last executing test programs: 9m2.544808323s ago: executing program 1 (id=932): settimeofday$auto(0xfffffffffffffffe, 0x0) 9m2.356690557s ago: executing program 1 (id=935): openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyq2\x00', 0x102, 0x0) 9m2.211653949s ago: executing program 1 (id=938): openat2$auto(0xffffffffffffff9c, 0x0, 0x0, 0xf6) 9m2.023791319s ago: executing program 1 (id=942): socket(0xa, 0x3, 0xff) 9m1.870094614s ago: executing program 1 (id=946): rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) 9m1.350924837s ago: executing program 1 (id=955): fcntl$auto(0x8000000000000001, 0x2, 0x0) 9m1.001098559s ago: executing program 32 (id=955): fcntl$auto(0x8000000000000001, 0x2, 0x0) 7m34.954191223s ago: executing program 4 (id=2487): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/035/001\x00', 0x1102, 0x0) ioctl$auto_USBDEVFS_ALLOC_STREAMS(r0, 0x8008551c, &(0x7f0000000180)={0x7f3, 0x2}) 7m34.766635447s ago: executing program 4 (id=2491): setresuid$auto(0x60, 0x1000, 0x8000) ioctl$auto(0xc8, 0x54e3, 0x5c8d) 7m34.572654526s ago: executing program 4 (id=2497): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/capabilities/ff\x00', 0x300, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/225, 0xe1) 7m34.418446849s ago: executing program 4 (id=2501): setresuid$auto(0x909b, 0x1, 0x0) prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) 7m34.323485614s ago: executing program 4 (id=2503): ioperm$auto(0xd44, 0x6, 0x8) tkill$auto(0x80000000000001, 0x7) 7m33.871451552s ago: executing program 4 (id=2513): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/addr_prefs\x00', 0x102, 0x0) writev$auto(r0, &(0x7f00000001c0)={&(0x7f0000000100), 0x200}, 0x10) 7m33.520541268s ago: executing program 33 (id=2513): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/addr_prefs\x00', 0x102, 0x0) writev$auto(r0, &(0x7f00000001c0)={&(0x7f0000000100), 0x200}, 0x10) 7m6.796547643s ago: executing program 2 (id=2910): r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x60800, 0x0) ioctl$auto(r0, 0x901064ac, 0x5) 7m6.546501225s ago: executing program 2 (id=2913): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/system/machinecheck/machinecheck0/bank6\x00', 0x2101, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000000040)="72f3", 0x2) 7m6.3203529s ago: executing program 2 (id=2917): r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) ioctl$auto(0x3, 0x400454da, r0) 7m6.167097379s ago: executing program 2 (id=2919): r0 = socket(0x2, 0x1, 0x0) setsockopt$auto(r0, 0x6, 0x16, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/veth0_virt_wifi/base_reachable_time\x00', 0x9) 7m5.977877665s ago: executing program 2 (id=2921): tkill$auto(0x1, 0x7) keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x0, 0x0, 0x0, 0x48eafc79) 7m5.3192148s ago: executing program 2 (id=2928): r0 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x109500, 0x0) read$auto(r0, &(0x7f0000000040)='(-{%\x00', 0x4b) 7m4.815675186s ago: executing program 34 (id=2928): r0 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x109500, 0x0) read$auto(r0, &(0x7f0000000040)='(-{%\x00', 0x4b) 3m45.19657213s ago: executing program 5 (id=6450): r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC0D0c\x00', 0x2800, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_WRITEN_FRAMES2(r0, 0x40184152, 0x0) 3m44.884576445s ago: executing program 5 (id=6454): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/blkio.prio.class\x00', 0x183042, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)="0fde", 0x2) 3m44.601172429s ago: executing program 5 (id=6457): r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) ioctl$auto(r0, 0x40084d05, 0x7) 3m44.290450316s ago: executing program 5 (id=6462): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r0, 0x4b6a, 0x7) 3m44.014622074s ago: executing program 5 (id=6466): rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) tkill$auto(0x1, 0x7) 3m43.193238141s ago: executing program 5 (id=6474): mkdir$auto(&(0x7f0000000180)='./file0\x00', 0xe34e) chroot$auto(&(0x7f0000000200)='./file0\x00') 3m42.408990556s ago: executing program 35 (id=6474): mkdir$auto(&(0x7f0000000180)='./file0\x00', 0xe34e) chroot$auto(&(0x7f0000000200)='./file0\x00') 2.407293544s ago: executing program 7 (id=8761): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x10, 0x3, 0x0, 0x2, 0x0) prctl$auto_PR_SET_NAME(0xf, 0x5, 0x0, 0x8, 0xff) 1.907775097s ago: executing program 3 (id=8768): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SETHMAC(r0, &(0x7f0000001440)={0x0, 0x0, &(0x7f0000001400)={&(0x7f0000000240)={0x2c, r1, 0x6c5679fc7dece1a9, 0x70bd27, 0x25dfdbff, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x7}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x10001}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x46}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x200080c4) 1.746494003s ago: executing program 7 (id=8770): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r0 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000004000), 0x40, 0x0) ioctl$auto_RNDADDENTROPY2(r0, 0x40085203, 0x0) 1.64018006s ago: executing program 3 (id=8771): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x9, 0x8000) r0 = socket(0x15, 0x5, 0x0) getsockopt$auto(r0, 0x114, 0x2714, 0xfffffffffffffffc, 0x0) 1.489961806s ago: executing program 0 (id=8773): openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/32t\x00', 0x26040, 0x0) close_range$auto(0x2, 0x8, 0x0) 1.477170101s ago: executing program 7 (id=8774): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x183941, 0x0) write$auto(0x3, 0x0, 0x5c8) 1.34301973s ago: executing program 6 (id=8775): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv4/fib_multipath_hash_seed\x00', 0x2202, 0x0) mmap$auto(0x0, 0xede8, 0xdf, 0x9b72, 0x5, 0x28000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 1.191785644s ago: executing program 0 (id=8776): mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r0, 0x29, 0x20, 0x0, 0x8002) 1.076030925s ago: executing program 6 (id=8777): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x5, 0x0) setsockopt$auto(r0, 0x0, 0x10, 0x0, 0x17) 979.57245ms ago: executing program 3 (id=8778): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0) write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000001140)="8cbdca", 0x3) writev$auto(r0, &(0x7f0000001d40)={0x0, 0x2}, 0x6) 972.387423ms ago: executing program 0 (id=8779): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) setrlimit$auto(0x1000000007, 0x0) epoll_create$auto(0x6) 852.796991ms ago: executing program 6 (id=8780): socket(0x2b, 0x1, 0x0) socket(0xa, 0x801, 0x84) setsockopt$auto(0x4, 0x0, 0x16, 0xfffffffffffffffe, 0x0) 804.633784ms ago: executing program 7 (id=8781): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000100)={0x30, r1, 0x1, 0x70bd25, 0x25dfcbfd, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x48080) 727.086223ms ago: executing program 0 (id=8782): mmap$auto(0x0, 0x4, 0xffffffffffffffff, 0x400eb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/ext4/sda1/mb_stats\x00', 0x88000, 0x0) pread64$auto(r0, 0x0, 0x20000000058, 0x3) 673.804052ms ago: executing program 3 (id=8783): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_policy\x00', 0x202, 0x0) sendfile$auto(r1, r0, 0x0, 0x48) 575.609577ms ago: executing program 6 (id=8784): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/macvlan0/addr_gen_mode\x00', 0x2002, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/ip_local_port_range\x00', 0x20202, 0x0) sendfile$auto(r0, r1, 0x0, 0x1) 523.560483ms ago: executing program 7 (id=8785): socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0x83, 0x0, 0x8) 441.853422ms ago: executing program 0 (id=8786): socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x5, 0x0) setsockopt$auto(0x4, 0x0, 0x485, 0xfffffffffffffffe, 0x0) 367.696182ms ago: executing program 3 (id=8787): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000001c0), r0) sendmsg$auto_TIPC_NL_PUBL_GET(r0, &(0x7f0000003940)={0x0, 0x0, &(0x7f0000003900)={&(0x7f0000000000)={0x20, r1, 0xf01, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@typed={0x7, 0x2, 0x0, 0x0, @str='@+\x00'}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40800}, 0x840) 299.791539ms ago: executing program 6 (id=8788): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_WOL_GET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x2c, r1, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@ETHTOOL_A_WOL_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x0) 276.305947ms ago: executing program 7 (id=8789): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000780), r0) sendmsg$auto_OVS_VPORT_CMD_NEW(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)={0x1c, r1, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x8100) 207.662149ms ago: executing program 0 (id=8790): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000004540), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_DEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000011c0)={0x20, r1, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_UPCALL_STATS={0x4}, @OVS_VPORT_ATTR_NAME={0x5, 0x3, '\x00'}]}, 0x20}}, 0x240480c0) 76.895124ms ago: executing program 3 (id=8791): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000005c0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PSE_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x34, r1, 0x1, 0x703d07, 0x25dfdbfc, {}, [@ETHTOOL_A_PSE_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x233}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x400d8) 0s ago: executing program 6 (id=8792): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x14, r1, 0x70b, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4040041}, 0x4000) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.122' (ED25519) to the list of known hosts. [ 93.083966][ T5818] cgroup: Unknown subsys name 'net' [ 93.197604][ T5818] cgroup: Unknown subsys name 'cpuset' [ 93.207356][ T5818] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 94.960145][ T5818] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 97.034750][ T1208] cfg80211: failed to load regulatory.db [ 101.134716][ T5841] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 101.143200][ T5841] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 101.145261][ T5843] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 101.151084][ T5841] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 101.161898][ T5843] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 101.165443][ T5841] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 101.180116][ T5841] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 101.187701][ T5843] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 101.195590][ T5841] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 101.203851][ T5841] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 101.205022][ T5843] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 101.219536][ T5846] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 101.227201][ T5843] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 101.235456][ T5846] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 101.243989][ T5846] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 101.245184][ T5844] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 101.258413][ T5840] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 101.259135][ T5844] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 101.275859][ T5844] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 101.284635][ T5844] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 101.844527][ T5833] chnl_net:caif_netlink_parms(): no params data found [ 101.903251][ T5830] chnl_net:caif_netlink_parms(): no params data found [ 101.996512][ T5832] chnl_net:caif_netlink_parms(): no params data found [ 102.182123][ T5831] chnl_net:caif_netlink_parms(): no params data found [ 102.213774][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.220948][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.229446][ T5833] bridge_slave_0: entered allmulticast mode [ 102.237772][ T5833] bridge_slave_0: entered promiscuous mode [ 102.268766][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.276117][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.283649][ T5830] bridge_slave_0: entered allmulticast mode [ 102.291050][ T5830] bridge_slave_0: entered promiscuous mode [ 102.299843][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.307188][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.314516][ T5833] bridge_slave_1: entered allmulticast mode [ 102.321787][ T5833] bridge_slave_1: entered promiscuous mode [ 102.361788][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.369065][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.376965][ T5830] bridge_slave_1: entered allmulticast mode [ 102.385450][ T5830] bridge_slave_1: entered promiscuous mode [ 102.474942][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.482133][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.489688][ T5832] bridge_slave_0: entered allmulticast mode [ 102.498226][ T5832] bridge_slave_0: entered promiscuous mode [ 102.509561][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 102.524228][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 102.561532][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.569051][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.576548][ T5832] bridge_slave_1: entered allmulticast mode [ 102.584202][ T5832] bridge_slave_1: entered promiscuous mode [ 102.594114][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 102.606611][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 102.631554][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.638761][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.646523][ T5831] bridge_slave_0: entered allmulticast mode [ 102.654058][ T5831] bridge_slave_0: entered promiscuous mode [ 102.664768][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.672028][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.679354][ T5831] bridge_slave_1: entered allmulticast mode [ 102.686860][ T5831] bridge_slave_1: entered promiscuous mode [ 102.738209][ T5833] team0: Port device team_slave_0 added [ 102.746917][ T5833] team0: Port device team_slave_1 added [ 102.816681][ T5830] team0: Port device team_slave_0 added [ 102.853572][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 102.865701][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 102.878658][ T5830] team0: Port device team_slave_1 added [ 102.886484][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 102.893697][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 102.919770][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 102.935918][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 102.947770][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 102.987929][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 102.995046][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.021264][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 103.102026][ T5832] team0: Port device team_slave_0 added [ 103.110056][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 103.117104][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.143583][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 