last executing test programs: 2.83989777s ago: executing program 0 (id=4089): close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket(0x2, 0x2, 0x1) r1 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r0, 0x10000}, 0x10) mmap$auto(0x0, 0x2009, 0xffffffff, 0x8000200008011, r1, 0x8000) mprotect$auto(0x0, 0x2, 0x7) 2.613568998s ago: executing program 2 (id=4083): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x7, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84, [0xfffffffffffffffe, 0x604add15, 0xd59, 0x500fffffffffff, 0x0, 0x6, 0x0, 0x7, 0x80000070624ce7, 0x5, 0x6, 0xffffffffffffffff, 0x2, 0x1, 0x4, 0x0, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x200000000001, 0x80000000, 0xffffffffefffffff, 0x200000000000004, 0x0, 0x100000000000000, 0x0, 0x400000, 0x400000000005ba, 0xc, 0x0, 0x9, 0x7, 0x6, 0xfffffffffffffffd, 0x890, 0x8000000000008, 0xfffffffffffffffc, 0x1000, 0xa38, 0x4, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x4000000000, 0x10006, 0x0, 0x11]}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0xc008010}, 0x4000001) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x13, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8040) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 2.405549135s ago: executing program 0 (id=4086): mmap$auto(0x0, 0x2020009, 0xaa, 0xeb1, 0xffffffffffffffff, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x4) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000) munmap$auto(0x1000000, 0x2000000c) 2.360239726s ago: executing program 2 (id=4087): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x80003, 0x300) sendto$auto(0x3, 0x0, 0xfdef, 0xfffffff8, &(0x7f0000000440)=@tipc=@nameseq={0x1e, 0x1, 0x1, {0x1, 0x1, 0x3}}, 0x22) 2.134907967s ago: executing program 2 (id=4090): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r0 = epoll_create$auto(0x3e) epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0) 2.133686199s ago: executing program 3 (id=4099): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) read$auto(r0, 0x0, 0x39b8) capset$auto(0x0, 0x0) capget$auto(0x0, &(0x7f0000000180)={0x2000ea6a, 0xf, 0x6}) 1.990410699s ago: executing program 1 (id=4092): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000340), r1) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001580)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_DEL_TX_TS(r0, &(0x7f0000002b40)={0x0, 0x0, &(0x7f0000002b00)={&(0x7f00000016c0)={0x1c, r2, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x4004010) 1.577453534s ago: executing program 3 (id=4093): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x48a22, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram12/queue/io_poll_delay\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) 1.57675091s ago: executing program 1 (id=4102): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) r0 = epoll_create$auto(0x3e) epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0) 1.482057787s ago: executing program 2 (id=4094): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f00000000c0)="8844") landlock_create_ruleset$auto(&(0x7f0000000000)={0x7f, 0x7, 0x7}, 0x9, 0x100) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000000)) 1.423060769s ago: executing program 0 (id=4095): mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x30, 0xf1, 0xb0, @raw=0xfffff024}}) 1.132051677s ago: executing program 0 (id=4096): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) close_range$auto(0x0, 0xfffffffffffff000, 0x2) pidfd_open$auto(0x1, 0x0) pidfd_send_signal$auto(r0, 0x4, 0x0, 0x0) 1.13194019s ago: executing program 2 (id=4097): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) madvise$auto(0x0, 0x2003ec, 0x14) madvise$auto(0x0, 0x200007, 0x8) 1.123950177s ago: executing program 3 (id=4106): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) connect$auto(0xffffffffffffffff, &(0x7f00000000c0)=@in={0x2, 0xfffb, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xbd) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x19, &(0x7f00000000c0), 0x0) 1.123428308s ago: executing program 1 (id=4098): r0 = socket(0xa, 0x1, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40008074}, 0x48004) connect$auto(0x3, &(0x7f0000000140), 0x55) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto(0x3, 0x541b, 0x38) 923.206933ms ago: executing program 3 (id=4100): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x6, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) listen$auto(0x3, 0x9) setsockopt$auto(r0, 0x10d, 0xb, 0x0, 0x17) 654.98638ms ago: executing program 0 (id=4101): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x8, 0x0, 0xc, 0xe3, 0x4e, 0x3}, 0x6f4) bpf$auto(0x16, 0xffffffffffffffff, 0x0) bpf$auto(0x2, 0x0, 0x103) 654.878452ms ago: executing program 3 (id=4103): bpf$auto(0x68, &(0x7f0000000000)=@bpf_attr_3={0xa332, 0x2, 0x6, 0x5, 0xfffffbff, 0x2, 0x1, 0x4, 0x7, "0108a5172d53c2dc73bf58e1423b2178", 0x0, 0x9, 0xffffffffffffffff, 0x81, 0x8, 0x81, 0xb03, 0xfffffffffffffffd, 0x3ff, 0x7, @attach_prog_fd, 0xb5f3, 0x632, 0x57d, 0x1ff, 0x8}, 0xa3) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) r0 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x7, 0x4a}) sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x5, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x100) 561.385965ms ago: executing program 1 (id=4104): madvise$auto(0x0, 0x5, 0x15) ioperm$auto(0x800, 0x5, 0xd) fanotify_init$auto(0x5, 0x2) open(&(0x7f0000000000)='./file0\x00', 0x7ffd, 0x10c) pwritev2$auto(0x4, &(0x7f0000000100)={&(0x7f0000000140), 0x1}, 0x4, 0x4, 0x9f4, 0x22) 443.107392ms ago: executing program 3 (id=4105): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x6) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) 333.329929ms ago: executing program 1 (id=4107): mmap$auto(0x0, 0x2020006, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8) read$auto(0x3, 0x0, 0x80) close_range$auto(0x2, 0x8000, 0x0) 260.429382ms ago: executing program 2 (id=4108): close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x5, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f00000001c0)={0x38, r1, 0x1, 0x703d25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x18, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}, @typed={0x8, 0x23, 0x0, 0x0, @uid}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x6}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x8880) 194.795716ms ago: executing program 0 (id=4109): r0 = socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast1}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmsg$auto_TIPC_NL_ADDR_LEGACY_GET(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000001200)={0x14, 0x0, 0x100, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x890}, 0x0) select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x7, 0x5, 0x1000, 0x100000001, 0x8, 0xf, 0x1, 0x6, 0x3, 0x8000000d59, 0x101, 0xff, 0x3, 0x8007ffff]}, 0x0, 0x0) 0s ago: executing program 1 (id=4110): mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0x11, 0x80003, 0x300) ustat$auto(0x801, 0x0) setsockopt$auto(r0, 0x107, 0x8, 0x0, 0x6) read$auto(0x3, 0x0, 0x9) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.144' (ED25519) to the list of known hosts. [ 89.907132][ T5829] cgroup: Unknown subsys name 'net' [ 90.025022][ T5829] cgroup: Unknown subsys name 'cpuset' [ 90.034234][ T5829] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 91.845295][ T5829] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 94.202889][ T5852] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 94.220725][ T5854] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 94.240342][ T5854] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 94.252202][ T5857] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 94.253670][ T5856] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 94.260808][ T5857] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 94.274432][ T5856] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 94.275486][ T5857] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 94.283460][ T5856] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 94.289755][ T5857] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 94.303486][ T5856] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 94.306433][ T5857] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 94.310968][ T5856] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 94.321721][ T5857] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 94.326047][ T5856] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 94.334012][ T5857] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 94.339968][ T5856] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 94.348450][ T5857] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 94.354582][ T5856] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 94.368235][ T5856] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 94.925028][ T5842] chnl_net:caif_netlink_parms(): no params data found [ 95.001470][ T5841] chnl_net:caif_netlink_parms(): no params data found [ 95.073135][ T5839] chnl_net:caif_netlink_parms(): no params data found [ 95.122713][ T5840] chnl_net:caif_netlink_parms(): no params data found [ 95.222922][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.230279][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.237747][ T5842] bridge_slave_0: entered allmulticast mode [ 95.247407][ T5842] bridge_slave_0: entered promiscuous mode [ 95.288586][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.295852][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.303336][ T5842] bridge_slave_1: entered allmulticast mode [ 95.311173][ T5842] bridge_slave_1: entered promiscuous mode [ 95.404504][ T5841] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.412147][ T5841] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.419360][ T5841] bridge_slave_0: entered allmulticast mode [ 95.427463][ T5841] bridge_slave_0: entered promiscuous mode [ 95.439073][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.453028][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.469029][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.476480][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.483960][ T5839] bridge_slave_0: entered allmulticast mode [ 95.491391][ T5839] bridge_slave_0: entered promiscuous mode [ 95.499080][ T5841] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.506976][ T5841] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.514410][ T5841] bridge_slave_1: entered allmulticast mode [ 95.521883][ T5841] bridge_slave_1: entered promiscuous mode [ 95.547609][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.555025][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.562451][ T5839] bridge_slave_1: entered allmulticast mode [ 95.569886][ T5839] bridge_slave_1: entered promiscuous mode [ 95.666729][ T5841] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.679270][ T5842] team0: Port device team_slave_0 added [ 95.688957][ T5842] team0: Port device team_slave_1 added [ 95.695350][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.702838][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.710170][ T5840] bridge_slave_0: entered allmulticast mode [ 95.717282][ T5840] bridge_slave_0: entered promiscuous mode [ 95.725788][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.733050][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.740358][ T5840] bridge_slave_1: entered allmulticast mode [ 95.747702][ T5840] bridge_slave_1: entered promiscuous mode [ 95.757119][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.771146][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.784172][ T5841] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.902703][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 95.910093][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 95.936406][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 95.951616][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.964034][ T5839] team0: Port device team_slave_0 added [ 95.974774][ T5839] team0: Port device team_slave_1 added [ 95.983825][ T5841] team0: Port device team_slave_0 added [ 95.993970][ T5841] team0: Port device team_slave_1 added [ 96.001106][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.008087][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.034244][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.047937][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.135189][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.143012][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.169019][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.213867][ T5840] team0: Port device team_slave_0 added [ 96.221544][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.228541][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.255115][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.267634][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.274942][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.300936][ T5841] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.326753][ T5840] team0: Port device team_slave_1 added [ 96.353853][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.360979][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.387559][ T5841] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.410736][ T5842] hsr_slave_0: entered promiscuous mode [ 96.417262][ T5842] hsr_slave_1: entered promiscuous mode [ 96.430305][ T5846] Bluetooth: hci1: command tx timeout [ 96.430310][ T5844] Bluetooth: hci0: command tx timeout [ 96.430590][ T5844] Bluetooth: hci2: command tx timeout [ 96.436021][ T5846] Bluetooth: hci3: command tx timeout [ 96.463056][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.470234][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.496227][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.508980][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.516843][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.543206][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.639323][ T5841] hsr_slave_0: entered promiscuous mode [ 96.645852][ T5841] hsr_slave_1: entered promiscuous mode [ 96.653151][ T5841] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 96.661094][ T5841] Cannot create hsr debugfs directory [ 96.691009][ T5839] hsr_slave_0: entered promiscuous mode [ 96.698088][ T5839] hsr_slave_1: entered promiscuous mode [ 96.704656][ T5839] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 96.712326][ T5839] Cannot create hsr debugfs directory [ 96.794910][ T5840] hsr_slave_0: entered promiscuous mode [ 96.801989][ T5840] hsr_slave_1: entered promiscuous mode [ 96.808211][ T5840] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 96.815868][ T5840] Cannot create hsr debugfs directory [ 97.161661][ T3405] cfg80211: failed to load regulatory.db [ 97.248271][ T5842] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 97.268122][ T5842] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 97.281070][ T5842] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 97.303007][ T5842] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 97.372746][ T5839] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 97.395357][ T5839] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 97.421453][ T5839] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 97.434919][ T5839] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 97.533421][ T5841] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 97.545609][ T5841] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 97.570711][ T5841] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 97.584898][ T5841] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 97.721985][ T5840] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 97.734345][ T5840] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 97.762759][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0 [ 97.775687][ T5840] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 97.803639][ T5840] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 97.828886][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0 [ 97.868539][ T5842] 8021q: adding VLAN 0 to HW filter on device team0 [ 97.889188][ T5839] 8021q: adding VLAN 0 to HW filter on device team0 [ 97.929916][ T3021] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.937258][ T3021] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.950418][ T3021] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.957679][ T3021] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.997541][ T2970] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.005150][ T2970] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.016575][ T2970] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.023819][ T2970] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.173935][ T5841] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.276896][ T5841] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.314174][ T2990] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.321550][ T2990] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.370559][ T2990] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.377746][ T2990] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.397411][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.462588][ T5840] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.514751][ T5857] Bluetooth: hci2: command tx timeout [ 98.517361][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.522534][ T5857] Bluetooth: hci1: command tx timeout [ 98.527385][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.532954][ T5846] Bluetooth: hci3: command tx timeout [ 98.543029][ T5844] Bluetooth: hci0: command tx timeout [ 98.582967][ T3021] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.590500][ T3021] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.715226][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.808893][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.896087][ T5842] veth0_vlan: entered promiscuous mode [ 98.943159][ T5842] veth1_vlan: entered promiscuous mode [ 99.035770][ T5839] veth0_vlan: entered promiscuous mode [ 99.109490][ T5842] veth0_macvtap: entered promiscuous mode [ 99.120537][ T5839] veth1_vlan: entered promiscuous mode [ 99.138708][ T5842] veth1_macvtap: entered promiscuous mode [ 99.165848][ T5841] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.205022][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.253535][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.279138][ T5842] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.288639][ T5842] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.298016][ T5842] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.308583][ T5842] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.325464][ T5839] veth0_macvtap: entered promiscuous mode [ 99.352199][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.366587][ T5839] veth1_macvtap: entered promiscuous mode [ 99.409181][ T5841] veth0_vlan: entered promiscuous mode [ 99.455107][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 99.466655][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 99.482024][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.528822][ T5841] veth1_vlan: entered promiscuous mode [ 99.566698][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 99.577863][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 99.593887][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.624200][ T136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.646135][ T136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.657459][ T5839] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.666489][ T5839] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.677060][ T5839] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.685960][ T5839] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.728179][ T5840] veth0_vlan: entered promiscuous mode [ 99.754709][ T5841] veth0_macvtap: entered promiscuous mode [ 99.765574][ T2990] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.774291][ T2990] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.785134][ T5840] veth1_vlan: entered promiscuous mode [ 99.803370][ T5841] veth1_macvtap: entered promiscuous mode [ 99.849407][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 99.879637][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 99.892249][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 99.902885][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 99.915276][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.977772][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 99.988855][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 99.999212][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.011733][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.024283][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.042686][ T5842] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 100.076426][ T5841] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.086419][ T5841] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.097147][ T5841] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.106837][ T5841] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.135623][ T3021] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.170915][ T3021] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.192906][ T5840] veth0_macvtap: entered promiscuous mode [ 100.281287][ T5840] veth1_macvtap: entered promiscuous mode [ 100.317822][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.333574][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.363458][ T2990] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.376426][ T2990] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.426436][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.462754][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.479778][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.507263][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.522941][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.533659][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.545769][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.593334][ T5152] Bluetooth: hci3: command tx timeout [ 100.598948][ T5152] Bluetooth: hci1: command tx timeout [ 100.600688][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.605953][ T5844] Bluetooth: hci2: command tx timeout [ 100.616193][ T5846] Bluetooth: hci0: command tx timeout [ 100.669807][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.699193][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.709853][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.721860][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.732518][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.744216][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.756414][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.768409][ T5840] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.782550][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.794059][ T5840] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.803344][ T5840] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.824081][ T5840] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.067506][ T3021] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.094924][ T3021] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.170526][ T3021] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.196371][ T3021] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.162569][ T5943] input: f as /devices/virtual/input/input5 [ 102.673414][ T5846] Bluetooth: hci0: command tx timeout [ 102.684397][ T5857] Bluetooth: hci1: command tx timeout [ 102.685184][ T5152] Bluetooth: hci2: command tx timeout [ 102.690653][ T5857] Bluetooth: hci3: command tx timeout [ 103.113797][ T5970] Invalid ELF header magic: != ELF [ 103.412163][ T5976] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 103.491117][ T5982] Zero length message leads to an empty skb [ 104.561596][ T6007] erspan0: entered allmulticast mode [ 104.621803][ T6016] netlink: zone id is out of range [ 104.627280][ T6016] netlink: zone id is out of range [ 104.670339][ T6016] netlink: zone id is out of range [ 104.675537][ T6016] netlink: zone id is out of range [ 104.702759][ T6016] netlink: zone id is out of range [ 104.719570][ T6016] netlink: zone id is out of range [ 104.724766][ T6016] netlink: zone id is out of range [ 104.772225][ T6016] netlink: zone id is out of range [ 104.777425][ T6016] netlink: zone id is out of range [ 104.793333][ T6016] netlink: zone id is out of range [ 105.953464][ T6063] capability: warning: `syz.0.72' uses 32-bit capabilities (legacy support in use) [ 107.035974][ T6091] netlink: 4 bytes leftover after parsing attributes in process `syz.2.85'. [ 109.468264][ T6133] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 110.002201][ T6146] ovs_: entered promiscuous mode [ 113.928631][ T6243] net_ratelimit: 39 callbacks suppressed [ 113.928666][ T6243] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 113.941907][ T6243] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 116.102716][ T6286] hugetlbfs: syz.2.168 (6286): Using mlock ulimits for SHM_HUGETLB is obsolete [ 117.641477][ T6325] program syz.2.186 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 118.564498][ T6347] netlink: 334 bytes leftover after parsing attributes in process `syz.2.195'. [ 120.558182][ T6369] kexec: Could not allocate control_code_buffer [ 120.859427][ T6397] netlink: 8 bytes leftover after parsing attributes in process `syz.0.219'. [ 121.132578][ T6405] mmap: syz.0.221 (6405) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 122.900361][ T6454] process 'syz.1.241' launched '/dev/fd/4/./file1' with NULL argv: empty string added [ 122.934726][ T6456] netlink: 4 bytes leftover after parsing attributes in process `syz.3.244'. [ 124.182494][ T6488] netlink: 32 bytes leftover after parsing attributes in process `syz.0.257'. [ 124.594193][ T6499] netlink: 338 bytes leftover after parsing attributes in process `syz.2.264'. [ 125.257017][ T6526] ecryptfs_parse_packet_length: Five-byte packet length not supported [ 125.323324][ T6526] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 125.630453][ T6533] vivid-003: ================= START STATUS ================= [ 125.657837][ T6533] vivid-003: Radio HW Seek Mode: Bounded [ 125.670355][ T6533] vivid-003: Radio Programmable HW Seek: false [ 125.683798][ T6533] vivid-003: RDS Rx I/O Mode: Block I/O [ 125.702946][ T6533] vivid-003: Generate RBDS Instead of RDS: false [ 125.728763][ T6533] vivid-003: RDS Reception: true [ 125.746714][ T6533] vivid-003: RDS Program Type: 0 inactive [ 125.768102][ T6533] vivid-003: RDS PS Name: inactive [ 125.789555][ T6533] vivid-003: RDS Radio Text: inactive [ 125.825486][ T6533] vivid-003: RDS Traffic Announcement: false inactive [ 125.837870][ T6533] vivid-003: RDS Traffic Program: false inactive [ 125.857660][ T6533] vivid-003: RDS Music: false inactive [ 125.873490][ T6533] vivid-003: ================== END STATUS ================== [ 126.098758][ T6543] netlink: 8 bytes leftover after parsing attributes in process `syz.0.282'. [ 126.249990][ T6547] netlink: 186 bytes leftover after parsing attributes in process `syz.1.284'. [ 126.709676][ T6561] syz.3.291 uses obsolete (PF_INET,SOCK_PACKET) [ 129.863550][ T6646] bridge0: port 3(syz_tun) entered blocking state [ 129.880279][ T6646] bridge0: port 3(syz_tun) entered disabled state [ 129.888836][ T6646] syz_tun: entered allmulticast mode [ 129.915548][ T6646] syz_tun: entered promiscuous mode [ 129.939245][ T6646] bridge0: port 3(syz_tun) entered blocking state [ 129.946122][ T6646] bridge0: port 3(syz_tun) entered forwarding state [ 130.114740][ T6654] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 131.836961][ T30] audit: type=1326 audit(1743422576.139:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6713 comm="syz.1.358" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f536ab8d169 code=0x0 [ 133.177543][ T6756] openvswitch: netlink: Key type 261 is out of range max 32 [ 133.373301][ T6761] bridge0: port 3(vlan1) entered blocking state [ 133.391025][ T6761] bridge0: port 3(vlan1) entered disabled state [ 133.401591][ T6761] vlan1: entered allmulticast mode [ 133.406789][ T6761] veth0_vlan: entered allmulticast mode [ 133.422645][ T6761] vlan1: entered promiscuous mode [ 133.439748][ T6761] bridge0: port 3(vlan1) entered blocking state [ 133.446318][ T6761] bridge0: port 3(vlan1) entered forwarding state [ 134.668438][ T6799] ovs_: entered promiscuous mode [ 136.213788][ T6846] sctp: [Deprecated]: syz.1.415 (pid 6846) Use of struct sctp_assoc_value in delayed_ack socket option. [ 136.213788][ T6846] Use struct sctp_sack_info instead [ 138.128914][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.135621][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 139.647887][ T6928] netlink: 8 bytes leftover after parsing attributes in process `syz.1.452'. [ 140.598947][ T6956] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 141.251438][ T6961] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 142.578168][ T7003] netlink: 8 bytes leftover after parsing attributes in process `syz.2.483'. [ 143.007029][ T7015] ovs_: entered promiscuous mode [ 144.506220][ T7069] netlink: 4 bytes leftover after parsing attributes in process `syz.2.515'. [ 144.536109][ T7069] netlink: 4 bytes leftover after parsing attributes in process `syz.2.515'. [ 144.555109][ T7073] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input8 [ 145.148919][ T7091] device-mapper: ioctl: device name cannot contain '/' [ 146.272321][ T7129] ptrace attach of "./syz-executor exec"[5841] was attempted by "oks)_$9W\x0aFv+jϵF7UGy5\x0cu'U4؎kX\x0an/Cөm@l.U8*)-B\x09|8 '\x09Ք46.ƅ JTi\x07HeB4 ZkXʄ\x099lh-(λ{|CVwX =Es;HbajXNQ)ZQב2E{CKY?0\x1b?ͭzZ[n\x0d\x5cgJWoTr\x07KghB4)[lujMpp~J %a\x0a\x0c`J3\x0bteovpU#aՇ:FVp~<[g0WA\x07v xji\x0cڼPd*8,Y^!