms can be up to one day in the future [ 554.310334][T20298] binder: binder_mmap: 20297 0-1000 bad vm_flags failed -1 [ 556.732151][T20367] binder: binder_mmap: 20365 0-1000 bad vm_flags failed -1 [ 557.639512][T20334] Bluetooth: hci0: command 0x0406 tx timeout [ 562.616517][T20496] aoe: invalid device specification [ 563.739559][T20529] random: crng reseeded on system resumption [ 565.770821][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 565.782962][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 567.147798][T20622] random: crng reseeded on system resumption [ 577.499735][T20892] Process accounting resumed [ 578.025389][T20910] ICMPv6: process `syz.2.7053' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead [ 581.927377][T21013] ICMPv6: process `syz.3.7102' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead [ 582.556333][T21028] ima: policy update failed [ 582.639069][ T30] audit: type=1802 audit(4294967637.219:34): pid=21028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.7106" res=0 errno=0 [ 582.655936][ C0] vkms_vblank_simulate: vblank timer overrun [ 585.857948][T21115] ecryptfs_miscdev_write: Invalid packet size [192] [ 586.524645][T21134] ima: policy update failed [ 586.547261][ T30] audit: type=1802 audit(4294967641.150:35): pid=21134 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.7160" res=0 errno=0 [ 588.871644][T21201] kAFS: Invalid Command on /proc/fs/afs/cells file [ 589.097019][T21204] sg_write: data in/out 3292/1 bytes for SCSI command 0xa3-- guessing data in; [ 589.097019][T21204] program syz.5.7195 not setting count and/or reply_len properly [ 589.596933][T21222] random: crng reseeded on system resumption [ 591.580612][T21281] kAFS: Invalid Command on /proc/fs/afs/cells file [ 593.201259][T21328] random: crng reseeded on system resumption [ 593.873431][T21345] deleting an unspecified loop device is not supported. [ 594.260798][T21355] random: crng reseeded on system resumption [ 595.116164][T21377] QAT: Device 7 not found [ 596.103712][T21403] i2c i2c-0: new_device: Missing parameters [ 596.465461][T21412] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 597.954535][ T30] audit: type=1804 audit(4294967652.609:36): pid=21455 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.7312" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 602.400971][ T30] audit: type=1804 audit(4294967657.082:37): pid=21585 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.7374" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 602.659072][T21593] : Can't lookup blockdev [ 604.540465][T21653] ima: policy update failed [ 604.569654][ T30] audit: type=1802 audit(4294967659.253:38): pid=21653 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.7409" res=0 errno=0 [ 605.762084][T21689] nvme_fabrics: unknown parameter or missing value '7' in ctrl creation request [ 605.776070][T21690] : Can't lookup blockdev [ 606.706648][T21722] : Can't lookup blockdev [ 607.545599][T21745] Process accounting paused [ 607.757865][T21755] syz_tun: tun_chr_ioctl cmd 2147767506 [ 609.513344][T21811] random: crng reseeded on system resumption [ 609.583462][T21811] Restarting kernel threads ... [ 609.608502][T21811] Done restarting kernel threads. [ 610.455596][T21843] random: crng reseeded on system resumption [ 611.442593][T21875] random: crng reseeded on system resumption [ 611.523801][T21875] Restarting kernel threads ... [ 611.546822][T21875] Done restarting kernel threads. [ 617.609984][T22069] Ignoring unsupported numa_zonelist_order value: [ 617.609984][T22069] [ 620.813981][T22165] ubi0: attaching mtd0 [ 620.837939][T22165] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127) [ 621.651295][T22196] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 622.616691][T22225] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 623.860734][T22266] < [ 626.042351][T22334] bond0: option packets_per_slave: invalid value ( Xnp) [ 626.074353][T22336] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 626.099384][T22334] bond0: option packets_per_slave: allowed values 0 - 65535 [ 626.884621][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 626.891580][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 633.444547][T22675] nvme_fcloop: unknown parameter or missing value '^/]' [ 633.735918][T22685] usbip-vudc usbip-vudc.0: gadget not bound [ 634.063958][T22700] bcache: register_bcache() error : failed to open device [ 634.403193][T22719] [ 635.559261][T22771] nvme_fcloop: unknown parameter or missing value '^/]' [ 636.106114][T22795] bcache: register_bcache() error : failed to open device [ 636.151062][T22797] nvme_fcloop: unknown parameter or missing value '^/]' [ 636.884354][T22829] ima: Unable to open file: /suritRy/integrity?iqa/policy (-2) [ 636.893527][T22826] ima: policy update failed [ 636.948842][ T30] audit: type=1802 audit(4294967699.804:39): pid=22826 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.7997" res=0 errno=0 [ 637.180402][T22843] ecryptfs_parse_packet_length: Error parsing packet length [ 637.212698][T22843] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 637.472784][T22838] Process accounting resumed [ 640.008381][ T30] audit: type=1807 audit(4294967702.890:40): UNKNOWN= res=0 [ 640.015907][ T30] audit: type=1802 audit(4294967702.890:41): pid=22951 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.8050" res=0 errno=0 [ 640.050422][T22948] ima: policy update failed [ 640.091239][ T30] audit: type=1802 audit(4294967702.930:42): pid=22948 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.8050" res=0 errno=0 [ 640.629179][T22976] program syz.5.8062 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 642.897402][T23060] delete_channel: no stack [ 644.216656][T23119] delete_channel: no stack                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          [ 755.725798][T27293] net_ratelimit: 3 callbacks suppressed [ 755.725824][T27293] openvswitch: netlink: Key 2 has unexpected len 0 expected 4 [ 757.810356][T27332] Process accounting resumed [ 758.465211][T27359] netlink: 'syz.3.10013': attribute type 2 has an invalid length. [ 758.977281][T27380] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input51 [ 759.250726][T27390] netlink: 4 bytes leftover after parsing attributes in process `syz.4.10026'. [ 759.266968][T27384] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input52 [ 759.280813][T27390] openvswitch: netlink: IPv4 tunnel dst address is zero [ 760.080268][T27411] nbd: couldn't find device at index 33904 [ 760.657178][T27435] block nbd6: not configured, cannot reconfigure [ 761.145316][T27455] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 761.405952][T27464] device-mapper: ioctl: Invalid ioctl structure: name , dev 7f00010002 [ 761.445848][T27466] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input53 [ 761.530653][T27468] : entered promiscuous mode [ 761.601460][ T30] audit: type=1326 audit(4294967328.311:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27472 comm="syz.3.10064" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9aca98e969 code=0x0 [ 761.691290][T27469] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input54 [ 762.593843][T27504] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input55 [ 762.764489][T27507] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input56 [ 762.901493][T27511] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 763.126684][T27519] netlink: Unknown conntrack attr (type=146, max=9) [ 766.632325][T27635] batman_adv: Routing algorithm '' is not supported [ 767.365421][ T5940] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 767.365465][ T5940] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 767.380650][ T5940] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 767.380716][ T5940] Bluetooth: hci0: adv larger than maximum supported [ 767.388898][ T5940] Bluetooth: hci0: adv larger than maximum supported [ 767.396910][ T5940] Bluetooth: hci0: Unknown advertising packet type: 0x72 [ 767.403679][ T5940] Bluetooth: hci0: adv larger than maximum supported [ 767.410817][ T5940] Bluetooth: hci0: Malformed LE Event: 0x0d [ 768.834523][T27715] batman_adv: Routing algorithm '' is not supported [ 769.978997][T27758] nbd: must specify a size in bytes for the device [ 770.331793][T27768] svc: failed to register nfsdv3 RPC service (errno 111). [ 770.361779][T27768] svc: failed to register nfsaclv3 RPC service (errno 111). [ 770.686169][T27777] syz_tun: tun_chr_ioctl cmd 1074025681 [ 770.705999][T27783] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 770.863130][T27787] netlink: zone id is out of range [ 770.871514][T27787] netlink: zone id is out of range [ 770.896421][T27787] netlink: zone id is out of range [ 770.903362][T27787] netlink: zone id is out of range [ 770.910344][T27787] netlink: zone id is out of range [ 770.920821][T27787] netlink: zone id is out of range [ 770.939625][T27787] netlink: zone id is out of range [ 770.962305][T27787] netlink: zone id is out of range [ 770.988255][T27787] netlink: zone id is out of range [ 770.995749][T27787] netlink: zone id is out of range [ 771.034294][T27781] batman_adv: Routing algorithm '' is not supported [ 772.924458][T27866] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 773.863073][T27902] device-mapper: ioctl: name not supplied when creating device [ 774.100565][ T30] audit: type=1800 audit(4294967340.876:47): pid=27908 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.10261" name="discovery_nqn" dev="configfs" ino=77495 res=0 errno=0 [ 774.851220][T27942] netlink: 'syz.2.10277': attribute type 2 has an invalid length. [ 775.277019][T27955] binder: 27954:27955 ioctl c0306201 0 returned -14 [ 775.682970][T27769] udevd[27769]: inotify_add_watch(7, /dev/nbd1, 10) failed: No such file or directory [ 776.121896][T27978] svc: failed to register nfsdv3 RPC service (errno 111). [ 776.132264][T27978] svc: failed to register nfsaclv3 RPC service (errno 111). [ 776.541231][T27996] .RRo\&p: entered promiscuous mode [ 777.076565][T28018] svc: failed to register nfsdv3 RPC service (errno 111). [ 777.099439][T28018] svc: failed to register nfsaclv3 RPC service (errno 111). [ 778.848179][T28083] zero sized request [ 779.581924][T28115] net_ratelimit: 21 callbacks suppressed [ 779.581949][T28115] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 780.166419][T28135] program syz.2.10367 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 781.063226][T28171] openvswitch: netlink: IP tunnel dst address not specified [ 783.012750][ T30] audit: type=1800 audit(4294967349.833:48): pid=28245 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.10417" name="dbroot" dev="configfs" ino=79231 res=0 errno=0 [ 784.622761][T28316] busy [ 786.640237][T28401] netlink: zone id is out of range [ 786.732944][T28401] netlink: set zone limit has 8 unknown bytes [ 787.064133][ T30] audit: type=1107 audit(4294967353.904:49): pid=28417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 787.110654][ T30] audit: type=1107 audit(4294967353.924:50): pid=28417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 787.905062][T28444] Process accounting paused [ 790.044890][T28539] syz_tun: tun_chr_ioctl cmd 1074025684 [ 790.135248][T28541] HSR: entered promiscuous mode [ 790.516470][T28552] netlink: 4 bytes leftover after parsing attributes in process `syz.5.10557'. [ 792.104405][T28591] nbd: must specify a device to reconfigure [ 792.155525][T28593] unsupported nla_type 32969 [ 792.912572][T28617] netlink: 'syz.5.10584': attribute type 1 has an invalid length. [ 793.401643][T28630] netlink: 'syz.3.10590': attribute type 1 has an invalid length. [ 793.436924][T28630] nbd: error processing sock list [ 794.403533][T28666] HSR: entered promiscuous mode [ 794.996308][T28690] program syz.3.10619 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 795.007365][T28692] netlink: 'syz.2.10620': attribute type 1 has an invalid length. [ 795.133754][T28696] netlink: 16 bytes leftover after parsing attributes in process `syz.5.10621'. [ 795.184827][T28696] tc_dump_action: action bad kind [ 795.910752][T28722] netlink: 'syz.5.10635': attribute type 2 has an invalid length. [ 797.831256][T28801] openvswitch: netlink: IP tunnel dst address not specified [ 799.316885][T28859] ksmbd: Unknown IPC event: 14, ignore. [ 799.428068][T28863] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 799.754322][T28875] netlink: 'syz.3.10705': attribute type 1 has an invalid length. [ 800.690338][T28909] ALSA: mixer_oss: invalid OSS volume '' [ 800.914161][T28921] openvswitch: netlink: IP tunnel dst address not specified [ 801.905624][T28958] openvswitch: netlink: Message has 8 unknown bytes. [ 802.161326][T28971] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 803.076215][T29005] netlink: 'syz.2.10762': attribute type 1 has an invalid length. [ 803.964631][T29046] netlink: 206 bytes leftover after parsing attributes in process `syz.2.10783'. [ 804.058838][T29049] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 805.301649][T29109] synth uevent: /module/orangefs: unknown uevent action