103.156383][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 103.163411][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.189390][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 103.204536][ T5831] team0: Port device team_slave_0 added [ 103.213783][ T5832] team0: Port device team_slave_1 added [ 103.241669][ T5831] team0: Port device team_slave_1 added [ 103.273196][ T5142] Bluetooth: hci1: command tx timeout [ 103.329306][ T5833] hsr_slave_0: entered promiscuous mode [ 103.336579][ T5833] hsr_slave_1: entered promiscuous mode [ 103.355808][ T55] Bluetooth: hci3: command tx timeout [ 103.357471][ T5142] Bluetooth: hci2: command tx timeout [ 103.367280][ T55] Bluetooth: hci0: command tx timeout [ 103.376566][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 103.383683][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.410040][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 103.421943][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 103.429510][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.455685][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 103.472422][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 103.479420][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.505600][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 103.531426][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 103.538576][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.564630][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 103.598452][ T5830] hsr_slave_0: entered promiscuous mode [ 103.605195][ T5830] hsr_slave_1: entered promiscuous mode [ 103.611572][ T5830] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 103.619458][ T5830] Cannot create hsr debugfs directory [ 103.730799][ T5831] hsr_slave_0: entered promiscuous mode [ 103.738711][ T5831] hsr_slave_1: entered promiscuous mode [ 103.744862][ T5831] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 103.752509][ T5831] Cannot create hsr debugfs directory [ 103.869578][ T5832] hsr_slave_0: entered promiscuous mode [ 103.876294][ T5832] hsr_slave_1: entered promiscuous mode [ 103.882692][ T5832] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 103.890383][ T5832] Cannot create hsr debugfs directory [ 104.270608][ T5833] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 104.293250][ T5833] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 104.329549][ T5833] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 104.340909][ T5833] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 104.401691][ T5831] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 104.427898][ T5831] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 104.440309][ T5831] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 104.479241][ T5831] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 104.558948][ T5830] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 104.569881][ T5830] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 104.585551][ T5830] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 104.597991][ T5830] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 104.676708][ T5832] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 104.700982][ T5832] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 104.725102][ T5832] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 104.758474][ T5832] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 104.805434][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0 [ 104.864724][ T5833] 8021q: adding VLAN 0 to HW filter on device team0 [ 104.899352][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.906660][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 104.979621][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.986827][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 105.007172][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 105.024093][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0 [ 105.094891][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 105.107058][ T5831] 8021q: adding VLAN 0 to HW filter on device team0 [ 105.145556][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.152742][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.167735][ T53] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.175012][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.198630][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.205897][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 105.225616][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.232975][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 105.354049][ T5142] Bluetooth: hci1: command tx timeout [ 105.358856][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0 [ 105.429844][ T5831] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 105.443772][ T5142] Bluetooth: hci0: command tx timeout [ 105.449350][ T5142] Bluetooth: hci3: command tx timeout [ 105.452452][ T55] Bluetooth: hci2: command tx timeout [ 105.547661][ T5832] 8021q: adding VLAN 0 to HW filter on device team0 [ 105.599478][ T53] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.606680][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.640212][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 105.661234][ T53] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.668491][ T53] bridge0: port 2(bridge_slave_1) entered forwarding state [ 105.810716][ T5832] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 105.871775][ T5833] veth0_vlan: entered promiscuous mode [ 105.911098][ T5833] veth1_vlan: entered promiscuous mode [ 105.977961][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.030099][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.081429][ T5833] veth0_macvtap: entered promiscuous mode [ 106.106324][ T5833] veth1_macvtap: entered promiscuous mode [ 106.158947][ T5830] veth0_vlan: entered promiscuous mode [ 106.219038][ T5831] veth0_vlan: entered promiscuous mode [ 106.238384][ T5830] veth1_vlan: entered promiscuous mode [ 106.250276][ T5831] veth1_vlan: entered promiscuous mode [ 106.268985][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 106.285894][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 106.307236][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.328170][ T5833] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.337635][ T5833] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.348266][ T5833] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.358198][ T5833] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.393444][ T5830] veth0_macvtap: entered promiscuous mode [ 106.426350][ T5830] veth1_macvtap: entered promiscuous mode [ 106.477416][ T5831] veth0_macvtap: entered promiscuous mode [ 106.493193][ T5831] veth1_macvtap: entered promiscuous mode [ 106.566035][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 106.577330][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 106.589421][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 106.601390][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.609948][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.644072][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 106.655338][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 106.667389][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 106.689760][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 106.700444][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 106.710377][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 106.721276][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 106.733889][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 106.750026][ T5832] veth0_vlan: entered promiscuous mode [ 106.766583][ T5830] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.776978][ T5830] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.786939][ T5830] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.797105][ T5830] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.809466][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 106.820390][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 106.830422][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 106.840924][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 106.852871][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 106.874682][ T5831] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.883945][ T5831] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.892900][ T5831] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.901884][ T5831] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.925885][ T5832] veth1_vlan: entered promiscuous mode [ 106.933383][ T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.941310][ T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.029001][ T5833] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 107.150142][ T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.150288][ T5832] veth0_macvtap: entered promiscuous mode [ 107.167307][ T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.211800][ T5832] veth1_macvtap: entered promiscuous mode [ 107.278775][ T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.307287][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.319683][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.330483][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.332300][ T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.342588][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.360751][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.376957][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.399429][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 107.432584][ T55] Bluetooth: hci1: command tx timeout [ 107.440066][ T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.460606][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.473455][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.484983][ T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.484983][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.485007][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.517129][ T55] Bluetooth: hci3: command tx timeout [ 107.522689][ T55] Bluetooth: hci0: command tx timeout [ 107.528623][ T55] Bluetooth: hci2: command tx timeout [ 107.535329][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.546194][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.557999][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.599521][ T5832] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.613849][ T5832] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.623301][ T5832] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.632541][ T5832] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.699298][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.721452][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.049575][ T1155] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.072903][ T1155] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.190047][ T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.260912][ T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.509570][ T5918] futex_wake_op: syz.3.13 tries to shift op by 64; fix this program [ 109.529522][ T5844] Bluetooth: hci1: command tx timeout [ 109.605177][ T5844] Bluetooth: hci2: command tx timeout [ 109.610690][ T55] Bluetooth: hci0: command tx timeout [ 109.611123][ T5142] Bluetooth: hci3: command tx timeout [ 112.722891][ T5142] Bluetooth: hci3: unexpected event 0x17 length: 123 > 6 [ 114.672321][ T30] audit: type=1800 audit(1746063536.633:2): pid=6147 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.126" name="dbroot" dev="configfs" ino=7710 res=0 errno=0 [ 116.241743][ T6209] capability: warning: `syz.0.157' uses 32-bit capabilities (legacy support in use) [ 118.344300][ T30] audit: type=1800 audit(1746063540.323:3): pid=6287 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.195" name="dbroot" dev="configfs" ino=8322 res=0 errno=0 [ 119.613727][ T6330] syz.2.215(6330): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 120.615761][ T6368] nfs: Bad value for 'source' [ 124.430642][ T6507] ======================================================= [ 124.430642][ T6507] WARNING: The mand mount option has been deprecated and [ 124.430642][ T6507] and is ignored by this kernel. Remove the mand [ 124.430642][ T6507] option from the mount to silence this warning. [ 124.430642][ T6507] ======================================================= [ 128.455105][ T6654] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[6654] [ 129.111114][ T6677] Process accounting resumed [ 131.605949][ T30] audit: type=1326 audit(6041032893.637:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6774 comm="syz.3.437" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2066d8e969 code=0x0 [ 132.467169][ T6803] syz.1.450 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 137.932434][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.939127][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 142.372446][ T30] audit: type=1800 audit(6041033931.454:5): pid=7192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.642" name="members" dev="configfs" ino=10625 res=0 errno=0 [ 144.624357][ T7287] random: crng reseeded on system resumption [ 147.509556][ T30] audit: type=1800 audit(6041033936.611:6): pid=7407 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.749" name="discovery_nqn" dev="configfs" ino=11777 res=0 errno=0 [ 148.696211][ T7455] __vm_enough_memory: pid: 7455, comm: syz.2.772, bytes: 4398046511104 not enough memory for the allocation [ 150.079325][ T7514] mmap: syz.2.802 (7514) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 150.693181][ T30] audit: type=1800 audit(6041033939.817:7): pid=7540 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.814" name="trace_pipe" dev="tracefs" ino=166 res=0 errno=0 [ 151.720877][ T5142] Bluetooth: hci0: Malformed LE Event: 0x0b [ 152.606338][ T5142] Bluetooth: hci0: unexpected event 0x36 length: 123 > 7 [ 153.676534][ T5142] Bluetooth: hci3: unexpected event 0x32 length: 10 > 9 [ 154.816461][ T5142] Bluetooth: hci0: unexpected event 0x3e length: 728 > 260 [ 154.824389][ T5142] Bluetooth: hci0: unexpected subevent 0x03 length: 727 > 9 [ 156.440210][ T5142] Bluetooth: hci1: unexpected event 0x20 length: 123 > 7 [ 157.804364][ T1155] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.948524][ T1155] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.269327][ T1155] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.466375][ T1155] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.785478][ T5844] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 158.794726][ T5844] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 158.812285][ T5844] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 158.825871][ T5844] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 158.840408][ T5844] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 159.130512][ T7864] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[7864] [ 159.141234][ T1155] bridge_slave_1: left allmulticast mode [ 159.147123][ T1155] bridge_slave_1: left promiscuous mode [ 159.210802][ T1155] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.296318][ T1155] bridge_slave_0: left allmulticast mode [ 159.309406][ T1155] bridge_slave_0: left promiscuous mode [ 159.316671][ T1155] bridge0: port 1(bridge_slave_0) entered disabled state [ 160.729733][ T7923] Unable to find swap-space signature [ 160.911075][ T5142] Bluetooth: hci3: command tx timeout [ 160.949518][ T1155] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 161.030999][ T1155] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 161.058843][ T1155] bond0 (unregistering): Released all slaves [ 161.413533][ T7946] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 161.883798][ T7853] chnl_net:caif_netlink_parms(): no params data found [ 162.013861][ T1155] hsr_slave_0: left promiscuous mode [ 162.036378][ T1155] hsr_slave_1: left promiscuous mode [ 162.042590][ T1155] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 162.059727][ T1155] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 162.081162][ T1155] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 162.118411][ T1155] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 162.210666][ T7977] Unable to find swap-space signature [ 162.251742][ T1155] veth1_macvtap: left promiscuous mode [ 162.268320][ T1155] veth0_macvtap: left promiscuous mode [ 162.298445][ T1155] veth1_vlan: left promiscuous mode [ 162.322975][ T1155] veth0_vlan: left promiscuous mode [ 162.981376][ T5142] Bluetooth: hci3: command tx timeout [ 163.797028][ T1155] team0 (unregistering): Port device team_slave_1 removed [ 163.862171][ T1155] team0 (unregistering): Port device team_slave_0 removed [ 165.049774][ T5142] Bluetooth: hci3: command tx timeout [ 165.142595][ T7853] bridge0: port 1(bridge_slave_0) entered blocking state [ 165.169372][ T7853] bridge0: port 1(bridge_slave_0) entered disabled state [ 165.176657][ T7853] bridge_slave_0: entered allmulticast mode [ 165.228915][ T7853] bridge_slave_0: entered promiscuous mode [ 165.248574][ T7853] bridge0: port 2(bridge_slave_1) entered blocking state [ 165.264446][ T7853] bridge0: port 2(bridge_slave_1) entered disabled state [ 165.282005][ T7853] bridge_slave_1: entered allmulticast mode [ 165.302162][ T7853] bridge_slave_1: entered promiscuous mode [ 165.606074][ T7853] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 165.650952][ T7853] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 165.942746][ T7853] team0: Port device team_slave_0 added [ 165.981346][ T7853] team0: Port device team_slave_1 added [ 166.228888][ T7853] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 166.253231][ T7853] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 166.318276][ T7853] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 166.384927][ T7853] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 166.391931][ T7853] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 166.471945][ T7853] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 166.709775][ T7853] hsr_slave_0: entered promiscuous mode [ 166.730155][ T7853] hsr_slave_1: entered promiscuous mode [ 167.123919][ T5142] Bluetooth: hci3: command tx timeout [ 167.519931][ T7853] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 167.593088][ T7853] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 167.645437][ T7853] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 167.693607][ T7853] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 167.855041][ T8169] capability: warning: `syz.3.1096' uses deprecated v2 capabilities in a way that may be insecure [ 168.124178][ T7853] 8021q: adding VLAN 0 to HW filter on device bond0 [ 168.212182][ T7853] 8021q: adding VLAN 0 to HW filter on device team0 [ 168.285965][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 168.293207][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 168.345609][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 168.352955][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 168.722630][ T8201] syz_tun: tun_chr_ioctl cmd 2147767506 [ 169.201552][ T7853] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 169.996608][ T7853] veth0_vlan: entered promiscuous mode [ 170.077717][ T7853] veth1_vlan: entered promiscuous mode [ 170.234227][ T7853] veth0_macvtap: entered promiscuous mode [ 170.256756][ T7853] veth1_macvtap: entered promiscuous mode [ 170.355025][ T7853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 170.376465][ T7853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 170.412220][ T7853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 170.471136][ T7853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 170.481016][ T7853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 170.558643][ T7853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 170.574213][ T7853] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 170.587584][ T7853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 170.605861][ T7853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 170.640369][ T7853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 170.671074][ T7853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 170.707800][ T7853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 170.741506][ T7853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 170.771786][ T7853] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 170.844207][ T7853] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.869083][ T7853] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.877882][ T7853] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.916532][ T30] audit: type=1800 audit(6041033960.132:8): pid=8283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1133" name="dummy_udc" dev="gadgetfs" ino=5078 res=0 errno=0 [ 170.953772][ T7853] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.280510][ T1155] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 171.319424][ T1155] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 171.421440][ T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 171.431565][ T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 174.120458][ T30] audit: type=1800 audit(4294967299.216:9): pid=8412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1185" name="members" dev="configfs" ino=15435 res=0 errno=0 [ 181.229242][ T30] audit: type=1800 audit(4294967318.357:10): pid=8681 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1308" name="lu_gp_id" dev="configfs" ino=15348 res=0 errno=0 [ 185.680422][ T8849] can: request_module (can-proto-3) failed. [ 186.540307][ T30] audit: type=1800 audit(4294967323.705:11): pid=8892 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1402" name="trace_pipe" dev="tracefs" ino=124 res=0 errno=0 [ 188.889298][ T8995] syz_tun: tun_chr_ioctl cmd 2147767515 [ 190.118429][ T9042] Process accounting resumed [ 190.127595][ T9047] : Can't lookup blockdev [ 191.373351][ T9090] cougar: G6 mapped to F18 [ 191.625589][ T9037] kexec: Could not allocate control_code_buffer [ 192.241870][ T9121] QAT: failed to copy from user cfg_data. [ 192.833996][ T9143] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 193.929889][ T9190] delete_channel: no stack [ 194.342390][ T9210] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 194.397105][ T9210] CIFS mount error: No usable UNC path provided in device string! [ 194.397105][ T9210] [ 194.409659][ T9210] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 195.406925][ T9252] block2mtd: device name too long [ 196.378351][ T9289] hub 8-0:1.0: USB hub found [ 196.425168][ T9289] hub 8-0:1.0: 1 port detected [ 199.039484][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.048155][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.164199][ T9393] binder: binder_mmap: 9392 0-1000 bad vm_flags failed -1 [ 200.271478][ T9437] hub 8-0:1.0: USB hub found [ 200.324948][ T9437] hub 8-0:1.0: 1 port detected [ 200.611621][ T9453] bcache: register_bcache() error : failed to open device [ 209.053078][ T9759] < [ 209.247094][ T9767] futex_wake_op: syz.3.1775 tries to shift op by 64; fix this program [ 209.614707][ T9781] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 211.010690][ T9826] syz_tun: tun_chr_ioctl cmd 1074025694 [ 211.510760][ T9844] ICMPv6: process `syz.3.1814' is using deprecated sysctl (syscall) net.ipv6.neigh.macsec0.base_reachable_time - use net.ipv6.neigh.macsec0.base_reachable_time_ms instead [ 212.178686][ T9871] warning: `syz.2.1827' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 215.898822][ T9998] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 217.916336][ T30] audit: type=1400 audit(1054.392:12): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=10082 comm="syz.4.1930" [ 218.241355][T10097] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 220.191407][T10171] Process accounting paused [ 221.246776][T10224] ima: Unable to open file: /suritRy/integrity?iqa/policy (-2) [ 221.262274][T10221] ima: policy update failed [ 221.290256][ T30] audit: type=1802 audit(1057.780:13): pid=10221 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1997" res=0 errno=0 [ 225.043184][T10391] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 226.051544][T10439] ceph: Failed to parse sending metrics switch value 'P^' [ 226.573111][ T5844] Bluetooth: hci0: command 0x0406 tx timeout [ 226.573133][ T5840] Bluetooth: hci2: command 0x0406 tx timeout [ 226.573180][ T5840] Bluetooth: hci1: command 0x0406 tx timeout [ 227.930551][T10515] binder: 10514:10515 ioctl c0306201 0 returned -14 [ 232.577485][T10721] syz_tun: tun_chr_ioctl cmd 35111 [ 234.205846][T10801] dyndbg: bad flag-op , at start of [ 234.229594][T10801] dyndbg: flags parse failed [ 234.252674][T10801] dyndbg: bad flag-op , at start of [ 234.278519][T10801] dyndbg: flags parse failed [ 234.775759][T10831] syz.2.2271 uses obsolete (PF_INET,SOCK_PACKET) [ 234.971410][T10841] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 236.460648][T10910] delete_channel: no stack [ 237.351878][T10957] i2c i2c-0: delete_device: Can't find device in list [ 237.434770][T10963] queue_state_write: unsupported operation '' [ 237.441380][T10963] queue_state_write: use 'run', 'start' or 'kick' [ 237.844719][T10985] process 'syz.2.2346' launched './file0' with NULL argv: empty string added [ 239.169039][T11015] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 239.205914][T11015] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 239.264466][T11015] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 239.281628][T11015] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 239.299565][T11015] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 239.308105][T11015] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 239.327772][T11015] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 239.336255][T11015] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 239.346859][T11015] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 240.497480][ T5846] Bluetooth: hci2: command 0x0406 tx timeout [ 241.293056][ T5846] Bluetooth: hci1: command 0x0406 tx timeout [ 241.297832][ T5142] Bluetooth: hci0: command 0x0406 tx timeout [ 241.372567][ T5142] Bluetooth: hci3: command 0x0c1a tx timeout [ 242.240272][T11198] kmem.limit_in_bytes is deprecated and will be removed. Writing any value to this file has no effect. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 242.569017][ T5142] Bluetooth: hci2: command 0x0406 tx timeout [ 242.694745][T11219] ima: policy update failed [ 242.709291][ T30] audit: type=1802 audit(1079.301:14): pid=11219 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2461" res=0 errno=0 [ 243.362141][ T5142] Bluetooth: hci1: command 0x0406 tx timeout [ 243.362378][ T5846] Bluetooth: hci0: command 0x0406 tx timeout [ 243.451756][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 243.724995][T11269] nfsd: Unknown parameter '^B-' [ 245.030437][T11327] vivid-007: ================= START STATUS ================= [ 245.048058][T11327] vivid-007: Generate PTS: true [ 245.053187][T11327] vivid-007: Generate SCR: true [ 245.062161][T11327] tpg source WxH: 640x360 (Y'CbCr) [ 245.072306][T11327] tpg field: 1 [ 245.085485][T11327] tpg crop: (0,0)/640x360 [ 245.098104][T11327] tpg compose: (0,0)/640x360 [ 245.107478][T11327] tpg colorspace: 8 [ 245.123114][T11327] tpg transfer function: 0/0 [ 245.127756][T11327] tpg Y'CbCr encoding: 0/0 [ 245.132202][T11327] tpg quantization: 0/0 [ 245.153084][T11327] tpg RGB range: 0/2 [ 245.159893][T11327] vivid-007: ================== END STATUS ================== [ 245.251184][ T53] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 245.390654][ T53] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 245.504707][ T53] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 245.669526][ T53] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 246.109474][ T53] bridge_slave_1: left allmulticast mode [ 246.115187][ T53] bridge_slave_1: left promiscuous mode [ 246.157829][ T53] bridge0: port 2(bridge_slave_1) entered disabled state [ 246.198663][ T53] bridge_slave_0: left allmulticast mode [ 246.204371][ T53] bridge_slave_0: left promiscuous mode [ 246.230392][ T53] bridge0: port 1(bridge_slave_0) entered disabled state [ 246.270207][ T5142] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 246.282202][ T5142] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 246.292635][ T5142] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 246.314581][ T5142] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 246.325855][ T5142] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 247.279194][ T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 247.338309][ T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 247.354649][ T53] bond0 (unregistering): Released all slaves [ 248.074537][ T53] hsr_slave_0: left promiscuous mode [ 248.090864][ T53] hsr_slave_1: left promiscuous mode [ 248.097025][ T53] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 248.119592][ T53] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 248.131780][ T53] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 248.146228][ T53] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 248.207565][ T53] veth1_macvtap: left promiscuous mode [ 248.213178][ T53] veth0_macvtap: left promiscuous mode [ 248.235666][ T53] veth1_vlan: left promiscuous mode [ 248.246260][ T53] veth0_vlan: left promiscuous mode [ 248.377197][ T5846] Bluetooth: hci3: command tx timeout [ 249.208433][ T53] team0 (unregistering): Port device team_slave_1 removed [ 249.277723][ T53] team0 (unregistering): Port device team_slave_0 removed [ 250.146673][T11363] chnl_net:caif_netlink_parms(): no params data found [ 250.445424][ T5846] Bluetooth: hci3: command tx timeout [ 250.511345][T11363] bridge0: port 1(bridge_slave_0) entered blocking state [ 250.539920][T11363] bridge0: port 1(bridge_slave_0) entered disabled state [ 250.572858][T11363] bridge_slave_0: entered allmulticast mode [ 250.593457][T11363] bridge_slave_0: entered promiscuous mode [ 250.640561][T11363] bridge0: port 2(bridge_slave_1) entered blocking state [ 250.666662][T11363] bridge0: port 2(bridge_slave_1) entered disabled state [ 250.666795][T11491] Process accounting resumed [ 250.676915][T11363] bridge_slave_1: entered allmulticast mode [ 250.692971][T11363] bridge_slave_1: entered promiscuous mode [ 250.838643][T11363] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 250.874328][T11363] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 251.040140][T11363] team0: Port device team_slave_0 added [ 251.125294][T11363] team0: Port device