last executing test programs: 11.456957779s ago: executing program 0 (id=2951): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyxa\x00', 0x40081, 0x0) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/security/tomoyo/audit\x00', 0x0, 0x0) read$auto_tomoyo_operations_securityfs_if(r1, 0x0, 0x0) r2 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim1/health/break_health\x00', 0x101, 0x0) write$auto(r2, &(0x7f0000000900)='netpci0?', 0x40) read$auto(r1, &(0x7f0000000240)='\x00\x00\x00\x00/kernel/securi\xccy/toMoyo/p5rofile', 0x1a46fabf) openat$auto_tracing_total_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/buffer_total_size_kb\x00', 0x0, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x80, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000003fc0)='/dev/bus/usb/017/001\x00', 0xa300, 0x0) select$auto(0x6, 0x0, &(0x7f0000000280)={[0xfffffffffffffffc, 0x9, 0xc0000, 0xff, 0x4, 0x2, 0x8, 0x5, 0x9, 0xdd8f, 0x20d, 0x80000000, 0x2, 0x2, 0x3, 0x5]}, 0x0, 0x0) ioctl$auto(0x3, 0x4b49, 0x38) io_uring_enter$auto(r0, 0x401, 0x4, 0x1, &(0x7f0000000040)=[0xffffffffffffffff, 0x2, 0x0, 0x5, 0x4, 0x713, 0x78ce], 0x10001) 11.037535046s ago: executing program 0 (id=2958): r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, 0x0, 0x440481, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x9, r0, 0x7ff, 0x3, 0x100000000, 0xb, 0x2e, 0x0, 0x3}, 0x6f4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) select$auto(0x6d0c, 0x0, 0x0, 0x0, 0x0) ioctl$auto(0x3, 0x8916, 0x91) syz_open_procfs$namespace(r1, 0x0) ioctl$auto_SW_SYNC_GET_DEADLINE(0xffffffffffffffff, 0xc0105702, &(0x7f0000000040)={0xfffffffffffffffc}) r2 = socket(0x10, 0x2, 0x0) fanotify_mark$auto(0xffffffffffffffff, 0x6, 0xad85, 0xffffffffffffffff, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='.\x00'], 0x1ac}}, 0x40000) setsockopt$auto(0xffffffffffffffff, 0x29, 0x1d, &(0x7f0000000040)='!\x00', 0x1ff) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0) 10.033228879s ago: executing program 0 (id=2964): r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) socket(0x1e, 0x805, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x6, 0x0) fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x1, 0x0, &(0x7f0000000280), 0x0) close_range$auto(0x2, 0x8000, 0x0) r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0) mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000) openat$auto_fops_atomic_t_(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/fail_page_alloc/space\x00', 0x240, 0x0) mremap$auto(0x1ff000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) mmap$auto(0xfffffffffffffffe, 0xc2, 0x1, 0xfff, 0x8, 0x9) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto(r2, 0x8004552d, 0x81) write$auto_configfs_file_operations_configfs_internal(r1, 0x0, 0x0) 9.754065387s ago: executing program 0 (id=2966): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/fs/ext4/features/batched_discard\x00', 0x103040, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0xc) swapon$auto(&(0x7f00000010c0)='/sys/fs/ext4/features/batched_discard\x00', 0xcdc) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/4103, 0x1007) 9.571323958s ago: executing program 0 (id=2968): mmap$auto(0xe, 0x400000400004, 0xdf, 0x100009b7e, 0x10000000000002, 0x1) io_uring_setup$auto(0x6, 0x0) socket(0x11, 0x80003, 0x300) futex$auto(0x0, 0x6, 0x6, 0x0, 0x0, 0x9) socket(0x2b, 0x80000, 0x84) socket(0xa, 0x801, 0x84) pipe$auto(&(0x7f0000000080)) fanotify_init$auto(0x5, 0x2000000000002) socket(0x2, 0x1, 0x0) socket(0x6, 0x2, 0x85) socket(0x11, 0x80003, 0x300) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x6) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20048890}, 0x2000c041) timerfd_create$auto(0x9, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x18, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0xa, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd, 0x400, @old_map_fd=0x3ff}, 0xa3) writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040)=[0x404], 0x1}, 0x7e) 8.628871011s ago: executing program 0 (id=2973): r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001040)='/sys/kernel/security/tomoyo/manager\x00', 0x14b942, 0x0) socket(0xa, 0x3, 0x3a) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video4\x00', 0x88000, 0x0) sendmmsg$auto(r0, &(0x7f0000000e80)={{&(0x7f0000000d80)=[0x5, 0x6], 0x6, &(0x7f0000000e00)={&(0x7f0000000dc0)=[0x2], 0x2}, 0x4, &(0x7f0000000e40)=[0x7e, 0x7fffffff, 0x8], 0x9, 0x10}, 0x8}, 0x3, 0xffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041) r2 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) connect$auto(0x3, &(0x7f00000000c0), 0x55) sendto$auto(r2, &(0x7f0000000200)=[0x4], 0xb, 0x5, &(0x7f0000000240), 