string [ 807.160497][T29190] nbd: must specify at least one socket [ 807.287258][ T30] audit: type=1107 audit(4294967305.684:51): pid=29192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 807.332429][ T30] audit: type=1107 audit(4294967305.684:52): pid=29192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 810.249806][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 810.256365][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 810.704568][T29326] netlink: set zone limit has 8 unknown bytes [ 810.879793][T29336] binder_alloc: binder_alloc_mmap_handler: 29335 0-1000 already mapped failed -16 [ 811.066773][T29344] netlink: Conntrack attr has 16 unknown bytes [ 812.199586][T29394] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 813.395979][T29441] sd 0:0:1:0: PR command failed: 1026 [ 813.406510][T29441] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 813.413320][T29441] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 814.319555][T29471] openvswitch: netlink: Flow key attribute not present in set flow. [ 814.329172][T29475] FAULT_INJECTION: forcing a failure. [ 814.329172][T29475] name failslab, interval 1, probability 0, space 0, times 0 [ 814.346685][T29475] CPU: 1 UID: 0 PID: 29475 Comm: syz.4.10976 Tainted: G U 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 814.346740][T29475] Tainted: [U]=USER [ 814.346752][T29475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 814.346771][T29475] Call Trace: [ 814.346781][T29475] [ 814.346794][T29475] dump_stack_lvl+0x16c/0x1f0 [ 814.346855][T29475] should_fail_ex+0x512/0x640 [ 814.346892][T29475] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 814.346948][T29475] should_failslab+0xc2/0x120 [ 814.346981][T29475] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 814.347033][T29475] ? kcm_create+0x11e/0x690 [ 814.347085][T29475] kcm_create+0x11e/0x690 [ 814.347150][T29475] __sock_create+0x335/0x8d0 [ 814.347202][T29475] __sys_socket+0x14d/0x260 [ 814.347243][T29475] ? fput+0x70/0xf0 [ 814.347273][T29475] ? __pfx___sys_socket+0x10/0x10 [ 814.347316][T29475] ? xfd_validate_state+0x61/0x180 [ 814.347357][T29475] ? __pfx_ksys_write+0x10/0x10 [ 814.347411][T29475] __x64_sys_socket+0x72/0xb0 [ 814.347451][T29475] ? lockdep_hardirqs_on+0x7c/0x110 [ 814.347500][T29475] do_syscall_64+0xcd/0x490 [ 814.347534][T29475] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 814.347566][T29475] RIP: 0033:0x7f436e78e969 [ 814.347592][T29475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 814.347623][T29475] RSP: 002b:00007f436f5fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 814.347654][T29475] RAX: ffffffffffffffda RBX: 00007f436e9b5fa0 RCX: 00007f436e78e969 [ 814.347674][T29475] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000029 [ 814.347693][T29475] RBP: 00007f436e810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 814.347712][T29475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 814.347731][T29475] R13: 0000000000000000 R14: 00007f436e9b5fa0 R15: 00007fffd0583af8 [ 814.347772][T29475] [ 814.541286][ C1] vkms_vblank_simulate: vblank timer overrun [ 817.061189][T29579] perf: Dynamic interrupt throttling disabled, can hang your system! [ 817.514299][T29588] sd 0:0:1:0: PR command failed: 1026 [ 817.551911][T29588] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 817.573666][T29588] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 818.151767][T29615] syz_tun: tun_chr_ioctl cmd 1074025681 [ 818.176217][T29601] Process accounting resumed [ 818.665785][T29631] netlink: 'syz.2.11043': attribute type 1 has an invalid length. [ 818.729177][T29624] sd 0:0:1:0: PR command failed: 1026 [ 818.734757][T29624] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 818.767529][T29624] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 819.196159][T29652] FAULT_INJECTION: forcing a failure. [ 819.196159][T29652] name failslab, interval 1, probability 0, space 0, times 0 [ 819.245014][T29652] CPU: 1 UID: 0 PID: 29652 Comm: syz.4.11052 Tainted: G U 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 819.245072][T29652] Tainted: [U]=USER [ 819.245084][T29652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 819.245104][T29652] Call Trace: [ 819.245114][T29652] [ 819.245127][T29652] dump_stack_lvl+0x16c/0x1f0 [ 819.245189][T29652] should_fail_ex+0x512/0x640 [ 