last executing test programs:
11m7.00552063s ago: executing program 2 (id=1479):
listmount$auto(0xfffffffffffffffe, 0xfffffffffffffffc, 0x1, 0x1)
11m6.848119732s ago: executing program 2 (id=1481):
mount_setattr$auto(0x3, 0x0, 0x0, 0x0, 0xdec)
11m6.748051263s ago: executing program 2 (id=1485):
move_pages$auto(0x0, 0xd0, &(0x7f0000001100), 0x0, 0x0, 0x2)
11m6.553050888s ago: executing program 2 (id=1490):
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
11m6.398754633s ago: executing program 2 (id=1494):
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}})
11m5.923591724s ago: executing program 2 (id=1505):
bpf$auto(0xf, &(0x7f00000001c0)=@raw_tracepoint={0x400000000005, 0xffff}, 0xc)
11m5.644444074s ago: executing program 32 (id=1505):
bpf$auto(0xf, &(0x7f00000001c0)=@raw_tracepoint={0x400000000005, 0xffff}, 0xc)
9m47.769866176s ago: executing program 0 (id=3219):
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/card1\x00', 0x0, 0x0)
ioctl$auto(r0, 0x800064bc, 0x1e6)
9m47.623718084s ago: executing program 0 (id=3222):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop12/queue/nr_requests\x00', 0x80302, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)="cfc7", 0x2)
9m47.481106071s ago: executing program 0 (id=3226):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty43\x00', 0x101240, 0x0)
ioctl$auto_TCFLSH2(r0, 0x560b, 0x0)
9m47.316761231s ago: executing program 0 (id=3231):
r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x8000, 0x0)
ioctl$auto_I2C_SMBUS(r0, 0x720, 0xfffffffffffffffe)
9m47.192527368s ago: executing program 0 (id=3234):
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
tkill$auto(0x80000000000001, 0x7)
9m46.712846839s ago: executing program 0 (id=3245):
r0 = eventfd$auto(0x34b)
read$auto(r0, &(0x7f00000003c0)='\x00', 0xcc9c)
9m46.417436156s ago: executing program 33 (id=3245):
r0 = eventfd$auto(0x34b)
read$auto(r0, &(0x7f00000003c0)='\x00', 0xcc9c)
8m33.685365013s ago: executing program 5 (id=4711):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/smbd_max_send_size\x00', 0x2200, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000180)=""/129, 0x81)
8m33.53622289s ago: executing program 5 (id=4715):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:01.3/vendor\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000018c0)=""/219, 0xdb)
8m33.416488183s ago: executing program 5 (id=4718):
r0 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000001680)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x2, 0x0)
write$auto_uprobe_events_ops_trace_uprobe(r0, &(0x7f0000000000)="706f3a82d9e5cc7c2ceda8d50bfc94be9fe6c22ffaf8493a38", 0x19)
8m33.266980064s ago: executing program 5 (id=4722):
r0 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
ioctl$auto_RNDADDTOENTCNT2(r0, 0x40045201, &(0x7f0000000280)=0x3)
8m33.108834135s ago: executing program 5 (id=4726):
tkill$auto(0x1, 0x7)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x0, 0x0, 0x0, 0x48eafc79)
8m32.689119238s ago: executing program 5 (id=4735):
r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r0, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400)
8m32.382066465s ago: executing program 34 (id=4735):
r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r0, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400)
4m15.577623125s ago: executing program 4 (id=9982):
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
mount$auto(0x0, &(0x7f0000000000)='}[,&*}\x00', 0x0, 0x3378, 0x0)
4m15.465049232s ago: executing program 4 (id=9984):
r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
lseek$auto(r0, 0x1000, 0x3)
4m15.264906965s ago: executing program 4 (id=9988):
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
r0 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r0, 0x114, 0x271f, 0xfffffffffffffffc, 0x0)
4m15.096445825s ago: executing program 4 (id=9991):
r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x3c, r0, 0x1, 0x70bd25, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x24, 0x1, 0x0, 0x1, [@nested={0x1d, 0x10, 0x0, 0x1, [@typed={0x14, 0xd, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}, @generic="00ba98302f"]}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
4m14.938265147s ago: executing program 4 (id=9994):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}})
4m14.571016598s ago: executing program 4 (id=9999):
socket(0x21, 0x2, 0xa)
shutdown$auto(0x200000003, 0x2)
write$auto(0x3, 0x0, 0x81)
4m14.25699998s ago: executing program 35 (id=9999):
socket(0x21, 0x2, 0xa)
shutdown$auto(0x200000003, 0x2)
write$auto(0x3, 0x0, 0x81)
2m39.334922715s ago: executing program 7 (id=11087):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0x4008ae48, 0xffffffffffffffff)
2m38.931896599s ago: executing program 7 (id=11091):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0xa4e00, 0x0)
sendmsg$auto_MAC802154_HWSIM_CMD_NEW_EDGE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x81)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x400008000)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007)
2m38.233912149s ago: executing program 7 (id=11097):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0)
setresuid$auto(0xffffffffffffffff, 0x7, 0x0)
bpf$auto(0x9, &(0x7f00000000c0)=@bpf_attr_0={0xf8b, 0x404, 0x3abf, 0x4, 0x800, 0xffffffffffffffff, 0x10, "f0f59673e7cbac089db83500", 0x0, r0, 0xfffff588, 0x9, 0x0, 0x100000000000200, 0xffffffffffffffff, r0}, 0x7f)
ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(r0, 0x1, &(0x7f00000000c0))
2m38.001522308s ago: executing program 7 (id=11098):
mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
migrate_pages$auto(0x0, 0x3, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2)
2m37.441461487s ago: executing program 7 (id=11100):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}})
2m36.110369246s ago: executing program 7 (id=11108):
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
write$auto_ftrace_enable_fops_trace_events(0xffffffffffffffff, &(0x7f0000000000)="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", 0x28f)
mount$auto(0x0, &(0x7f0000001500)='./file0\x00', &(0x7f0000001540)='cifs\x00', 0x8002, &(0x7f00000001c0))
2m35.695533419s ago: executing program 36 (id=11108):
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
write$auto_ftrace_enable_fops_trace_events(0xffffffffffffffff, &(0x7f0000000000)="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", 0x28f)
mount$auto(0x0, &(0x7f0000001500)='./file0\x00', &(0x7f0000001540)='cifs\x00', 0x8002, &(0x7f00000001c0))
1m14.356832614s ago: executing program 1 (id=12115):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x10000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2)
1m14.171508789s ago: executing program 1 (id=12117):
socket(0x28, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710}, 0x10)
setsockopt$auto(0x3, 0x1, 0x3c, 0x0, 0x9)
1m14.077949506s ago: executing program 1 (id=12119):
socket(0x18, 0x5, 0x2)
bind$auto(0x3, &(0x7f0000000000), 0x6b)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, 0x0, 0x6b)
1m13.996375742s ago: executing program 1 (id=12121):
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0xb8, 0x200, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7f, 0x7, 0x6}, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
bpf$auto(0x2, 0x0, 0xb)
1m13.921502118s ago: executing program 1 (id=12123):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
tkill$auto(0x80000000000001, 0x7)
1m13.582627838s ago: executing program 1 (id=12125):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
landlock_create_ruleset$auto(0x0, 0x9, 0x20000000)
1m13.32730894s ago: executing program 37 (id=12125):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
landlock_create_ruleset$auto(0x0, 0x9, 0x20000000)
2.399334333s ago: executing program 8 (id=12803):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x0, 0x7, 0x8000000000000000, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xc008ae09, 0x0)
2.220544235s ago: executing program 9 (id=12806):
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram14\x00', 0x20201, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14b602, 0x0)
pwritev2$auto(0x4, &(0x7f0000001fc0)={0x0, 0xb}, 0x100000000001, 0xffffffffffffffff, 0x8, 0x8)
2.039572581s ago: executing program 3 (id=12809):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x3000000, 0x0, 0x1, 0x0, 0x10000000000000, 0x2}, 0x895}, 0x3, 0x0)
r0 = getpid()
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_0={0x5, 0x105, 0xc, 0xb, 0x800, 0xffffffffffffffff, 0x5, "d81ddef9d4e6d312212bab98f4060bd8", 0x0, 0xffffffffffffffff, 0x7fffffff, 0xa991, 0x7, 0x8001}, 0x7)
2.034071701s ago: executing program 9 (id=12810):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
arch_prctl$auto_ARCH_SHSTK_ENABLE(0x5001, 0x40)
1.817170142s ago: executing program 8 (id=12812):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x8a002, 0x0)
ioctl$auto(r0, 0x5386, r0)
1.639434257s ago: executing program 8 (id=12814):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0xa, 0x2, 0x3a)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f00000001c0)={0x3c, r1, 0x1, 0x50bd25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x200000000006}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xaa22}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x8880)
1.385658368s ago: executing program 9 (id=12816):
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
getsockopt$auto(r0, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x98)
1.38529371s ago: executing program 3 (id=12817):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = socket(0xa, 0x801, 0x84)
setsockopt$auto(r1, 0x10000000084, 0x77, 0x0, 0x8)
1.29254695s ago: executing program 8 (id=12818):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x100000000000033, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x1, 0x8000, 0x0)
1.143107266s ago: executing program 6 (id=12819):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
rt_sigaction$auto(0x1, &(0x7f00000001c0)={&(0x7f0000000080)=0x0, 0x7fffffffffffffff, 0x0, {0x5}}, 0x0, 0x8)
rt_sigaction$auto(0x4, &(0x7f0000000300)={&(0x7f0000000240)=0x0, 0x0, 0x0, {0x1}}, 0x0, 0x8)
r0 = gettid()
rt_sigqueueinfo$auto(r0, 0x1, 0x0)
1.099420968s ago: executing program 3 (id=12820):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x4, 0x0)
r0 = socket(0x2a, 0x2, 0x0)
ioctl$auto(r0, 0x8912, 0x38)
1.034572946s ago: executing program 8 (id=12821):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
connect$auto(0xffffffffffffffff, 0x0, 0x15)
read$auto(0xca, 0x0, 0x200)
io_uring_setup$auto(0x6, 0x0)
918.224298ms ago: executing program 6 (id=12822):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0xa8602, 0x0)
r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/block/nbd13/hctx0/dispatch_busy\x00', 0x60000, 0x0)
read$auto(r0, 0x0, 0x3)
write$auto(0x3, 0x0, 0xffd8)
908.106016ms ago: executing program 9 (id=12823):
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
mmap$auto(0x0, 0xb, 0x6, 0xeb1, 0x3ff, 0x8000)
write$auto(0x3, 0x0, 0x3f00)
close_range$auto(0x2, 0x8, 0x0)
741.263251ms ago: executing program 8 (id=12824):
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0x7fffffff)
read$auto(r0, 0x0, 0xbcd5)
710.613235ms ago: executing program 6 (id=12825):
r0 = socket(0xa, 0x2, 0x3a)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
statx$auto(0x2, 0x0, 0x1000, 0xbdfa, 0x0)
setsockopt$auto(r0, 0x29, 0x14, 0x0, 0x56b)
close_range$auto(0x2, 0x8000, 0x0)
611.062892ms ago: executing program 9 (id=12826):
ioperm$auto(0x4, 0xbc6, 0x81)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
flistxattr$auto(0x3, 0x0, 0x3)
447.616319ms ago: executing program 6 (id=12827):
socket(0xa, 0x3, 0x3c)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
430.752904ms ago: executing program 3 (id=12828):
ioperm$auto(0x3b, 0xf99b, 0x6)
close_range$auto(0x0, 0xffffffffffffefff, 0x4000000000002)
fanotify_init$auto(0x5, 0x2)
open(&(0x7f0000000000)='./file0\x00', 0x7ffd, 0x10c)
pwritev$auto(0x1, 0x0, 0x0, 0x9, 0x2)
281.96512ms ago: executing program 3 (id=12829):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x45, 0x4}})
256.61885ms ago: executing program 6 (id=12830):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_genetlink_get_family_id$auto_nlbl_mgmt(0x0, 0xffffffffffffffff)
sendmsg$auto_NLBL_MGMT_C_VERSION(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP0_WRITE(r0, 0x40085503, 0x0)
128.158705ms ago: executing program 3 (id=12831):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x2, 0x8)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
futimesat$auto(r0, 0x0, 0x0)
103.175506ms ago: executing program 9 (id=12832):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x15, 0x5, 0x0)
ioctl$auto(0x3, 0x89e0, 0x91)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xa)
0s ago: executing program 6 (id=12833):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2003f0, 0x15)
lstat$auto(0x0, &(0x7f0000000340)={0x0, 0x5, 0xfffb, 0x39b, 0x0, 0xffffffffffffffff, 0x0, 0x81, 0xfec1, 0x0, 0x8000000000000000, 0xfffffffffffffff6, 0x3, 0x3, 0x1005, 0x4, 0x9})
kernel console output (not intermixed with test programs):
28.756308][ T53] Bluetooth: hci3: unexpected subevent 0x03 length: 253 > 9
[ 229.029071][ T53] Bluetooth: hci2: command tx timeout
[ 229.059803][T12672] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 229.682604][T12672] veth0_vlan: entered promiscuous mode
[ 229.722618][T12672] veth1_vlan: entered promiscuous mode
[ 229.813719][T12672] veth0_macvtap: entered promiscuous mode
[ 229.843865][T12672] veth1_macvtap: entered promiscuous mode
[ 229.903679][T12672] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 229.931988][T12672] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 229.964060][T12672] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 229.982882][T12672] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 230.005989][T12672] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 230.030140][T12672] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 230.065580][T12672] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 230.110211][T12672] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 230.140706][T12672] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 230.173286][T12672] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 230.202268][T12672] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 230.238443][T12672] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 230.282724][T12672] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 230.313239][T12672] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 230.366614][T12672] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 230.395870][T12672] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 230.427320][T12672] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 230.446876][T12672] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 230.669896][ T1154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 230.703225][ T1154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 230.785437][ T1154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 230.808247][ T1154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 231.096837][T13107] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x79c00
[ 231.118497][T13107] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 231.142729][T13107] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 231.168653][T13107] page_type: f5(slab)
[ 231.180817][T13107] raw: 00fff00000000040 ffff88801b042140 0000000000000000 dead000000000001
[ 231.202291][T13107] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[ 231.234242][T13107] head: 00fff00000000040 ffff88801b042140 0000000000000000 dead000000000001
[ 231.273761][T13107] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[ 231.305393][T13107] head: 00fff00000000003 ffffea0001e70001 ffffffffffffffff 0000000000000000
[ 231.316212][T13107] head: 0000000700000008 0000000000000000 00000000ffffffff 0000000000000000
[ 231.325487][T13107] page dumped because: unmovable page
[ 231.332025][T13107] page_owner tracks the page as allocated
[ 231.338217][T13107] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6133, tgid 6133 (syz-executor), ts 200882545372, free_ts 199912721833
[ 231.378074][T13107] post_alloc_hook+0x181/0x1b0
[ 231.386781][T13107] get_page_from_freelist+0xfce/0x2f80
[ 231.417658][T13107] __alloc_frozen_pages_noprof+0x221/0x2470
[ 231.427719][T13107] alloc_pages_mpol+0x1fc/0x540
[ 231.445217][T13107] new_slab+0x23d/0x330
[ 231.455338][T13107] ___slab_alloc+0xbfa/0x1600
[ 231.477291][T13107] __slab_alloc.constprop.0+0x56/0xb0
[ 231.507086][T13107] __kmalloc_noprof+0x2de/0x4f0
[ 231.512143][T13107] tomoyo_realpath_from_path+0xbf/0x710
[ 231.536963][T13107] tomoyo_path_number_perm+0x248/0x5b0
[ 231.542619][T13107] tomoyo_path_mkdir+0x9c/0xe0
[ 231.559648][T13107] security_path_mkdir+0x154/0x2f0
[ 231.575074][T13107] do_mkdirat+0x176/0x3a0
[ 231.586635][T13107] __x64_sys_mkdirat+0x83/0xb0
[ 231.594517][T13107] do_syscall_64+0xcd/0x250
[ 231.606537][T13107] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 231.623551][T13107] page last free pid 6137 tgid 6137 stack trace:
[ 231.633644][T13107] free_frozen_pages+0x6db/0xfb0
[ 231.646727][T13107] __put_partials+0x14c/0x170
[ 231.661275][T13107] qlist_free_all+0x4e/0x120
[ 231.671651][T13107] kasan_quarantine_reduce+0x195/0x1e0
[ 231.682627][T13107] __kasan_slab_alloc+0x69/0x90
[ 231.694793][T13107] kmem_cache_alloc_noprof+0x1c8/0x3b0
[ 231.702839][T13107] vm_area_dup+0x53/0x300
[ 231.713118][T13107] copy_mm+0xe5d/0x2730
[ 231.759053][T13107] copy_process+0x3e6d/0x6f20
[ 231.763870][T13107] kernel_clone+0xfd/0x960
[ 231.775776][T13107] __do_sys_clone+0xba/0x100
[ 231.780462][T13107] do_syscall_64+0xcd/0x250
[ 231.806866][T13107] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 233.546099][T13229] aoe: could not set interface list: too many interfaces
[ 233.872760][T13234] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 234.089868][T13234] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 234.290171][T13234] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 234.419946][T13234] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 235.993679][T13339] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3503'.