0xc8e) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) r3 = syz_genetlink_get_family_id$auto_ovs_meter(0x0, 0xffffffffffffffff) r4 = socket(0x15, 0x5, 0x0) bind$auto(r4, 0x0, 0x68) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000003240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40) r5 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), r2) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYRESHEX=r1, @ANYRES8=r3, @ANYRESHEX=r5], 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x8040) write$auto(0x3, 0x0, 0xfffffdef) setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) unshare$auto(0x4000007e) mmap$auto(0x0, 0x3, 0x800b398, 0xfffffffffffffff9, 0x200000000000fff, 0x8000) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r6, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r6) read$auto(r6, &(0x7f0000000100)='nl80211\x00', 0xbe62) pivot_root$auto(0x0, 0x0) socket(0x10, 0x2, 0x0) 7.929948276s ago: executing program 3 (id=2975): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) r1 = socket(0x10, 0x2, 0x4) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRESOCT=r1, @ANYRES8=r0], 0x1ac}}, 0x40010) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 7.600495287s ago: executing program 3 (id=2976): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0xfffffffffffffffd) mprotect$auto(0x4, 0x4, 0xbb8) r1 = socket(0x10, 0x2, 0x0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x28, r2, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_WOWLAN_TRIGGERS={0x14, 0x75, 0x0, 0x1, [@typed={0x8, 0x7a, 0x0, 0x0, @uid=0xffffffffffffffff}, @typed={0x8, 0x69, 0x0, 0x0, @pid}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x8001}, 0x0) r3 = openat$auto_transactions_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0) read$auto(r3, &(0x7f0000000040)='\x00', 0x0) mprotect$auto(0x4cdcf4c3, 0xffffffffffffff00, 0xf) 6.532569908s ago: executing program 3 (id=2982): mmap$auto(0xe, 0x400000400004, 0xdf, 0x100009b7e, 0x10000000000002, 0x1) io_uring_setup$auto(0x6, 0x0) socket(0x11, 0x80003, 0x300) futex$auto(0x0, 0x6, 0x6, 0x0, 0x0, 0x9) socket(0x2b, 0x80000, 0x84) socket(0xa, 0x801, 0x84) pipe$auto(&(0x7f0000000080)) fanotify_init$auto(0x5, 0x2000000000002) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x80003, 0x300) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x6) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20048890}, 0x2000c041) timerfd_create$auto(0x9, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x18, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0xa, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd, 0x400, @old_map_fd=0x3ff}, 0xa3) writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040)=[0x404], 0x1}, 0x7e) 5.370423459s ago: executing program 3 (id=2987): r0 = socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x3fd, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r1 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYBLOB="01", @ANYRES16], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x4000000) r2 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$auto(r2, 0x0, 0x9) pipe2$auto(0x0, 0x80) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{&(0x7f00000001c0)=[0x7, 0x8963, 0x8, 0xe0c4, 0x6, 0x6, 0x9, 0x5, 0x8], 0x200, 0x0, 0x73, 0x0, 0x8, 0x80000000}, 0x9}, 0x7, 0x100000a) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xfffffffffffffffd, 0x40000008000) ioperm$auto(0x6, 0x6, 0xfffffffd) setrlimit$auto(0x1000000007, 0x0) epoll_create1$auto(0x8000000000000000) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040)=[0x8000000000000002], 0x10, &(0x7f00000000c0)={0x0, 0x1001}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x6, 0x7fffffff) 4.310375342s ago: executing program 3 (id=2997): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'geneve1\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_HARDIF(0xffffffffffffffff, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000000)={0x1c, 0x0, 0xf05, 0x70bd2d, 0x25dfdbfc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4044010}, 0x4008000) r2 = socket(0xa, 0x3, 0x5) sendmmsg$auto(r2, &(0x7f0000000180)={{&(0x7f0000000000)=[0xa, 0x80fe], 0xb8, 0x0, 0x7a, &(0x7f0000000140), 0x8, 0x80000000}, 0x5}, 0x1, 0xa) 4.108154159s ago: executing program 2 (id=3000): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) timer_create$auto(0x9, 0x0, 0x0) timer_settime$auto(0x0, 0x9, &(0x7f00000000c0)={{0x400000000f, 0x10007}, {0x9}}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, r0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x4, 0xf7ffffffffff0005, 0x40019) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) timer_delete$auto(0x8) timer_gettime$auto(0x0, 0x0) r1 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/mountinfo\x00', 