819.245226][T29652] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 819.245282][T29652] should_failslab+0xc2/0x120 [ 819.245326][T29652] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 819.245379][T29652] ? __d_alloc+0x31/0xaa0 [ 819.245412][T29652] __d_alloc+0x31/0xaa0 [ 819.245446][T29652] d_alloc_pseudo+0x1c/0xc0 [ 819.245481][T29652] alloc_file_pseudo+0xcf/0x230 [ 819.245519][T29652] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 819.245554][T29652] ? alloc_fd+0x471/0x7d0 [ 819.245604][T29652] sock_alloc_file+0x50/0x210 [ 819.245640][T29652] __sys_socket+0x1c0/0x260 [ 819.245679][T29652] ? fput+0x70/0xf0 [ 819.245707][T29652] ? __pfx___sys_socket+0x10/0x10 [ 819.245756][T29652] ? xfd_validate_state+0x61/0x180 [ 819.245798][T29652] ? __pfx_ksys_write+0x10/0x10 [ 819.245854][T29652] __x64_sys_socket+0x72/0xb0 [ 819.245894][T29652] ? lockdep_hardirqs_on+0x7c/0x110 [ 819.245943][T29652] do_syscall_64+0xcd/0x490 [ 819.245976][T29652] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 819.246007][T29652] RIP: 0033:0x7f436e78e969 [ 819.246032][T29652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 819.246063][T29652] RSP: 002b:00007f436f5fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 819.246093][T29652] RAX: ffffffffffffffda RBX: 00007f436e9b5fa0 RCX: 00007f436e78e969 [ 819.246113][T29652] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000011 [ 819.246132][T29652] RBP: 00007f436e810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 819.246150][T29652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 819.246168][T29652] R13: 0000000000000000 R14: 00007f436e9b5fa0 R15: 00007fffd0583af8 [ 819.246208][T29652] [ 821.502398][T29728] netlink: 16 bytes leftover after parsing attributes in process `syz.4.11086'. [ 821.694033][T29738] zram0: detected capacity change from 8 to 0 [ 821.775027][T29738] zram: Removed device: zram0 [ 822.802140][T29785] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 823.838245][T29831] Console: switching to colour VGA+ 80x25 [ 825.240017][T29888] netlink: 'syz.3.11161': attribute type 1 has an invalid length. [ 825.785216][T29901] dyndbg: expected <4096 bytes into control [ 826.652773][T29925] openvswitch: netlink: Flow actions attr not present in new flow. [ 830.345691][T30051] netlink: 'syz.4.11237': attribute type 11 has an invalid length. [ 830.364936][T30051] netlink: 'syz.4.11237': attribute type 11 has an invalid length. [ 830.383552][T30051] netlink: 'syz.4.11237': attribute type 11 has an invalid length. [ 830.402010][T30051] netlink: 'syz.4.11237': attribute type 11 has an invalid length. [ 832.077870][T30123] [ 832.080353][T30123] ============================================ [ 832.080526][ T30] audit: type=1800 audit(4294967330.603:53): pid=30123 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.11270" name="dbroot" dev="configfs" ino=85930 res=0 errno=0 [ 832.086512][T30123] WARNING: possible recursive locking detected [ 832.086532][T30123] 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 Tainted: G U [ 832.121233][T30123] -------------------------------------------- [ 832.127399][T30123] syz.5.11270/30123 is trying to acquire lock: [ 832.133579][T30123] ffff888027e02f78 (&p->frag_sem){.+.+}-{4:4}, at: __configfs_open_file+0xe8/0x9c0 [ 832.142967][T30123] [ 832.142967][T30123] but task is already holding lock: [ 832.150346][T30123] ffff888027e02f78 (&p->frag_sem){.+.+}-{4:4}, at: configfs_write_iter+0x219/0x4e0 [ 832.159716][T30123] [ 832.159716][T30123] other info that might help us debug this: [ 832.167784][T30123] Possible unsafe locking scenario: [ 832.167784][T30123] [ 832.175237][T30123] CPU0 [ 832.178519][T30123] ---- [ 832.181802][T30123] lock(&p->frag_sem); [ 832.185970][T30123] lock(&p->frag_sem); [ 832.190143][T30123] [ 832.190143][T30123] *** DEADLOCK *** [ 832.190143][T30123] [ 832.198290][T30123] May be due to missing lock nesting notation [ 832.198290][T30123] [ 832.206616][T30123] 5 locks held by syz.5.11270/30123: [ 832.211994][T30123] #0: ffff88805bf2c0f8 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370 [ 832.221102][T30123] #1: ffff88801b50e428 (sb_writers#15){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 832.230219][T30123] #2: ffff888025c11688 (&buffer->mutex){+.+.}-{4:4}, at: configfs_write_iter+0x75/0x4e0 [ 832.240108][T30123] #3: ffff888027e02f78 (&p->frag_sem){.+.