[ 236.100661][T13343] program syz.4.3505 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 236.125643][T13343] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 237.777531][T13406] ecryptfs_miscdev_write: memdup_user returned error [-14]
[ 240.325314][T13497] nvme_fabrics: missing parameter 'transport=%s'
[ 240.331948][T13497] nvme_fabrics: missing parameter 'nqn=%s'
[ 240.513219][T13306] Process accounting paused
[ 243.854672][T13677] <
[ 244.671024][T13707] ima: policy update failed
[ 244.705104][ T29] audit: type=1802 audit(5281.887:20): pid=13707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.3679" res=0 errno=0
[ 246.233418][ T29] audit: type=1800 audit(5283.435:21): pid=13779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3702" name="lu_gp_id" dev="configfs" ino=33263 res=0 errno=0
[ 247.628245][ T53] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18
[ 250.810600][ T29] audit: type=1326 audit(5288.036:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14005 comm="syz.5.3777" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f051d78cde9 code=0x0
[ 251.767274][T14039] Line length is too long: Should be less than 4094
[ 253.296723][T14102] QAT: Device 2 not found
[ 256.621487][T14231] block2mtd: Using custom MTD label '' for dev
[ 256.644976][T14231] block2mtd: error: cannot open device
[ 259.448123][T14340] kAFS: Invalid Command on /proc/fs/afs/cells file
[ 261.651603][T14450] Process accounting resumed
[ 263.444497][T14528] kAFS: unparsable volume name
[ 265.112690][T14618] : Can't lookup blockdev
[ 265.361224][T14631] usb usb15: usbfs: process 14631 (syz.5.4076) did not claim interface 0 before use
[ 265.662998][T14645] kernel read not supported for file /P��r ^!8;�n~Z��Jp�-�v<)R�_�Wta�kG6�h�mD|vQ (pid: 14645 comm: syz.3.4083)
[ 265.688821][ T29] audit: type=1800 audit(5302.976:23): pid=14645 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4083" name=5002B9D50272BCD0095EC0217FC0DD38B080FA3B97056EF47E5A05F1EFD1F108D94A9B70DFE7CD1F842DBB05A5B8FCF7763C29DD5202D80D5F03E78E577461FABDAF066B47F7AA361C680B6D44FC7C76D451 dev="mqueue" ino=36073 res=0 errno=0
[ 266.916163][T14690] syz.3.4104 (14690): attempted to duplicate a private mapping with mremap. This is not supported.
[ 267.287104][T14704] ICMPv6: process `syz.4.4111' is using deprecated sysctl (syscall) net.ipv6.neigh.macsec0.base_reachable_time - use net.ipv6.neigh.macsec0.base_reachable_time_ms instead
[ 267.967480][ T6139] Bluetooth: hci1: command 0x0406 tx timeout
[ 268.064491][T14745] Ignoring unsupported numa_zonelist_order value:
[ 268.064491][T14745]
[ 268.579812][T14770] __vm_enough_memory: pid: 14770, comm: syz.3.4145, bytes: 4503599627366400 not enough memory for the allocation
[ 269.851501][T14839] synth uevent: /devices/platform/dummy_hcd.3/usb4/ep_00: unknown uevent action string
[ 269.948833][T14839] ep_00: uevent: failed to send synthetic uevent: -22
[ 270.497481][T14862] Process accounting resumed
[ 273.440361][T15023] aoe: invalid device specification
[ 274.082190][T15057] cifs: Unknown parameter 'no�+ 1�`r�sFn)��aHāh`9k�A}�1\D@�.ZC�g^��'
[ 274.971953][T15101] sg_write: data in/out 2059/169 bytes for SCSI command 0x57-- guessing data in;
[ 274.971953][T15101] program syz.5.4288 not setting count and/or reply_len properly
[ 276.501475][ T29] audit: type=1804 audit(5313.837:24): pid=15182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.4328" name="/newroot/sys/kernel/tracing/trace_marker_raw" dev="tracefs" ino=225 res=1 errno=0
[ 279.641071][T15327] ptrace attach of "./syz-executor exec"[12672] was attempted by "./syz-executor exec"[15327]
[ 281.299673][ T29] audit: type=1807 audit(5318.659:25): UNKNOWN=0"]$|1j0B|d�ӉO+/xWӦ^gq%ḦrO� res=0
[ 281.318271][ T29] audit: type=1802 audit(5318.680:26): pid=15414 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.4442" res=0 errno=0
[ 281.335943][T15413] ima: policy update failed
[ 281.340819][ T29] audit: type=1802 audit(5318.700:27): pid=15413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.4442" res=0 errno=0
[ 283.062702][T15501] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1048706].
[ 283.546235][T15520] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[ 283.639375][T15520] CIFS mount error: No usable UNC path provided in device string!
[ 283.639375][T15520]
[ 283.666290][T15520] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 289.267679][T15765] program syz.4.4616 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 289.270084][T15766] Process accounting resumed
[ 289.428397][T15774] ecryptfs_parse_packet_length: Error parsing packet length
[ 289.437853][T15774] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[ 290.584263][T15834] Malformed UNC in devname
[ 290.584263][T15834]
[ 290.611497][T15834] CIFS: VFS: Malformed UNC in devname
[ 292.198442][T15918]
[ 293.683112][T15994] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[ 294.058424][ T35] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 294.213967][ T35] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 294.388876][ T35] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 294.585734][ T35] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 294.810751][ T6139] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 294.823495][ T6139] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 294.838308][ T6139] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 294.848228][ T6139] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 294.881410][ T6139] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 294.894687][ T6139] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 294.949852][ T35] bridge_slave_1: left allmulticast mode
[ 294.955563][ T35] bridge_slave_1: left promiscuous mode
[ 295.008089][ T35] bridge0: port 2(bridge_slave_1) entered disabled state
[ 295.033707][ T35] bridge_slave_0: left allmulticast mode
[ 295.048098][ T35] bridge_slave_0: left promiscuous mode
[ 295.054140][ T35] bridge0: port 1(bridge_slave_0) entered disabled state
[ 295.868487][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 295.889142][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 295.908695][ T35] bond0 (unregistering): Released all slaves
[ 296.371801][ T53] Bluetooth: hci3: Zero size dump init pkt
[ 296.628224][T16034] chnl_net:caif_netlink_parms(): no params data found
[ 296.789103][ T35] hsr_slave_0: left promiscuous mode
[ 296.804945][ T35] hsr_slave_1: left promiscuous mode
[ 296.820549][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 296.848774][ T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 296.886063][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 296.899174][ T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 296.949541][ T53] Bluetooth: hci2: command tx timeout
[ 296.997133][ T35] veth1_macvtap: left promiscuous mode
[ 297.009313][ T35] veth0_macvtap: left promiscuous mode
[ 297.015192][ T35] veth1_vlan: left promiscuous mode
[ 297.021248][ T35] veth0_vlan: left promiscuous mode
[ 297.250300][T16127] kAFS: Invalid Command on /proc/fs/afs/cells file
[ 298.079572][ T35] team0 (unregistering): Port device team_slave_1 removed
[ 298.180941][ T35] team0 (unregistering): Port device team_slave_0 removed
[ 299.020039][ T53] Bluetooth: hci2: command tx timeout
[ 299.620569][T16034] bridge0: port 1(bridge_slave_0) entered blocking state
[ 299.650877][T16034] bridge0: port 1(bridge_slave_0) entered disabled state
[ 299.673132][T16034] bridge_slave_0: entered allmulticast mode
[ 299.706011][T16034] bridge_slave_0: entered promiscuous mode
[ 299.719876][T16034] bridge0: port 2(bridge_slave_1) entered blocking state
[ 299.734878][T16034] bridge0: port 2(bridge_slave_1) entered disabled state
[ 299.744436][T16034] bridge_slave_1: entered allmulticast mode
[ 299.759246][T16034] bridge_slave_1: entered promiscuous mode
[ 299.893758][T16034] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 299.940965][T16034] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 300.077194][T16034] team0: Port device team_slave_0 added
[ 300.100085][T16034] team0: Port device team_slave_1 added
[ 300.235706][T16034] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 300.242705][T16034] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 300.331339][T16034] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 300.360348][T16034] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 300.392393][T16034] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 300.451650][T16195] Process accounting paused
[ 300.481199][T16034] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 300.631900][T16034] hsr_slave_0: entered promiscuous mode
[ 300.668659][T16034] hsr_slave_1: entered promiscuous mode
[ 300.687084][T16034] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 300.707348][T16034] Cannot create hsr debugfs directory
[ 301.090268][ T53] Bluetooth: hci2: command tx timeout
[ 301.118432][T16034] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 301.146918][T16034] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 301.192967][T16034] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 301.251427][T16034] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 301.497107][T16034] 8021q: adding VLAN 0 to HW filter on device bond0
[ 301.571089][T16034] 8021q: adding VLAN 0 to HW filter on device team0
[ 301.593282][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 301.600468][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 301.633679][ T1108] bridge0: port 2(bridge_slave_1) entered blocking state
[ 301.640839][ T1108] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 302.083796][T16034] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 302.716191][T16034] veth0_vlan: entered promiscuous mode
[ 302.755206][T16034] veth1_vlan: entered promiscuous mode
[ 302.887615][T16034] veth0_macvtap: entered promiscuous mode
[ 302.934112][T16034] veth1_macvtap: entered promiscuous mode
[ 302.987537][T16034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 303.013279][T16034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 303.041624][T16034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 303.068976][T16034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 303.090748][T16034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 303.118184][T16034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 303.143330][T16034] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 303.160363][ T53] Bluetooth: hci2: command tx timeout
[ 303.193363][T16034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 303.260290][T16034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 303.270924][T16034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 303.307315][T16034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 303.329479][T16034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 303.359365][T16034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 303.385362][T16034] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 303.427169][T16034] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 303.470826][T16034] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 303.489614][T16034] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 303.498371][T16034] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 303.737242][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 303.759959][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 303.870084][ T1117] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 303.896018][ T1117] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 305.379596][T16422] Setting dangerous option i915.mitigations - tainting kernel
[ 305.398916][T16422] Bad "i915.mitigations=!}", '}' is unknown
[ 310.427076][T16674] syz.4.4987: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 310.450602][T16674] CPU: 1 UID: 0 PID: 16674 Comm: syz.4.4987 Tainted: G U 6.14.0-rc2-syzkaller-00034-gfebbc555cf0f #0
[ 310.450641][T16674] Tainted: [U]=USER
[ 310.450649][T16674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 310.450675][T16674] Call Trace:
[ 310.450682][T16674]
[ 310.450695][T16674] dump_stack_lvl+0x16c/0x1f0
[ 310.450739][T16674] warn_alloc+0x24d/0x3a0
[ 310.450770][T16674] ? __pfx_warn_alloc+0x10/0x10
[ 310.450805][T16674] ? lock_acquire.part.0+0x11b/0x380
[ 310.450849][T16674] __vmalloc_node_range_noprof+0x10dc/0x1530
[ 310.450876][T16674] ? rcu_is_watching+0x12/0xc0
[ 310.450910][T16674] ? trace_contention_end+0xee/0x140
[ 310.450940][T16674] ? __mutex_lock+0x1cc/0xb10
[ 310.450961][T16674] ? tomoyo_path_number_perm+0x46d/0x5b0
[ 310.450987][T16674] ? dvb_dvr_do_ioctl+0x15d/0x290
[ 310.451018][T16674] ? dvb_dvr_do_ioctl+0x7e/0x290
[ 310.451052][T16674] ? __pfx___mutex_lock+0x10/0x10
[ 310.451085][T16674] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 310.451108][T16674] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 310.451136][T16674] ? do_vfs_ioctl+0x513/0x1950
[ 310.451169][T16674] ? dvb_dvr_do_ioctl+0x15d/0x290
[ 310.451201][T16674] vmalloc_noprof+0x6b/0x90
[ 310.451225][T16674] ? dvb_dvr_do_ioctl+0x15d/0x290
[ 310.451270][T16674] dvb_dvr_do_ioctl+0x15d/0x290
[ 310.451306][T16674] dvb_usercopy+0x165/0x320
[ 310.451333][T16674] ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[ 310.451364][T16674] ? __pfx_dvb_usercopy+0x10/0x10
[ 310.451391][T16674] ? __pfx_lock_release+0x10/0x10
[ 310.451432][T16674] ? __fget_files+0x206/0x3a0
[ 310.451463][T16674] dvb_dvr_ioctl+0x29/0x40
[ 310.451490][T16674] ? __pfx_dvb_dvr_ioctl+0x10/0x10
[ 310.451520][T16674] __x64_sys_ioctl+0x190/0x200
[ 310.451556][T16674] do_syscall_64+0xcd/0x250
[ 310.451581][T16674] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 310.451613][T16674] RIP: 0033:0x7ff13ed8cde9
[ 310.451632][T16674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 310.451653][T16674] RSP: 002b:00007ff13fb52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 310.451675][T16674] RAX: ffffffffffffffda RBX: 00007ff13efa5fa0 RCX: 00007ff13ed8cde9
[ 310.451690][T16674] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000003
[ 310.451704][T16674] RBP: 00007ff13ee0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 310.451719][T16674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 310.451733][T16674] R13: 0000000000000000 R14: 00007ff13efa5fa0 R15: 00007ffd22570278
[ 310.451766][T16674]
[ 310.451775][T16674] Mem-Info:
[ 310.659167][ C1] vkms_vblank_simulate: vblank timer overrun
[ 310.727655][T16674] active_anon:14148 inactive_anon:0 isolated_anon:0
[ 310.727655][T16674] active_file:17981 inactive_file:38763 isolated_file:0
[ 310.727655][T16674] unevictable:768 dirty:257 writeback:0
[ 310.727655][T16674] slab_reclaimable:10848 slab_unreclaimable:99292
[ 310.727655][T16674] mapped:23754 shmem:1651 pagetables:1181
[ 310.727655][T16674] sec_pagetables:0 bounce:0
[ 310.727655][T16674] kernel_misc_reclaimable:0
[ 310.727655][T16674] free:1321866 free_pcp:362 free_cma:0
[ 310.772934][ C1] vkms_vblank_simulate: vblank timer overrun
[ 310.814927][T16674] Node 0 active_anon:56692kB inactive_anon:0kB active_file:71924kB inactive_file:154976kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:95016kB dirty:1024kB writeback:0kB shmem:5068kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11148kB pagetables:4424kB sec_pagetables:0kB all_unreclaimable? no
[ 310.847241][ C1] vkms_vblank_simulate: vblank timer overrun
[ 310.874657][T16674] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 310.957134][T16674] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 311.003678][T16674] lowmem_reserve[]: 0 2490 2491 0 0
[ 311.013833][T16674] Node 0 DMA32 free:1370976kB boost:0kB min:34416kB low:43020kB high:51624kB reserved_highatomic:0KB active_anon:56752kB inactive_anon:0kB active_file:71924kB inactive_file:154652kB unevictable:1536kB writepending:1024kB present:3129332kB managed:2550580kB mlocked:0kB bounce:0kB free_pcp:2220kB local_pcp:1140kB free_cma:0kB
[ 311.044351][ C1] vkms_vblank_simulate: vblank timer overrun
[ 311.062083][T16674] lowmem_reserve[]: 0 0 0 0 0
[ 311.069121][T16674] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:324kB unevictable:0kB writepending:0kB present:1048580kB managed:364kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 311.095893][ C1] vkms_vblank_simulate: vblank timer overrun
[ 311.124622][T16674] lowmem_reserve[]: 0 0 0 0 0
[ 311.129566][T16674] Node 1 Normal free:3900488kB boost:0kB min:55476kB low:69344kB high:83212kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 311.158357][ C1] vkms_vblank_simulate: vblank timer overrun
[ 311.178968][T16674] lowmem_reserve[]: 0 0 0 0 0
[ 311.184786][T16674] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 311.201042][T16674] Node 0 DMA32: 163*4kB (UE) 90*8kB (UME) 128*16kB (UME) 146*32kB (UME) 134*64kB (UME) 88*128kB (UME) 165*256kB (UME) 85*512kB (UM) 72*1024kB (UME) 6*2048kB (UM) 286*4096kB (UM) = 1371164kB
[ 311.236202][T16674] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 311.302955][T16674] Node 1 Normal: 180*4kB (UM) 59*8kB (UME) 40*16kB (UME) 212*32kB (UME) 89*64kB (UME) 31*128kB (UME) 15*256kB (UME) 13*512kB (UME) 3*1024kB (UME) 3*2048kB (UM) 943*4096kB (UM) = 3900520kB
[ 311.321768][ C1] vkms_vblank_simulate: vblank timer overrun
[ 311.344507][T16674] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 311.399863][T16674] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 311.431435][T16674] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 311.441079][T16674] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[ 311.460581][T16674] 58395 total pagecache pages
[ 311.492172][T16674] 0 pages in swap cache
[ 311.496382][T16674] Free swap = 124660kB
[ 311.500559][T16674] Total swap = 124996kB
[ 311.512003][T16674] 2097051 pages RAM
[ 311.521234][T16674] 0 pages HighMem/MovableOnly
[ 311.535723][T16674] 427684 pages reserved
[ 311.539970][T16674] 0 pages cma reserved
[ 312.677926][T16775] Process accounting resumed
[ 313.366339][T16816] usb usb15: usbfs: process 16816 (syz.1.5058) did not claim interface 0 before use
[ 317.123795][ T29] audit: type=1800 audit(5354.648:28): pid=17020 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.5156" name="lu_gp_id" dev="configfs" ino=44289 res=0 errno=0
[ 317.154101][T17020] kstrtoul() returned -22 for lu_gp_id
[ 317.543668][T17037] syz.3.5163 (17037): drop_caches: 0
[ 317.709912][T17047] Process accounting resumed
[ 317.967745][T17064] i2c i2c-0: delete_device: Can't parse I2C address
[ 318.721877][T17109] Setting dangerous option i915.mitigations - tainting kernel
[ 318.927767][ T29] audit: type=1800 audit(5356.476:29): pid=17121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.5196" name="lu_gp_id" dev="configfs" ino=43637 res=0 errno=0
[ 318.939420][T17121] kstrtoul() returned -22 for lu_gp_id
[ 319.318863][T17141] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[ 320.254220][T17193] syz.1.5222 (17193): drop_caches: 0
[ 321.023363][T17239] usb usb15: usbfs: interface 0 claimed by hub while 'syz.1.5238' sets config #5
[ 322.373951][T17315] block2mtd: device name too long
[ 323.713997][ T29] audit: type=1800 audit(5361.279:30): pid=17391 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.5291" name="discovery_nqn" dev="configfs" ino=44006 res=0 errno=0
[ 324.546490][T17440] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed.