0x25140, 0x0) r2 = socket(0x28, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getsockopt$auto(r2, 0x28, 0x1, 0x0, 0x0) write$auto(r2, &(0x7f0000000080)='@,/\x00', 0x2) socket(0x1e, 0x5, 0x0) recvfrom$auto(0x3, 0x0, 0x100, 0x101, 0x0, 0x0) timerfd_gettime$auto(r1, &(0x7f0000000040)={{0x6, 0xe8}, {0x115, 0x4}}) r3 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r3, 0x29, 0x20, 0x0, 0x8002) 3.680153242s ago: executing program 2 (id=3003): r0 = socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) ioperm$auto(0x7, 0x71, 0x863) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) madvise$auto(0x284, 0x2, 0x0) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) sendfile$auto(0x1, 0x3, 0x0, 0xc01) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='\'\x00\x00\x00', @ANYBLOB="01002c"], 0x40}}, 0x44000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) kexec_load$auto(0xfffffffffffffffb, 0x2, &(0x7f0000000140)={@buf=0x0, 0x80000000, 0x4, 0xffffffffffffffff}, 0x4) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mprotect$auto(0x1ffff000, 0x7ffffffffffffffe, 0x4) connect$auto(0x3, &(0x7f0000000140), 0x55) connect$auto(0x3, &(0x7f0000000140), 0x52) io_submit$auto(0x3, 0xb, &(0x7f0000000080)=&(0x7f0000000040)={0x1000, 0x80000001, 0x5, 0x8, 0x0, r0, 0x9, 0x1, 0x9, 0x0, 0x5b6e}) read$auto_tracing_stats_fops_trace(r1, &(0x7f0000000100)=""/29, 0x1d) openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x8a001, 0x0) fsopen$auto(0x0, 0x1) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x101401, 0x0) write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, 0x0, 0xfffffffffffffd01) write$auto_seq_oss_f_ops_seq_oss(r2, &(0x7f0000000000)="2941043a0d9c3966445d695ef96a42c6a2d0015c2a80237d1bb40bcd9ffa11a1458d29e07f8fcbe7480386a5927c3115066ee897", 0x34) mmap$auto(0x0, 0x7, 0xe2, 0xeb1, 0x405, 0x8) write$auto(0x3, 0x0, 0x81) 3.556148255s ago: executing program 3 (id=3004): socket(0xa, 0x1, 0x84) mmap$auto(0x8, 0x2020009, 0x3, 0xeb2, 0xffffffffffbffff5, 0x101) r0 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000140)=ANY=[@ANYBLOB="246d4c193b28e72d0168b61511171900f100", @ANYRES16=r0, @ANYBLOB="010027bd7000ffdbdf2507000000040003800400028008000100", @ANYRES32=0x0, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x4884}, 0x4008884) prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x3) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001680), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r2, &(0x7f0000002300)={0x0, 0x0, &(0x7f00000022c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="110325bd7000fedbdf2501"], 0x14}}, 0x10040) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000000), r2) syz_genetlink_get_family_id$auto_macsec(&(0x7f00000000c0), r2) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x84) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/lru_gen\x00', 0x12b902, 0x0) write$auto(0x3, 0x0, 0xffd8) socket(0xa, 0x2, 0x0) socket(0xa, 0x3, 0x6) close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) mq_open$auto(&(0x7f00000020c0)='.\xf1\x00', 0x56a, 0x2d, 0x0) lseek$auto(0x0, 0x0, 0x1) mq_open$auto(&(0x7f0000000000)='.\xf1e4\xdf\x16\x95kxE\xd9x\x15\xb0\xf6V\x93\xb4E\x06\xc5}l', 0x56a, 0xb275, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000), 0x40002, 0x0) write$auto(r4, &(0x7f0000002740)='-1,\'$*@[}\x00', 0x2) r5 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r6 = openat$auto_proc_auxv_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/auxv\x00', 0x80400, 0x0) setsockopt$auto(r6, 0x4, 0xfff, &(0x7f0000000100)='macsec\x00', 0x5) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="1b0026bd7000fddbdf2503000000040008000c00038008000100", @ANYRES32, @ANYBLOB="12000100898771f1c19f177904859082e6830134d4242f79"], 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0x48c0) mmap$auto(0x590, 0xc, 0x1, 0x12, 0x8000000000000001, 0x8) mq_timedreceive$auto(0x8, 0x0, 0xfffffffd, 0x0, 0x0) mq_timedsend$auto(0x8, 0x0, 0x100, 0x9, 0x0) 3.267901708s ago: executing program 2 (id=3007): mmap$auto(0xe, 0x400000400004, 0xdf, 0x100009b7e, 0x10000000000002, 0x1) io_uring_setup$auto(0x6, 0x0) socket(0x11, 0x80003, 0x300) futex$auto(0x0, 0x6, 0x6, 0x0, 0x0, 0x9) socket(0x2b, 0x80000, 0x84) socket(0xa, 0x801, 0x84) pipe$auto(&(0x7f0000000080)) fanotify_init$auto(0x5, 0x2000000000002) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x80003, 0x300) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x6) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20048890}, 0x2000c041) timerfd_create$auto(0x9, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x18, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0xa, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd, 