\x0a,Z\x07򏆔\x07S`=Ua#z?tD7TjFqhOiփN(G/ǒwRx)g^KaFT'ކȈ=fcMM\x22K\x1b\x0cs8C{ӊ\x0bN2/gŞ Ƥ2\x0bZ GdP٘gSnsf/-Ⱦ\x09b/7-&59M'\x07ڱHЖݹltdC7\x1b6v&D~8Q 9V\x09m&xV,Wo?8)`'=*it 0=}#hkʟi+|mt\x1blX},l\x09/o~\x07LZq'lP);&aYGB͎Wq*>79U\x076A4\x0bG6t31T [ 148.699865][ T7173] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock [ 148.871594][ T7173] svc: failed to register nfsdv3 RPC service (errno 111). [ 148.908494][ T7173] svc: failed to register nfsaclv3 RPC service (errno 111). [ 150.041136][ T7204] netlink: zone id is out of range [ 150.045105][ T7199] erspan0: entered allmulticast mode [ 150.046314][ T7204] netlink: zone id is out of range [ 150.080689][ T7204] netlink: zone id is out of range [ 150.085904][ T7204] netlink: zone id is out of range [ 150.108811][ T7204] netlink: zone id is out of range [ 150.134459][ T7204] netlink: zone id is out of range [ 150.171416][ T7204] netlink: zone id is out of range [ 150.209271][ T7204] netlink: zone id is out of range [ 150.227583][ T7204] netlink: zone id is out of range [ 150.277866][ T7204] netlink: zone id is out of range [ 151.523271][ T7247] netlink: 4 bytes leftover after parsing attributes in process `syz.1.590'. [ 153.025599][ T7285] zswap: compressor not available [ 154.966341][ T7333] ovs_: entered promiscuous mode [ 158.934806][ T7442] net_ratelimit: 21 callbacks suppressed [ 158.934832][ T7442] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 158.947114][ T7442] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 160.574705][ T7499] netlink: 342 bytes leftover after parsing attributes in process `syz.0.707'. [ 162.052406][ T7551] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 162.400230][ T7557] Invalid ELF header magic: != ELF [ 163.104498][ T7586] netlink: 350 bytes leftover after parsing attributes in process `syz.2.745'. [ 163.785390][ T7610] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 163.829622][ T7610] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 165.076654][ T7659] netlink: 198 bytes leftover after parsing attributes in process `syz.3.779'. [ 166.533105][ T7661] kexec: Could not allocate control_code_buffer [ 166.870871][ T7715] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ek |:&o:)޼xN#?lÓ2'^WJE'sNOǨ?C%SG\x0a-߳\x07!ܩ63$޸[%\x0d\x0b,;\x0djLoΫr'm`pKR*Y3-2~\x0cLE6z?u5[};1:w$\x5cPij'ҥ1\x5ct8Tu,|H~oAw#kLдc͖Ū9gV: ð q@`:k_N\x0aKp-:0X\x0aMo{21pBB~`S4#El,X`nZACT|WsneRJJ)+/67ޟɣW[RS-Ca9\x22R\x0b`\x09ܛ_ RK8El [ 200.773540][ T8747] sctp: [Deprecated]: syz.0.1262 (pid 8747) Use of struct sctp_assoc_value in delayed_ack socket option. [ 200.773540][ T8747] Use struct sctp_sack_info instead [ 201.738504][ T8775] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1267'. [ 205.359770][ T8881] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1310'. [ 205.389801][ T8881] net_ratelimit: 6 callbacks suppressed [ 205.389829][ T8881] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 205.416437][ T8881] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 205.568725][ T8886] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1313'. [ 206.893115][ T8924] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 207.045978][ T8926] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13 [ 208.312540][ T8958] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 208.508852][ T8963] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 210.248374][ T9010] ptrace attach of "./syz-executor exec"[5839] was attempted by "hyY(~)&$cò6WJ]\x07\x22P#y\x22j*M\x5cТ6d suSu[3t%ρ⏏e\x22$`$ŠM\x0b J|^^c]a\x0a\x0bIhpNP9iE_lQh[L[\x0b\x0a\x0d\x1b8\x0a [ 304.255985][T11500] dump_stack_lvl+0x16c/0x1f0 [ 304.256050][T11500] should_fail_ex+0x512/0x640 [ 304.256092][T11500] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 304.256133][T11500] should_failslab+0xc2/0x120 [ 304.256177][T11500] __kmalloc_cache_noprof+0x6a/0x3e0 [ 304.256215][T11500] ? getname_flags.part.0+0x288/0x540 [ 304.256272][T11500] getname_flags.part.0+0x288/0x540 [ 304.256328][T11500] getname_flags+0x93/0xf0 [ 304.256363][T11500] do_sys_openat2+0xb8/0x1d0 [ 304.256410][T11500] ? __pfx_do_sys_openat2+0x10/0x10 [ 304.256474][T11500] __x64_sys_open+0x153/0x1e0 [ 304.256522][T11500] ? __pfx___x64_sys_open+0x10/0x10 [ 304.256579][T11500] ? rcu_is_watching+0x12/0xc0 [ 304.256626][T11500] do_syscall_64+0xcd/0x260 [ 304.256681][T11500] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 304.256714][T11500] RIP: 0033:0x7f536ab8d169 [ 304.256745][T11500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 304.256782][T11500] RSP: 002b:00007f536a9f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 304.256814][T11500] RAX: ffffffffffffffda RBX: 00007f536ada5fa0 RCX: 00007f536ab8d169 [ 304.256835][T11500] RDX: 00000000000000d1 RSI: 0000000000103040 RDI: 0000200000000380 [ 304.256855][T11500] RBP: 00007f536ac0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 304.256875][T11500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 304.256895][T11500] R13: 0000000000000000 R14: 00007f536ada5fa0 R15: 00007fffd93ff088 [ 304.256943][T11500] [ 305.199635][ T30] audit: type=1800 audit(1743424795.421:7): pid=11524 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2449" name="discovery_nqn" dev="configfs" ino=24959 res=0 errno=0 [ 305.355215][ T5846] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 305.355265][ T5846] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 305.370816][ T5846] Bluetooth: hci0: adv larger than maximum supported [ 305.370873][ T5846] Bluetooth: hci0: Unknown advertising packet type: 0x20 [ 305.379082][ T5846] Bluetooth: hci0: Unknown advertising packet type: 0x30 [ 305.386662][ T5846] Bluetooth: hci0: Unknown advertising packet type: 0x20 [ 305.395418][ T5846] Bluetooth: hci0: Unknown advertising packet type: 0x20 [ 305.403142][ T5846] Bluetooth: hci0: Unknown advertising packet type: 0x32 [ 305.410588][ T5846] Bluetooth: hci0: Unknown advertising packet type: 0x32 [ 306.650785][T11565] FAULT_INJECTION: forcing a failure. [ 306.650785][T11565] name failslab, interval 1, probability 0, space 0, times 0 [ 306.700268][T11565] CPU: 1 UID: 0 PID: 11565 Comm: syz.3.2468 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(full) [ 306.700316][T11565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 306.700337][T11565] Call Trace: [ 306.700347][T11565] [ 306.700360][T11565] dump_stack_lvl+0x16c/0x1f0 [ 306.700418][T11565] should_fail_ex+0x512/0x640 [ 306.700459][T11565] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 306.700500][T11565] should_failslab+0xc2/0x120 [ 306.700546][T11565] __kmalloc_cache_noprof+0x6a/0x3e0 [ 306.700584][T11565] ? getname_flags.part.0+0x288/0x540 [ 306.700640][T11565] getname_flags.part.0+0x288/0x540 [ 306.700696][T11565] getname_flags+0x93/0xf0 [ 306.700739][T11565] do_sys_openat2+0xb8/0x1d0 [ 306.700787][T11565] ? __pfx_do_sys_openat2+0x10/0x10 [ 306.700848][T11565] __x64_sys_open+0x153/0x1e0 [ 306.700894][T11565] ? __pfx___x64_sys_open+0x10/0x10 [ 306.700951][T11565] ? rcu_is_watching+0x12/0xc0 [ 306.700997][T11565] do_syscall_64+0xcd/0x260 [ 306.701052][T11565] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 306.701085][T11565] RIP: 0033:0x7fd0b538d169 [ 306.701109][T11565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 306.701140][T11565] RSP: 002b:00007fd0b627c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 306.701170][T11565] RAX: ffffffffffffffda RBX: 00007fd0b55a5fa0 RCX: 00007fd0b538d169 [ 306.701191][T11565] RDX: 00000000000000d1 RSI: 0000000000103040 RDI: 0000200000000380 [ 306.701211][T11565] RBP: 00007fd0b540e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 306.701230][T11565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 306.701248][T11565] R13: 0000000000000000 R14: 00007fd0b55a5fa0 R15: 00007ffefbfdd8a8 [ 306.701288][T11565] [ 306.960557][ T5846] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 306.960598][ T5846] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 306.986058][ T5846] Bluetooth: hci3: adv larger than maximum supported [ 306.986120][ T5846] Bluetooth: hci3: Unknown advertising packet type: 0x20 [ 306.993561][ T5846] Bluetooth: hci3: Unknown advertising packet type: 0x30 [ 307.125232][T11577] bridge0: port 6(bond0) entered blocking state [ 307.142233][T11577] bridge0: port 6(bond0) entered disabled state [ 307.148854][T11577] bond0: entered allmulticast mode [ 307.154049][T11577] bond_slave_0: entered allmulticast mode [ 307.161162][T11577] bond_slave_1: entered allmulticast mode [ 307.169012][T11577] bond0: entered promiscuous mode [ 307.174082][T11577] bond_slave_0: entered promiscuous mode [ 307.180063][T11577] bond_slave_1: entered promiscuous mode [ 307.186735][T11577] bridge0: port 6(bond0) entered blocking state [ 307.193236][T11577] bridge0: port 6(bond0) entered forwarding state [ 307.599500][T11594] FAULT_INJECTION: forcing a failure. [ 307.599500][T11594] name failslab, interval 1, probability 0, space 0, times 0 [ 307.627504][T11594] CPU: 1 UID: 0 PID: 11594 Comm: syz.0.2481 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(full) [ 307.627550][T11594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 307.627568][T11594] Call Trace: [ 307.627578][T11594] [ 307.627589][T11594] dump_stack_lvl+0x16c/0x1f0 [ 307.627647][T11594] should_fail_ex+0x512/0x640 [ 307.627688][T11594] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 307.627737][T11594] should_failslab+0xc2/0x120 [ 307.627783][T11594] __kmalloc_cache_noprof+0x6a/0x3e0 [ 307.627821][T11594] ? getname_flags.part.0+0x288/0x540 [ 307.627877][T11594] getname_flags.part.0+0x288/0x540 [ 307.627932][T11594] getname_flags+0x93/0xf0 [ 307.627967][T11594] do_sys_openat2+0xb8/0x1d0 [ 307.628013][T11594] ? __pfx_do_sys_openat2+0x10/0x10 [ 307.628076][T11594] __x64_sys_open+0x153/0x1e0 [ 307.628123][T11594] ? __pfx___x64_sys_open+0x10/0x10 [ 307.628180][T11594] ? rcu_is_watching+0x12/0xc0 [ 307.628227][T11594] do_syscall_64+0xcd/0x260 [ 307.628281][T11594] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.628313][T11594] RIP: 0033:0x7fba3858d169 [ 307.628339][T11594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 307.628375][T11594] RSP: 002b:00007fba3942a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 307.628406][T11594] RAX: ffffffffffffffda RBX: 00007fba387a5fa0 RCX: 00007fba3858d169 [ 307.628426][T11594] RDX: 00000000000000d1 RSI: 0000000000103040 RDI: 0000200000000380 [ 307.628446][T11594] RBP: 00007fba3860e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 307.628466][T11594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 307.628485][T11594] R13: 0000000000000000 R14: 00007fba387a5fa0 R15: 00007ffc670f6988 [ 307.628527][T11594] [ 308.065048][ T5846] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 308.065090][ T5846] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 308.815038][T11631] FAULT_INJECTION: forcing a failure. [ 308.815038][T11631] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 308.832683][T11631] CPU: 0 UID: 0 PID: 11631 Comm: syz.2.2494 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(full) [ 308.832732][T11631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 308.832752][T11631] Call Trace: [ 308.832762][T11631] [ 308.832774][T11631] dump_stack_lvl+0x16c/0x1f0 [ 308.832831][T11631] should_fail_ex+0x512/0x640 [ 308.832889][T11631] strncpy_from_user+0x3b/0x2e0 [ 308.832933][T11631] getname_flags.part.0+0x2c8/0x540 [ 308.832990][T11631] getname_flags+0x93/0xf0 [ 308.833025][T11631] do_sys_openat2+0xb8/0x1d0 [ 308.833072][T11631] ? __pfx_do_sys_openat2+0x10/0x10 [ 308.833135][T11631] __x64_sys_open+0x153/0x1e0 [ 308.833182][T11631] ? __pfx___x64_sys_open+0x10/0x10 [ 308.833239][T11631] ? rcu_is_watching+0x12/0xc0 [ 308.833286][T11631] do_syscall_64+0xcd/0x260 [ 308.833340][T11631] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 308.833373][T11631] RIP: 0033:0x7f2296f8d169 [ 308.833399][T11631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 308.833430][T11631] RSP: 002b:00007f2297d35038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 308.833461][T11631] RAX: ffffffffffffffda RBX: 00007f22971a5fa0 RCX: 00007f2296f8d169 [ 308.833482][T11631] RDX: 00000000000000d1 RSI: 0000000000103040 RDI: 0000200000000380 [ 308.833503][T11631] RBP: 00007f229700e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 308.833523][T11631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 308.833542][T11631] R13: 0000000000000000 R14: 00007f22971a5fa0 R15: 00007ffd0c74acd8 [ 308.833583][T11631] [ 309.264046][ T5846] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 309.264093][ T5846] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 309.815290][T11661] bridge0: port 5(bond0) entered blocking state [ 309.824856][T11661] bridge0: port 5(bond0) entered disabled state [ 309.837033][T11661] bond0: entered allmulticast mode [ 309.842809][T11661] bond_slave_0: entered allmulticast mode [ 309.852438][T11661] bond_slave_1: entered allmulticast mode [ 309.861677][T11661] bond0: entered promiscuous mode [ 309.866852][T11661] bond_slave_0: entered promiscuous mode [ 309.877059][T11661] bond_slave_1: entered promiscuous mode [ 309.884523][T11661] bridge0: port 5(bond0) entered blocking state [ 309.891015][T11661] bridge0: port 5(bond0) entered forwarding state [ 310.090678][T11664] FAULT_INJECTION: forcing a failure. [ 310.090678][T11664] name failslab, interval 1, probability 0, space 0, times 0 [ 310.121229][T11664] CPU: 0 UID: 0 PID: 11664 Comm: syz.3.2513 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(full) [ 310.121274][T11664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 310.121294][T11664] Call Trace: [ 310.121304][T11664] [ 310.121316][T11664] dump_stack_lvl+0x16c/0x1f0 [ 310.121371][T11664] should_fail_ex+0x512/0x640 [ 310.121414][T11664] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 310.121464][T11664] should_failslab+0xc2/0x120 [ 310.121535][T11664] __kmalloc_cache_noprof+0x6a/0x3e0 [ 310.121570][T11664] ? getname_flags.part.0+0x288/0x540 [ 310.121640][T11664] getname_flags.part.0+0x288/0x540 [ 310.121724][T11664] getname_flags+0x93/0xf0 [ 310.121760][T11664] do_sys_openat2+0xb8/0x1d0 [ 310.121814][T11664] ? __pfx_do_sys_openat2+0x10/0x10 [ 310.121883][T11664] __x64_sys_open+0x153/0x1e0 [ 310.121932][T11664] ? __pfx___x64_sys_open+0x10/0x10 [ 310.121990][T11664] ? rcu_is_watching+0x12/0xc0 [ 310.122036][T11664] do_syscall_64+0xcd/0x260 [ 310.122091][T11664] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.122124][T11664] RIP: 0033:0x7fd0b538d169 [ 310.122149][T11664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 310.122181][T11664] RSP: 002b:00007fd0b627c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 310.122212][T11664] RAX: ffffffffffffffda RBX: 00007fd0b55a5fa0 RCX: 00007fd0b538d169 [ 310.122232][T11664] RDX: 00000000000000d1 RSI: 0000000000103040 RDI: 0000200000000380 [ 310.122250][T11664] RBP: 00007fd0b540e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 310.122267][T11664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 310.122284][T11664] R13: 0000000000000000 R14: 00007fd0b55a5fa0 R15: 00007ffefbfdd8a8 [ 310.122321][T11664] [ 311.491145][ T5846] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 311.491192][ T5846] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 311.506191][ T5846] bt_err_ratelimited: 18 callbacks suppressed [ 311.506210][ T5846] Bluetooth: hci1: adv larger than maximum supported [ 311.512665][ T5846] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 311.520064][ T5846] Bluetooth: hci1: Unknown advertising packet type: 0x31 [ 311.527226][ T5846] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 311.534529][ T5846] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 311.542307][ T5846] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 311.550056][ T5846] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 312.095745][ T5846] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 312.104241][ T5846] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 312.120164][ T5846] Bluetooth: hci3: adv larger than maximum supported [ 312.120198][ T5846] Bluetooth: hci3: Unknown advertising packet type: 0x20 [ 312.126933][ T5846] Bluetooth: hci3: Unknown advertising packet type: 0x31 [ 312.905607][ T5846] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 312.913601][ T5846] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 315.152328][ T5846] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 315.152379][ T5846] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 315.723482][ T5846] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 