team_slave_1 added [ 251.268427][T11363] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 251.279256][T11363] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 251.334046][T11363] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 251.350974][T11363] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 251.358081][T11363] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 251.396098][T11363] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 251.739706][T11555] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5) [ 251.879896][T11363] hsr_slave_0: entered promiscuous mode [ 251.907141][T11363] hsr_slave_1: entered promiscuous mode [ 252.517689][ T5846] Bluetooth: hci3: command tx timeout [ 252.546277][T11363] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 252.570991][T11363] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 252.611085][T11363] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 252.661576][T11363] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 252.937467][T11363] 8021q: adding VLAN 0 to HW filter on device bond0 [ 252.968043][T11363] 8021q: adding VLAN 0 to HW filter on device team0 [ 252.987630][ T53] bridge0: port 1(bridge_slave_0) entered blocking state [ 252.994914][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state [ 253.029375][ T53] bridge0: port 2(bridge_slave_1) entered blocking state [ 253.036624][ T53] bridge0: port 2(bridge_slave_1) entered forwarding state [ 253.309010][T11363] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 253.656903][T11363] veth0_vlan: entered promiscuous mode [ 253.677165][T11363] veth1_vlan: entered promiscuous mode [ 253.724117][T11363] veth0_macvtap: entered promiscuous mode [ 253.737571][T11363] veth1_macvtap: entered promiscuous mode [ 253.766524][T11363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 253.779196][T11363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 253.790951][T11363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 253.801947][T11363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 253.812255][T11363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 253.823322][T11363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 253.835337][T11363] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 253.863061][T11363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 253.879345][T11363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 253.890647][T11363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 253.901552][T11363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 253.911865][T11363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 253.924558][T11363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 253.936597][T11363] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 253.978934][T11363] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.987857][T11363] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.996581][T11363] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.005496][T11363] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.110304][ T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 254.123823][ T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 254.161488][ T82] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 254.170188][ T82] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 254.585200][ T5846] Bluetooth: hci3: command tx timeout [ 256.335525][T11710] bond0: option packets_per_slave: invalid value ( Xnp) [ 256.345812][T11710] bond0: option packets_per_slave: allowed values 0 - 65535 [ 256.868731][T11730] [ 257.364847][T11720] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 257.402679][T11720] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 257.422707][T11720] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 257.443292][T11720] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 257.476200][T11720] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 257.529668][T11720] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 259.214376][T11797] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 259.222220][T11797] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 259.234371][T11797] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 259.252563][T11797] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 260.059980][T11866] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed. [ 260.163493][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.171810][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 260.304340][T11877] Setting dangerous option i915.mitigations - tainting kernel [ 260.552896][ T5846] Bluetooth: hci2: command 0x0406 tx timeout [ 261.269223][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 261.275314][ T5846] Bluetooth: hci1: command 0x0406 tx timeout [ 261.277828][ T5142] Bluetooth: hci0: command 0x0406 tx timeout [ 262.679595][T11965] ICMPv6: process `syz.5.2744' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 263.338507][ T5142] Bluetooth: hci3: command 0x0c1a tx timeout [ 264.513242][T12004] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 264.526285][T12004] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 264.543883][T12004] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 264.551904][T12004] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 265.910134][ T5142] Bluetooth: hci2: command 0x0406 tx timeout [ 266.330527][T12081] sg_write: data in/out 3292/1 bytes for SCSI command 0xa3-- guessing data in; [ 266.330527][T12081] program syz.3.2796 not setting count and/or reply_len properly [ 266.528088][ T5142] Bluetooth: hci0: command 0x0406 tx timeout [ 266.611455][ T5142] Bluetooth: hci3: command 0x0c1a tx timeout [ 266.614381][ T55] Bluetooth: hci1: command 0x0406 tx timeout [ 268.670651][ T55] Bluetooth: hci0: unexpected event 0x3e length: 728 > 260 [ 268.670693][ T55] Bluetooth: hci0: unexpected subevent 0x03 length: 727 > 9 [ 268.708438][ T30] audit: type=1800 audit(1105.426:15): pid=12165 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2837" name="dbroot" dev="configfs" ino=27596 res=0 errno=0 [ 270.489482][ T55] Bluetooth: hci0: unexpected subevent 0x04 length: 122 > 11 [ 271.336945][T12286] Setting dangerous option i915.mitigations - tainting kernel [ 271.832303][T12310] bond0: option lp_interval: invalid value (/sys/devices/platform/vkms/graphics/fb0/rotate) [ 271.847440][T12310] bond0: option lp_interval: allowed values 1 - 2147483647 [ 272.037351][ T30] audit: type=1800 audit(1108.783:16): pid=12318 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2906" name="dbroot" dev="configfs" ino=27820 res=0 errno=0 [ 272.127577][ T30] audit: type=1806 audit(1108.874:17): xattr="" res=-22 [ 272.633399][T12341] bond0: Unable to set down delay as MII monitoring is disabled [ 273.976878][ T53] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 274.134754][ T53] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 274.354205][ T53] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 274.692389][ T53] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 274.985826][ T5142] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 274.995232][ T5142] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 275.003747][ T5142] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 275.028011][ T5142] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 275.049079][ T5142] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 275.337525][ T53] bridge_slave_1: left allmulticast mode [ 275.344416][ T53] bridge_slave_1: left promiscuous mode [ 275.381393][ T53] bridge0: port 2(bridge_slave_1) entered disabled state [ 275.469678][ T53] bridge_slave_0: left allmulticast mode [ 275.478651][ T53] bridge_slave_0: left promiscuous mode [ 275.484522][ T53] bridge0: port 1(bridge_slave_0) entered disabled state [ 276.975651][ T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 276.991204][ T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 277.003489][ T53] bond0 (unregistering): Released all slaves [ 277.031806][T12467] binder: 12466:12467 ioctl c00c620f 2000000000c0 returned -22 [ 277.098023][T12461] bond0: Unable to set down delay as MII monitoring is disabled [ 277.123272][ T55] Bluetooth: hci0: command tx timeout [ 277.934614][T12502] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma? [ 278.249080][T12511] program syz.3.2971 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 278.258914][ T53] hsr_slave_0: left promiscuous mode [ 278.340323][ T53] hsr_slave_1: left promiscuous mode [ 278.357417][ T53] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 278.390065][ T53] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 278.434534][ T53] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 278.462075][ T53] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 278.556969][ T53] veth1_macvtap: left promiscuous mode [ 278.588959][ T53] veth0_macvtap: left promiscuous mode [ 278.607306][ T53] veth1_vlan: left promiscuous mode [ 278.619190][ T53] veth0_vlan: left promiscuous mode [ 278.625803][T12524] nvme_fcloop: unknown parameter or missing value '^/]' [ 279.195730][ T55] Bluetooth: hci0: command tx timeout [ 280.510605][ T53] team0 (unregistering): Port device team_slave_1 removed [ 280.607395][ T53] team0 (unregistering): Port device team_slave_0 removed [ 281.246703][ T55] Bluetooth: hci0: command tx timeout [ 281.444407][T12419] chnl_net:caif_netlink_parms(): no params data found [ 281.510368][T12572] Process accounting paused [ 281.912743][T12419] bridge0: port 1(bridge_slave_0) entered blocking state [ 281.951664][T12419] bridge0: port 1(bridge_slave_0) entered disabled state [ 281.958946][T12419] bridge_slave_0: entered allmulticast mode [ 282.014245][T12419] bridge_slave_0: entered promiscuous mode [ 282.033693][T12419] bridge0: port 2(bridge_slave_1) entered blocking state [ 282.047632][T12419] bridge0: port 2(bridge_slave_1) entered disabled state [ 282.061050][T12419] bridge_slave_1: entered allmulticast mode [ 282.069537][T12419] bridge_slave_1: entered promiscuous mode [ 282.275042][T12419] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 282.328055][T12419] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 282.507349][T12419] team0: Port device team_slave_0 added [ 282.542261][T12419] team0: Port device team_slave_1 added [ 282.741849][T12419] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 282.784103][T12419] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 282.857535][T12419] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 282.891684][T12419] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 282.898848][T12419] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 282.925522][T12419] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 283.189560][T12419] hsr_slave_0: entered promiscuous mode [ 283.205697][T12419] hsr_slave_1: entered promiscuous mode [ 283.222438][T12419] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 283.230197][T12419] Cannot create hsr debugfs directory [ 283.315014][ T55] Bluetooth: hci0: command tx timeout [ 284.092950][T12419] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 284.115683][T12419] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 284.176292][T12419] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 284.212007][ T30] audit: type=1800 audit(1121.027:18): pid=12706 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3044" name="discovery_nqn" dev="configfs" ino=28632 res=0 errno=0 [ 284.283987][T12419] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 284.622097][T12419] 8021q: adding VLAN 0 to HW filter on device bond0 [ 284.721750][T12419] 8021q: adding VLAN 0 to HW filter on device team0 [ 284.799458][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 284.807519][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 284.871282][ T82] bridge0: port 2(bridge_slave_1) entered blocking state [ 284.878533][ T82] bridge0: port 2(bridge_slave_1) entered forwarding state [ 285.643634][T12757] aoe: can't write to that file. [ 285.655759][T12419] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 286.441374][T12419] veth0_vlan: entered promiscuous mode [ 286.466505][T12419] veth1_vlan: entered promiscuous mode [ 286.540034][T12419] veth0_macvtap: entered promiscuous mode [ 286.571209][T12419] veth1_macvtap: entered promiscuous mode [ 286.629990][T12419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 286.646988][T12419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 286.676892][T12419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 286.697087][T12419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 286.716701][T12419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 286.746547][T12419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 286.768471][T12419] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 286.793468][T12419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 286.814797][T12419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 286.837019][T12419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 286.857785][T12419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 286.875879][T12419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 286.896200][T12419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 286.919479][T12419] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 286.971091][T12419] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.008496][T12419] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.029070][T12419] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.064822][T12419] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.323329][ T82] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 287.348899][ T82] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 287.429300][ T82] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 287.452797][ T82] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 288.332716][T12850] WARNING! power/level is deprecated; use power/control instead [ 292.658049][ T55] Bluetooth: hci2: unexpected event 0x3d length: 726 > 14 [ 293.479577][T13072] syz_tun: tun_chr_ioctl cmd 35108 [ 301.423047][T13376] program syz.5.3304 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 302.056110][T13404] binder: 13402:13404 ioctl c0306201 2000000000c0 returned -14 [ 302.486879][T13424] blkio.reset_stats is deprecated [ 302.500339][T13425] block nbd8: NBD_DISCONNECT [ 302.754282][T13440] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 305.001578][T13540] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7fe00 [ 305.019860][T13540] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 305.039209][T13540] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 305.060618][T13540] page_type: f5(slab) [ 305.071418][T13540] raw: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000 [ 305.111222][T13540] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 305.119897][T13540] head: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000 [ 305.174137][T13540] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 305.185780][T13540] head: 00fff00000000003 ffffea0001ff8001 00000000ffffffff 00000000ffffffff [ 305.198133][T13540] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 305.210022][T13540] page dumped because: unmovable page [ 305.251711][T13540] page_owner tracks the page as allocated [ 305.258811][T13540] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 