0x400, @old_map_fd=0x3ff}, 0xa3) writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040)=[0x404], 0x1}, 0x7e) 2.826790101s ago: executing program 2 (id=3009): getresgid$auto(&(0x7f0000000a80)=0x6, 0xfffffffffffffffc, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x14, 0x0, 0x4, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x48891}, 0x20) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r0) mq_notify$auto(0x5cf5, &(0x7f00000006c0)={@sival_ptr=0x0, 0x3, 0x2, @_sigev_thread={0x0, 0x0}}) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/renderD128\x00', 0x2000, 0x0) ioctl$auto(r1, 0x4, 0x1df) getresgid$auto(&(0x7f0000000000)=0x1000, &(0x7f0000000040)=0x34d0, &(0x7f0000000080)) 2.244465156s ago: executing program 1 (id=3012): socket(0x2, 0x801, 0x100) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/slabinfo\x00', 0x200404, 0x0) socket(0x23, 0x1, 0x9) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/sctp/snmp\x00', 0x101800, 0x0) socket(0x10, 0x2, 0x0) fanotify_init$auto(0x7, 0x801) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x80805, 0x0) open(&(0x7f0000000040)='./bus\x00', 0x145940, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r0 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r0, 0x0, 0xc3) 2.070527394s ago: executing program 2 (id=3013): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) (async) clone$auto(0x7, 0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) (async) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000045c0), 0x802, 0x0) ioctl$auto_RTC_PIE_ON(r0, 0x7005, 0xf) (async) mlock$auto(0xfbe8, 0x4) (async) pidfd_getfd$auto(r0, r0, 0x2) mlock$auto(0x7c88, 0x7fff) (async) socket(0x10, 0x2, 0x6) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x1fe, 0x8000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1700", @ANYBLOB="7f"], 0x1ac}, 0x1, 0x0, 0x0, 0x20000080}, 0x40000) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.847104284s ago: executing program 1 (id=3014): r0 = socket(0x10, 0x2, 0xc) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="53010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x23, 0x80805, 0x0) memfd_secret$auto(0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC0\x00', 0x60000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x100) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x6, 0x8000000000000000, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='q\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="4cb245184f86db27df250a00000a"], 0xf8}}, 0x10004010) 1.034421993s ago: executing program 1 (id=3015): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffd, 0x8000) r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0) ioctl$auto_TUNGETIFF(r0, 0x800454d2, 0x0) 816.245545ms ago: executing program 2 (id=3016): r0 = socket(0x10, 0x2, 0xc) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="53010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (fail_nth: 2) socket$nl_generic(0x10, 0x3, 0x10) socket(0x23, 0x80805, 0x0) memfd_secret$auto(0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC0\x00', 0x60000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x100) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x6, 0x8000000000000000, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='q\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="4cb245184f86db27df250a00000a"], 0xf8}}, 0x10004010) 682.588169ms ago: executing program 1 (id=3017): r0 = open(&(0x7f0000000000)='./file0\x00', 0xa41c2, 0x84) socket(0x2, 0x801, 0x100) pipe$auto(&(0x7f0000000080)=0xffffffffffffffff) fcntl$auto(0x3, 0x4, 0xa553) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) sendfile$auto(r1, r1, 0x0, 0xfffffdef) close_range$auto(0x2, 0x8000, 0x0) ioctl$auto_proc_iter_file_ops_compat_inode(r0, 0xfb, &(0x7f0000000040)="76c3f2cbc6e49c90e60e48c2fa1cbcd463739006e427cfe8997f") 478.278044ms ago: executing program 1 (id=3018): mmap$auto(0xe, 0x400000400004, 0xdf, 0x100009b7e, 0x10000000000002, 0x1) io_uring_setup$auto(0x6, 0x0) socket(0x11, 0x80003, 0x300) futex$auto(0x0, 0x6, 0x6, 0x0, 0x0, 0x9) socket(0x2b, 0x80000, 0x84) socket(0xa, 0x801, 0x84) pipe$auto(&(0x7f0000000080)) fanotify_init$auto(0x5, 0x2000000000002) socket(0x6, 0x2, 0x85) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x80003, 0x300) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x6) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20048890}, 0x2000c041) timerfd_create$auto(0x9, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x18, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0xa, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd, 0x400, @old_map_fd=0x3ff}, 0xa3) writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040)=[0x404], 0x1}, 0x7e) 