[ 324.755072][T17450] ubi13: attaching mtd0
[ 324.791938][T17450] ubi13 error: ubi_attach_mtd_dev: bad VID header (13) or data offsets (77)
[ 325.570524][T17499] nfs: Unknown parameter 'w`_I�+;� HY Lu>>uh*C<+�'
[ 325.947716][ T29] audit: type=1800 audit(5363.519:31): pid=17516 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.5344" name="features" dev="configfs" ino=45239 res=0 errno=0
[ 327.246144][T17585] CIFS: VFS: Invalid SecurityFlags: #
[ 327.811221][T17610] QAT: failed to copy from user.
[ 328.386741][T17638] block2mtd: illegal erase size
[ 330.454409][T17743] Process accounting resumed
[ 331.539124][T17810] usbcore.quirks: string doesn't fit in 127 chars.
[ 333.068888][ T29] audit: type=1800 audit(5370.673:32): pid=17897 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.5532" name="features" dev="configfs" ino=46521 res=0 errno=0
[ 335.859304][T18038] ptrace attach of "./syz-executor exec"[16034] was attempted by "./syz-executor exec"[18038]
[ 337.637355][T18116] Format for deleting device is "id" (uint).
[ 340.020924][T18217] process 'syz.3.5684' launched '/dev/fd/3' with NULL argv: empty string added
[ 340.165183][T18221] delete_channel: no stack
[ 341.218776][T18271] delete_channel: no stack
[ 346.469634][ T29] audit: type=1806 audit(5384.146:33): xattr=64AF5FAE38EDF00630123DD93BFC4D79D8083D87EC3620E2D1879D279126BA76CC1E7582EFA402B3574781753B43094D4EA357B3D6D9F41BEC140770425F0CE10D524AB5D98642AA5134B07F res=-22
[ 347.324736][T18594] cougar: G6 mapped to F18
[ 349.649864][T18734] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT
[ 352.243067][ T53] Bluetooth: hci3: SCO packet too small
[ 352.312511][T18878] : Can't lookup blockdev
[ 353.162072][ T29] audit: type=1800 audit(4294967296.743:34): pid=18921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.5975" name="members" dev="configfs" ino=48949 res=0 errno=0
[ 353.245089][ T53] Bluetooth: hci3: unexpected event 0x32 length: 10 > 9
[ 355.401444][T19038] cougar: G6 mapped to space
[ 355.763859][T19058] ima: Unable to open file: /suritRy/integrity?iqa/policy (-2)
[ 355.764476][T19057] ima: policy update failed
[ 355.803717][ T29] audit: type=1802 audit(4294967299.395:35): pid=19057 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.6043" res=0 errno=0
[ 356.547208][T19096] block nbd8: NBD_DISCONNECT
[ 356.822661][T19111] nvme_fcloop: unknown parameter or missing value '�'
[ 357.672065][T19160] misc userio: Invalid payload size
[ 357.757412][T19163] blktrace: Concurrent blktraces are not allowed on loop5
[ 360.349631][T19299] Process accounting paused
[ 360.439971][T19309] delete_channel: no stack
[ 362.299897][T19410] dyndbg: expected <4096 bytes into control
[ 363.190534][T19458] synth uevent: /devices/virtual/misc/rdma_cm: unknown uevent action string
[ 363.215328][T19458] misc rdma_cm: uevent: failed to send synthetic uevent: -22
[ 363.554014][T19479] scsi_strcpy_devinfo: vendor string '/&c~n] �|�
[ 363.554014][T19479] M�' is too long
[ 363.577574][T19479] scsi_strcpy_devinfo: model string 'Dd5�K��2b
[ 363.577574][T19479] W�� ' is too long
[ 365.788483][T19597] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26)
[ 365.789044][T19596] ima: policy update failed
[ 365.810430][ T29] audit: type=1802 audit(4294967309.452:36): pid=19596 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.6307" res=0 errno=0
[ 366.789781][T19650] QAT: Stopping all acceleration devices.
[ 368.120084][T19716] program syz.6.6366 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 369.844624][T19802] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes
[ 371.163029][T19868] blktrace: Concurrent blktraces are not allowed on loop5
[ 371.937206][T19908] afs: Unknown parameter '�P4'
[ 372.901355][T19954] Invalid ELF header magic: != ELF
[ 375.871034][T20116] program syz.3.6560 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 376.532842][T20148] Invalid ELF header magic: != ELF
[ 376.557610][T20153] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT
[ 377.124431][T20185] kfence: disabled
[ 378.019004][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 378.025383][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 378.471761][T20259] aoe: copy from user failed
[ 378.477431][T20259] aoe: could not set interface list: too many interfaces
[ 379.223210][T20301] Process accounting resumed
[ 379.637492][T20324] Process accounting resumed
[ 379.760690][T20332] kAFS: Invalid Command on /proc/fs/afs/cells file
[ 380.169898][T20356] Invalid input. Must be >= 4608
[ 380.942881][T20397] Invalid ELF header magic: != ELF
[ 382.189562][T20459] dlm: non-version read from control device 0
[ 384.610798][T20598] program syz.1.6796 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 384.640573][T20598] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 390.669441][T20847] : Can't lookup blockdev
[ 393.763183][ T53] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[ 393.763222][ T53] Bluetooth: hci0: unexpected subevent 0x0c length: 725 > 5
[ 394.740584][ T29] audit: type=1800 audit(4294967338.518:37): pid=21025 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.6999" name="discovery_nqn" dev="configfs" ino=56001 res=0 errno=0
[ 394.772502][T21023] ima: policy update failed
[ 394.796873][ T29] audit: type=1802 audit(4294967338.549:38): pid=21023 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.7000" res=0 errno=0
[ 396.413566][T21104] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 396.773795][T21122]
[ 397.180212][T21142] scsi_dev_info_list_add_str: bad dev info string '' '' ''
[ 399.733725][ T53] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[ 399.733759][ T53] Bluetooth: hci3: unexpected subevent 0x05 length: 725 > 12
[ 401.118699][ T29] audit: type=1800 audit(4294967344.918:39): pid=21361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.7166" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0
[ 401.188682][T21363] Process accounting resumed
[ 401.816924][ T53] Bluetooth: hci3: command 0x0406 tx timeout
[ 409.107352][T21793] Process accounting paused
[ 413.651913][T21924] openvswitch: netlink: IP tunnel dst address not specified
[ 414.245081][T21953] netlink: 93 bytes leftover after parsing attributes in process `syz.3.7450'.
[ 415.846396][T22035] nl80211: entered promiscuous mode
[ 416.908705][T22089] HfR: entered promiscuous mode
[ 417.230063][T22097] svc: failed to register nfsdv3 RPC service (errno 111).
[ 417.249354][T22097] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 417.794470][T22128] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7533'.
[ 420.221374][T22232] Zero length message leads to an empty skb
[ 420.480630][T22236] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 420.493099][T22236] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 420.761941][T22256] netlink: 'syz.6.7591': attribute type 2 has an invalid length.
[ 420.847228][ T53] Bluetooth: hci2: command 0x0406 tx timeout
[ 421.045108][T22270] openvswitch: netlink: Invalid MD length 0 for MD type 0
[ 423.871221][T22379] netlink: 'syz.3.7645': attribute type 2 has an invalid length.
[ 424.453539][T22402] Process accounting resumed
[ 425.091864][T22431] HSR: entered promiscuous mode
[ 425.351310][T22442] netlink: zone id is out of range
[ 426.022113][T22464] svc: failed to register nfsdv3 RPC service (errno 111).
[ 426.060355][T22464] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 426.264640][T22477] nbd: couldn't find a device at index 3723
[ 426.665740][T22496] netlink: 'syz.1.7694': attribute type 11 has an invalid length.
[ 427.092111][T22511] svc: failed to register nfsdv3 RPC service (errno 111).
[ 427.110859][T22511] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 427.638903][T22532] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7715'.
[ 428.135295][T22551] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 428.706913][T22567] netlink: 'syz.4.7725': attribute type 1 has an invalid length.
[ 429.121450][T22585] HSR: entered promiscuous mode
[ 429.236879][T22590] netlink: 'syz.1.7734': attribute type 1 has an invalid length.
[ 429.344306][T22594] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7735'.
[ 429.568679][T22602] svc: failed to register nfsdv3 RPC service (errno 111).
[ 429.580203][T22602] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 429.897537][T22617] netlink: 'syz.3.7745': attribute type 11 has an invalid length.
[ 430.388658][T22641] svc: failed to register nfsdv3 RPC service (errno 111).
[ 430.425649][T22641] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 431.519223][T22685] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7776'.
[ 431.692257][T22693] svc: failed to register nfsdv3 RPC service (errno 111).
[ 431.708638][T22693] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 434.160628][T22795] netlink: zone id is out of range
[ 434.187118][T22795] netlink: zone id is out of range
[ 434.199688][T22795] netlink: zone id is out of range
[ 434.224506][T22795] netlink: zone id is out of range
[ 434.229735][T22795] netlink: zone id is out of range
[ 434.258602][T22795] netlink: zone id is out of range
[ 434.263787][T22795] netlink: zone id is out of range
[ 434.316190][T22795] netlink: zone id is out of range
[ 434.321367][T22795] netlink: zone id is out of range
[ 434.360015][T22795] netlink: zone id is out of range
[ 435.866820][T22869] netlink: 'syz.3.7857': attribute type 11 has an invalid length.
[ 435.874761][T22869] netlink: 'syz.3.7857': attribute type 11 has an invalid length.
[ 435.901338][T22869] netlink: 'syz.3.7857': attribute type 11 has an invalid length.
[ 435.915231][T22869] netlink: 'syz.3.7857': attribute type 11 has an invalid length.
[ 437.084796][T22924] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7881'.
[ 438.932327][T23009] netlink: 'syz.4.7920': attribute type 1 has an invalid length.
[ 439.114050][T23021] netlink: 'syz.4.7926': attribute type 1 has an invalid length.
[ 439.164404][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 439.173760][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 439.376404][T23033] net_ratelimit: 18 callbacks suppressed
[ 439.376427][T23033] openvswitch: netlink: IP tunnel dst address not specified
[ 439.670655][T23047] sctp: [Deprecated]: syz.4.7938 (pid 23047) Use of int in maxseg socket option.
[ 439.670655][T23047] Use struct sctp_assoc_value instead
[ 439.708260][T23051] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 440.476104][T23087] openvswitch: netlink: nsh attribute has 14 unknown bytes.
[ 441.182265][ T29] audit: type=1800 audit(4294968408.168:40): pid=23117 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.7969" name="discovery_nqn" dev="configfs" ino=62968 res=0 errno=0
[ 443.083348][T23175] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 443.241281][T23180] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 443.394160][ T6139] Bluetooth: hci2: unexpected subevent 0x01 length: 125 > 18
[ 443.401820][ T6139] Bluetooth: hci2: Invalid handle: 0x1e1a > 0x0eff
[ 443.596612][T23201] netlink: Conntrack attr has 16 unknown bytes
[ 443.980643][T23214] netlink: 'syz.6.8014': attribute type 1 has an invalid length.
[ 444.348602][T23230] netlink: Unknown conntrack attr (0)
[ 444.843373][T23257] openvswitch: netlink: Duplicate or invalid key (type 1).
[ 446.923164][T23340] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8073'.
[ 448.375811][T23381] netlink: 'syz.4.8090': attribute type 4 has an invalid length.
[ 448.537580][T23384] openvswitch: netlink: Multiple metadata blocks provided
[ 451.041366][T23444] MTRR 1 not used
[ 452.187816][T23494] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 452.506296][T23509] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(4.128.1), cmd(5)
[ 453.203926][T23540] netlink: 'syz.4.8162': attribute type 1 has an invalid length.
[ 454.637745][T23600] openvswitch: netlink: IP tunnel dst address not specified
[ 455.076686][ T29] audit: type=1800 audit(4294968422.143:41): pid=23621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.8197" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0
[ 456.536895][T23681] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 456.543929][T23681] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 456.647588][T23683] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 457.634406][T23728] openvswitch: netlink: Key type 261 is out of range max 32
[ 458.174542][T23748] openvswitch: netlink: IP tunnel TTL not specified.
[ 458.669000][T23774] .SR: entered promiscuous mode
[ 458.907550][T23784] device-mapper: ioctl: Invalid ioctl structure: uuid �, name , dev 400008000000006
[ 459.202907][T23801] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !P�jE�r҄y*"�l-�y�
[ 459.639583][T23822] netlink: zone id is out of range
[ 459.651195][T23822] netlink: zone id is out of range
[ 459.658139][T23822] netlink: zone id is out of range
[ 459.663471][T23822] netlink: zone id is out of range
[ 459.674553][T23822] netlink: zone id is out of range
[ 459.679893][T23822] netlink: zone id is out of range
[ 459.690471][T23822] netlink: zone id is out of range
[ 459.697915][T23822] netlink: zone id is out of range
[ 461.924823][T23930] nbd: must specify an index to disconnect
[ 463.113885][T23977] debugfs: Directory '!P�jE�r҄y*"�l-�y�L�̓��]' with parent 'ieee80211' already present!
[ 465.592357][T24090] debugfs: Directory '!P�jE�r҄y*"�l-�y�L�̓��]' with parent 'ieee80211' already present!
[ 466.308126][T24117] net_ratelimit: 24 callbacks suppressed
[ 466.308147][T24117] openvswitch: netlink: Message has 4 unknown bytes.
[ 466.484947][T24125] block nbd0: not configured, cannot reconfigure
[ 467.301884][T24154] debugfs: Directory '!P�jE�r҄y*"�l-�y�L�̓��]' with parent 'ieee80211' already present!
[ 467.764916][T24167] can: request_module (can-proto-5) failed.
[ 469.523838][ T6139] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[ 469.523876][ T6139] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[ 470.236129][T24285] netlink: 206 bytes leftover after parsing attributes in process `syz.6.8503'.
[ 470.906171][T24305] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8511'.
[ 473.090516][T24409] smc: net device syz_tun applied user defined pnetid ETHTOOL
[ 473.673275][ T29] audit: type=1107 audit(4294967309.287:42): pid=24438 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[ 473.723522][ T29] audit: type=1107 audit(4294967309.327:43): pid=24438 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[ 475.164104][T24489] openvswitch: netlink: nsh attribute has unmatched MD type 0.
[ 475.176821][T24434] kexec: Could not allocate control_code_buffer
[ 475.313948][T24494] netlink: 5 bytes leftover after parsing attributes in process `syz.3.8598'.
[ 476.684680][T24545] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 477.403705][T24571] netlink: 'syz.6.8633': attribute type 11 has an invalid length.
[ 477.436527][T24571] netlink: 'syz.6.8633': attribute type 11 has an invalid length.
[ 477.451054][T24571] netlink: 'syz.6.8633': attribute type 11 has an invalid length.
[ 477.471040][T24571] netlink: 'syz.6.8633': attribute type 11 has an invalid length.
[ 477.490393][T24571] netlink: 'syz.6.8633': attribute type 11 has an invalid length.
[ 477.500866][T24571] netlink: 'syz.6.8633': attribute type 11 has an invalid length.
[ 477.508757][T24571] netlink: 5636 bytes leftover after parsing attributes in process `syz.6.8633'.
[ 477.735363][T24585] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8641'.