13, tgid 13 (kworker/u8:1), ts 299243608548, free_ts 299206986767 [ 305.339500][T13540] post_alloc_hook+0x181/0x1b0 [ 305.346758][T13540] get_page_from_freelist+0x135c/0x3920 [ 305.357809][T13540] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 305.376248][T13540] alloc_pages_mpol+0x1fb/0x550 [ 305.390848][T13540] new_slab+0x244/0x340 [ 305.406338][T13540] ___slab_alloc+0xd9c/0x1940 [ 305.416430][T13540] __slab_alloc.constprop.0+0x56/0xb0 [ 305.426523][T13540] __kmalloc_node_track_caller_noprof+0x2ee/0x510 [ 305.449214][T13540] kmalloc_reserve+0xef/0x2c0 [ 305.454007][T13540] __alloc_skb+0x166/0x380 [ 305.458527][T13540] nsim_dev_trap_report_work+0x2b1/0xcf0 [ 305.501985][T13540] process_one_work+0x9cc/0x1b70 [ 305.507106][T13540] worker_thread+0x6c8/0xf10 [ 305.532329][T13540] kthread+0x3c2/0x780 [ 305.536602][T13540] ret_from_fork+0x45/0x80 [ 305.559244][T13540] ret_from_fork_asm+0x1a/0x30 [ 305.588429][T13540] page last free pid 13274 tgid 13274 stack trace: [ 305.595048][T13540] __free_frozen_pages+0x69d/0xff0 [ 305.621995][T13540] __put_partials+0x16d/0x1c0 [ 305.626868][T13540] qlist_free_all+0x4e/0x120 [ 305.668072][T13540] kasan_quarantine_reduce+0x195/0x1e0 [ 305.674420][T13540] __kasan_slab_alloc+0x69/0x90 [ 305.689434][T13540] kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 305.695154][T13540] getname_flags.part.0+0x4c/0x550 [ 305.704692][T13540] getname_flags+0x93/0xf0 [ 305.714127][T13540] __x64_sys_symlinkat+0x79/0xc0 [ 305.720587][T13540] do_syscall_64+0xcd/0x230 [ 305.725354][T13540] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 305.786747][T13568] writes to the poll attribute are ignored. [ 305.817758][T13568] please use driver specific parameters instead. [ 308.574972][T13688] Scaler: ================= START STATUS ================= [ 308.582413][T13688] Scaler: ================== END STATUS ================== [ 311.574475][T13819] Process accounting resumed [ 312.467246][T13853] Scaler: ================= START STATUS ================= [ 312.493489][T13853] Scaler: ================== END STATUS ================== [ 318.803972][T14119] Format for deleting device is "id" (uint). [ 321.285616][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 321.293386][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 321.516390][T14245] kAFS: unparsable volume name [ 322.592882][ T55] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 322.592922][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 322.609667][ T55] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 322.609769][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 324.162950][T14358] zram0: detected capacity change from 0 to 8 [ 325.031786][T14399] binder: 14398:14399 ioctl 41045508 1 returned -22 [ 325.615360][T14425] zram: Can't change algorithm for initialized device [ 326.929797][T14487] usb usb24: check_ctrlrecip: process 14487 (syz.3.3784) requesting ep 01 but needs 81 [ 326.967749][T14487] usb usb24: usbfs: process 14487 (syz.3.3784) did not claim interface 0 before use [ 327.514179][T14515] program syz.5.3798 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 327.552234][T14515] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 328.222559][T14546] Invalid input. Must be >= 4608 [ 328.954020][T14578] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations! [ 330.622827][T14660] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd [ 331.153654][T14683] bcache: register_bcache() error : Not a bcache superblock (bad offset) [ 332.974575][T14769] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1048706]. [ 333.323421][ T30] audit: type=1800 audit(1170.392:19): pid=14785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3922" name="members" dev="configfs" ino=35967 res=0 errno=0 [ 333.672758][T14795] ecryptfs_miscdev_write: Invalid packet size [192] [ 337.121007][T14883] ecryptfs_miscdev_write: Invalid packet size [192] [ 339.303881][T14960] usbip-vudc usbip-vudc.0: gadget not bound [ 339.989825][T14986] mmap: syz.5.4022 (14986): VmData 39563264 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data. [ 341.261894][T15029] hub 3-0:1.0: USB hub found [ 341.286767][T15029] hub 3-0:1.0: 1 port detected [ 341.379714][T15029] usb usb3: authorized to connect [ 341.662006][T15035] Process accounting paused [ 345.077588][T15159] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 345.655381][T15188] ICMPv6: process `syz.6.4117' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead [ 346.773700][T15238] syz_tun: tun_chr_ioctl cmd 2147767507 [ 347.091593][T15244] Invalid ELF header magic: != ELF [ 350.610772][T15419] aoe: invalid device specification [ 351.312722][ T30] audit: type=1807 audit(1188.466:20): UNKNOWN= res=0 [ 351.320124][T15449] ima: policy update failed [ 351.330749][ T30] audit: type=1802 audit(1188.476:21): pid=15450 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.6.4243" res=0 errno=0 [ 351.367580][ T30] audit: type=1802 audit(1188.516:22): pid=15449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.6.4243" res=0 errno=0 [ 351.726170][T15470] usbcore.quirks: string doesn't fit in 127 chars. [ 352.456503][ T30] audit: type=1800 audit(1189.632:23): pid=15510 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4270" name="lu_gp_id" dev="configfs" ino=37616 res=0 errno=0 [ 353.090135][T15541] syz_tun: tun_chr_ioctl cmd 1074025692 [ 353.234899][T15547] kAFS: Invalid Command on /proc/fs/afs/cells file [ 354.580070][T15619] binder: 15618:15619 ioctl c0306201 200000002380 returned -14 [ 358.862483][T15839] block2mtd: illegal erase size [ 362.619780][T16025] scsi_dev_info_list_add_str: bad dev info string ')zD 5fk+*X#R84*VsndvqQW}~YrȀ-8VGDƘLB%v†v}Ypq|?O[,! 7xWDr%[}E$3?G9Ff=lrGH;2L<=|8 -c Fո"[v9q4Mmvqk[(iNDСMX PSqqX4X`V!;r֍)y]WzfIH0,v{q8שUܹ䑉m؛HTwCz-nR%2]x05oՕ|3>lS*L/Cdgӑ[C=Cwem)l#' ''S.sHgi-TY%ܹF*8nFTH?i{' '' [ 362.666718][ C0] vkms_vblank_simulate: vblank timer overrun [ 363.335833][T16059] sg_write: data in/out 589824/1 bytes for SCSI command 0x7b-- guessing data in; [ 363.335833][T16059] program syz.3.4510 not setting count and/or reply_len properly [ 365.440675][T16165] usb usb8: usbfs: interface 0 claimed by hub while 'syz.5.4556' sets config #5 [ 366.418713][T16216] Unable to find swap-space signature [ 368.929834][ T30] audit: type=1800 audit(1206.177:24): pid=16349 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.4633" name="features" dev="configfs" ino=40109 res=0 errno=0 [ 369.450325][T16373] delete_channel: no stack [ 371.663030][T16485] Process accounting resumed [ 372.102339][T16512] sysfs_service_op_show: Client not running :-5: [ 372.466049][T16529] nfs: Unknown parameter 'w`_I+; HY Lu>>uh*C<+ ' [ 375.553689][T16654] zswap: compressor Ȯ9Qz%;0*lH`Bkjwjӳ<85'.Y[`2Y$`Yvgִq"b%zN[O EiFi(Sh3Kx>ԝRS=kHɟ{?Bbޝ4)> not available [ 378.686396][T16795] zram: Added device: zram1 [ 379.977291][T16862] kAFS: Invalid Command on /proc/fs/afs/cells file [ 381.074809][T16901] sysfs_service_op_store: Client not running :-5: [ 381.612432][T16897] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 382.441020][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 382.447486][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 382.992924][T16963] ecryptfs_parse_packet_length: Error parsing packet length [ 383.018476][T16963] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 383.262738][T16968] ima: policy update failed [ 383.283900][ T30] audit: type=1802 audit(1220.612:25): pid=16968 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.4893" res=0 errno=0 [ 387.116011][ T55] Bluetooth: hci2: unexpected event for opcode 0x7c89 [ 387.373689][T17132] cougar: G6 mapped to space [ 388.700644][ T55] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 390.527820][ T30] audit: type=1800 audit(1227.890:26): pid=17314 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5033" name="discovery_nqn" dev="configfs" ino=43123 res=0 errno=0 [ 390.938001][T17333] block2mtd: error: cannot open device inX±jFBB>U;߸Ilk [ 391.453765][T17369] aoe: copy from user failed [ 391.458461][T17369] aoe: could not set interface list: too many interfaces [ 392.355571][ T5142] Bluetooth: hci1: unexpected event for opcode 0x7c89 [ 393.895829][ T30] audit: type=1800 audit(1231.277:27): pid=17508 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.5093" name="dbroot" dev="configfs" ino=43332 res=0 errno=0 [ 393.923648][T17508] db_root: not a directory: /dev/audio1 [ 395.129814][ T30] audit: type=1800 audit(1232.514:28): pid=17567 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.5122" name="dbroot" dev="configfs" ino=43398 res=0 errno=0 [ 395.156150][T17567] db_root: not a directory: /dev/audio1 [ 397.251764][ T30] audit: type=1800 audit(1234.645:29): pid=17656 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5147" name="dbroot" dev="configfs" ino=43486 res=0 errno=0 [ 397.316706][T17656] db_root: not a directory: /dev/audio1 [ 398.579251][T17699] syz.0.5166 (17699): drop_caches: 0 [ 399.750273][ T55] Bluetooth: hci0: command 0x0406 tx timeout [ 399.894709][T17743] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21 [ 400.577163][ T5142] Bluetooth: hci2: Unable to find connection for big 0xd2 [ 401.664426][T17833] Process accounting paused [ 410.937029][T18186] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 411.392384][T18198] block2mtd: illegal erase size [ 411.536124][T18206] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[18206] [ 413.835132][T18283] CIFS mount error: No usable UNC path provided in device string! [ 413.835132][T18283] [ 413.881025][T18283] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 414.442119][T18314] ACPI: Can not change Invalid GPE/Fixed Event status [ 414.976033][T18339] ICMPv6: process `syz.3.5456' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead [ 417.243244][T18450] synth uevent: /bus/hid/drivers/zeroplus: unknown uevent action string [ 418.251534][T18501] afs: Bad value for 'source' [ 418.883537][T18533] tipc: Can't bind to reserved service type 1 [ 420.250880][T18600] ima: policy update failed [ 420.282021][ T30] audit: type=1802 audit(1257.794:30): pid=18600 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.5586" res=0 errno=0 [ 421.941439][T18672] synth uevent: /module/l2tp_ip6: unknown uevent action string [ 425.134178][T18828] : Can't lookup blockdev [ 425.678821][ T5891] smpboot: CPU 1 is now offline [ 426.631481][T18889] deleting an unspecified loop device is not supported. [ 426.920739][ T30] audit: type=1800 audit(1264.459:31): pid=18897 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5726" name="members" dev="configfs" ino=46881 res=0 errno=0 [ 427.745660][ T5142] Bluetooth: hci1: ACL packet for unknown connection handle 0 [ 428.763332][T18960] block2mtd: Using custom MTD label '' for dev [ 428.806554][T18960] block2mtd: error: cannot open device [ 431.600506][T19053] Process accounting resumed [ 433.527929][T19118] syz_tun: tun_chr_ioctl cmd 2147767506 [ 434.017344][T19130] i2c i2c-0: new_device: Can't parse I2C address [ 436.422469][T19201] synth uevent: /devices/platform/dummy_hcd.3/usb4/ep_00: unknown uevent action string [ 436.481259][T19201] ep_00: uevent: failed to send synthetic uevent: -22 [ 436.618282][T19207] zram0: detected capacity change from 8 to 0 [ 437.393237][T19231] ecryptfs_miscdev_write: memdup_user returned error [-14] [ 439.221640][ T30] audit: type=1800 audit(1276.843:32): pid=19298 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5919" name="dbroot" dev="configfs" ino=49151 res=0 errno=0 [ 439.264309][T19298] db_root: cannot open: [ 440.993221][ T5142] Bluetooth: hci1: Malformed Event: 0x02 [ 441.977054][T19410] nvme_fcloop: unknown parameter or missing value '7' [ 443.067865][T19447] : Can't lookup blockdev [ 443.527371][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 443.534712][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 447.193184][T19582] overlayfs: "check_copy_up" module option is obsolete [ 447.576349][T19595] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 447.576349][T19595] M' is too long [ 447.632885][T19595] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 447.632885][T19595] W ' is too long [ 447.836554][T19602] cifs: Unknown parameter '#ʑC ˀH/R{<' [ 448.654976][T19630] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 449.294537][ T5142] Bluetooth: hci3: Malformed Event: 0x02 [ 453.169195][T19791] bdi 43:96: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead. [ 456.719980][ T5142] Bluetooth: hci2: Malformed Event: 0x02 [ 457.123102][T19947] block2mtd: device name too long [ 457.685646][T19957] syz.6.6207 (19957): attempted to duplicate a private mapping with mremap. This is not supported. [ 458.176928][T19977] [ 461.228875][ T30] audit: type=1806 audit(1306.956:33): xattr=2EC7871B res=-22 [ 461.614863][T20081] Process accounting paused [ 467.761545][ T5142] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 467.761575][ T5142] Bluetooth: hci1: unexpected subevent 0x05 length: 725 > 12 [ 469.788943][ T5142] Bluetooth: hci1: command 0x0406 tx timeout [ 470.599409][T20386] virtio-pci 0000:00:04.0: [Firmware Bug]: Overriding NUMA node to -1. Contact your vendor for updates. [ 472.860571][T20481] i2c i2c-0: delete_device: Can't parse I2C address [ 476.193894][ T63] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 476.376789][ T63] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 476.503843][ T63] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 476.662200][T20596] usb usb15: usbfs: process 20596 (syz.0.6479) did not claim interface 0 before use [ 476.770786][ T63] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 477.478341][ T63] bridge_slave_1: left allmulticast mode [ 477.484023][ T63] bridge_slave_1: left promiscuous mode [ 477.570907][ T63] bridge0: port 2(bridge_slave_1) entered disabled state [ 477.724297][ T63] bridge_slave_0: left allmulticast mode [ 477.729993][ T63] bridge_slave_0: left promiscuous mode [ 477.795360][ T63] bridge0: port 1(bridge_slave_0) entered disabled state [ 478.175253][ T55] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 478.190336][ T55] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 478.201079][ T55] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 478.210131][ T55] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 478.222211][ T55] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 479.580260][ T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 479.622824][ T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 479.665126][ T63] bond0 (unregistering): Released all slaves [ 480.369870][ T5142] Bluetooth: hci3: command tx timeout [ 480.907499][ T63] hsr_slave_0: left promiscuous mode [ 480.962899][ T63] hsr_slave_1: left promiscuous mode [ 480.993859][ T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 481.058496][ T63] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 481.136113][ T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 481.143535][ T63] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 481.318614][ T63] veth1_macvtap: left promiscuous mode [ 481.365242][ T63] veth0_macvtap: left promiscuous mode [ 481.404946][ T63] veth1_vlan: left promiscuous mode [ 481.446037][ T63] veth0_vlan: left promiscuous mode [ 482.151004][T20771] usb usb2: usbfs: process 20771 (syz.3.6529) did not claim