0s ago: executing program 1 (id=3019): sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041) writev$auto(0xca, 0x0, 0x7e) connect$auto(0xffffffffffffffff, &(0x7f0000001c00)=@nl=@kern={0x10, 0x0, 0x0, 0x2000}, 0x9) sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000009400)={0x24, 0x0, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) write$auto(0xffffffffffffffff, 0x0, 0x8) poll$auto(&(0x7f0000000100)={0xffffffffffffffff, 0xe7f1, 0x1726}, 0x7, 0x2) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001640), 0xffffffffffffffff) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_SEND_BEACONS(r0, &(0x7f0000000440)={&(0x7f00000002c0), 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x24, r1, 0x4, 0x70bd2a, 0x25dfdbfc, {}, [@NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0x36}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x8005}, 0x4000010) kernel console output (not intermixed with test programs): onvert it to SG_IO [ 275.770339][T10186] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1277'. [ 276.051965][ T9831] Bluetooth: hci0: command 0x0c1a tx timeout [ 276.842057][ T9831] Bluetooth: hci1: command 0x0c1a tx timeout [ 276.958678][ T9831] Bluetooth: hci3: command 0x0c1a tx timeout [ 276.960410][ T9716] Bluetooth: hci2: command 0x0c1a tx timeout [ 277.809998][T10209] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 277.821986][T10209] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 277.828080][T10209] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 277.862046][T10209] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 277.868128][T10209] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 278.196399][T10229] program syz.0.1292 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 279.162018][ T9716] Bluetooth: hci0: command 0x0c1a tx timeout [ 279.844933][T10254] program syz.0.1306 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 279.888337][ T9716] Bluetooth: hci3: command 0x0c1a tx timeout [ 279.888454][ T9831] Bluetooth: hci2: command 0x0c1a tx timeout [ 279.894763][ T5142] Bluetooth: hci1: command 0x0c1a tx timeout [ 280.486089][T10261] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1298'. [ 281.165516][T10274] program syz.0.1312 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 281.242087][ T9716] Bluetooth: hci0: command 0x0c1a tx timeout [ 282.522900][T10278] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 282.554118][T10278] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 282.576816][T10278] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 282.595053][T10278] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 282.601129][T10278] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 283.297668][T10291] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1308'. [ 283.882001][ T9716] Bluetooth: hci0: command 0x0c1a tx timeout [ 284.606545][ T9716] Bluetooth: hci2: command 0x0c1a tx timeout [ 284.612702][ T5142] Bluetooth: hci1: command 0x0c1a tx timeout [ 284.682132][ T9716] Bluetooth: hci3: command 0x0c1a tx timeout [ 284.793876][T10321] program syz.1.1317 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 285.430681][T10319] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 285.458106][T10319] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 285.522158][T10319] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 285.528224][T10319] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 285.567767][T10319] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 286.923001][ T5142] Bluetooth: hci0: command 0x0c1a tx timeout [ 287.209511][T10341] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1323'. [ 287.565881][ T5142] Bluetooth: hci2: command 0x0c1a tx timeout [ 287.575435][ T9716] Bluetooth: hci1: command 0x0c1a tx timeout [ 287.651924][ T5142] Bluetooth: hci3: command 0x0c1a tx timeout [ 289.002148][ T5142] Bluetooth: hci0: command 0x0c1a tx timeout [ 290.071339][T10368] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 290.071816][T10368] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 290.072821][T10368] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 290.072945][T10368] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 290.073072][T10368] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 290.297781][T10382] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1337'. [ 291.522581][T10389] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 291.528622][T10389] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 291.541520][T10389] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 291.574332][T10389] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 291.580434][T10389] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 