+}-{4:4}, at: configfs_write_iter+0x219/0x4e0 [ 832.249910][T30123] #4: ffffffff8f4743e8 (target_devices_lock){+.+.}-{4:4}, at: target_core_item_dbroot_store+0x21/0x350 [ 832.261115][T30123] [ 832.261115][T30123] stack backtrace: [ 832.267020][T30123] CPU: 0 UID: 0 PID: 30123 Comm: syz.5.11270 Tainted: G U 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 832.267059][T30123] Tainted: [U]=USER [ 832.267068][T30123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 832.267083][T30123] Call Trace: [ 832.267094][T30123] [ 832.267104][T30123] dump_stack_lvl+0x116/0x1f0 [ 832.267149][T30123] print_deadlock_bug+0x1e9/0x240 [ 832.267181][T30123] __lock_acquire+0x1106/0x1c90 [ 832.267218][T30123] lock_acquire+0x179/0x350 [ 832.267249][T30123] ? __configfs_open_file+0xe8/0x9c0 [ 832.267289][T30123] ? __pfx___might_resched+0x10/0x10 [ 832.267317][T30123] down_read+0x9b/0x480 [ 832.267348][T30123] ? __configfs_open_file+0xe8/0x9c0 [ 832.267386][T30123] ? __pfx_down_read+0x10/0x10 [ 832.267416][T30123] __configfs_open_file+0xe8/0x9c0 [ 832.267455][T30123] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 832.267492][T30123] do_dentry_open+0x741/0x1c10 [ 832.267538][T30123] ? __pfx_configfs_open_file+0x10/0x10 [ 832.267580][T30123] vfs_open+0x82/0x3f0 [ 832.267628][T30123] path_openat+0x1de4/0x2cb0 [ 832.267671][T30123] ? __pfx_path_openat+0x10/0x10 [ 832.267710][T30123] ? kasan_save_stack+0x42/0x60 [ 832.267749][T30123] ? kasan_save_stack+0x33/0x60 [ 832.267788][T30123] ? kasan_save_track+0x14/0x30 [ 832.267826][T30123] ? __kasan_slab_alloc+0x89/0x90 [ 832.267850][T30123] do_filp_open+0x20b/0x470 [ 832.267887][T30123] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 832.267915][T30123] ? __pfx_do_filp_open+0x10/0x10 [ 832.267971][T30123] file_open_name+0x2a3/0x450 [ 832.268001][T30123] ? __pfx_file_open_name+0x10/0x10 [ 832.268031][T30123] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 832.268073][T30123] ? getname_kernel+0x52/0x370 [ 832.268098][T30123] ? __asan_memcpy+0x3c/0x60 [ 832.268136][T30123] filp_open+0x4b/0x80 [ 832.268165][T30123] target_core_item_dbroot_store+0x108/0x350 [ 832.268208][T30123] configfs_write_iter+0x303/0x4e0 [ 832.268253][T30123] vfs_write+0x6c7/0x1150 [ 832.268293][T30123] ? __pfx_configfs_write_iter+0x10/0x10 [ 832.268356][T30123] ? __pfx___mutex_lock+0x10/0x10 [ 832.268381][T30123] ? __pfx_vfs_write+0x10/0x10 [ 832.268430][T30123] ksys_write+0x12a/0x250 [ 832.268468][T30123] ? __pfx_ksys_write+0x10/0x10 [ 832.268511][T30123] do_syscall_64+0xcd/0x490 [ 832.268538][T30123] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 832.268564][T30123] RIP: 0033:0x7f3639d8e969 [ 832.268584][T30123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 832.268618][T30123] RSP: 002b:00007f3637bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 832.268643][T30123] RAX: ffffffffffffffda RBX: 00007f3639fb5fa0 RCX: 00007f3639d8e969 [ 832.268661][T30123] RDX: 000000000000006e RSI: 0000200000000040 RDI: 0000000000000003 [ 832.268677][T30123] RBP: 00007f3639e10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 832.268693][T30123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 832.268709][T30123] R13: 0000000000000000 R14: 00007f3639fb5fa0 R15: 00007ffe1a23bf18 [ 832.268733][T30123] [ 832.590602][ T30] audit: type=1804 audit(4294967331.126:54): pid=30123 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.11270" name="/newroot/sys/kernel/config/target/dbroot" dev="configfs" ino=85930 res=1 errno=0 [ 832.615431][T30123] db_root: not a directory: /sys/kernel/config/target/dbroot [ 832.636857][T30114] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 832.646194][T30114] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 832.654294][T30114] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 832.662183][T30114] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 832.669653][T30114] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 832.676996][T30114] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 834.674843][ T5940] Bluetooth: hci3: command 0x0406 tx timeout [ 834.674854][T20334] Bluetooth: hci1: command 0x0406 tx timeout [ 834.684705][ T5940] Bluetooth: hci0: command 0x0406 tx timeout [ 836.744025][ T5940] Bluetooth: hci0: command 0x0406 tx timeout [ 836.744050][T20334] Bluetooth: hci3: command 0x0406 tx timeout [ 836.744087][T20334] Bluetooth: hci1: command 0x0406 tx timeout