interface 1 before use [ 482.403837][T20777] vmstat_refresh: nr_hugetlb -5120 [ 482.441266][ T5142] Bluetooth: hci3: command tx timeout [ 484.512288][ T5142] Bluetooth: hci3: command tx timeout [ 484.660377][ T63] team0 (unregistering): Port device team_slave_1 removed [ 485.015039][ T63] team0 (unregistering): Port device team_slave_0 removed [ 485.824873][ T30] audit: type=1800 audit(1331.684:34): pid=20876 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.6567" name="lu_gp_id" dev="configfs" ino=53585 res=0 errno=0 [ 485.844721][ C0] vkms_vblank_simulate: vblank timer overrun [ 485.875337][T20876] kstrtoul() returned -22 for lu_gp_id [ 486.012101][ T30] audit: type=1400 audit(1331.744:35): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=20872 comm="syz.3.6566" [ 486.577399][ T5142] Bluetooth: hci3: command tx timeout [ 486.743571][T20897] ima: policy update failed [ 486.786976][ T30] audit: type=1802 audit(1332.649:36): pid=20897 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.6576" res=0 errno=0 [ 488.751470][T20637] chnl_net:caif_netlink_parms(): no params data found [ 489.420485][T20637] bridge0: port 1(bridge_slave_0) entered blocking state [ 489.464804][T20637] bridge0: port 1(bridge_slave_0) entered disabled state [ 489.524304][T20637] bridge_slave_0: entered allmulticast mode [ 489.560096][T20637] bridge_slave_0: entered promiscuous mode [ 489.635765][T20637] bridge0: port 2(bridge_slave_1) entered blocking state [ 489.675969][T20637] bridge0: port 2(bridge_slave_1) entered disabled state [ 489.721195][T20637] bridge_slave_1: entered allmulticast mode [ 489.768833][T20637] bridge_slave_1: entered promiscuous mode [ 490.064184][T20637] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 490.155851][T20637] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 490.542221][T20637] team0: Port device team_slave_0 added [ 490.589816][T20637] team0: Port device team_slave_1 added [ 490.909089][T20637] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 490.970199][T20637] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 490.996110][ C0] vkms_vblank_simulate: vblank timer overrun [ 491.157969][T20637] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 491.240142][T20637] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 491.301390][T20637] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 491.327300][ C0] vkms_vblank_simulate: vblank timer overrun [ 491.501214][T20637] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 491.587414][T21228] Process accounting resumed [ 491.916834][T20637] hsr_slave_0: entered promiscuous mode [ 491.981881][T20637] hsr_slave_1: entered promiscuous mode [ 493.294658][T20637] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 493.355665][T20637] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 493.381911][ T5142] Bluetooth: hci0: unexpected event 0x3e length: 0 < 1 [ 493.512019][T20637] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 493.593020][T20637] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 494.094572][T20637] 8021q: adding VLAN 0 to HW filter on device bond0 [ 494.223779][T20637] 8021q: adding VLAN 0 to HW filter on device team0 [ 494.288590][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 494.295817][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 494.361535][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 494.368746][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 494.583132][T20637] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 495.447697][T20637] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 496.764147][T20637] veth0_vlan: entered promiscuous mode [ 496.887397][T20637] veth1_vlan: entered promiscuous mode [ 497.061147][T20637] veth0_macvtap: entered promiscuous mode [ 497.153859][T20637] veth1_macvtap: entered promiscuous mode [ 497.256094][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 497.336053][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 497.401160][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 497.465843][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 497.533395][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 497.588891][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 497.670768][T20637] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 497.754093][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 497.828812][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 497.892397][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 497.968295][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.035218][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 498.117420][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.189810][T20637] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 498.261437][T20637] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 498.339393][T20637] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 498.394270][T20637] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 498.442426][T20637] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 498.954188][ T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 499.032571][ T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 499.235982][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 499.275240][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 500.214901][T21577] queue_state_write: operation too long [ 500.260551][T21577] queue_state_write: use 'run', 'start' or 'kick' [ 501.932239][T21632] vivid-003: ================= START STATUS ================= [ 501.985476][T21632] vivid-003: Radio HW Seek Mode: Bounded [ 502.031024][T21632] vivid-003: Radio Programmable HW Seek: false [ 502.072028][T21632] vivid-003: RDS Rx I/O Mode: Block I/O [ 502.113299][T21632] vivid-003: Generate RBDS Instead of RDS: false [ 502.162543][T21632] vivid-003: RDS Reception: true [ 502.198015][T21632] vivid-003: RDS Program Type: 0 inactive [ 502.233579][T21632] vivid-003: RDS PS Name: inactive [ 502.269077][T21632] vivid-003: RDS Radio Text: inactive [ 502.308806][T21632] vivid-003: RDS Traffic Announcement: false inactive [ 502.359807][T21632] vivid-003: RDS Traffic Program: false inactive [ 502.411482][T21632] vivid-003: RDS Music: false inactive [ 502.466742][T21632] vivid-003: ================== END STATUS ================== [ 504.614051][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 504.620366][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 504.655525][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 504.661832][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 505.262368][ T30] audit: type=1807 audit(1351.215:37): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 505.288331][T21733] ima: policy update failed [ 505.348330][ T30] audit: type=1802 audit(1351.215:38): pid=21734 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.7.6760" res=0 errno=0 [ 505.516728][ T30] audit: type=1802 audit(1351.275:39): pid=21733 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.7.6760" res=0 errno=0 [ 508.623058][T21838] QAT: failed to copy from user. [ 508.762414][T21841] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 510.094613][ T5872] Process accounting resumed [ 512.110592][T21930] MTRR 1 not used [ 512.183880][T21932] netlink: zone id is out of range [ 513.888675][T21984] __vm_enough_memory: pid: 21984, comm: syz.7.6840, bytes: 4503599627366400 not enough memory for the allocation [ 516.116762][T22022] sd 0:0:1:0: PR command failed: 1026 [ 516.170386][T22022] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 516.261491][T22022] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 516.890500][T22061] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 518.605625][T22110] openvswitch: netlink: Port -2134900732 exceeds max allowable 65535 [ 521.574598][T22187] Zero length message leads to an empty skb [ 522.068706][T22192] Process accounting paused [ 522.690827][T22220] openvswitch: netlink: IP tunnel dst address not specified [ 523.058742][T22232] netlink: Unknown conntrack attr (type=146, max=9) [ 525.058416][T22286] netlink: 'syz.3.6930': attribute type 2 has an invalid length. [ 528.595869][T22406] netlink: 'syz.6.6964': attribute type 1 has an invalid length. [ 528.964592][T22417] netlink: 'syz.6.6967': attribute type 10 has an invalid length. [ 530.065274][T22452] netlink: 7 bytes leftover after parsing attributes in process `syz.3.6979'. [ 530.580209][T22470] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 531.010195][T22485] netlink: zone id is out of range [ 531.057405][T22485] netlink: zone id is out of range [ 531.062557][T22485] netlink: zone id is out of range [ 531.122151][T22485] netlink: zone id is out of range [ 531.167819][T22485] netlink: zone id is out of range [ 531.207028][T22485] netlink: zone id is out of range [ 531.256344][T22485] netlink: zone id is out of range [ 531.305302][T22485] netlink: zone id is out of range [ 531.359552][T22485] netlink: zone id is out of range [ 531.388653][T22485] netlink: zone id is out of range [ 534.766847][T22602] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7025'. [ 537.335585][T22682] netlink: 'syz.3.7052': attribute type 1 has an invalid length. [ 539.673165][T22757] usbip-vudc usbip-vudc.0: gadget not bound [ 540.115287][T22772] ima: policy update failed [ 540.138168][ T30] audit: type=1802 audit(4294967303.684:40): pid=22772 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.7.7084" res=0 errno=0 [ 540.629005][T22782] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7087'. [ 542.644836][T22845] usb usb36: usbfs: process 22845 (syz.0.7109) did not claim interface 0 before use [ 545.286354][T22931] .SR: entered promiscuous mode [ 547.072308][T22991] netlink: 'syz.3.7163': attribute type 11 has an invalid length. [ 547.214589][ T30] audit: type=1800 audit(4294967310.801:41): pid=22994 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.7164" name="members" dev="configfs" ino=58643 res=0 errno=0 [ 548.681143][T23046] netlink: 16 bytes leftover after parsing attributes in process `syz.7.7183'. [ 549.726489][T23079] net_ratelimit: 2 callbacks suppressed [ 549.726509][T23079] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 552.607848][T23158] netlink: 'syz.7.7227': attribute type 8 has an invalid length. [ 554.209786][T23206] unsupported nla_type 32969 [ 554.685271][T23219] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 554.708697][T23134] Process accounting resumed [ 555.609153][T23243] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7253'. [ 556.936908][T23266] svc: failed to register nfsdv3 RPC service (errno 111). [ 556.994916][T23266] svc: failed to register nfsaclv3 RPC service (errno 111). [ 558.601484][T23330] netlink: 'syz.0.7277': attribute type 3 has an invalid length. [ 559.426385][T23348] CIFS mount error: No usable UNC path provided in device string! [ 559.426385][T23348] [ 559.505200][T23348] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 560.688247][ T5142] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 560.688280][ T5142] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 560.704307][ T5142] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 560.704355][ T5142] Bluetooth: hci2: Malformed LE Event: 0x0d [ 564.955873][ T5142] Bluetooth: hci1: unexpected event 0x3e length: 723 > 260 [ 564.955905][ T5142] Bluetooth: hci1: unexpected subevent 0x0d length: 722 > 260 [ 564.979338][ T5142] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 564.979411][ T5142] Bluetooth: hci1: Malformed LE Event: 0x0d [ 565.774378][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 565.784383][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 567.929466][ T30] audit: type=1800 audit(4294967312.168:42): pid=23605 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.7356" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 568.122174][T23621] sctp: [Deprecated]: syz.7.7361 (pid 23621) Use of int in maxseg socket option. [ 568.122174][T23621] Use struct sctp_assoc_value instead [ 569.532171][T23668] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 570.909276][T23712] zero sized request [ 572.149717][T23747] Console: switching to colour VGA+ 80x25 [ 573.977998][T23796] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 573.985405][T23796] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 574.265330][T23801] netlink: 'syz.0.7432': attribute type 2 has an invalid length. [ 574.776249][T23815] zram: Removed device: zram0 [ 574.928974][T23821] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 575.540977][T23840] netlink: Conntrack attr has 16 unknown bytes [ 577.706659][T23897] netlink: 'syz.6.7468': attribute type 1 has an invalid length. [ 577.765618][T23897] netlink: 33 bytes leftover after parsing attributes in process `syz.6.7468'. [ 580.472220][T23962] svc: failed to register nfsdv3 RPC service (errno 111). [ 580.515186][T23962] svc: failed to register nfsaclv3 RPC service (errno 111). [ 580.637315][T23974] openvswitch: netlink: ERSPAN option length err (len 256, max 255). [ 581.337333][T23996] vivid-003: ================= START STATUS ================= [ 581.395369][T23996] vivid-003: Radio HW Seek Mode: Bounded [ 581.426036][T23996] vivid-003: Radio Programmable HW Seek: false [ 581.432251][T23996] vivid-003: RDS Rx I/O Mode: Block I/O [ 581.509084][T23996] vivid-003: Generate RBDS Instead of RDS: false [ 581.545754][T23996] vivid-003: RDS Reception: true [ 581.583276][T23996] vivid-003: RDS Program Type: 0 inactive [ 581.606167][T23996] vivid-003: RDS PS Name: inactive [ 581.656080][T23996] vivid-003: RDS Radio Text: inactive [ 581.704543][T23996] vivid-003: RDS Traffic Announcement: false inactive [ 581.752186][T23996] vivid-003: RDS Traffic Program: false inactive [ 581.797908][T23996] vivid-003: RDS Music: false inactive [ 581.840175][T23996] vivid-003: ================== END STATUS ================== [ 583.502138][T24043] QAT: Device 0 not found [ 584.582664][T24061] Process accounting paused [ 585.278512][T24093] netlink: 'syz.0.7541': attribute type 1 has an invalid length. [ 586.117764][T24119] sg_write: process 2302 (syz.6.7553) changed security contexts after opening file descriptor, this is not allowed. [ 587.343868][T24150] netlink: 'syz.6.7567': attribute type 11 has an invalid length. [ 587.351786][T24150] netlink: 'syz.6.7567': attribute type 11 has an invalid length. [ 587.436855][T24150] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7567'. [ 587.462927][ T30] audit: type=1800 audit(4294967331.810:43): pid=24154 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.7568" name="lu_gp_id" dev="configfs" ino=61684 res=0 errno=0 [ 587.497061][T24150] netlink: 'syz.6.7567': attribute type 11 has an invalid length. [ 587.537787][T24150] netlink: 20 bytes leftover after parsing attributes in process `syz.6.7567'. [ 587.553224][T24156] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 587.594892][T24150] netlink: 200 bytes leftover after parsing attributes in process `syz.6.7567'. [ 590.072593][T24228] ubi0: attaching mtd0 [ 590.112712][T24228] ubi0: scanning is finished [ 590.143588][T24228] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 590.393251][T24228] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 590.634315][T24241] nfs4: Unknown parameter 'nfsd' [ 592.039758][T24274] netlink: 'syz.6.7612': attribute type 11 has an invalid length. [ 