292.842143][ T9831] Bluetooth: hci0: command 0x0c1a tx timeout [ 293.561967][ T9831] Bluetooth: hci1: command 0x0c1a tx timeout [ 293.651962][ T9831] Bluetooth: hci3: command 0x0c1a tx timeout [ 293.658077][ T9831] Bluetooth: hci2: command 0x0c1a tx timeout [ 294.242331][T10426] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 294.262657][T10426] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 294.352273][T10426] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 294.386407][T10426] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 294.443194][T10431] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1354'. [ 294.465521][T10426] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 294.780157][T10439] program syz.0.1356 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 295.895934][T10458] program syz.2.1368 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 296.282121][ T9831] Bluetooth: hci0: command 0x0c1a tx timeout [ 296.362023][ T9831] Bluetooth: hci1: command 0x0c1a tx timeout [ 296.441949][ T9831] Bluetooth: hci2: command 0x0c1a tx timeout [ 296.522046][ T9831] Bluetooth: hci3: command 0x0c1a tx timeout [ 298.253415][T10495] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1369'. [ 298.670529][T10488] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 298.686810][T10488] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 298.696998][T10488] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 298.713867][T10488] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 298.724731][T10488] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 298.919342][T10507] program syz.3.1373 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 299.962048][ T9831] Bluetooth: hci0: command 0x0c1a tx timeout [ 300.762065][ T9831] Bluetooth: hci3: command 0x0c1a tx timeout [ 300.762117][ T9831] Bluetooth: hci2: command 0x0c1a tx timeout [ 300.762156][ T9831] Bluetooth: hci1: command 0x0c1a tx timeout [ 302.042183][ T5142] Bluetooth: hci0: command 0x0c1a tx timeout [ 302.291766][T10555] program syz.0.1385 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 303.035425][T10552] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 303.090230][T10552] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 303.172656][T10552] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 303.192115][T10552] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 303.222214][T10552] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 303.862134][T10571] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1387'. [ 304.367173][ T5142] Bluetooth: hci0: command 0x0c1a tx timeout [ 305.039543][T10593] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1395'. [ 305.060106][T10593] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1395'. [ 305.243030][ T5142] Bluetooth: hci3: command 0x0c1a tx timeout [ 305.243057][ T9716] Bluetooth: hci1: command 0x0c1a tx timeout [ 305.257020][ T9831] Bluetooth: hci2: command 0x0c1a tx timeout [ 305.400117][T10602] program syz.1.1398 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 306.172309][T10600] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 306.178527][T10600] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 306.184725][T10600] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 306.201005][T10600] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 306.216937][T10600] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 306.514287][T10619] program syz.1.1410 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 307.562122][ T9716] Bluetooth: hci0: command 0x0c1a tx timeout [ 308.088415][T10657] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1412'. [ 308.129426][T10657] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1412'. [ 308.202205][ T9716] Bluetooth: hci2: command 0x0c1a tx timeout [ 308.208267][ T9716] Bluetooth: hci1: command 0x0c1a tx timeout [ 308.282038][ T9716] Bluetooth: hci3: command 0x0c1a tx timeout [ 308.856974][T10678] program syz.3.1417 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 309.642049][ T9716] Bluetooth: hci0: command 0x0c1a tx timeout [ 311.696399][T10713] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1436'. [ 311.718121][T10717] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1425'. [ 311.731882][ T9716] Bluetooth: hci0: command 0x0c1a tx timeout [ 311.784301][T10715] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1425'. [ 312.070054][T10726] program syz.1.1432 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 313.805780][ T9716] Bluetooth: hci0: command 0x0c1a tx timeout [ 314.458144][T10769] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1443'. [ 315.097356][T10784] program syz.1.1449 