[ 478.158689][ T6139] Bluetooth: hci1: unexpected event 0x14 length: 18 > 6
[ 478.741669][T24625] sysfs: cannot create duplicate filename '/class/ieee80211/!P�jE�r҄y*"�l-�y�L�̓��]'
[ 478.754043][T24625] CPU: 0 UID: 0 PID: 24625 Comm: syz.3.8659 Tainted: G U 6.14.0-rc2-syzkaller-00034-gfebbc555cf0f #0
[ 478.754083][T24625] Tainted: [U]=USER
[ 478.754092][T24625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 478.754107][T24625] Call Trace:
[ 478.754114][T24625]
[ 478.754124][T24625] dump_stack_lvl+0x16c/0x1f0
[ 478.754167][T24625] sysfs_warn_dup+0x7f/0xa0
[ 478.754203][T24625] sysfs_do_create_link_sd+0x124/0x140
[ 478.754242][T24625] sysfs_create_link+0x61/0xc0
[ 478.754277][T24625] device_add+0x62e/0x1a70
[ 478.754314][T24625] ? __pfx_device_add+0x10/0x10
[ 478.754344][T24625] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 478.754379][T24625] ? ieee80211_set_bitrate_flags+0x249/0x6a0
[ 478.754415][T24625] wiphy_register+0x1c7a/0x2860
[ 478.754445][T24625] ? netdev_run_todo+0x877/0x1320
[ 478.754484][T24625] ? __pfx_wiphy_register+0x10/0x10
[ 478.754535][T24625] ieee80211_register_hw+0x23ff/0x3ff0
[ 478.754580][T24625] ? __pfx_ieee80211_register_hw+0x10/0x10
[ 478.754609][T24625] ? net_generic+0xea/0x2a0
[ 478.754645][T24625] ? lockdep_init_map_type+0x16d/0x7d0
[ 478.754678][T24625] ? rcu_is_watching+0x12/0xc0
[ 478.754713][T24625] ? trace_hrtimer_init+0x1a6/0x230
[ 478.754745][T24625] ? __hrtimer_init+0x106/0x2c0
[ 478.754778][T24625] mac80211_hwsim_new_radio+0x2c47/0x56d0
[ 478.754842][T24625] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 478.754873][T24625] ? hwsim_new_radio_nl+0x9ff/0x12b0
[ 478.754912][T24625] hwsim_new_radio_nl+0xb42/0x12b0
[ 478.754948][T24625] ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 478.754996][T24625] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 478.755044][T24625] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 478.755091][T24625] genl_family_rcv_msg_doit+0x202/0x2f0
[ 478.755126][T24625] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 478.755159][T24625] ? trace_cap_capable+0x1a2/0x210
[ 478.755205][T24625] ? bpf_lsm_capable+0x9/0x10
[ 478.755237][T24625] ? security_capable+0x7e/0x260
[ 478.755274][T24625] ? ns_capable+0xd7/0x110
[ 478.755306][T24625] genl_rcv_msg+0x565/0x800
[ 478.755334][T24625] ? __pfx_genl_rcv_msg+0x10/0x10
[ 478.755360][T24625] ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 478.755410][T24625] netlink_rcv_skb+0x165/0x410
[ 478.755445][T24625] ? __pfx_genl_rcv_msg+0x10/0x10
[ 478.755472][T24625] ? __pfx_netlink_rcv_skb+0x10/0x10
[ 478.755521][T24625] ? down_read+0xc9/0x330
[ 478.755545][T24625] ? __pfx_down_read+0x10/0x10
[ 478.755571][T24625] ? netlink_deliver_tap+0x1ae/0xca0
[ 478.755608][T24625] genl_rcv+0x28/0x40
[ 478.755640][T24625] netlink_unicast+0x53c/0x7f0
[ 478.755678][T24625] ? __pfx_netlink_unicast+0x10/0x10
[ 478.755712][T24625] ? __phys_addr_symbol+0x30/0x80
[ 478.755746][T24625] ? __check_object_size+0x488/0x710
[ 478.755779][T24625] netlink_sendmsg+0x8b8/0xd70
[ 478.755819][T24625] ? __pfx_netlink_sendmsg+0x10/0x10
[ 478.755866][T24625] ____sys_sendmsg+0x9ae/0xb40
[ 478.755898][T24625] ? copy_msghdr_from_user+0x10b/0x160
[ 478.755924][T24625] ? __pfx_____sys_sendmsg+0x10/0x10
[ 478.755974][T24625] ___sys_sendmsg+0x135/0x1e0
[ 478.756008][T24625] ? __pfx____sys_sendmsg+0x10/0x10
[ 478.756052][T24625] ? __pfx_lock_release+0x10/0x10
[ 478.756080][T24625] ? trace_lock_acquire+0x14e/0x1f0
[ 478.756118][T24625] ? __fget_files+0x206/0x3a0
[ 478.756154][T24625] __sys_sendmsg+0x16e/0x220
[ 478.756181][T24625] ? __pfx___sys_sendmsg+0x10/0x10
[ 478.756206][T24625] ? __x64_sys_futex+0x1e1/0x4c0
[ 478.756254][T24625] do_syscall_64+0xcd/0x250
[ 478.756282][T24625] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 478.756314][T24625] RIP: 0033:0x7f1ea318cde9
[ 478.756335][T24625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 478.756357][T24625] RSP: 002b:00007f1ea3fde038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 478.756379][T24625] RAX: ffffffffffffffda RBX: 00007f1ea33a5fa0 RCX: 00007f1ea318cde9
[ 478.756395][T24625] RDX: 0000000004000800 RSI: 00004000000000c0 RDI: 0000000000000003
[ 478.756410][T24625] RBP: 00007f1ea320e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 478.756425][T24625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 478.756439][T24625] R13: 0000000000000000 R14: 00007f1ea33a5fa0 R15: 00007fff79c8c7a8
[ 478.756473][T24625]
[ 479.891109][T24645] Process accounting resumed
[ 480.227065][T24659] netlink: 'syz.1.8674': attribute type 2 has an invalid length.
[ 480.770514][T24687] netlink: 'syz.4.8689': attribute type 2 has an invalid length.
[ 480.845966][T24690] netlink: 'syz.6.8690': attribute type 1 has an invalid length.
[ 481.274855][T24707] could not allocate digest TFM handle
[ 481.395194][T24711] could not allocate digest TFM handle
[ 482.240899][T24758] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x79c00
[ 482.259172][T24758] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 482.295039][T24758] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 482.338241][T24758] page_type: f5(slab)
[ 482.345824][T24758] raw: 00fff00000000040 ffff88801b042140 0000000000000000 dead000000000001
[ 482.362206][T24758] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[ 482.381526][T24758] head: 00fff00000000040 ffff88801b042140 0000000000000000 dead000000000001
[ 482.394404][T24758] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[ 482.406747][T24758] head: 00fff00000000003 ffffea0001e70001 ffffffffffffffff 0000000000000000
[ 482.422752][T24758] head: 0000000700000008 0000000000000000 00000000ffffffff 0000000000000000
[ 482.434411][T24758] page dumped because: unmovable page
[ 482.450205][T24758] page_owner tracks the page as allocated
[ 482.463612][T24758] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6133, tgid 6133 (syz-executor), ts 200882545372, free_ts 199912721833
[ 482.526591][T24758] post_alloc_hook+0x181/0x1b0
[ 482.537232][T24758] get_page_from_freelist+0xfce/0x2f80
[ 482.567058][T24758] __alloc_frozen_pages_noprof+0x221/0x2470
[ 482.573036][T24758] alloc_pages_mpol+0x1fc/0x540
[ 482.586868][T24758] new_slab+0x23d/0x330
[ 482.596911][T24758] ___slab_alloc+0xbfa/0x1600
[ 482.606774][T24758] __slab_alloc.constprop.0+0x56/0xb0
[ 482.607058][T24773] netlink: 'syz.3.8725': attribute type 1 has an invalid length.
[ 482.618334][T24758] __kmalloc_noprof+0x2de/0x4f0
[ 482.625604][T24758] tomoyo_realpath_from_path+0xbf/0x710
[ 482.631405][T24758] tomoyo_path_number_perm+0x248/0x5b0
[ 482.647352][T24775] netlink: 'syz.1.8727': attribute type 1 has an invalid length.
[ 482.656248][T24775] nbd: error processing sock list
[ 482.676444][T24758] tomoyo_path_mkdir+0x9c/0xe0
[ 482.682791][T24758] security_path_mkdir+0x154/0x2f0
[ 482.701247][T24758] do_mkdirat+0x176/0x3a0
[ 482.715283][T24758] __x64_sys_mkdirat+0x83/0xb0
[ 482.740602][T24758] do_syscall_64+0xcd/0x250
[ 482.745190][T24758] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 482.761120][T24758] page last free pid 6137 tgid 6137 stack trace:
[ 482.770245][T24758] free_frozen_pages+0x6db/0xfb0
[ 482.775248][T24758] __put_partials+0x14c/0x170
[ 482.783985][T24758] qlist_free_all+0x4e/0x120
[ 482.792363][T24758] kasan_quarantine_reduce+0x195/0x1e0
[ 482.799324][T24758] __kasan_slab_alloc+0x69/0x90
[ 482.805388][T24758] kmem_cache_alloc_noprof+0x1c8/0x3b0
[ 482.838166][T24758] vm_area_dup+0x53/0x300
[ 482.842592][T24758] copy_mm+0xe5d/0x2730
[ 482.849582][T24758] copy_process+0x3e6d/0x6f20
[ 482.854323][T24758] kernel_clone+0xfd/0x960
[ 482.875581][T24758] __do_sys_clone+0xba/0x100
[ 482.880312][T24758] do_syscall_64+0xcd/0x250
[ 482.885299][T24758] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 483.507871][T24809] tipc: Enabling of bearer rejected, media not registered
[ 484.309906][T24843] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[ 484.755985][T24859] sysfs_service_op_show: Client not running :-5:
[ 484.820865][T24863] dyndbg: expected <4096 bytes into control
[ 485.579959][T24902] �: entered promiscuous mode
[ 485.696251][T24907] svc: failed to register nfsdv3 RPC service (errno 111).
[ 485.711803][T24907] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 485.807527][T24916] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 486.524668][T24943] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[ 486.538580][T24943] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[ 486.727082][ T29] audit: type=1800 audit(4294967297.814:44): pid=24947 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.8807" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0
[ 487.751540][T24989] delete_channel: no stack
[ 487.993930][T25003] ubi0: attaching mtd0
[ 488.016185][T25003] ubi0: scanning is finished
[ 488.030582][T25003] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 488.129589][T25011] openvswitch: netlink: IP tunnel dst address not specified
[ 488.195690][T25003] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 488.386928][T25019] openvswitch: netlink: IP tunnel dst address not specified
[ 489.627245][T25086] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 489.896758][T25098] netlink: 'syz.6.8880': attribute type 1 has an invalid length.
[ 490.496843][T25130] netlink: 'syz.6.8895': attribute type 1 has an invalid length.
[ 491.085774][T25160] openvswitch: netlink: nsh attribute has 2 unknown bytes.
[ 491.618441][T25188] netlink: 306 bytes leftover after parsing attributes in process `syz.6.8922'.
[ 492.293422][T25220] netlink: 'syz.1.8936': attribute type 10 has an invalid length.
[ 492.377896][T25225] openvswitch: netlink: nsh attr 1 has unexpected len 14 expected 8
[ 492.618878][T25237] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8945'.
[ 493.604034][T25272] openvswitch: netlink: nsh attribute has 2 unknown bytes.
[ 495.388517][T25299] NFSD: Unable to initialize client recovery tracking! (-110)
[ 495.405396][T25299] NFSD: Is nfsdcld running? If not, enable CONFIG_NFSD_LEGACY_CLIENT_TRACKING.
[ 495.462614][T25299] NFSD: starting 90-second grace period (net f00004c4)
[ 496.716550][T25362] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd83
[ 497.882453][T25407] openvswitch: netlink: nsh attr 160 is out of range max 3
[ 500.136906][T25506] nbd: must specify a size in bytes for the device
[ 500.310468][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 500.319933][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 500.795754][T25533] svc: failed to register nfsdv3 RPC service (errno 111).
[ 500.813065][T25533] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 502.542918][T25616] netlink: 'syz.4.9113': attribute type 2 has an invalid length.
[ 502.662039][T25619] openvswitch: netlink: IP tunnel dst address not specified
[ 502.787767][T25625] openvswitch: netlink: Geneve opt len 1 is not a multiple of 4.
[ 502.796904][T25621] svc: failed to register nfsdv3 RPC service (errno 111).
[ 502.815461][T25621] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 503.630198][T25658] sd 0:0:1:0: PR command failed: 1026
[ 503.641585][T25658] sd 0:0:1:0: Sense Key : Illegal Request [current]
[ 503.658615][T25658] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 505.506641][T25731] program syz.3.9164 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 506.295362][T25717] NFSD: Unable to initialize client recovery tracking! (-110)
[ 506.305436][T25717] NFSD: Is nfsdcld running? If not, enable CONFIG_NFSD_LEGACY_CLIENT_TRACKING.
[ 506.324757][T25717] NFSD: starting 90-second grace period (net f00004c4)
[ 506.671500][T25766] netlink: zone id is out of range
[ 506.680901][T25766] netlink: zone id is out of range
[ 506.689090][T25766] netlink: zone id is out of range
[ 506.697430][T25766] netlink: zone id is out of range
[ 506.702997][T25766] netlink: zone id is out of range
[ 506.711476][T25766] netlink: zone id is out of range
[ 506.721462][T25766] netlink: zone id is out of range
[ 506.740239][T25766] netlink: zone id is out of range
[ 506.761379][T25766] netlink: zone id is out of range
[ 506.781709][T25766] netlink: zone id is out of range
[ 506.890096][T25770] svc: failed to register nfsdv3 RPC service (errno 111).
[ 506.907390][T25770] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 508.039693][T25797] unsupported nla_type 32969
[ 508.048190][T25799] CIFS mount error: No usable UNC path provided in device string!
[ 508.048190][T25799]
[ 508.079509][T25799] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 509.674539][T25844] netlink: 'syz.1.9213': attribute type 11 has an invalid length.
[ 509.727607][T25844] netlink: 'syz.1.9213': attribute type 11 has an invalid length.
[ 509.827763][T25846] netlink: 172 bytes leftover after parsing attributes in process `syz.3.9215'.
[ 510.870552][T25874] rnbd_client L213: map_device: Parameters missing
[ 515.096051][T26038] net_ratelimit: 28 callbacks suppressed
[ 515.096074][T26038] openvswitch: netlink: Missing valid actions attribute.
[ 515.340704][T26046] openvswitch: netlink: IPv4 tunnel dst address is zero
[ 515.892529][T26071] netlink: 4 bytes leftover after parsing attributes in process `syz.6.9315'.
[ 516.117792][T26081] sd 0:0:1:0: PR command failed: 1026
[ 516.123364][T26081] sd 0:0:1:0: Sense Key : Illegal Request [current]
[ 516.144194][T26081] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 523.600777][T26391] netlink: 'syz.4.9461': attribute type 1 has an invalid length.
[ 523.606976][T26389] netlink: 'syz.6.9460': attribute type 1 has an invalid length.
[ 524.035935][T26415] bcache: register_bcache() error : failed to open device
[ 524.052734][T26416] netlink: 'syz.4.9473': attribute type 2 has an invalid length.
[ 524.575601][T26441] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0
[ 525.866062][T26500] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9510'.
[ 527.334523][T26563] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9539'.
[ 529.464582][T26660] sctp: [Deprecated]: syz.1.9584 (pid 26660) Use of int in maxseg socket option.
[ 529.464582][T26660] Use struct sctp_assoc_value instead
[ 529.738987][ T29] audit: type=1804 audit(4294967341.047:45): pid=26671 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.9590" name="/newroot/1194/file0" dev="tmpfs" ino=6023 res=1 errno=0
[ 529.801539][ T29] audit: type=1800 audit(4294967341.047:46): pid=26671 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.9590" name="file0" dev="tmpfs" ino=6023 res=0 errno=0
[ 530.122161][T26689] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 530.324209][T26694] netlink: 16 bytes leftover after parsing attributes in process `syz.3.9599'.
[ 531.002333][T26713] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 531.393290][T26731] netlink: del zone limit has 8 unknown bytes
[ 531.737850][T26745] openvswitch: netlink: Key 23 has unexpected len 16 expected 2
[ 532.428877][T26772] sctp: [Deprecated]: syz.1.9636 (pid 26772) Use of int in max_burst socket option deprecated.
[ 532.428877][T26772] Use struct sctp_assoc_value instead
[ 532.631042][T26782] openvswitch: netlink: Duplicate key (type 15).
[ 533.121805][T26806] sysfs_service_op_store: Client not running :-5:
[ 534.876943][T26872] openvswitch: netlink: Port -2134900732 exceeds max allowable 65535
[ 535.063099][T26880] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[ 535.720166][T26905] mmap: syz.1.9698 (26905): VmData 37466112 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[ 536.055855][T26919] openvswitch: netlink: Message has 1 unknown bytes.
[ 537.616927][T26986] nfsd: Unknown parameter 'DJ�'
[ 541.142319][T27122] openvswitch: netlink: Missing valid actions attribute.
[ 542.958065][T27194] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9831'.
[ 543.236584][T27203] netlink: 'syz.1.9835': attribute type 1 has an invalid length.
[ 543.458722][T27213] netlink: zone id is out of range
[ 543.482913][T27213] netlink: set zone limit has 4 unknown bytes
[ 545.063407][T27288] netlink: 'syz.3.9874': attribute type 1 has an invalid length.
[ 545.253323][T27294] openvswitch: netlink: Geneve option length err (len 256, max 255).
[ 545.306961][T27299] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 546.019517][T27328] openvswitch: netlink: ct_state flags 02001eac unsupported
[ 547.501947][T27377] openvswitch: netlink: Flow key attr not present in new flow.
[ 548.478352][T27419] openvswitch: netlink: Flow actions attr not present in new flow.
[ 549.059240][ T29] audit: type=1107 audit(4294967360.468:47): pid=27436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[ 549.776447][T27464] cifs: Unknown parameter ''
[ 550.028018][T27472] netlink: 16 bytes leftover after parsing attributes in process `syz.6.9963'.
[ 551.520839][T27536] openvswitch: netlink: IP tunnel attribute has 5 unknown bytes.