315.723528][ T5846] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 317.742870][T11949] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2640'. [ 319.222234][T12015] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2669'. [ 319.838605][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 319.852815][ T3405] smpboot: CPU 0 is now offline [ 320.490051][T12057] netlink: 'syz.2.2686': attribute type 1 has an invalid length. [ 320.552652][T12057] netlink: 206 bytes leftover after parsing attributes in process `syz.2.2686'. [ 321.951136][T12102] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2702'. [ 322.537555][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.543901][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 324.166037][T12166] netlink: 'syz.0.2722': attribute type 1 has an invalid length. [ 324.174174][T12166] netlink: 206 bytes leftover after parsing attributes in process `syz.0.2722'. [ 324.990084][T12193] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2730'. [ 325.280387][T12200] netlink: 'syz.3.2735': attribute type 1 has an invalid length. [ 325.323652][T12200] netlink: 206 bytes leftover after parsing attributes in process `syz.3.2735'. [ 327.998574][T12283] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2774'. [ 329.425904][T12329] netlink: 214 bytes leftover after parsing attributes in process `syz.3.2795'. [ 331.102250][T12365] MTRR 1 not used [ 332.043180][T12383] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2819'. [ 333.822039][T12430] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2837'. [ 333.895134][T12430] ipvlan1: entered allmulticast mode [ 334.434921][T12451] MTRR 1 not used [ 335.488518][T12468] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2853'. [ 336.179345][T12487] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2861'. [ 336.608184][T12496] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2865'. [ 337.626740][ T30] audit: type=1800 audit(1743424827.825:8): pid=12524 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2876" name=22050820 dev="tmpfs" ino=3615 res=0 errno=0 [ 337.647374][ C1] vkms_vblank_simulate: vblank timer overrun [ 342.539167][T12629] lo: entered allmulticast mode [ 342.575322][T12628] lo: left allmulticast mode [ 344.569691][T12683] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2935'. [ 345.471829][T12706] nbd: socks must be embedded in a SOCK_ITEM attr [ 345.513321][T12706] block nbd0: shutting down sockets [ 345.613467][T12708] i2c i2c-0: delete_device: Can't find device in list [ 348.229363][T12771] openvswitch: netlink: IP tunnel TTL not specified. [ 348.355945][T12774] syz.2.2971 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 349.249884][T12764] kexec: Could not allocate control_code_buffer [ 351.197822][T12825] netlink: 'syz.1.2994': attribute type 1 has an invalid length. [ 351.241524][T12825] netlink: 'syz.1.2994': attribute type 3 has an invalid length. [ 351.777596][T12839] snd_aloop snd_aloop.0: Parsing timer source 'yjS' failed with -22 [ 352.950748][T12863] netlink: 186 bytes leftover after parsing attributes in process `syz.0.3012'. [ 353.323201][T12866] zswap: compressor not available [ 353.828781][T12880] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 353.880720][T12880] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 353.976353][T12880] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 354.003983][T12880] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 354.078555][T12880] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 354.109093][T12880] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 354.185300][T12880] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 354.213015][T12880] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 354.297002][T12880] CPU0 is offline. [ 354.848277][T12901] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3026'. [ 355.902693][ T5846] Bluetooth: hci0: command 0x0406 tx timeout [ 355.981690][ T5846] Bluetooth: hci2: command 0x0406 tx timeout [ 356.142120][ T5846] Bluetooth: hci3: command 0x0406 tx timeout [ 356.222304][ T5846] Bluetooth: hci1: command 0x0406 tx timeout [ 356.875160][T12937] tipc: Trying to set illegal importance in message [ 357.122365][T12943] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3043'. [ 357.985958][ T5846] Bluetooth: hci0: command 0x0406 tx timeout [ 358.064874][ T5846] Bluetooth: hci2: command 0x0406 tx timeout [ 358.223201][ T5846] Bluetooth: hci3: command 0x0406 tx timeout [ 358.302979][ T5846] Bluetooth: hci1: command 0x0406 tx timeout [ 359.531411][T13003] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3070'. syzkaller syzkaller login: [ 361.894927][T13064] nbd: socks must be embedded in a SOCK_ITEM attr [ 361.915965][T13064] block nbd0: shutting down sockets [ 362.895831][T13093] vivid-006: ================= START STATUS ================= [ 362.937923][T13093] vivid-006: Test Pattern: 75% Colorbar [ 362.943722][T13093] vivid-006: Fill Percentage of Frame: 100 [ 362.994261][T13093] vivid-006: Horizontal Movement: No Movement [ 363.028810][T13093] vivid-006: Vertical Movement: No Movement [ 363.068651][T13093] vivid-006: OSD Text Mode: All [ 363.088652][T13093] vivid-006: Show Border: false [ 363.116302][T13093] vivid-006: Show Square: false [ 363.167772][T13093] vivid-006: Sensor Flipped Horizontally: false [ 363.174100][T13093] vivid-006: Sensor Flipped Vertically: false [ 363.238909][T13093] vivid-006: Insert SAV Code in Image: false [ 363.279165][T13093] vivid-006: Insert EAV Code in Image: false [ 363.296577][T13093] vivid-006: Insert Video Guard Band: false [ 363.322529][T13093] vivid-006: Reduced Framerate: false [ 363.351011][T13093] vivid-006: HDMI 006-0 Is Connected To: Test Pattern Generator [ 363.379554][T13093] vivid-006: S-Video 006-0 Is Connected To: Test Pattern Generator [ 363.414268][T13093] vivid-006: Enable Capture Cropping: true [ 363.442772][T13093] vivid-006: Enable Capture Composing: true [ 363.471858][T13093] vivid-006: Enable Capture Scaler: true [ 363.497218][T13093] vivid-006: Timestamp Source: End of Frame [ 363.538168][T13093] vivid-006: Colorspace: sRGB [ 363.556581][T13093] vivid-006: Transfer Function: Default [ 363.569905][T13093] vivid-006: Y'CbCr Encoding: Default [ 363.582167][T13093] vivid-006: HSV Encoding: Hue 0-179 [ 363.611687][T13093] vivid-006: Quantization: Default [ 363.631197][T13093] vivid-006: Apply Alpha To Red Only: false [ 363.657902][T13093] vivid-006: Standard Aspect Ratio: 4x3 [ 363.681562][T13093] vivid-006: DV Timings Signal Mode: Current DV Timings inactive [ 363.731394][T13093] vivid-006: DV Timings: 640x480p59 inactive [ 363.756242][T13093] vivid-006: DV Timings Aspect Ratio: Source Width x Height [ 363.783922][T13093] vivid-006: Maximum EDID Blocks: 2 [ 363.805377][T13093] vivid-006: Limited RGB Range (16-235): false [ 363.834012][T13093] vivid-006: Rx RGB Quantization Range: Automatic [ 363.858281][T13093] vivid-006: Power Present: 0x00000001 [ 363.882433][T13093] tpg source WxH: 640x360 (Y'CbCr) [ 363.903347][T13093] tpg field: 1 [ 363.915429][T13093] tpg crop: (0,0)/640x360 [ 363.932147][T13093] tpg compose: (0,0)/640x360 [ 363.950404][T13093] tpg colorspace: 8 [ 363.963074][T13093] tpg transfer function: 0/0 [ 363.987991][T13093] tpg Y'CbCr encoding: 0/0 [ 364.003209][T13093] tpg quantization: 0/0 [ 364.019742][T13093] tpg RGB range: 0/2 [ 364.034974][T13093] vivid-006: ================== END STATUS ================== [ 366.451131][T13175] qrtr: Invalid version 0 [ 367.046082][T13191] nbd0: detected capacity change from 0 to 68719476736 [ 367.123133][T13199] block nbd0: Send control failed (result -22) [ 367.146665][T13198] netlink: 18 bytes leftover after parsing attributes in process `syz.1.3151'. [ 367.194160][T13199] block