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 315.882060][ T9716] Bluetooth: hci0: command 0x0c1a tx timeout [ 317.153571][T10820] program syz.1.1457 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 317.325352][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.331768][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.056574][T10822] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 318.092712][T10822] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 318.098798][T10822] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 318.196956][T10822] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 318.307303][T10822] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 319.322060][ T9831] Bluetooth: hci0: command 0x0c1a tx timeout [ 320.041114][T10843] program syz.2.1463 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 320.121981][ T9831] Bluetooth: hci1: command 0x0c1a tx timeout [ 320.282051][ T9831] Bluetooth: hci2: command 0x0c1a tx timeout [ 320.316647][T10842] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1461'. [ 320.371932][ T9831] Bluetooth: hci3: command 0x0c1a tx timeout [ 321.401988][ T9831] Bluetooth: hci0: command 0x0c1a tx timeout [ 323.060057][T10884] program syz.2.1472 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 323.482042][ T9831] Bluetooth: hci0: command 0x0c1a tx timeout [ 325.094917][T10901] program syz.1.1476 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 326.025240][T10905] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 326.055635][T10905] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 326.102063][T10905] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 326.118836][T10905] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 326.127026][T10920] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1481'. [ 326.182254][T10905] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 327.571104][ T9831] Bluetooth: hci0: command 0x0c1a tx timeout [ 327.930311][T10943] program syz.3.1485 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 328.122004][ T9831] Bluetooth: hci2: command 0x0c1a tx timeout [ 328.128072][ T9831] Bluetooth: hci1: command 0x0c1a tx timeout [ 328.202102][ T9831] Bluetooth: hci3: command 0x0c1a tx timeout [ 329.642066][ T9831] Bluetooth: hci0: command 0x0c1a tx timeout [ 329.715305][T10960] program syz.0.1490 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 331.560626][T10973] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 331.574941][T10973] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 331.620226][T10973] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 331.635754][T10973] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 331.647581][T10973] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 332.147861][T10997] program syz.2.1501 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 332.921958][ T9831] Bluetooth: hci0: command 0x0c1a tx timeout [ 333.642062][ T9831] Bluetooth: hci2: command 0x0c1a tx timeout [ 333.648137][ T9831] Bluetooth: hci1: command 0x0c1a tx timeout [ 333.721921][ T9831] Bluetooth: hci3: command 0x0c1a tx timeout [ 335.011911][ T9831] Bluetooth: hci0: command 0x0c1a tx timeout [ 335.709881][T11024] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11024] [ 335.761215][T11028] program syz.2.1508 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 339.283317][T11070] netlink: 252 bytes leftover after parsing attributes in process `syz.0.1518'. [ 340.191528][T11085] program syz.3.1522 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 341.677222][T11100] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11100] [ 343.046290][T11120] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11120] [ 343.584786][T11126] netlink: 252 bytes leftover after parsing attributes in process `syz.3.1530'. [ 343.721038][T11127] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11127] [ 344.618499][T11141] program syz.1.1534 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 345.544011][T11154] program syz.2.1541 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 346.635897][T11170] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11170] [ 347.286689][T11183] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1548'. [ 347.419468][T11188] program syz.0.1551 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 348.422273][T11206] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[11206] [ 349.790338][T11229] program syz.1.1560 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 350.179463][T11235] netlink: 252 bytes leftover after parsing attributes in process `syz.3.1561'. [ 350.633999][T11243] program syz.2.1562 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 