[ 552.014020][ T60] bridge_slave_1: left allmulticast mode
[ 552.030627][ T60] bridge_slave_1: left promiscuous mode
[ 552.044912][ T60] bridge0: port 2(bridge_slave_1) entered disabled state
[ 552.127777][ T60] bridge_slave_0: left allmulticast mode
[ 552.139757][ T60] bridge_slave_0: left promiscuous mode
[ 552.145581][ T60] bridge0: port 1(bridge_slave_0) entered disabled state
[ 552.887255][T27579] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 552.900289][T27579] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 552.924122][T27579] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 552.965039][T27579] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 552.992552][T27579] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 553.007536][T27579] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 553.138789][ T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 553.153919][ T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 553.164514][ T60] bond0 (unregistering): Released all slaves
[ 553.260881][ T60] nl80211: left promiscuous mode
[ 553.412180][ T60] HfR: left promiscuous mode
[ 553.521440][ T60] HSR: left promiscuous mode
[ 553.540914][T27591] sysfs: cannot create duplicate filename '/class/ieee80211/!P�jE�r҄y*"�l-�y�L�̓��]'
[ 553.562783][T27591] CPU: 0 UID: 0 PID: 27591 Comm: syz.6.10014 Tainted: G U 6.14.0-rc2-syzkaller-00034-gfebbc555cf0f #0
[ 553.562821][T27591] Tainted: [U]=USER
[ 553.562828][T27591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 553.562842][T27591] Call Trace:
[ 553.562849][T27591]
[ 553.562859][T27591] dump_stack_lvl+0x16c/0x1f0
[ 553.562905][T27591] sysfs_warn_dup+0x7f/0xa0
[ 553.562940][T27591] sysfs_do_create_link_sd+0x124/0x140
[ 553.562978][T27591] sysfs_create_link+0x61/0xc0
[ 553.563012][T27591] device_add+0x62e/0x1a70
[ 553.563049][T27591] ? __pfx_device_add+0x10/0x10
[ 553.563079][T27591] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 553.563113][T27591] ? ieee80211_set_bitrate_flags+0x249/0x6a0
[ 553.563149][T27591] wiphy_register+0x1c7a/0x2860
[ 553.563179][T27591] ? netdev_run_todo+0x877/0x1320
[ 553.563228][T27591] ? __pfx_wiphy_register+0x10/0x10
[ 553.563281][T27591] ieee80211_register_hw+0x23ff/0x3ff0
[ 553.563332][T27591] ? __pfx_ieee80211_register_hw+0x10/0x10
[ 553.563361][T27591] ? net_generic+0xea/0x2a0
[ 553.563395][T27591] ? lockdep_init_map_type+0x16d/0x7d0
[ 553.563426][T27591] ? rcu_is_watching+0x12/0xc0
[ 553.563460][T27591] ? trace_hrtimer_init+0x1a6/0x230
[ 553.563489][T27591] ? __hrtimer_init+0x106/0x2c0
[ 553.563521][T27591] mac80211_hwsim_new_radio+0x2c47/0x56d0
[ 553.563577][T27591] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 553.563627][T27591] hwsim_new_radio_nl+0xb42/0x12b0
[ 553.563664][T27591] ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 553.563710][T27591] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 553.563746][T27591] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 553.563793][T27591] genl_family_rcv_msg_doit+0x202/0x2f0
[ 553.563833][T27591] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 553.563869][T27591] ? trace_cap_capable+0x1a2/0x210
[ 553.563936][T27591] ? bpf_lsm_capable+0x9/0x10
[ 553.563966][T27591] ? security_capable+0x7e/0x260
[ 553.564002][T27591] ? ns_capable+0xd7/0x110
[ 553.564036][T27591] genl_rcv_msg+0x565/0x800
[ 553.564064][T27591] ? __pfx_genl_rcv_msg+0x10/0x10
[ 553.564089][T27591] ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 553.564138][T27591] netlink_rcv_skb+0x165/0x410
[ 553.564173][T27591] ? __pfx_genl_rcv_msg+0x10/0x10
[ 553.564199][T27591] ? __pfx_netlink_rcv_skb+0x10/0x10
[ 553.564257][T27591] ? down_read+0xc9/0x330
[ 553.564281][T27591] ? __pfx_down_read+0x10/0x10
[ 553.564306][T27591] ? netlink_deliver_tap+0x1ae/0xca0
[ 553.564345][T27591] genl_rcv+0x28/0x40
[ 553.564378][T27591] netlink_unicast+0x53c/0x7f0
[ 553.564415][T27591] ? __pfx_netlink_unicast+0x10/0x10
[ 553.564449][T27591] ? __phys_addr_symbol+0x30/0x80
[ 553.564484][T27591] ? __check_object_size+0x488/0x710
[ 553.564519][T27591] netlink_sendmsg+0x8b8/0xd70
[ 553.564559][T27591] ? __pfx_netlink_sendmsg+0x10/0x10
[ 553.564607][T27591] ____sys_sendmsg+0x9ae/0xb40
[ 553.564638][T27591] ? copy_msghdr_from_user+0x10b/0x160
[ 553.564663][T27591] ? __pfx_____sys_sendmsg+0x10/0x10
[ 553.564709][T27591] ___sys_sendmsg+0x135/0x1e0
[ 553.564737][T27591] ? __pfx____sys_sendmsg+0x10/0x10
[ 553.564771][T27591] ? __pfx_lock_release+0x10/0x10
[ 553.564795][T27591] ? trace_lock_acquire+0x14e/0x1f0
[ 553.564823][T27591] ? __fget_files+0x206/0x3a0
[ 553.564853][T27591] __sys_sendmsg+0x16e/0x220
[ 553.564877][T27591] ? __pfx___sys_sendmsg+0x10/0x10
[ 553.564898][T27591] ? __x64_sys_futex+0x1e1/0x4c0
[ 553.564942][T27591] do_syscall_64+0xcd/0x250
[ 553.564967][T27591] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 553.564997][T27591] RIP: 0033:0x7ffbcab8cde9
[ 553.565018][T27591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 553.565040][T27591] RSP: 002b:00007ffbcb9d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 553.565062][T27591] RAX: ffffffffffffffda RBX: 00007ffbcada5fa0 RCX: 00007ffbcab8cde9
[ 553.565077][T27591] RDX: 0000000004000800 RSI: 00004000000000c0 RDI: 0000000000000003
[ 553.565093][T27591] RBP: 00007ffbcac0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 553.565107][T27591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 553.565121][T27591] R13: 0000000000000000 R14: 00007ffbcada5fa0 R15: 00007ffffdb3ead8
[ 553.565154][T27591]
[ 554.082770][T27601] netlink: 'syz.3.10018': attribute type 1 has an invalid length.
[ 554.215617][T27578] chnl_net:caif_netlink_parms(): no params data found
[ 554.651729][T27578] bridge0: port 1(bridge_slave_0) entered blocking state
[ 554.662822][T27578] bridge0: port 1(bridge_slave_0) entered disabled state
[ 554.692518][T27578] bridge_slave_0: entered allmulticast mode
[ 554.712159][T27578] bridge_slave_0: entered promiscuous mode
[ 554.787123][T27578] bridge0: port 2(bridge_slave_1) entered blocking state
[ 554.798278][T27578] bridge0: port 2(bridge_slave_1) entered disabled state
[ 554.813937][T27578] bridge_slave_1: entered allmulticast mode
[ 554.821021][T27578] bridge_slave_1: entered promiscuous mode
[ 554.928149][T27578] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 554.954967][T27578] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 555.070832][T27579] Bluetooth: hci1: command tx timeout
[ 555.204717][T27578] team0: Port device team_slave_0 added
[ 555.216352][T27578] team0: Port device team_slave_1 added
[ 555.461426][T27578] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 555.468431][T27578] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 555.549030][T27578] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 555.608141][T27578] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 555.630296][T27578] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 555.677448][T27578] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 555.793947][T27578] hsr_slave_0: entered promiscuous mode
[ 555.813633][T27660] nbd: must specify a device to reconfigure
[ 555.825930][T27578] hsr_slave_1: entered promiscuous mode
[ 555.838336][T27578] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 555.846161][T27578] Cannot create hsr debugfs directory
[ 556.466148][ T60] hsr_slave_0: left promiscuous mode
[ 556.482550][ T60] hsr_slave_1: left promiscuous mode
[ 556.489231][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 556.504995][ T60] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 556.517025][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 556.540552][ T60] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 556.577970][ T60] veth1_macvtap: left promiscuous mode
[ 556.588145][ T60] veth0_macvtap: left promiscuous mode
[ 556.596740][ T60] veth1_vlan: left promiscuous mode
[ 556.602451][ T60] veth0_vlan: left promiscuous mode
[ 557.135983][T27579] Bluetooth: hci1: command tx timeout
[ 558.038629][ T60] team0 (unregistering): Port device team_slave_1 removed
[ 558.114191][ T60] team0 (unregistering): Port device team_slave_0 removed
[ 558.934381][T27578] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 558.984960][T27578] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 559.047965][T27578] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 559.088003][T27578] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 559.209171][T27579] Bluetooth: hci1: command tx timeout
[ 559.337978][T27578] 8021q: adding VLAN 0 to HW filter on device bond0
[ 559.387389][T27578] 8021q: adding VLAN 0 to HW filter on device team0
[ 559.407489][ T1154] bridge0: port 1(bridge_slave_0) entered blocking state
[ 559.414674][ T1154] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 559.472984][T27735] netlink: 'syz.1.10073': attribute type 3 has an invalid length.
[ 559.481402][T27735] netlink: 235 bytes leftover after parsing attributes in process `syz.1.10073'.
[ 559.527582][ T1154] bridge0: port 2(bridge_slave_1) entered blocking state
[ 559.534812][ T1154] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 559.984243][T27578] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 560.430857][T27578] veth0_vlan: entered promiscuous mode
[ 560.451137][T27578] veth1_vlan: entered promiscuous mode
[ 560.512527][T27578] veth0_macvtap: entered promiscuous mode
[ 560.536586][T27578] veth1_macvtap: entered promiscuous mode
[ 560.601218][T27578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 560.622519][T27578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 560.638457][T27578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 560.649457][T27578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 560.669184][T27578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 560.687888][T27578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 560.707188][T27578] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 560.734575][T27578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 560.745435][T27578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 560.755917][T27578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 560.767417][T27578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 560.777835][T27578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 560.804945][T27578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 560.816679][T27578] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 560.838959][T27578] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 560.861642][T27578] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 560.870396][T27578] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 560.902016][T27578] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 561.130290][ T1154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 561.138168][ T1154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 561.205838][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 561.219612][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 561.279823][T27579] Bluetooth: hci1: command tx timeout
[ 561.433148][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 561.439801][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 562.261456][T27843] netlink: 342 bytes leftover after parsing attributes in process `syz.1.10119'.
[ 563.641552][T27902] nfs4: Unknown parameter 'nfsd'
[ 563.672717][T27904] nbd: couldn't find device at index 33904
[ 563.886022][T27914] netlink: Unknown conntrack attr (type=146, max=9)
[ 565.952903][T27992] netlink: 'syz.3.10189': attribute type 1 has an invalid length.
[ 565.985222][T27993] Process accounting resumed
[ 566.556138][T28016] openvswitch: netlink: Multiple metadata blocks provided
[ 566.926779][T28030] netlink: 'syz.7.10207': attribute type 2 has an invalid length.
[ 567.071478][T28034] openvswitch: netlink: IPv6 tunnel dst address is zero
[ 570.451406][T28183] vivid-003: ================= START STATUS =================
[ 570.471938][T28183] vivid-003: Radio HW Seek Mode: Bounded
[ 570.490084][T28183] vivid-003: Radio Programmable HW Seek: false
[ 570.500187][T28183] vivid-003: RDS Rx I/O Mode: Block I/O
[ 570.510311][T28183] vivid-003: Generate RBDS Instead of RDS: false
[ 570.530565][T28183] vivid-003: RDS Reception: true
[ 570.550937][T28183] vivid-003: RDS Program Type: 0 inactive
[ 570.556999][T28183] vivid-003: RDS PS Name: inactive
[ 570.572005][T28183] vivid-003: RDS Radio Text: inactive
[ 570.588173][T28183] vivid-003: RDS Traffic Announcement: false inactive
[ 570.607056][T28183] vivid-003: RDS Traffic Program: false inactive
[ 570.617500][T28183] vivid-003: RDS Music: false inactive
[ 570.630948][T28183] vivid-003: ================== END STATUS ==================
[ 572.873757][T28248] openvswitch: netlink: push_nsh: missing base or metadata attributes
[ 576.334876][T27579] Bluetooth: hci3: unexpected subevent 0x04 length: 122 > 11
[ 577.055258][T28398] netlink: 'syz.7.10376': attribute type 1 has an invalid length.
[ 577.205714][T28404] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[ 580.817137][T28513] openvswitch: netlink: Message has 4 unknown bytes.
[ 581.156536][T28521] netlink: Conntrack attr type has unexpected length (type=0, length=3, expected=0)
[ 582.053893][T28543] batman_adv: Routing algorithm '' is not supported
[ 582.704111][T28559] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 584.091746][ T29] audit: type=1800 audit(4294967395.690:48): pid=28607 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.10473" name="members" dev="configfs" ino=83354 res=0 errno=0
[ 587.417080][T28695] zero sized request
[ 587.878147][T28705] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10517'.
[ 587.919861][T28707] delete_channel: no stack
[ 589.404003][T28753] openvswitch: netlink: Duplicate or invalid key (type 0).
[ 589.614763][T28759] netlink: 4 bytes leftover after parsing attributes in process `syz.7.10539'.
[ 590.454691][T28783] netlink: 346 bytes leftover after parsing attributes in process `syz.6.10551'.
[ 590.751472][T28797] netlink: 'syz.1.10557': attribute type 1 has an invalid length.
[ 592.164875][T28831] bridge0: port 3(team0) entered blocking state
[ 592.174210][T28831] bridge0: port 3(team0) entered disabled state
[ 592.185075][T28831] team0: entered allmulticast mode
[ 592.194219][T28831] team_slave_0: entered allmulticast mode
[ 592.202884][T28831] team_slave_1: entered allmulticast mode
[ 592.217322][T28831] team0: entered promiscuous mode
[ 592.226720][T28831] team_slave_0: entered promiscuous mode
[ 592.237503][T28831] team_slave_1: entered promiscuous mode
[ 592.252799][T28831] bridge0: port 3(team0) entered blocking state
[ 592.260541][T28831] bridge0: port 3(team0) entered forwarding state
[ 592.987513][T28853] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10578'.
[ 593.296607][T27579] Bluetooth: hci3: ACL packet too small
[ 594.018922][T28888] block nbd0: Unsupported socket: shutdown callout must be supported.
[ 596.540756][T28961] input: j�J�Ǹ-9%vlQ J86� as /devices/virtual/input/input44
[ 600.145875][T29063] bridge0: port 4(syz_tun) entered blocking state
[ 600.157629][T29063] bridge0: port 4(syz_tun) entered disabled state
[ 600.164482][T29063] syz_tun: entered allmulticast mode
[ 600.251596][T29063] syz_tun: entered promiscuous mode
[ 603.621916][T29135] netlink: 342 bytes leftover after parsing attributes in process `syz.7.10705'.
[ 604.603773][T29171] netlink: 206 bytes leftover after parsing attributes in process `syz.7.10722'.
[ 604.664295][T29173] netlink: 346 bytes leftover after parsing attributes in process `syz.1.10720'.
[ 604.733112][T29175] ptrace attach of "./syz-executor exec"[6137] was attempted by "./syz-executor exec"[29175]
[ 608.170556][T29274] size and base must be multiples of 4 kiB
[ 608.214754][T29274] CPU: 1 UID: 0 PID: 29274 Comm: syz.6.10766 Tainted: G U 6.14.0-rc2-syzkaller-00034-gfebbc555cf0f #0
[ 608.214794][T29274] Tainted: [U]=USER
[ 608.214801][T29274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 608.214815][T29274] Call Trace:
[ 608.214821][T29274]
[ 608.214830][T29274] dump_stack_lvl+0x16c/0x1f0
[ 608.214874][T29274] mtrr_add+0xdf/0x110
[ 608.214900][T29274] mtrr_ioctl+0x7cd/0xcd0
[ 608.214924][T29274] ? __pfx_mtrr_ioctl+0x10/0x10
[ 608.214952][T29274] ? __pfx_lock_release+0x10/0x10
[ 608.215664][T29274] ? ksys_semctl.constprop.0+0x150/0x2e0
[ 608.215710][T29274] ? __fget_files+0x206/0x3a0
[ 608.215732][T29274] ? __pfx_mtrr_ioctl+0x10/0x10
[ 608.215756][T29274] proc_reg_unlocked_ioctl+0x226/0x320
[ 608.215779][T29274] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[ 608.215801][T29274] __x64_sys_ioctl+0x190/0x200
[ 608.215833][T29274] do_syscall_64+0xcd/0x250
[ 608.215859][T29274] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 608.215894][T29274] RIP: 0033:0x7ffbcab8cde9
[ 608.215917][T29274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 608.215941][T29274] RSP: 002b:00007ffbcb9d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 608.215967][T29274] RAX: ffffffffffffffda RBX: 00007ffbcada5fa0 RCX: 00007ffbcab8cde9
[ 608.215984][T29274] RDX: 0000000000000007 RSI: 00000000400c4d01 RDI: 0000000000000003
[ 608.216000][T29274] RBP: 00007ffbcac0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 608.216013][T29274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 608.216026][T29274] R13: 0000000000000000 R14: 00007ffbcada5fa0 R15: 00007ffffdb3ead8
[ 608.216052][T29274]
[ 612.456187][T29377] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[ 612.527523][T29377] svc: failed to register nfsdv3 RPC service (errno 111).
[ 612.546727][T29377] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 612.969698][T29390] input: j�J�Ǹ-9%vlQ J86� as /devices/virtual/input/input45
[ 617.614578][T29482] kexec: Could not allocate control_code_buffer
[ 619.269892][T29552] could not allocate digest TFM handle �
[ 621.221082][ T29] audit: type=1807 audit(4294967433.013:49): UNKNOWN=
[ 621.223010][ T29] audit: type=1802 audit(4294967433.013:50): pid=29606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.7.10898" res=0 errno=0
[ 621.387755][T29603] ima: policy update failed
[ 621.556129][ T29] audit: type=1802 audit(4294967433.194:51): pid=29603 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.7.10898" res=0 errno=0
[ 622.557132][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 622.566817][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 623.252676][T29638] ima: policy update failed
[ 623.255031][ T29] audit: type=1807 audit(4294967435.054:52): UNKNOWN=
[ 623.258259][ T29] audit: type=1802 audit(4294967435.054:53): pid=29639 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.10913" res=0 errno=0
[ 623.610536][ T29] audit: type=1802 audit(4294967435.074:54): pid=29638 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.10913" res=0 errno=0
[ 628.457502][T29739] hugetlbfs: syz.7.10962 (29739): Using mlock ulimits for SHM_HUGETLB is obsolete
[ 632.285364][T29812] netlink: 18 bytes leftover after parsing attributes in process `syz.1.10984'.
[ 632.799940][T29825] ptrace attach of "./syz-executor exec"[27578] was attempted by ""[29825]
[ 635.343722][T29865] netlink: 28 bytes leftover after parsing attributes in process `syz.7.11005'.
[ 636.922602][T29890] netlink: 350 bytes leftover after parsing attributes in process `syz.1.11017'.
[ 643.680483][T30003] netlink: 4 bytes leftover after parsing attributes in process `syz.6.11064'.