592.172147][T24279] cifs: Unknown parameter '' [ 595.227552][T24360] delete_channel: no stack [ 595.511399][T24368] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0 [ 596.469614][T24379] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 596.595157][T24379] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 598.739365][T24448] netlink: 'syz.7.7677': attribute type 1 has an invalid length. [ 599.336693][T24459] netlink: 16 bytes leftover after parsing attributes in process `syz.7.7682'. [ 599.394527][T24459] tc_dump_action: action bad kind [ 601.675998][T24512] svc: failed to register nfsdv3 RPC service (errno 111). [ 601.721944][T24512] svc: failed to register nfsaclv3 RPC service (errno 111). [ 602.288572][T24529] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 602.365334][T24529] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 603.495902][T24507] Bluetooth: hci3: command 0x0406 tx timeout [ 603.876983][T24573] netlink: 'syz.0.7726': attribute type 11 has an invalid length. [ 604.341058][T24585] netlink: 'syz.7.7731': attribute type 1 has an invalid length. [ 605.210638][T24606] netlink: 'syz.3.7739': attribute type 1 has an invalid length. [ 607.205326][T24659] nbd: couldn't find device at index 33904 [ 607.309201][T24665] openvswitch: netlink: IPv6 tunnel dst address is zero [ 608.112608][T24684] svc: failed to register nfsdv3 RPC service (errno 111). [ 608.162368][T24684] svc: failed to register nfsaclv3 RPC service (errno 111). [ 608.496026][T24699] netlink: zone id is out of range [ 608.501176][T24699] netlink: zone id is out of range [ 608.578991][T24699] netlink: zone id is out of range [ 608.613942][T24699] netlink: zone id is out of range [ 608.619088][T24699] netlink: zone id is out of range [ 608.661117][T24699] netlink: zone id is out of range [ 608.699382][T24699] netlink: zone id is out of range [ 608.709851][T24699] netlink: zone id is out of range [ 608.746940][T24699] netlink: zone id is out of range [ 608.896890][T24709] netlink: 72 bytes leftover after parsing attributes in process `syz.6.7778'. [ 609.478237][T24723] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7785'. [ 610.365234][T24743] svc: failed to register nfsdv3 RPC service (errno 111). [ 610.411269][T24743] svc: failed to register nfsaclv3 RPC service (errno 111). [ 610.912277][T24766] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7800'. [ 614.520465][T24867] Process accounting resumed [ 617.604970][T24965] net_ratelimit: 21 callbacks suppressed [ 617.604989][T24965] openvswitch: netlink: nsh attribute has 2 unknown bytes. [ 617.662941][T24966] .^: entered promiscuous mode [ 618.244819][T24989] nbd: must specify a device to reconfigure [ 619.028130][T25010] openvswitch: netlink: IP tunnel dst address not specified [ 619.038149][T25011] netlink: del zone limit has 8 unknown bytes [ 620.091761][T25047] netlink: 342 bytes leftover after parsing attributes in process `syz.6.7919'. [ 620.602350][T25060] netlink: 'syz.0.7925': attribute type 11 has an invalid length. [ 620.640242][T25060] netlink: 'syz.0.7925': attribute type 11 has an invalid length. [ 620.667412][T25060] netlink: 'syz.0.7925': attribute type 11 has an invalid length. [ 622.085407][ T30] audit: type=1107 audit(4294967366.610:44): pid=25104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 622.175521][ T30] audit: type=1107 audit(4294967366.660:45): pid=25104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 623.578015][T25151] debugfs: Directory '!PjE r҄y*"l-y–L̓]' with parent 'ieee80211' already present! [ 625.461234][ T5142] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 626.896487][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 626.907670][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 627.282562][T25255] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 627.317694][T25245] Format for linking two devices is "netnsfd_a:ifidx_a netnsfd_b:ifidx_b" (int uint int uint). [ 627.345532][T25255] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 627.545230][T25263] netlink: 306 bytes leftover after parsing attributes in process `syz.7.8002'. [ 629.045186][T25311] openvswitch: netlink: Key 2 has unexpected len 0 expected 4 [ 629.368159][T25320] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 629.872169][T25335] dyndbg: expected <4096 bytes into control [ 632.015806][T25405] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 632.322966][T25415] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 632.510366][T25419] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8062'. [ 633.260880][T25437] netlink: 12 bytes leftover after parsing attributes in process `syz.6.8070'. [ 633.896931][T25412] kexec: Could not allocate control_code_buffer [ 635.998212][T25511] netlink: set zone limit has 8 unknown bytes [ 636.497411][T25531] ubi0: attaching mtd0 [ 636.537788][T25531] ubi0: scanning is finished [ 636.562819][T25531] ubi0: empty MTD device detected [ 636.582384][T25531] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 636.762998][T25531] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 637.603409][T25561] openvswitch: netlink: Message has 20 unknown bytes. [ 639.829616][T25628] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 642.041317][T25704] netlink: 206 bytes leftover after parsing attributes in process `syz.7.8179'. [ 644.539836][T25784] Process accounting paused [ 648.286745][T25901] openvswitch: netlink: Multiple metadata blocks provided [ 651.029184][T25994] netlink: zone id is out of range [ 651.060088][T25994] netlink: zone id is out of range [ 651.094116][T25994] netlink: zone id is out of range [ 651.099265][T25994] netlink: zone id is out of range [ 651.147460][T25994] netlink: zone id is out of range [ 651.188405][T25994] netlink: zone id is out of range [ 651.203475][T25994] netlink: zone id is out of range [ 651.237543][T25994] netlink: zone id is out of range [ 651.277456][T25994] netlink: zone id is out of range [ 655.827762][T26077] net_ratelimit: 22 callbacks suppressed [ 655.827780][T26077] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 656.256157][T26088] openvswitch: netlink: Multiple metadata blocks provided [ 656.619173][ T30] audit: type=1804 audit(4294967401.329:46): pid=26098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.8325" name="/newroot/2201/file0" dev="tmpfs" ino=11068 res=1 errno=0 [ 656.802161][ T30] audit: type=1800 audit(4294967401.369:47): pid=26098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.8325" name="file0" dev="tmpfs" ino=11068 res=0 errno=0 [ 657.933776][T26129] openvswitch: netlink: ct_state flags aa1414ac unsupported [ 660.037231][T26174] nbd: must specify an index to disconnect [ 663.181487][T26276] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 663.880835][T26292] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 663.927965][T26292] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 668.075908][T26414] netlink: 'syz.6.8449': attribute type 11 has an invalid length. [ 668.119433][T26414] netlink: 'syz.6.8449': attribute type 11 has an invalid length. [ 668.156174][T26414] netlink: 'syz.6.8449': attribute type 11 has an invalid length. [ 668.189293][T26414] netlink: 'syz.6.8449': attribute type 11 has an invalid length. [ 668.429320][T26423] netlink: 'syz.7.8451': attribute type 1 has an invalid length. [ 669.444073][T26450] usb usb34: usbfs: process 26450 (syz.0.8463) did not claim interface 0 before use [ 673.174367][T26563] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 673.421999][T26570] netlink: 'syz.0.8514': attribute type 1 has an invalid length. [ 673.492459][T26570] nbd: error processing sock list [ 673.741962][T26578] openvswitch: netlink: Duplicate key (type 15). [ 673.914533][T26585] netlink: zone id is out of range [ 673.942102][T26585] netlink: zone id is out of range [ 673.976654][T26585] netlink: zone id is out of range [ 673.981829][T26585] netlink: zone id is out of range [ 674.027745][T26585] netlink: zone id is out of range [ 674.054794][T26585] netlink: zone id is out of range [ 674.083379][T26585] netlink: zone id is out of range [ 674.104941][T26585] netlink: zone id is out of range [ 675.509355][T26593] Process accounting resumed [ 676.392902][T26641] netlink: 'syz.0.8543': attribute type 1 has an invalid length. [ 677.334262][T26667] device-mapper: ioctl: name not supplied when creating device [ 678.668453][T26701] net_ratelimit: 51 callbacks suppressed [ 678.668473][T26701] openvswitch: netlink: IP tunnel dst address not specified [ 680.196728][T26745] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xeffffd12 [ 680.823391][T26760] netlink: 'syz.7.8593': attribute type 22 has an invalid length. [ 681.622731][T26778] openvswitch: netlink: IP tunnel dst address not specified [ 683.219422][T26819] openvswitch: netlink: IP tunnel dst address not specified [ 685.520039][T26875] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE r҄y*"l-y–L̓]' [ 685.581548][T26875] CPU: 0 UID: 0 PID: 26875 Comm: syz.7.8639 Tainted: G U I 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 685.581593][T26875] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND [ 685.581603][T26875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 685.581620][T26875] Call Trace: [ 685.581628][T26875] [ 685.581640][T26875] dump_stack_lvl+0x16c/0x1f0 [ 685.581676][T26875] sysfs_warn_dup+0x7f/0xa0 [ 685.581715][T26875] sysfs_do_create_link_sd+0x124/0x140 [ 685.581756][T26875] sysfs_create_link+0x61/0xc0 [ 685.581793][T26875] device_add+0x62c/0x1a70 [ 685.581828][T26875] ? __pfx_device_add+0x10/0x10 [ 685.581858][T26875] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 685.581892][T26875] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 685.581934][T26875] wiphy_register+0x1c9c/0x2850 [ 685.581956][T26875] ? netdev_run_todo+0x864/0x1320 [ 685.581983][T26875] ? __dev_printk+0x230/0x270 [ 685.582011][T26875] ? __pfx_wiphy_register+0x10/0x10 [ 685.582049][T26875] ieee80211_register_hw+0x2432/0x4020 [ 685.582100][T26875] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 685.582143][T26875] ? find_held_lock+0x2b/0x80 [ 685.582166][T26875] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 685.582199][T26875] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 685.582228][T26875] ? __hrtimer_setup+0x176/0x280 [ 685.582265][T26875] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 685.582317][T26875] ? __kmalloc_node_track_caller_noprof+0x23e/0x510 [ 685.582348][T26875] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 685.582393][T26875] ? __asan_memcpy+0x3c/0x60 [ 685.582419][T26875] hwsim_new_radio_nl+0xb51/0x12c0 [ 685.582458][T26875] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 685.582503][T26875] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 685.582539][T26875] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 685.582580][T26875] genl_family_rcv_msg_doit+0x206/0x2f0 [ 685.582615][T26875] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 685.582648][T26875] ? trace_cap_capable+0x18d/0x200 [ 685.582678][T26875] ? bpf_lsm_capable+0x9/0x10 [ 685.582702][T26875] ? security_capable+0x7e/0x260 [ 685.582742][T26875] ? ns_capable+0xd7/0x110 [ 685.582769][T26875] genl_rcv_msg+0x55c/0x800 [ 685.582804][T26875] ? __pfx_genl_rcv_msg+0x10/0x10 [ 685.582835][T26875] ? __pfx___dev_queue_xmit+0x10/0x10 [ 685.582872][T26875] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 685.582909][T26875] ? __lock_acquire+0xaa4/0x1ba0 [ 685.582945][T26875] netlink_rcv_skb+0x16a/0x440 [ 685.582972][T26875] ? __pfx_genl_rcv_msg+0x10/0x10 [ 685.583006][T26875] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 685.583049][T26875] ? __pfx_down_read+0x10/0x10 [ 685.583086][T26875] ? netlink_deliver_tap+0x1ae/0xd30 [ 685.583116][T26875] genl_rcv+0x28/0x40 [ 685.583144][T26875] netlink_unicast+0x53a/0x7f0 [ 685.583175][T26875] ? __pfx_netlink_unicast+0x10/0x10 [ 685.583201][T26875] ? __lock_acquire+0xaa4/0x1ba0 [ 685.583239][T26875] netlink_sendmsg+0x8d1/0xdd0 [ 685.583272][T26875] ? __pfx_netlink_sendmsg+0x10/0x10 [ 685.583312][T26875] ____sys_sendmsg+0xa95/0xc70 [ 685.583346][T26875] ? copy_msghdr_from_user+0x10a/0x160 [ 685.583376][T26875] ? __pfx_____sys_sendmsg+0x10/0x10 [ 685.583424][T26875] ___sys_sendmsg+0x134/0x1d0 [ 685.583451][T26875] ? __pfx____sys_sendmsg+0x10/0x10 [ 685.583516][T26875] __sys_sendmsg+0x16d/0x220 [ 685.583542][T26875] ? __pfx___sys_sendmsg+0x10/0x10 [ 685.583566][T26875] ? __x64_sys_futex+0x1e0/0x4c0 [ 685.583600][T26875] ? rcu_is_watching+0x12/0xc0 [ 685.583630][T26875] do_syscall_64+0xcd/0x230 [ 685.583665][T26875] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 685.583689][T26875] RIP: 0033:0x7fd25a58e969 [ 685.583709][T26875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 685.583731][T26875] RSP: 002b:00007fd2583f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 685.583754][T26875] RAX: ffffffffffffffda RBX: 00007fd25a7b5fa0 RCX: 00007fd25a58e969 [ 685.583769][T26875] RDX: 0000000004000800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 685.583784][T26875] RBP: 00007fd25a610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 685.583798][T26875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 685.583811][T26875] R13: 0000000000000000 R14: 00007fd25a7b5fa0 R15: 00007ffef99e3938 [ 685.583842][T26875] [ 688.016592][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 688.027173][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 690.287432][T26978] nfsd: Unknown parameter 'DJ' [ 691.071504][T27006] nbd: must specify a size in bytes for the device [ 692.187277][T27045] program syz.6.8706 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 692.768433][T27063] netlink: zone id is out of range [ 692.802892][T27063] netlink: zone id is out of range [ 692.832680][T27063] netlink: zone id is out of range [ 692.902407][T27067] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8715'. [ 693.147824][T27073] misc userio: No port type given on /dev/userio [ 693.852867][T27095] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8726'. [ 694.377250][T27108] netlink: 'syz.3.8731': attribute type 11 has an invalid length. [ 694.385693][T27108] netlink: 'syz.3.8731': attribute type 11 has an invalid length. [ 694.469442][T27108] netlink: 'syz.3.8731': attribute type 11 has an invalid length. [ 695.448051][T27143] netlink: 'syz.0.8747': attribute type 2 has an invalid length. [ 695.769039][T27150] debugfs: Directory '!PjE r҄y*"l-y–L̓]' with parent 'ieee80211' already present! [ 696.168239][T27167] netlink: 'syz.3.8754': attribute type 1 has an invalid length. [ 698.677964][T27246] netlink: 'syz.3.8787': attribute type 2 has an invalid length. [ 698.794970][T27250] netlink: 4 bytes leftover after parsing attributes in process `syz.7.8789'. [ 749.138101][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 749.146172][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 810.259350][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 810.271281][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 847.182218][ T31] INFO: task syz-executor:5818 blocked for more than 143 seconds. [ 847.191203][ T31] Tainted: G U I 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 [ 847.211934][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 847.220662][ T31] task:syz-executor state:D stack:23160 pid:5818 tgid:5818 ppid:5816 task_flags:0x440100 