nbd0: Request send failed, requeueing [ 367.247091][ T5846] block nbd0: Receive control failed (result -32) [ 367.262009][ T99] block nbd0: Dead connection, failed to find a fallback [ 367.269347][ T99] block nbd0: shutting down sockets [ 367.276716][ T99] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 367.286711][ T99] Buffer I/O error on dev nbd0, logical block 0, async page read [ 367.296713][T13199] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 367.373175][T13199] Buffer I/O error on dev nbd0, logical block 0, async page read [ 367.437502][T13199] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 367.446614][T13199] Buffer I/O error on dev nbd0, logical block 0, async page read [ 367.540318][T13199] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 367.588280][T13199] Buffer I/O error on dev nbd0, logical block 0, async page read [ 367.634690][T13199] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 367.697932][T13199] Buffer I/O error on dev nbd0, logical block 0, async page read [ 367.747319][T13199] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 367.822741][T13199] Buffer I/O error on dev nbd0, logical block 0, async page read [ 367.869680][T13199] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 367.933826][T13199] Buffer I/O error on dev nbd0, logical block 0, async page read [ 367.985550][T13199] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 368.040428][T13199] Buffer I/O error on dev nbd0, logical block 0, async page read [ 368.091025][T13199] ldm_validate_partition_table(): Disk read failed. [ 368.141085][T13199] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 368.206418][T13199] Buffer I/O error on dev nbd0, logical block 0, async page read [ 368.258932][T13199] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 368.332182][T13199] Buffer I/O error on dev nbd0, logical block 0, async page read [ 368.398149][T13199] Dev nbd0: unable to read RDB block 0 [ 368.440105][T13199] nbd0: unable to read partition table [ 368.509756][T13199] ldm_validate_partition_table(): Disk read failed. [ 368.569571][T13199] Dev nbd0: unable to read RDB block 0 [ 368.601342][T13199] nbd0: unable to read partition table [ 368.879993][ T5846] Bluetooth: hci0: Malformed HCI Event [ 369.371549][T13246] netlink: 280 bytes leftover after parsing attributes in process `syz.3.3168'. [ 369.624533][T13254] CIFS: VFS: Unsupported security flags: 0x200 [ 371.072047][T13297] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3190'. [ 371.146237][T13297] caif0: entered promiscuous mode [ 371.545587][T13309] sock: sock_set_timeout: `syz.2.3196' (pid 13309) tries to set negative timeout [ 371.817020][T13318] Invalid ELF header magic: != ELF [ 376.437935][T13424] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    syzkaller syzkaller login: [ 478.197677][T15480] nbd: socks must be embedded in a SOCK_ITEM attr [ 478.215458][T15480] block nbd1: shutting down sockets [ 478.328517][ T5844] ================================================================== [ 478.336624][ T5844] BUG: KASAN: vmalloc-out-of-bounds in hci_devcd_dump+0x142/0x240 [ 478.344471][ T5844] Read of size 140 at addr ffffc90004ed5000 by task kworker/u9:2/5844 [ 478.352633][ T5844] [ 478.354961][ T5844] CPU: 1 UID: 0 PID: 5844 Comm: kworker/u9:2 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(full) [ 478.354988][ T5844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 478.355003][ T5844] Workqueue: hci0 hci_devcd_timeout [ 478.355026][ T5844] Call Trace: [ 478.355034][ T5844] [ 478.355043][ T5844] dump_stack_lvl+0x116/0x1f0 [ 478.355078][ T5844] print_report+0xc3/0x670 [ 478.355108][ T5844] ? __virt_addr_valid+0x5e/0x590 [ 478.355144][ T5844] ? hci_devcd_dump+0x142/0x240 [ 478.355164][ T5844] kasan_report+0xe0/0x110 [ 478.355193][ T5844] ? hci_devcd_dump+0x142/0x240 [ 478.355217][ T5844] kasan_check_range+0xef/0x1a0 [ 478.355263][ T5844] __asan_memcpy+0x23/0x60 [ 478.355286][ T5844] hci_devcd_dump+0x142/0x240 [ 478.355308][ T5844] hci_devcd_timeout+0xb5/0x2e0 [ 478.355333][ T5844] ? rcu_is_watching+0x12/0xc0 [ 478.355364][ T5844] process_one_work+0x9cc/0x1b70 [ 478.355397][ T5844] ? __pfx_process_one_work+0x10/0x10 [ 478.355428][ T5844] ? assign_work+0x1a0/0x250 [ 478.355452][ T5844] worker_thread+0x6c8/0xf10 [ 478.355485][ T5844] ? __pfx_worker_thread+0x10/0x10 [ 478.355511][ T5844] kthread+0x3c2/0x780 [ 478.355535][ T5844] ? __pfx_kthread+0x10/0x10 [ 478.355556][ T5844] ? __pfx_kthread+0x10/0x10 [ 478.355578][ T5844] ? __pfx_kthread+0x10/0x10 [ 478.355601][ T5844] ? __pfx_kthread+0x10/0x10 [ 478.355623][ T5844] ? rcu_is_watching+0x12/0xc0 [ 478.355651][ T5844] ? __pfx_kthread+0x10/0x10 [ 478.355674][ T5844] ret_from_fork+0x45/0x80 [ 478.355697][ T5844] ? __pfx_kthread+0x10/0x10 [ 478.355720][ T5844] ret_from_fork_asm+0x1a/0x30 [ 478.355762][ T5844] [ 478.355770][ T5844] [ 478.516595][ T5844] The buggy address ffffc90004ed5000 belongs to a vmalloc virtual mapping [ 478.525093][ T5844] Memory state around the buggy address: [ 478.530732][ T5844] ffffc90004ed4f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 478.538816][ T5844] ffffc90004ed4f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 478.546882][ T5844] >ffffc90004ed5000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 478.554940][ T5844] ^ [ 478.559016][ T5844] ffffc90004ed5080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 478.567096][ T5844] ffffc90004ed5100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 478.575252][ T5844] ================================================================== [ 478.607480][ T5844] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 478.614724][ T5844] CPU: 1 UID: 0 PID: 5844 Comm: kworker/u9:2 Not tainted 6.14.0-syzkaller-10892-g4e82c87058f4 #0 PREEMPT(full) [ 478.626571][ T5844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 478.636648][ T5844] Workqueue: hci0 hci_devcd_timeout [ 478.641896][ T5844] Call Trace: [ 478.645178][ T5844] [ 478.648113][ T5844] dump_stack_lvl+0x3d/0x1f0 [ 478.652729][ T5844] panic+0x71c/0x800 [ 478.656719][ T5844] ? __pfx_panic+0x10/0x10 [ 478.661143][ T5844] ? irqentry_exit+0x3b/0x90 [ 478.665791][ T5844] ? lockdep_hardirqs_on+0x7c/0x110 [ 478.671026][ T5844] ? preempt_schedule_thunk+0x16/0x30 [ 478.676449][ T5844] ? hci_devcd_dump+0x142/0x240 [ 478.681318][ T5844] ? preempt_schedule_common+0x44/0xc0 [ 478.686800][ T5844] ? check_panic_on_warn+0x1f/0xb0 [ 478.691944][ T5844] ? hci_devcd_dump+0x142/0x240 [ 478.696838][ T5844] check_panic_on_warn+0xab/0xb0 [ 478.701791][ T5844] end_report+0x107/0x170 [ 478.706293][ T5844] kasan_report+0xee/0x110 [ 478.710832][ T5844] ? hci_devcd_dump+0x142/0x240 [ 478.715705][ T5844] kasan_check_range+0xef/0x1a0 [ 478.720593][ T5844] __asan_memcpy+0x23/0x60 [ 478.725050][ T5844] hci_devcd_dump+0x142/0x240 [ 478.729752][ T5844] hci_devcd_timeout+0xb5/0x2e0 [ 478.734625][ T5844] ? rcu_is_watching+0x12/0xc0 [ 478.739421][ T5844] process_one_work+0x9cc/0x1b70 [ 478.744390][ T5844] ? __pfx_process_one_work+0x10/0x10 [ 478.749805][ T5844] ? assign_work+0x1a0/0x250 [ 478.754481][ T5844] worker_thread+0x6c8/0xf10 [ 478.759107][ T5844] ? __pfx_worker_thread+0x10/0x10 [ 478.764239][ T5844] kthread+0x3c2/0x780 [ 478.768317][ T5844] ? __pfx_kthread+0x10/0x10 [ 478.772919][ T5844] ? __pfx_kthread+0x10/0x10 [ 478.777522][ T5844] ? __pfx_kthread+0x10/0x10 [ 478.782121][ T5844] ? __pfx_kthread+0x10/0x10 [ 478.786719][ T5844] ? rcu_is_watching+0x12/0xc0 [ 478.791508][ T5844] ? __pfx_kthread+0x10/0x10 [ 478.796145][ T5844] ret_from_fork+0x45/0x80 [ 478.800576][ T5844] ? __pfx_kthread+0x10/0x10 [ 478.805178][ T5844] ret_from_fork_asm+0x1a/0x30 [ 478.809979][ T5844] [ 478.813081][ T5844] Kernel Offset: disabled [ 478.817430][ T5844] Rebooting in 86400 seconds..