[ 648.351802][T30079] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11096'.
[ 648.386024][T30082] program syz.7.11097 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 650.996837][ T35] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 651.183444][ T35] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 651.469029][ T35] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 651.509244][ T6139] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 651.538517][ T6139] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 651.555209][ T6139] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 651.577496][ T6139] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 651.593759][ T6139] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 651.613164][ T6139] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 651.837834][ T35] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 652.399345][ T35] bridge_slave_1: left allmulticast mode
[ 652.442405][ T35] bridge_slave_1: left promiscuous mode
[ 652.475889][ T35] bridge0: port 2(bridge_slave_1) entered disabled state
[ 652.519018][ T35] bridge_slave_0: left allmulticast mode
[ 652.534900][ T35] bridge_slave_0: left promiscuous mode
[ 652.555108][ T35] bridge0: port 1(bridge_slave_0) entered disabled state
[ 653.478055][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 653.495832][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 653.519025][ T35] bond0 (unregistering): Released all slaves
[ 653.544443][T30164] bridge0: port 5(macvlan1) entered blocking state
[ 653.553340][T30164] bridge0: port 5(macvlan1) entered disabled state
[ 653.565471][T30164] macvlan1: entered allmulticast mode
[ 653.579927][T30164] veth1_vlan: entered allmulticast mode
[ 653.605419][T30164] macvlan1: entered promiscuous mode
[ 653.633570][T30164] bridge0: port 5(macvlan1) entered blocking state
[ 653.647240][T30164] bridge0: port 5(macvlan1) entered forwarding state
[ 653.739110][T30130] chnl_net:caif_netlink_parms(): no params data found
[ 653.750873][ T6139] Bluetooth: hci1: command tx timeout
[ 654.361307][T30130] bridge0: port 1(bridge_slave_0) entered blocking state
[ 654.380768][T30130] bridge0: port 1(bridge_slave_0) entered disabled state
[ 654.404539][T30130] bridge_slave_0: entered allmulticast mode
[ 654.440378][T30130] bridge_slave_0: entered promiscuous mode
[ 654.470174][T30130] bridge0: port 2(bridge_slave_1) entered blocking state
[ 654.506162][T30130] bridge0: port 2(bridge_slave_1) entered disabled state
[ 654.533140][T30130] bridge_slave_1: entered allmulticast mode
[ 654.559094][T30130] bridge_slave_1: entered promiscuous mode
[ 654.664796][ T35] hsr_slave_0: left promiscuous mode
[ 654.710367][ T35] hsr_slave_1: left promiscuous mode
[ 654.724062][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 654.758116][ T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 654.796200][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 654.805347][ T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 654.903420][ T35] veth1_macvtap: left promiscuous mode
[ 654.910732][ T35] veth0_macvtap: left promiscuous mode
[ 654.934654][ T35] veth1_vlan: left promiscuous mode
[ 654.959175][ T35] veth0_vlan: left promiscuous mode
[ 655.591562][T30234] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11160'.
[ 655.827876][ T6139] Bluetooth: hci1: command tx timeout
[ 656.059883][ T35] team0 (unregistering): Port device team_slave_1 removed
[ 656.134854][ T35] team0 (unregistering): Port device team_slave_0 removed
[ 656.501522][T30240] netlink: 186 bytes leftover after parsing attributes in process `syz.3.11162'.
[ 657.111383][T30130] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 657.162481][T30130] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 657.348726][T30130] team0: Port device team_slave_0 added
[ 657.414417][T30130] team0: Port device team_slave_1 added
[ 657.581734][T30130] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 657.602314][T30130] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 657.637669][T30130] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 657.723838][T30130] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 657.753953][T30130] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 657.852080][T30130] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 657.897583][ T6139] Bluetooth: hci1: command tx timeout
[ 658.123344][T30130] hsr_slave_0: entered promiscuous mode
[ 658.142833][T30130] hsr_slave_1: entered promiscuous mode
[ 658.166142][T30130] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 658.195928][T30130] Cannot create hsr debugfs directory
[ 658.543638][T30293] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11179'.
[ 658.573204][T30293] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11179'.
[ 659.035994][T30130] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 659.062696][T30130] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 659.079597][T30130] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 659.095950][T30130] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 659.348463][T30130] 8021q: adding VLAN 0 to HW filter on device bond0
[ 659.430159][T30130] 8021q: adding VLAN 0 to HW filter on device team0
[ 659.458615][ T60] bridge0: port 1(bridge_slave_0) entered blocking state
[ 659.467799][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 659.568848][ T1117] bridge0: port 2(bridge_slave_1) entered blocking state
[ 659.579733][ T1117] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 659.716145][ T6139] Bluetooth: hci2: ACL packet for unknown connection handle 0
[ 659.761537][T30130] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 659.958872][ T6139] Bluetooth: hci1: command tx timeout
[ 660.317653][T30130] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 661.018704][T30130] veth0_vlan: entered promiscuous mode
[ 661.042520][T30130] veth1_vlan: entered promiscuous mode
[ 661.150967][T30130] veth0_macvtap: entered promiscuous mode
[ 661.196894][T30130] veth1_macvtap: entered promiscuous mode
[ 661.251193][T30130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 661.404890][T30130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 661.448938][T30130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 661.485863][T30130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 661.508210][T30130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 661.529033][T30130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 661.551618][T30130] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 661.604341][T30130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 661.641321][T30130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 661.667318][T30130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 661.697421][T30130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 661.719797][T30130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 661.756855][T30130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 661.798009][T30130] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 661.888789][T30130] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 661.939882][T30130] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 661.951228][T30130] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 661.961829][T30130] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 662.253915][ T1154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 662.270109][ T1154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 662.316295][ T1117] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 662.334879][ T1117] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 663.484386][T30451] bridge0: port 6(ipvlan1) entered blocking state
[ 663.517962][T30451] bridge0: port 6(ipvlan1) entered disabled state
[ 663.534675][T30451] ipvlan1: entered allmulticast mode
[ 663.559348][T30451] veth0_vlan: entered allmulticast mode
[ 663.619785][T30451] ipvlan1: left allmulticast mode
[ 663.647167][T30451] veth0_vlan: left allmulticast mode
[ 666.581514][T30555] input: f��0?\hՐJL'$d)K�L�o�1o�N0�ø.m)$cj@�qw�R=X as /devices/virtual/input/input46
[ 668.274251][T30608] device-mapper: ioctl: device name cannot contain '/'
[ 671.486949][T30690] netlink: 28 bytes leftover after parsing attributes in process `syz.3.11291'.
[ 674.570953][T30766] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11324'.
[ 683.676041][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 683.682492][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 685.987398][T31166] cifs: Unknown parameter '�T.�żc[���$�⁍)U�ÑnE-ʙ�l- -_5Z��omfwYh*/xD�lݩ��gkǐA7��9Xa/f_ARxM vp$^�;q3n�-�6�+ek
[ 687.065494][T31200] dump_stack_lvl+0x16c/0x1f0
[ 687.065539][T31200] gup_vma_lookup+0x1d2/0x220
[ 687.065579][T31200] __get_user_pages+0x236/0x36f0
[ 687.065616][T31200] ? hlock_class+0x4e/0x130
[ 687.065652][T31200] ? __lock_acquire+0x15a9/0x3c40
[ 687.065681][T31200] ? __pfx___get_user_pages+0x10/0x10
[ 687.065719][T31200] __gup_longterm_locked+0x212/0x1870
[ 687.065747][T31200] ? __pfx___lock_acquire+0x10/0x10
[ 687.065782][T31200] ? __pfx___gup_longterm_locked+0x10/0x10
[ 687.065811][T31200] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 687.065836][T31200] ? rwsem_read_trylock+0x12d/0x250
[ 687.065864][T31200] ? __pfx_rwsem_read_trylock+0x10/0x10
[ 687.065896][T31200] ? process_vm_rw_core.constprop.0+0x3ff/0x9c0
[ 687.065934][T31200] pin_user_pages_remote+0xee/0x150
[ 687.065963][T31200] ? __pfx_pin_user_pages_remote+0x10/0x10
[ 687.065989][T31200] ? down_read+0xc9/0x330
[ 687.066035][T31200] process_vm_rw_core.constprop.0+0x42b/0x9c0
[ 687.066077][T31200] ? futex_wait_queue+0x103/0x1f0
[ 687.066114][T31200] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10
[ 687.066174][T31200] process_vm_rw+0x301/0x360
[ 687.066208][T31200] ? __pfx_process_vm_rw+0x10/0x10
[ 687.066257][T31200] ? do_user_addr_fault+0xdc7/0x13f0
[ 687.066319][T31200] ? xfd_validate_state+0x5d/0x180
[ 687.066351][T31200] ? rcu_is_watching+0x12/0xc0
[ 687.066389][T31200] __x64_sys_process_vm_readv+0xe2/0x1c0
[ 687.066421][T31200] ? do_syscall_64+0x91/0x250
[ 687.066443][T31200] ? lockdep_hardirqs_on+0x7c/0x110
[ 687.066477][T31200] do_syscall_64+0xcd/0x250
[ 687.066503][T31200] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 687.066536][T31200] RIP: 0033:0x7f1975f8cde9
[ 687.066555][T31200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 687.066578][T31200] RSP: 002b:00007f1976d26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 687.066601][T31200] RAX: ffffffffffffffda RBX: 00007f19761a5fa0 RCX: 00007f1975f8cde9
[ 687.066617][T31200] RDX: 0000000000000004 RSI: 0000400000000040 RDI: 000000000000007e
[ 687.066632][T31200] RBP: 00007f197600e2a0 R08: 0000000000000003 R09: 0000000000000000
[ 687.066647][T31200] R10: 00004000000000c0 R11: 0000000000000246 R12: 0000000000000000
[ 687.066663][T31200] R13: 0000000000000000 R14: 00007f19761a5fa0 R15: 00007ffe129cb748
[ 687.066692][T31200]
[ 687.612927][ T29] audit: type=1800 audit(4294967499.728:55): pid=31220 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.11466" name="dbroot" dev="configfs" ino=91513 res=0 errno=0
[ 688.038895][T31240] bridge0: port 3(bond0) entered blocking state
[ 688.050831][T31240] bridge0: port 3(bond0) entered disabled state
[ 688.058419][T31240] bond0: entered allmulticast mode
[ 688.090812][T31240] bond_slave_0: entered allmulticast mode
[ 688.096714][T31240] bond_slave_1: entered allmulticast mode
[ 688.108884][T31240] bond0: entered promiscuous mode
[ 688.115833][T31240] bond_slave_0: entered promiscuous mode
[ 688.125705][T31240] bond_slave_1: entered promiscuous mode
[ 688.156330][T31240] bridge0: port 3(bond0) entered blocking state
[ 688.162779][T31240] bridge0: port 3(bond0) entered forwarding state
[ 689.866678][T31309] input: j�J�Ǹ-9%vlQ J86� as /devices/virtual/input/input47
[ 690.215678][T31324] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11511'.
[ 692.927756][T31401] netlink: 'syz.6.11550': attribute type 2 has an invalid length.
[ 693.611274][ T29] audit: type=1800 audit(4294967505.769:56): pid=31417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.11548" name=03 dev="tmpfs" ino=14593 res=0 errno=0
[ 694.093903][T31429] ovs�9: entered promiscuous mode
[ 694.727776][T31448] IPVS: length: 150994944 != 2818572296
[ 694.945580][T31456] bridge0: port 3(vlan1) entered blocking state
[ 694.952017][T31456] bridge0: port 3(vlan1) entered disabled state
[ 694.984333][T31456] vlan1: entered allmulticast mode
[ 694.989505][T31456] veth0_vlan: entered allmulticast mode
[ 695.014795][T31456] vlan1: entered promiscuous mode
[ 695.030996][T31456] bridge0: port 3(vlan1) entered blocking state
[ 695.037490][T31456] bridge0: port 3(vlan1) entered forwarding state
[ 701.275782][T31662] input: f��0?\hՐJL'$d)K�L�o�1o�N0�ø.m)$cj@�qw�R=X as /devices/virtual/input/input48
[ 702.431463][T31694] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11672'.
[ 706.125456][T31772] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 706.127164][T31772] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 706.948645][T31790] netlink: 8 bytes leftover after parsing attributes in process `syz.6.11714'.
[ 710.209736][T31898] bridge0: port 4(gretap0) entered blocking state
[ 710.227006][T31898] bridge0: port 4(gretap0) entered disabled state
[ 710.244511][T31898] gretap0: entered allmulticast mode
[ 710.260026][T31898] gretap0: entered promiscuous mode
[ 710.286219][T31898] bridge0: port 4(gretap0) entered blocking state
[ 710.293056][T31898] bridge0: port 4(gretap0) entered listening state
[ 712.522115][T31967] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11793'.
[ 712.889117][ T6139] Bluetooth: hci3: SCO packet for unknown connection handle 0
[ 713.002866][T31986] nbd: nbd7 already in use
[ 713.854635][ T6139] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[ 713.854670][ T6139] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[ 713.879375][ T6139] Bluetooth: hci2: adv larger than maximum supported
[ 713.879407][ T6139] Bluetooth: hci2: Unknown advertising packet type: 0x20
[ 713.886326][ T6139] Bluetooth: hci2: Unknown advertising packet type: 0x34
[ 713.893394][ T6139] Bluetooth: hci2: Unknown advertising packet type: 0x20
[ 713.900639][ T6139] Bluetooth: hci2: Unknown advertising packet type: 0x20
[ 713.907760][ T6139] Bluetooth: hci2: Unknown advertising packet type: 0x20
[ 713.914945][ T6139] Bluetooth: hci2: Unknown advertising packet type: 0x20
[ 714.494720][T32039] netlink: 12 bytes leftover after parsing attributes in process `syz.8.11826'.
[ 715.565863][T32081] ptrace attach of "./syz-executor exec"[30130] was attempted by "f�븜51h�Z9�9d\x09\x07E?wS:5{�?Hp�[)duF��0\x0dPRB9�&�F\x1b98jb �&-#-� D�#N0$.h>_ݵ#�Z#BJk(|z2\x07i�7͗i`!sRPCDa�ų*\x09m*mUr�A[�k`\x22�<ͯh�/[\x0bl5HN0dwndNdӛP:H\x5cH=*\x1bÑ{!s\x07v$�Pd�cd\x0b]t#cW|# =\x22�/Z\x22|0�ZE(q�7tD}O!F,*2Œ\x22DA�MC\x1brrB\x1b}�MͰ��+m\x0cç�4NXM[-\x5cZ�\x5cF \x0a�7;܍j3~�$,�\x5ce@{o`4*�\x0a�9Ăȇ\x0c�q�]y=l\x09eM�4GI��bOZ#Z@'^u-B\x0c:+?M\x1bH/Y0�\x09^Azi^&D�(fȦeQޭ$\x0d\x1bn-Dw+%+�sq\x0cK�6.��u\x0cl|RJ. Ө�0)AP2kgT3RhTZ+\x0c�1H\x0b\x0dV_\x5cG93\x0b��67s�Z0rG�O.4^ҒᕢJK[$(�x|SRhM4lf��Q6?s�ap̑�>^\x0a1&;c0�{uU�U���t-��Y{B�WT�Wguθ]n&�
[ 716.004330][T32088] Invalid ELF header magic: != ELF
[ 717.996407][T32155] netlink: 'syz.6.11876': attribute type 1 has an invalid length.
[ 718.278270][T32171] kafs: addr_prefs: Invalid Command
[ 719.261023][T32197] sctp: [Deprecated]: syz.6.11893 (pid 32197) Use of int in maxseg socket option.
[ 719.261023][T32197] Use struct sctp_assoc_value instead
[ 719.733148][T32224] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[ 719.753164][T32224] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[ 722.885275][T32340] netlink: 36 bytes leftover after parsing attributes in process `syz.8.11955'.
[ 724.057605][T32387] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11978'.
[ 725.698412][ C0] bridge0: port 4(gretap0) entered learning state
[ 725.887471][T32449] sctp: [Deprecated]: syz.8.12005 (pid 32449) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 725.887471][T32449] Use struct sctp_sack_info instead
[ 726.386004][T32477] netlink: 18 bytes leftover after parsing attributes in process `syz.8.12018'.
[ 728.282249][T32541] kafs: addr_prefs: Invalid Command
[ 729.078955][T32577] bridge0: port 6(netdevsim2) entered blocking state
[ 729.089392][T32577] bridge0: port 6(netdevsim2) entered disabled state
[ 729.097211][T32577] netdevsim netdevsim6 netdevsim2: entered allmulticast mode
[ 729.107506][T32577] netdevsim netdevsim6 netdevsim2: entered promiscuous mode
[ 729.122838][T32577] bridge0: port 6(netdevsim2) entered blocking state
[ 729.129751][T32577] bridge0: port 6(netdevsim2) entered forwarding state
[ 730.454108][ T29] audit: type=1800 audit(4294967542.811:57): pid=32630 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.12082" name="members" dev="configfs" ino=94949 res=0 errno=0
[ 731.185567][T32665] netlink: 'syz.6.12099': attribute type 62 has an invalid length.