flags:0x00000002 [ 847.254402][ T31] Call Trace: [ 847.257722][ T31] [ 847.260663][ T31] __schedule+0x116f/0x5de0 [ 847.278976][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 847.291377][ T31] ? __pfx___schedule+0x10/0x10 [ 847.296373][ T31] ? find_held_lock+0x2b/0x80 [ 847.301064][ T31] ? schedule+0x2d7/0x3a0 [ 847.327433][ T31] schedule+0xe7/0x3a0 [ 847.334767][ T31] io_schedule+0xbf/0x130 [ 847.339130][ T31] bit_wait_io+0x15/0xe0 [ 847.343759][ T31] __wait_on_bit+0x62/0x180 [ 847.349616][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 847.358940][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 847.366922][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 847.375468][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 847.384000][ T31] do_get_write_access+0x93d/0x12a0 [ 847.389250][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 847.399031][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 847.405429][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 847.413447][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 847.418958][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 847.424902][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 847.433397][ T31] ? rcu_is_watching+0x12/0xc0 [ 847.438184][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 847.444209][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 847.453191][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 847.458862][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 847.466712][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 847.476281][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 847.482760][ T31] ext4_dirty_inode+0xd9/0x130 [ 847.487571][ T31] ? rcu_is_watching+0x12/0xc0 [ 847.498013][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 847.503750][ T31] generic_update_time+0xcf/0xf0 [ 847.508744][ T31] file_update_time+0x17d/0x1c0 [ 847.516244][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 847.521497][ T31] ? anon_pipe_read+0xc85/0x1210 [ 847.526458][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 847.534582][ T31] ? vm_normal_page+0x13b/0x2b0 [ 847.539469][ T31] ? find_held_lock+0x2b/0x80 [ 847.544493][ T31] ? find_held_lock+0x2b/0x80 [ 847.553096][ T31] do_page_mkwrite+0x171/0x380 [ 847.557903][ T31] do_wp_page+0xb9e/0x58e0 [ 847.562703][ T31] ? __pfx_do_wp_page+0x10/0x10 [ 847.567597][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 847.576610][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 847.584815][ T31] ? ___pte_offset_map+0x1bc/0x540 [ 847.592472][ T31] __handle_mm_fault+0x1ada/0x2a40 [ 847.598225][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 847.606224][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 847.614296][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 847.619549][ T31] handle_mm_fault+0x3fe/0xad0 [ 847.624665][ T31] do_user_addr_fault+0x60c/0x1370 [ 847.632421][ T31] exc_page_fault+0x5c/0xc0 [ 847.636954][ T31] asm_exc_page_fault+0x26/0x30 [ 847.642373][ T31] RIP: 0033:0x7fb3368689c5 [ 847.646825][ T31] RSP: 002b:00007ffc78104340 EFLAGS: 00010206 [ 847.656817][ T31] RAX: 00007fb3339f8098 RBX: 00007ffc78104440 RCX: 0000000000000000 [ 847.665166][ T31] RDX: 00007fb3339f8094 RSI: 0000000000000008 RDI: 00007ffc78104440 [ 847.675750][ T31] RBP: 00000000000003e6 R08: 0000000000000000 R09: 0000000000000000 [ 847.685400][ T31] R10: 00007ffc78104420 R11: 0000000000000000 R12: 0000000000000000 [ 847.699248][ T31] R13: 0000000000007f68 R14: ffffffffffff8098 R15: 0000000000007f68 [ 847.707294][ T31] [ 847.714769][ T31] INFO: task syz.3.8791:27254 blocked for more than 143 seconds. [ 847.723337][ T31] Tainted: G U I 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 [ 847.734989][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 847.743866][ T31] task:syz.3.8791 state:D stack:28632 pid:27254 tgid:27254 ppid:5830 task_flags:0x440040 flags:0x00000004 [ 847.759768][ T31] Call Trace: [ 847.763068][ T31] [ 847.766020][ T31] __schedule+0x116f/0x5de0 [ 847.772127][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 847.777101][ T31] ? __pfx___schedule+0x10/0x10 [ 847.783446][ T31] ? find_held_lock+0x2b/0x80 [ 847.791017][ T31] ? schedule+0x2d7/0x3a0 [ 847.795382][ T31] schedule+0xe7/0x3a0 [ 847.803324][ T31] io_schedule+0xbf/0x130 [ 847.807784][ T31] bit_wait_io+0x15/0xe0 [ 847.813393][ T31] __wait_on_bit+0x62/0x180 [ 847.817916][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 847.826185][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 847.833271][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 847.840522][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 847.846036][ T31] do_get_write_access+0x93d/0x12a0 [ 847.852540][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 847.861437][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 847.867585][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 847.875079][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 847.882121][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 847.889683][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 847.895708][ T31] ? rcu_is_watching+0x12/0xc0 [ 847.904389][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 847.913484][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 847.920129][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 847.925971][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 847.935172][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 847.941916][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 847.947312][ T31] ext4_dirty_inode+0xd9/0x130 [ 847.953618][ T31] ? rcu_is_watching+0x12/0xc0 [ 847.960996][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 847.966059][ T31] generic_update_time+0xcf/0xf0 [ 847.972631][ T31] file_update_time+0x17d/0x1c0 [ 847.977507][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 847.993580][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 847.999382][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 848.005657][ T31] ? pte_alloc_one+0x2b1/0x380 [ 848.013795][ T31] do_page_mkwrite+0x171/0x380 [ 848.021060][ T31] do_pte_missing+0x29c/0x3fb0 [ 848.025864][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 848.033617][ T31] ? __pmd_alloc+0x3c2/0x870 [ 848.040473][ T31] __handle_mm_fault+0x103d/0x2a40 [ 848.045617][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 848.053990][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 848.061574][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 848.066835][ T31] handle_mm_fault+0x3fe/0xad0 [ 848.074318][ T31] do_user_addr_fault+0x60c/0x1370 [ 848.079877][ T31] exc_page_fault+0x5c/0xc0 [ 848.084407][ T31] asm_exc_page_fault+0x26/0x30 [ 848.092605][ T31] RIP: 0033:0x7f2066c6547b [ 848.097046][ T31] RSP: 002b:00007ffc8518b830 EFLAGS: 00010246 [ 848.104183][ T31] RAX: 00000000003ffde8 RBX: 0000000000000000 RCX: 0000000000000000 [ 848.114612][ T31] RDX: 0000001b2fe20000 RSI: 0000000000400000 RDI: 00007f2066e98d50 [ 848.123530][ T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000 [ 848.136095][ T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 848.144981][ T31] R13: 00000000000927c0 R14: 00000000000ab519 R15: 00007ffc8518bae0 [ 848.157428][ T31] [ 848.162291][ T31] INFO: task syz.6.8792:27255 blocked for more than 144 seconds. [ 848.172015][ T31] Tainted: G U I 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 [ 848.182055][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 848.193514][ T31] task:syz.6.8792 state:D stack:28632 pid:27255 tgid:27255 ppid:12419 task_flags:0x440040 flags:0x00000004 [ 848.208790][ T31] Call Trace: [ 848.212093][ T31] [ 848.215034][ T31] __schedule+0x116f/0x5de0 [ 848.220026][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 848.225002][ T31] ? __pfx___schedule+0x10/0x10 [ 848.233850][ T31] ? find_held_lock+0x2b/0x80 [ 848.240876][ T31] ? schedule+0x2d7/0x3a0 [ 848.245243][ T31] schedule+0xe7/0x3a0 [ 848.251881][ T31] io_schedule+0xbf/0x130 [ 848.256242][ T31] bit_wait_io+0x15/0xe0 [ 848.264268][ T31] __wait_on_bit+0x62/0x180 [ 848.271717][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 848.276948][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 848.282350][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 848.290939][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 848.299065][ T31] do_get_write_access+0x93d/0x12a0 [ 848.304312][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 848.313707][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 848.320067][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 848.325646][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 848.333735][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 848.340859][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 848.351307][ T31] ? rcu_is_watching+0x12/0xc0 [ 848.356371][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 848.362033][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 848.373392][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 848.380503][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 848.388714][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 848.393676][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 848.400136][ T31] ext4_dirty_inode+0xd9/0x130 [ 848.404923][ T31] ? rcu_is_watching+0x12/0xc0 [ 848.413172][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 848.418448][ T31] generic_update_time+0xcf/0xf0 [ 848.423408][ T31] file_update_time+0x17d/0x1c0 [ 848.430862][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 848.436122][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 848.441636][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 848.450532][ T31] ? pte_alloc_one+0x2b1/0x380 [ 848.458581][ T31] do_page_mkwrite+0x171/0x380 [ 848.463382][ T31] do_pte_missing+0x29c/0x3fb0 [ 848.472166][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 848.479777][ T31] ? __pmd_alloc+0x3c2/0x870 [ 848.484403][ T31] __handle_mm_fault+0x103d/0x2a40 [ 848.492630][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 848.499069][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 848.504343][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 848.513249][ T31] handle_mm_fault+0x3fe/0xad0 [ 848.518551][ T31] do_user_addr_fault+0x60c/0x1370 [ 848.523696][ T31] exc_page_fault+0x5c/0xc0 [ 848.530887][ T31] asm_exc_page_fault+0x26/0x30 [ 848.535990][ T31] RIP: 0033:0x7f60e346547b [ 848.540420][ T31] RSP: 002b:00007fff3735c5b0 EFLAGS: 00010246 [ 848.549159][ T31] RAX: 00000000003ffde8 RBX: 0000000000000000 RCX: 0000000000000000 [ 848.558363][ T31] RDX: 0000001b32520000 RSI: 0000000000400000 RDI: 00007f60e3698d50 [ 848.572105][ T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000 [ 848.580365][ T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 848.592973][ T31] R13: 00000000000927c0 R14: 00000000000ab56f R15: 00007fff3735c860 [ 848.602334][ T31] [ 848.608081][ T31] [ 848.608081][ T31] Showing all locks held in the system: [ 848.616928][ T31] 1 lock held by khungtaskd/31: [ 848.621800][ T31] #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 848.634576][ T31] 3 locks held by syz-executor/5818: [ 848.639876][ T31] #0: ffff8880323e7a88 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 848.651820][ T31] #1: ffff88814b73c518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 848.661602][ T31] #2: ffff88814b740950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 848.676183][ T31] 2 locks held by getty/26287: [ 848.680994][ T31] #0: ffff8880364aa0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 848.693847][ T31] #1: ffffc9000b8bf2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 848.709681][ T31] 3 locks held by syz.3.8791/27254: [ 848.715825][ T31] #0: ffff888012729d08 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 848.727790][ T31] #1: ffff88814b73c518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 848.737775][ T31] #2: ffff88814b740950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 848.749896][ T31] 3 locks held by syz.6.8792/27255: [ 848.755329][ T31] #0: ffff888030493588 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 848.767235][ T31] #1: ffff88814b73c518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 848.779974][ T31] #2: ffff88814b740950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 848.794209][ T31] [ 848.796554][ T31] ============================================= [ 848.796554][ T31] [ 848.807928][ T31] NMI backtrace for cpu 0 [ 848.807948][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U I 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 848.807985][ T31] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND [ 848.807993][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 848.808006][ T31] Call Trace: [ 848.808012][ T31] [ 848.808020][ T31] dump_stack_lvl+0x116/0x1f0 [ 848.808054][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 848.808077][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 848.808114][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 848.808140][ T31] watchdog+0xf70/0x12c0 [ 848.808174][ T31] ? __pfx_watchdog+0x10/0x10 [ 848.808201][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 848.808231][ T31] ? __kthread_parkme+0x19e/0x250 [ 848.808259][ T31] ? __pfx_watchdog+0x10/0x10 [ 848.808288][ T31] kthread+0x3c2/0x780 [ 848.808319][ T31] ? __pfx_kthread+0x10/0x10 [ 848.808349][ T31] ? __pfx_kthread+0x10/0x10 [ 848.808379][ T31] ? __pfx_kthread+0x10/0x10 [ 848.808409][ T31] ? __pfx_kthread+0x10/0x10 [ 848.808439][ T31] ? rcu_is_watching+0x12/0xc0 [ 848.808477][ T31] ? __pfx_kthread+0x10/0x10 [ 848.808509][ T31] ret_from_fork+0x45/0x80 [ 848.808543][ T31] ? __pfx_kthread+0x10/0x10 [ 848.808593][ T31] ret_from_fork_asm+0x1a/0x30 [ 848.808640][ T31] [ 848.808655][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 848.949372][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U I 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 848.962763][ T31] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND [ 848.968742][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 848.978805][ T31] Call Trace: [ 848.982092][ T31] [ 848.985028][ T31] dump_stack_lvl+0x3d/0x1f0 [ 848.989640][ T31] panic+0x71c/0x800 [ 848.993559][ T31] ? __pfx_panic+0x10/0x10 [ 848.998007][ T31] ? ret_from_fork_asm+0x1a/0x30 [ 849.002967][ T31] ? nmi_backtrace_stall_check+0x6e/0x540 [ 849.008723][ T31] ? irq_work_queue+0xce/0x100 [ 849.013514][ T31] ? watchdog+0xdda/0x12c0 [ 849.018038][ T31] ? watchdog+0xdcd/0x12c0 [ 849.022480][ T31] watchdog+0xdeb/0x12c0 [ 849.026746][ T31] ? __pfx_watchdog+0x10/0x10 [ 849.031439][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 849.036658][ T31] ? __kthread_parkme+0x19e/0x250 [ 849.041702][ T31] ? __pfx_watchdog+0x10/0x10 [ 849.046396][ T31] kthread+0x3c2/0x780 [ 849.050486][ T31] ? __pfx_kthread+0x10/0x10 [ 849.055094][ T31] ? __pfx_kthread+0x10/0x10 [ 849.059697][ T31] ? __pfx_kthread+0x10/0x10 [ 849.064297][ T31] ? __pfx_kthread+0x10/0x10 [ 849.068917][ T31] ? rcu_is_watching+0x12/0xc0 [ 849.073692][ T31] ? __pfx_kthread+0x10/0x10 [ 849.078304][ T31] ret_from_fork+0x45/0x80 [ 849.082745][ T31] ? __pfx_kthread+0x10/0x10 [ 849.087354][ T31] ret_from_fork_asm+0x1a/0x30 [ 849.092154][ T31] [ 849.095241][ T31] Kernel Offset: disabled [ 849.099573][ T31] Rebooting in 86400 seconds..