[ 733.039591][ T1108] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 733.139811][ T1108] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 733.337479][ T1108] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 733.352137][T32737] ICMPv6: process `syz.8.12129' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[ 733.526332][ T1108] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 733.685675][T32745] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[ 733.732377][T27579] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 733.746222][T27579] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 733.756947][T27579] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 733.777682][T27579] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 733.796177][T27579] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 733.803895][T27579] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 733.894030][ T1108] gretap0: left allmulticast mode
[ 733.899357][ T1108] gretap0: left promiscuous mode
[ 733.929980][ T1108] bridge0: port 4(gretap0) entered disabled state
[ 733.944868][ T1108] bond0: left allmulticast mode
[ 733.949800][ T1108] bond_slave_0: left allmulticast mode
[ 733.959811][ T1108] bond_slave_1: left allmulticast mode
[ 733.969260][ T1108] bond0: left promiscuous mode
[ 733.975928][ T1108] bond_slave_0: left promiscuous mode
[ 733.985809][ T1108] bond_slave_1: left promiscuous mode
[ 734.011837][ T1108] bridge0: port 3(bond0) entered disabled state
[ 734.022909][ T1108] bridge_slave_1: left allmulticast mode
[ 734.028604][ T1108] bridge_slave_1: left promiscuous mode
[ 734.036154][ T1108] bridge0: port 2(bridge_slave_1) entered disabled state
[ 734.074044][ T1108] bridge_slave_0: left allmulticast mode
[ 734.091027][ T1108] bridge_slave_0: left promiscuous mode
[ 734.096929][ T1108] bridge0: port 1(bridge_slave_0) entered disabled state
[ 734.570446][T32767] zswap: compressor not available
[ 734.985406][ T1108] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 735.003142][ T1108] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 735.034984][ T1108] bond0 (unregistering): Released all slaves
[ 735.155090][ T1108] .SR: left promiscuous mode
[ 735.695889][T32746] chnl_net:caif_netlink_parms(): no params data found
[ 735.891572][ T6139] Bluetooth: hci0: command tx timeout
[ 736.219832][T32746] bridge0: port 1(bridge_slave_0) entered blocking state
[ 736.245602][T32746] bridge0: port 1(bridge_slave_0) entered disabled state
[ 736.254460][T32746] bridge_slave_0: entered allmulticast mode
[ 736.265584][T32746] bridge_slave_0: entered promiscuous mode
[ 736.283434][T32746] bridge0: port 2(bridge_slave_1) entered blocking state
[ 736.299412][T32746] bridge0: port 2(bridge_slave_1) entered disabled state
[ 736.306692][T32746] bridge_slave_1: entered allmulticast mode
[ 736.345854][T32746] bridge_slave_1: entered promiscuous mode
[ 736.551906][T32746] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 736.585589][T32746] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 736.689582][ T376] netlink: 28 bytes leftover after parsing attributes in process `syz.6.12167'.
[ 736.815250][T32746] team0: Port device team_slave_0 added
[ 736.848484][T32746] team0: Port device team_slave_1 added
[ 737.233460][T32746] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 737.291301][T32746] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 737.355925][T32746] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 737.382498][T32746] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 737.404901][T32746] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 737.485567][T32746] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 737.599471][ T8] smpboot: CPU 1 is now offline
[ 737.639780][ T1108] hsr_slave_0: left promiscuous mode
[ 737.695782][ T1108] hsr_slave_1: left promiscuous mode
[ 737.719466][ T1108] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 737.761209][ T1108] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 737.850538][ T1108] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 737.894759][ T1108] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 737.954048][ T6139] Bluetooth: hci0: command tx timeout
[ 738.000082][ T1108] veth1_macvtap: left promiscuous mode
[ 738.029727][ T1108] veth0_macvtap: left promiscuous mode
[ 738.057962][ T1108] veth1_vlan: left promiscuous mode
[ 738.088031][ T1108] veth0_vlan: left promiscuous mode
[ 739.916747][ T1108] team0 (unregistering): Port device team_slave_1 removed
[ 740.026193][ T6139] Bluetooth: hci0: command tx timeout
[ 740.075516][ T1108] team0 (unregistering): Port device team_slave_0 removed
[ 740.168483][ T452] svc: failed to register nfsdv3 RPC service (errno 111).
[ 740.193763][ T452] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 741.388460][ T457] netlink: 4 bytes leftover after parsing attributes in process `syz.8.12194'.
[ 741.465891][ T419] netlink: 342 bytes leftover after parsing attributes in process `syz.3.12180'.
[ 741.501433][ T421] netlink: 342 bytes leftover after parsing attributes in process `syz.3.12180'.
[ 741.649924][T32746] hsr_slave_0: entered promiscuous mode
[ 741.701876][T32746] hsr_slave_1: entered promiscuous mode
[ 742.099212][ T6139] Bluetooth: hci0: command tx timeout
[ 742.159944][ T475] syz.8.12201 (475): /proc/473/oom_adj is deprecated, please use /proc/473/oom_score_adj instead.
[ 742.566074][T32746] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 742.709250][T32746] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 742.797169][T32746] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 742.841149][T32746] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 743.110704][T32746] 8021q: adding VLAN 0 to HW filter on device bond0
[ 743.180384][T32746] 8021q: adding VLAN 0 to HW filter on device team0
[ 743.255113][ T1108] bridge0: port 1(bridge_slave_0) entered blocking state
[ 743.262239][ T1108] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 743.318437][ T1108] bridge0: port 2(bridge_slave_1) entered blocking state
[ 743.325628][ T1108] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 743.524289][T32746] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 744.036064][T32746] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 744.799212][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 744.809199][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 744.860991][T32746] veth0_vlan: entered promiscuous mode
[ 744.934658][T32746] veth1_vlan: entered promiscuous mode
[ 744.975588][ T559] netlink: 342 bytes leftover after parsing attributes in process `syz.6.12221'.
[ 745.092032][T32746] veth0_macvtap: entered promiscuous mode
[ 745.155456][T32746] veth1_macvtap: entered promiscuous mode
[ 745.256817][T32746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 745.327569][T32746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 745.387753][T32746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 745.457934][T32746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 745.524564][T32746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 745.578038][T32746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 745.643135][T32746] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 745.707720][T32746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 745.765931][T32746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 745.808248][T32746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 745.871216][T32746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 745.921494][T32746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 745.964864][T32746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 746.003905][T32746] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 746.092647][T32746] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 746.138208][T32746] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 746.191777][T32746] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 746.217092][T32746] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 746.615250][ T594] netlink: 28 bytes leftover after parsing attributes in process `syz.8.12229'.
[ 746.876522][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 746.959291][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 747.065032][ T1108] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 747.072968][ T1108] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 750.993121][ T711] input: j�J�Ǹ-9%vlQ J86� as /devices/virtual/input/input50
[ 754.914096][ T812] nbd: socks must be embedded in a SOCK_ITEM attr
[ 754.956273][ T812] block nbd0: shutting down sockets
[ 762.914217][ T1004] netlink: 28 bytes leftover after parsing attributes in process `syz.3.12356'.
[ 763.568412][ T1023] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[ 771.991285][ T1341] netlink: 28 bytes leftover after parsing attributes in process `syz.6.12450'.
[ 772.055740][ T1341] bridge0: port 6(netdevsim2) entered disabled state
[ 772.062556][ T1341] bridge0: port 5(macvlan1) entered disabled state
[ 772.069215][ T1341] bridge0: port 3(team0) entered disabled state
[ 772.075546][ T1341] bridge0: port 2(bridge_slave_1) entered disabled state
[ 772.082965][ T1341] bridge0: port 1(bridge_slave_0) entered disabled state
[ 772.230373][ T1341] bridge0: entered promiscuous mode
[ 772.254982][ T1341] bridge0: entered allmulticast mode
[ 774.022013][ T1397] netlink: 338 bytes leftover after parsing attributes in process `syz.3.12473'.
[ 774.424916][ T1409] netlink: 28 bytes leftover after parsing attributes in process `syz.6.12478'.
[ 774.768770][ T1416] netlink: 28 bytes leftover after parsing attributes in process `syz.9.12480'.
[ 774.816659][ T1416] bridge0: port 2(bridge_slave_1) entered disabled state
[ 774.825281][ T1416] bridge0: port 1(bridge_slave_0) entered disabled state
[ 774.891497][ T1416] bridge0: entered promiscuous mode
[ 774.926810][ T1416] bridge0: entered allmulticast mode
[ 775.761857][ T1444] netlink: 294 bytes leftover after parsing attributes in process `syz.6.12493'.
[ 775.990915][ T1448] netlink: 346 bytes leftover after parsing attributes in process `syz.6.12495'.
[ 776.058801][ T1449] erspan0: entered allmulticast mode
[ 777.054019][ T1474] smc: net device syz_tun applied user defined pnetid ETHTOOL
[ 777.236747][ T1480] netlink: 28 bytes leftover after parsing attributes in process `syz.3.12509'.
[ 777.274414][ T1480] bridge0: port 2(bridge_slave_1) entered disabled state
[ 777.281793][ T1480] bridge0: port 1(bridge_slave_0) entered disabled state
[ 777.356098][ T1480] bridge0: entered promiscuous mode
[ 777.376973][ T1480] bridge0: entered allmulticast mode
[ 777.433857][T27579] Bluetooth: hci1: command 0x0406 tx timeout
[ 779.370939][ T1545] netlink: 'syz.8.12537': attribute type 11 has an invalid length.
[ 781.614330][ T1594] sctp: [Deprecated]: syz.3.12558 (pid 1594) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 781.614330][ T1594] Use struct sctp_sack_info instead
[ 782.822352][ T1635] sg_read: process 4229 (syz.6.12576) changed security contexts after opening file descriptor, this is not allowed.
[ 783.977020][ T1659] netlink: 8 bytes leftover after parsing attributes in process `syz.8.12585'.
[ 786.929422][ T1720] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12609'.
[ 787.972968][ T1746] kAFS: bad VL server IP address
[ 789.322058][ T1776] netlink: 342 bytes leftover after parsing attributes in process `syz.6.12632'.
[ 792.137012][ T1855] sd 0:0:1:0: PR command failed: 1026
[ 792.176010][ T1855] sd 0:0:1:0: Sense Key : Illegal Request [current]
[ 792.234145][ T1855] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 792.327934][ T1859] nbd1: detected capacity change from 0 to 68719476736
[ 792.389868][T30304] block nbd1: Send control failed (result -22)
[ 792.396468][T30304] block nbd1: Request send failed, requeueing
[ 792.559559][ T6139] block nbd1: Receive control failed (result -32)
[ 792.580009][ T43] block nbd1: Dead connection, failed to find a fallback
[ 792.588731][ T43] block nbd1: shutting down sockets
[ 792.594346][ T43] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 792.605729][ T43] Buffer I/O error on dev nbd1, logical block 0, async page read
[ 792.623259][T30304] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 792.691364][T30304] Buffer I/O error on dev nbd1, logical block 0, async page read
[ 792.753094][T30304] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 792.838896][T30304] Buffer I/O error on dev nbd1, logical block 0, async page read
[ 792.907359][T30304] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 792.982405][T30304] Buffer I/O error on dev nbd1, logical block 0, async page read
[ 793.021515][T30304] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 793.070414][T30304] Buffer I/O error on dev nbd1, logical block 0, async page read
[ 793.100962][T30304] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 793.168986][T30304] Buffer I/O error on dev nbd1, logical block 0, async page read
[ 793.204266][ T1874] netlink: 4 bytes leftover after parsing attributes in process `syz.8.12675'.
[ 793.218939][T30304] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 793.283133][T30304] Buffer I/O error on dev nbd1, logical block 0, async page read
[ 793.316727][ T1875] netlink: 4 bytes leftover after parsing attributes in process `syz.8.12675'.
[ 793.325990][T30304] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 793.377161][T30304] Buffer I/O error on dev nbd1, logical block 0, async page read
[ 793.422521][T30304] ldm_validate_partition_table(): Disk read failed.
[ 793.474979][T30304] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 793.530539][T30304] Buffer I/O error on dev nbd1, logical block 0, async page read
[ 793.606625][T30304] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 793.669959][T30304] Buffer I/O error on dev nbd1, logical block 0, async page read
[ 793.715093][T30304] Dev nbd1: unable to read RDB block 0
[ 793.755736][T30304] nbd1: unable to read partition table
[ 793.838889][T30304] ldm_validate_partition_table(): Disk read failed.
[ 793.883004][T30304] Dev nbd1: unable to read RDB block 0
[ 793.940165][T30304] nbd1: unable to read partition table
[ 794.123493][ T6139] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[ 794.123517][ T6139] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[ 794.144295][ T6139] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[ 794.144345][ T6139] Bluetooth: hci0: adv larger than maximum supported
[ 794.151816][ T6139] Bluetooth: hci0: adv larger than maximum supported
[ 794.160086][ T6139] Bluetooth: hci0: adv larger than maximum supported
[ 794.166779][ T6139] Bluetooth: hci0: Malformed LE Event: 0x0d
[ 796.022684][ T1944] netlink: 74 bytes leftover after parsing attributes in process `syz.3.12701'.
[ 798.083776][ T2002] sock: sock_timestamping_bind_phc: sock not bind to device
[ 798.259907][ T2008] CIFS: VFS: Invalid SecurityFlags: 0
[ 798.259907][ T2008]
[ 799.220816][ T2034] netlink: 28 bytes leftover after parsing attributes in process `syz.6.12741'.
[ 799.280869][ T2034] macsec0: entered allmulticast mode
[ 799.303827][ T2034] veth1_macvtap: entered allmulticast mode
[ 799.613513][ T2042] netlink: 4 bytes leftover after parsing attributes in process `syz.9.12745'.
[ 799.845881][ T2051] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12749'.
[ 799.866217][ T6139] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[ 799.866242][ T6139] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260
[ 799.881988][ T6139] Bluetooth: hci3: Unknown advertising packet type: 0x7f
[ 799.882011][ T6139] Bluetooth: hci3: adv larger than maximum supported
[ 799.891098][ T6139] Bluetooth: hci3: adv larger than maximum supported
[ 799.904379][ T6139] Bluetooth: hci3: adv larger than maximum supported
[ 799.911556][ T6139] Bluetooth: hci3: Malformed LE Event: 0x0d
[ 800.636477][ T2074] netlink: 48 bytes leftover after parsing attributes in process `syz.6.12755'.
[ 800.890476][ T2069] zswap: compressor not available
[ 801.578177][ T2098] netlink: 12 bytes leftover after parsing attributes in process `syz.9.12766'.
[ 804.514880][ T29] audit: type=1800 audit(4294967617.241:58): pid=2196 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.12808" name="file0" dev="tmpfs" ino=10195 res=0 errno=0
[ 804.647693][ T29] audit: type=1800 audit(4294967617.281:59): pid=2196 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.12808" name="file0" dev="tmpfs" ino=10195 res=0 errno=0
[ 805.051991][ T2210] nbd2: detected capacity change from 0 to 68719476736
[ 805.086662][T30290] block nbd2: Send control failed (result -22)
[ 805.171177][T30290] block nbd2: Request send failed, requeueing
[ 805.189915][ T6139] block nbd2: Receive control failed (result -32)
[ 805.248144][ T43] block nbd2: Dead connection, failed to find a fallback
[ 805.256132][ T43] block nbd2: shutting down sockets
[ 805.261920][ T43] blk_print_req_error: 24 callbacks suppressed
[ 805.261931][ T43] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 805.277452][ T43] buffer_io_error: 23 callbacks suppressed
[ 805.277461][ T43] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 805.307473][T30290] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 805.365834][T30290] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 805.424324][T30290] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 805.486888][T30290] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 805.545156][T30290] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 805.624436][T30290] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 805.675197][T30290] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 805.727624][T30290] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 805.808090][T30290] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 805.873888][T30290] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 805.924818][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 805.939601][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 805.968882][T30290] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 806.021880][T30290] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 806.058497][T30290] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 806.109702][T30290] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 806.146372][T30290] ldm_validate_partition_table(): Disk read failed.
[ 806.175295][T30290] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 806.226924][T30290] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 806.266937][T30290] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 806.311267][T30290] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 806.353648][T30290] Dev nbd2: unable to read RDB block 0
[ 806.383010][T30290] nbd2: unable to read partition table
[ 806.450296][T30290] ldm_validate_partition_table(): Disk read failed.
[ 806.490730][T30290] Dev nbd2: unable to read RDB block 0
[ 806.520747][T30290] nbd2: unable to read partition table
[ 806.553905][T30290]
[ 806.556257][T30290] ======================================================
[ 806.563264][T30290] WARNING: possible circular locking dependency detected
[ 806.570283][T30290] 6.14.0-rc2-syzkaller-00034-gfebbc555cf0f #0 Tainted: G U
[ 806.578955][T30290] ------------------------------------------------------
[ 806.585952][T30290] udevd/30290 is trying to acquire lock:
[ 806.591558][T30290] ffff888025cadc88 (&q->q_usage_counter(io)#51){++++}-{0:0}, at: __submit_bio+0x3d1/0x690
[ 806.601641][T30290]
[ 806.601641][T30290] but task is already holding lock:
[ 806.608981][T30290] ffff888148f742c0 (mapping.invalidate_lock#2){++++}-{4:4}, at: page_cache_ra_unbounded+0x173/0x7d0
[ 806.619759][T30290]
[ 806.619759][T30290] which lock already depends on the new lock.
[ 806.619759][T30290]
[ 806.630141][T30290]
[ 806.630141][T30290] the existing dependency chain (in reverse order) is:
[ 806.639131][T30290]
[ 806.639131][T30290] -> #7 (mapping.invalidate_lock#2){++++}-{4:4}:
[ 806.647624][T30290] down_read+0x9a/0x330
[ 806.652284][T30290] filemap_fault+0x1845/0x2ca0
[ 806.657577][T30290] __do_fault+0x10a/0x490
[ 806.662415][T30290] do_pte_missing+0xecf/0x3e10
[ 806.667689][T30290] __handle_mm_fault+0x1166/0x2c60
[ 806.673307][T30290] handle_mm_fault+0x3fa/0xaa0
[ 806.678577][T30290] do_user_addr_fault+0x60d/0x13f0
[ 806.684198][T30290] exc_page_fault+0x5c/0xc0
[ 806.689222][T30290] asm_exc_page_fault+0x26/0x30
[ 806.694587][T30290]
[ 806.694587][T30290] -> #6 (&vma->vm_lock->lock){++++}-{4:4}:
[ 806.702566][T30290] down_write+0x93/0x200
[ 806.707343][T30290] vma_link+0x26d/0x4a0
[ 806.712023][T30290] insert_vm_struct+0x197/0x3f0
[ 806.717381][T30290] alloc_bprm+0x76d/0xdd0
[ 806.722214][T30290] kernel_execve+0xb0/0x3b0
[ 806.727228][T30290] kernel_init+0x14a/0x2b0
[ 806.732153][T30290] ret_from_fork+0x45/0x80
[ 806.737077][T30290] ret_from_fork_asm+0x1a/0x30
[ 806.742349][T30290]
[ 806.742349][T30290] -> #5 (&mm->mmap_lock){++++}-{4:4}:
[ 806.749885][T30290] __might_fault+0x11b/0x190
[ 806.754990][T30290] _copy_from_iter+0x1bf/0x1400
[ 806.760352][T30290] tcp_sendmsg_locked+0x1979/0x37c0
[ 806.766063][T30290] tcp_sendmsg+0x2e/0x50
[ 806.770818][T30290] inet_sendmsg+0xb9/0x140
[ 806.775749][T30290] sock_write_iter+0x4ac/0x5b0
[ 806.781021][T30290] vfs_write+0x5ae/0x1150
[ 806.785855][T30290] ksys_write+0x207/0x250
[ 806.790687][T30290] do_syscall_64+0xcd/0x250
[ 806.795693][T30290] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 806.802100][T30290]
[ 806.802100][T30290] -> #4 (sk_lock-AF_INET){+.+.}-{0:0}:
[ 806.809724][T30290] lock_sock_nested+0x3a/0xf0
[ 806.814912][T30290] inet_shutdown+0x67/0x440
[ 806.819953][T30290] nbd_mark_nsock_dead+0xae/0x5d0
[ 806.825486][T30290] sock_shutdown+0x17c/0x280
[ 806.830587][T30290] nbd_config_put+0x1e6/0x750
[ 806.835762][T30290] nbd_genl_connect+0x12d5/0x1c00
[ 806.841292][T30290] genl_family_rcv_msg_doit+0x202/0x2f0
[ 806.847347][T30290] genl_rcv_msg+0x565/0x800
[ 806.852351][T30290] netlink_rcv_skb+0x165/0x410
[ 806.857644][T30290] genl_rcv+0x28/0x40
[ 806.862133][T30290] netlink_unicast+0x53c/0x7f0
[ 806.867405][T30290] netlink_sendmsg+0x8b8/0xd70
[ 806.872686][T30290] ____sys_sendmsg+0x9ae/0xb40
[ 806.877959][T30290] ___sys_sendmsg+0x135/0x1e0
[ 806.883143][T30290] __sys_sendmsg+0x16e/0x220
[ 806.888236][T30290] do_syscall_64+0xcd/0x250
[ 806.893243][T30290] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 806.899646][T30290]
[ 806.899646][T30290] -> #3 (&nsock->tx_lock){+.+.}-{4:4}:
[ 806.907270][T30290] __mutex_lock+0x19b/0xb10
[ 806.912275][T30290] nbd_queue_rq+0x424/0x1220
[ 806.917384][T30290] blk_mq_dispatch_rq_list+0x443/0x1dc0
[ 806.923441][T30290] __blk_mq_sched_dispatch_requests+0xcdf/0x1620
[ 806.930296][T30290] blk_mq_sched_dispatch_requests+0xd8/0x1b0
[ 806.936807][T30290] blk_mq_run_hw_queue+0x239/0x670
[ 806.942443][T30290] blk_mq_flush_plug_list+0x673/0x1c60
[ 806.948416][T30290] __blk_flush_plug+0x2c5/0x4b0
[ 806.953781][T30290] __submit_bio+0x547/0x690
[ 806.958793][T30290] submit_bio_noacct_nocheck+0x698/0xd70
[ 806.964952][T30290] submit_bio_noacct+0x50d/0x1ec0
[ 806.970484][T30290] block_read_full_folio+0x812/0xa50
[ 806.976275][T30290] filemap_read_folio+0xc6/0x2a0
[ 806.981729][T30290] do_read_cache_folio+0x263/0x5c0
[ 806.987351][T30290] read_part_sector+0xd4/0x310
[ 806.992636][T30290] adfspart_check_ICS+0xa7/0x8c0
[ 806.998102][T30290] bdev_disk_changed+0x6c6/0x14e0
[ 807.003634][T30290] blkdev_get_whole+0x187/0x290
[ 807.009000][T30290] bdev_open+0x2c7/0xe20
[ 807.013752][T30290] blkdev_open+0x272/0x3f0
[ 807.018674][T30290] do_dentry_open+0x735/0x1c40
[ 807.023944][T30290] vfs_open+0x82/0x3f0
[ 807.028518][T30290] path_openat+0x1e88/0x2d80
[ 807.033627][T30290] do_filp_open+0x20c/0x470
[ 807.038642][T30290] do_sys_openat2+0x17a/0x1e0
[ 807.043833][T30290] __x64_sys_openat+0x175/0x210
[ 807.049197][T30290] do_syscall_64+0xcd/0x250
[ 807.054206][T30290] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 807.060608][T30290]
[ 807.060608][T30290] -> #2 (&cmd->lock){+.+.}-{4:4}:
[ 807.067798][T30290] __mutex_lock+0x19b/0xb10
[ 807.072813][T30290] nbd_queue_rq+0xbe/0x1220
[ 807.077825][T30290] blk_mq_dispatch_rq_list+0x443/0x1dc0
[ 807.083941][T30290] __blk_mq_sched_dispatch_requests+0xcdf/0x1620
[ 807.090777][T30290] blk_mq_sched_dispatch_requests+0xd8/0x1b0
[ 807.097283][T30290] blk_mq_run_hw_queue+0x239/0x670
[ 807.102902][T30290] blk_mq_flush_plug_list+0x673/0x1c60
[ 807.108868][T30290] __blk_flush_plug+0x2c5/0x4b0
[ 807.114227][T30290] __submit_bio+0x547/0x690
[ 807.119250][T30290] submit_bio_noacct_nocheck+0x698/0xd70
[ 807.125393][T30290] submit_bio_noacct+0x50d/0x1ec0
[ 807.130958][T30290] block_read_full_folio+0x812/0xa50
[ 807.136751][T30290] filemap_read_folio+0xc6/0x2a0
[ 807.142197][T30290] do_read_cache_folio+0x263/0x5c0
[ 807.147809][T30290] read_part_sector+0xd4/0x310
[ 807.153082][T30290] adfspart_check_ICS+0xa7/0x8c0
[ 807.158522][T30290] bdev_disk_changed+0x6c6/0x14e0
[ 807.164049][T30290] blkdev_get_whole+0x187/0x290
[ 807.169405][T30290] bdev_open+0x2c7/0xe20
[ 807.174156][T30290] blkdev_open+0x272/0x3f0
[ 807.179074][T30290] do_dentry_open+0x735/0x1c40
[ 807.184344][T30290] vfs_open+0x82/0x3f0
[ 807.188920][T30290] path_openat+0x1e88/0x2d80
[ 807.194015][T30290] do_filp_open+0x20c/0x470
[ 807.199021][T30290] do_sys_openat2+0x17a/0x1e0
[ 807.204205][T30290] __x64_sys_openat+0x175/0x210
[ 807.209562][T30290] do_syscall_64+0xcd/0x250
[ 807.214567][T30290] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 807.220970][T30290]
[ 807.220970][T30290] -> #1 (set->srcu){.+.+}-{0:0}:
[ 807.228073][T30290] __synchronize_srcu+0xa9/0x2a0
[ 807.233528][T30290] blk_mq_update_nr_requests+0x288/0x670
[ 807.239662][T30290] queue_requests_store+0x161/0x210
[ 807.245362][T30290] queue_attr_store+0x370/0x510
[ 807.250715][T30290] sysfs_kf_write+0x117/0x170
[ 807.255901][T30290] kernfs_fop_write_iter+0x33d/0x500
[ 807.261729][T30290] vfs_write+0x5ae/0x1150
[ 807.266576][T30290] ksys_write+0x12b/0x250
[ 807.271414][T30290] do_syscall_64+0xcd/0x250
[ 807.276427][T30290] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 807.282833][T30290]
[ 807.282833][T30290] -> #0 (&q->q_usage_counter(io)#51){++++}-{0:0}:
[ 807.291413][T30290] __lock_acquire+0x249e/0x3c40
[ 807.296769][T30290] lock_acquire.part.0+0x11b/0x380
[ 807.302384][T30290] blk_mq_submit_bio+0x20db/0x25f0
[ 807.308001][T30290] __submit_bio+0x3d1/0x690
[ 807.313010][T30290] submit_bio_noacct_nocheck+0x698/0xd70
[ 807.319150][T30290] submit_bio_noacct+0x50d/0x1ec0
[ 807.324685][T30290] mpage_readahead+0x41d/0x590
[ 807.329956][T30290] read_pages+0x1a7/0xc60
[ 807.334792][T30290] page_cache_ra_unbounded+0x426/0x7d0
[ 807.340758][T30290] force_page_cache_ra+0x24b/0x340
[ 807.346395][T30290] page_cache_sync_ra+0x158/0xa30
[ 807.351959][T30290] filemap_get_pages+0xb62/0x1c30
[ 807.357493][T30290] filemap_read+0x3c5/0xe70
[ 807.362496][T30290] blkdev_read_iter+0x187/0x4b0
[ 807.367851][T30290] vfs_read+0x886/0xbf0
[ 807.372527][T30290] ksys_read+0x12b/0x250
[ 807.377272][T30290] do_syscall_64+0xcd/0x250
[ 807.382283][T30290] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 807.388681][T30290]
[ 807.388681][T30290] other info that might help us debug this:
[ 807.388681][T30290]
[ 807.398919][T30290] Chain exists of:
[ 807.398919][T30290] &q->q_usage_counter(io)#51 --> &vma->vm_lock->lock --> mapping.invalidate_lock#2
[ 807.398919][T30290]
[ 807.414134][T30290] Possible unsafe locking scenario:
[ 807.414134][T30290]
[ 807.421573][T30290] CPU0 CPU1
[ 807.426953][T30290] ---- ----
[ 807.432301][T30290] rlock(mapping.invalidate_lock#2);
[ 807.437685][T30290] lock(&vma->vm_lock->lock);
[ 807.444948][T30290] lock(mapping.invalidate_lock#2);
[ 807.452743][T30290] rlock(&q->q_usage_counter(io)#51);
[ 807.458188][T30290]
[ 807.458188][T30290] *** DEADLOCK ***
[ 807.458188][T30290]
[ 807.466307][T30290] 1 lock held by udevd/30290:
[ 807.470959][T30290] #0: ffff888148f742c0 (mapping.invalidate_lock#2){++++}-{4:4}, at: page_cache_ra_unbounded+0x173/0x7d0
[ 807.482174][T30290]
[ 807.482174][T30290] stack backtrace:
[ 807.488048][T30290] CPU: 0 UID: 0 PID: 30290 Comm: udevd Tainted: G U 6.14.0-rc2-syzkaller-00034-gfebbc555cf0f #0
[ 807.488066][T30290] Tainted: [U]=USER
[ 807.488070][T30290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 807.488079][T30290] Call Trace:
[ 807.488084][T30290]
[ 807.488092][T30290] dump_stack_lvl+0x116/0x1f0
[ 807.488116][T30290] print_circular_bug+0x490/0x760
[ 807.488132][T30290] check_noncircular+0x31a/0x400
[ 807.488146][T30290] ? __pfx_check_noncircular+0x10/0x10
[ 807.488159][T30290] ? __kernel_text_address+0xd/0x40
[ 807.488174][T30290] ? unwind_get_return_address+0x59/0xa0
[ 807.488193][T30290] ? lockdep_lock+0xc6/0x200
[ 807.488212][T30290] ? __pfx_lockdep_lock+0x10/0x10
[ 807.488231][T30290] __lock_acquire+0x249e/0x3c40
[ 807.488248][T30290] ? __pfx___lock_acquire+0x10/0x10
[ 807.488261][T30290] ? hlock_class+0x4e/0x130
[ 807.488279][T30290] ? mark_lock+0xb5/0xc60
[ 807.488292][T30290] ? mark_lock+0xb5/0xc60
[ 807.488304][T30290] ? page_cache_ra_unbounded+0x426/0x7d0
[ 807.488322][T30290] ? page_cache_sync_ra+0x158/0xa30
[ 807.488340][T30290] lock_acquire.part.0+0x11b/0x380
[ 807.488354][T30290] ? __submit_bio+0x3d1/0x690
[ 807.488373][T30290] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 807.488388][T30290] ? rcu_is_watching+0x12/0xc0
[ 807.488406][T30290] ? trace_lock_acquire+0x14e/0x1f0
[ 807.488417][T30290] ? __submit_bio+0x3d1/0x690
[ 807.488435][T30290] ? lock_acquire+0x2f/0xb0
[ 807.488448][T30290] ? __submit_bio+0x3d1/0x690
[ 807.488465][T30290] blk_mq_submit_bio+0x20db/0x25f0
[ 807.488485][T30290] ? __submit_bio+0x3d1/0x690
[ 807.488503][T30290] ? __pfx_blk_mq_submit_bio+0x10/0x10
[ 807.488521][T30290] ? mark_lock+0xb5/0xc60
[ 807.488534][T30290] ? __pfx___lock_acquire+0x10/0x10
[ 807.488548][T30290] ? __pfx___lock_acquire+0x10/0x10
[ 807.488561][T30290] ? trace_lock_acquire+0x14e/0x1f0
[ 807.488572][T30290] ? __pfx_mark_lock+0x10/0x10
[ 807.488588][T30290] __submit_bio+0x3d1/0x690
[ 807.488606][T30290] ? __pfx___submit_bio+0x10/0x10
[ 807.488624][T30290] ? trace_lock_acquire+0x14e/0x1f0
[ 807.488638][T30290] ? submit_bio_noacct_nocheck+0x698/0xd70
[ 807.488656][T30290] submit_bio_noacct_nocheck+0x698/0xd70
[ 807.488675][T30290] ? __pfx_submit_bio_noacct_nocheck+0x10/0x10
[ 807.488694][T30290] ? __pfx___might_resched+0x10/0x10
[ 807.488712][T30290] submit_bio_noacct+0x50d/0x1ec0
[ 807.488731][T30290] mpage_readahead+0x41d/0x590
[ 807.488754][T30290] ? __pfx_mpage_readahead+0x10/0x10
[ 807.488773][T30290] ? __pfx_blkdev_get_block+0x10/0x10
[ 807.488786][T30290] ? __folio_batch_add_and_move+0x5f3/0xc60
[ 807.488798][T30290] ? __pfx_lock_release+0x10/0x10
[ 807.488812][T30290] ? trace_lock_acquire+0x14e/0x1f0
[ 807.488823][T30290] ? __pfx_blkdev_readahead+0x10/0x10
[ 807.488835][T30290] read_pages+0x1a7/0xc60
[ 807.488851][T30290] ? __folio_batch_add_and_move+0x689/0xc60
[ 807.488864][T30290] ? __pfx_read_pages+0x10/0x10
[ 807.488884][T30290] page_cache_ra_unbounded+0x426/0x7d0
[ 807.488904][T30290] force_page_cache_ra+0x24b/0x340
[ 807.488923][T30290] page_cache_sync_ra+0x158/0xa30
[ 807.488940][T30290] ? __lock_acquire+0xcc5/0x3c40
[ 807.488954][T30290] filemap_get_pages+0xb62/0x1c30
[ 807.488969][T30290] ? __pfx_filemap_get_pages+0x10/0x10
[ 807.488982][T30290] ? __pfx___might_resched+0x10/0x10
[ 807.488998][T30290] filemap_read+0x3c5/0xe70
[ 807.489010][T30290] ? trace_lock_acquire+0x14e/0x1f0
[ 807.489023][T30290] ? __pfx_filemap_read+0x10/0x10
[ 807.489041][T30290] ? apparmor_file_permission+0x251/0x400
[ 807.489061][T30290] blkdev_read_iter+0x187/0x4b0
[ 807.489075][T30290] vfs_read+0x886/0xbf0
[ 807.489088][T30290] ? __pfx_vfs_read+0x10/0x10
[ 807.489099][T30290] ? blkdev_llseek+0x9b/0xd0
[ 807.489110][T30290] ? __pfx_lock_release+0x10/0x10
[ 807.489125][T30290] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 807.489143][T30290] ksys_read+0x12b/0x250
[ 807.489154][T30290] ? __pfx_ksys_read+0x10/0x10
[ 807.489167][T30290] do_syscall_64+0xcd/0x250
[ 807.489180][T30290] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 807.489199][T30290] RIP: 0033:0x7f3cb2362b6a
[ 807.489210][T30290] Code: 00 3d 00 00 41 00 75 0d 50 48 8d 3d 2d 08 0a 00 e8 ea 7d 01 00 31 c0 e9 07 ff ff ff 64 8b 04 25 18 00 00 00 85 c0 75 1b 0f 05 <48> 3d 00 f0 ff ff 76 6c 48 8b 15 8f a2 0d 00 f7 d8 64 89 02 48 83
[ 807.489222][T30290] RSP: 002b:00007ffeb7142238 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 807.489233][T30290] RAX: ffffffffffffffda RBX: 00001fffffff0000 RCX: 00007f3cb2362b6a
[ 807.489242][T30290] RDX: 0000000000000040 RSI: 000055df189e8048 RDI: 0000000000000009
[ 807.489249][T30290] RBP: 0000000000000040 R08: 000055df189e8020 R09: 00007f3cb243db60
[ 807.489257][T30290] R10: 0000000000000007 R11: 0000000000000246 R12: 000055df189e8020
[ 807.489265][T30290] R13: 000055df189e8038 R14: 000055df189eead8 R15: 000055df189eea80
[ 807.489276][T30290]