350.846007][T11248] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[11248] [ 353.359986][T11285] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11285] [ 353.826725][T11290] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[11290] [ 353.976534][T11294] program syz.3.1575 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 354.079648][T11298] program syz.2.1579 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 354.117678][ T29] audit: type=1800 audit(8277292240.240:40): pid=11302 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1581" name="dbroot" dev="configfs" ino=26226 res=0 errno=0 [ 354.122114][T11302] db_root: cannot open: › [ 356.548309][T11339] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11339] [ 356.672857][ T29] audit: type=1800 audit(8277292242.800:41): pid=11347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1594" name="dbroot" dev="configfs" ino=27267 res=0 errno=0 [ 356.746433][T11347] db_root: cannot open: › [ 356.889645][T11355] program syz.3.1596 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 356.905883][T11358] program syz.1.1595 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 356.978299][T11348] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11348] [ 358.053754][T11374] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1601'. [ 358.759685][T11390] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11390] [ 359.121109][ T29] audit: type=1800 audit(8277292245.240:42): pid=11394 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1607" name="dbroot" dev="configfs" ino=27348 res=0 errno=0 [ 359.148007][T11394] db_root: cannot open: › [ 359.433405][T11405] program syz.3.1610 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 360.186366][T11412] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11412] [ 360.352072][T11416] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1612'. [ 361.122001][T11434] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11434] [ 361.376546][T11442] program syz.0.1619 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 362.033730][T11456] program syz.3.1623 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 362.297393][ T9831] Bluetooth: hci0: unexpected event 0x03 length: 72 > 11 [ 362.636860][T11461] netlink: 93 bytes leftover after parsing attributes in process `syz.0.1624'. [ 363.141257][T11473] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11473] [ 363.496841][T11482] program syz.0.1636 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 363.616579][T11481] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1628'. [ 363.878346][T11493] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1631'. [ 363.953750][T11493] Process accounting resumed [ 363.958912][T11493] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11493 comm: syz.2.1631) [ 364.747977][T11508] Process accounting resumed [ 365.435124][ T9831] Bluetooth: hci3: unexpected event 0x03 length: 72 > 11 [ 365.514350][T11520] netlink: 93 bytes leftover after parsing attributes in process `syz.1.1639'. [ 365.524601][T11514] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11514] [ 365.554337][T11505] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11505 comm: syz.2.1633) [ 365.871964][T11529] program syz.1.1642 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 365.895446][T11530] program syz.3.1641 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 366.818837][T11523] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11523 comm: syz.2.1640) [ 367.062713][T11544] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11544 comm: syz.2.1645) [ 367.114373][T11544] Process accounting resumed [ 368.144956][T11561] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11561] [ 368.673607][ T9831] Bluetooth: hci2: unexpected event 0x03 length: 72 > 11 [ 368.930280][T11571] netlink: 93 bytes leftover after parsing attributes in process `syz.2.1651'. [ 369.617224][ T9831] Bluetooth: hci2: unexpected event 0x16 length: 11 > 6 [ 369.636683][T11579] can: request_module (can-proto-0) failed. [ 370.004981][T11587] program syz.1.1655 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 370.193017][T11593] Process accounting resumed [ 370.991937][T11603] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[11603] [ 374.066061][ T9831] Bluetooth: hci3: unexpected event 0x16 length: 11 > 6 [ 374.204403][T11637] can: request_module (can-proto-0) failed. [ 374.657579][ T29] audit: type=1800 audit(8277292260.780:43): pid=11643 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1667" name="discovery_nqn" dev="configfs" ino=28718 res=0 errno=0 [ 374.894207][ T29] audit: type=1804 audit(8277292261.020:44): pid=11643 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1667" name="/newroot/sys/kernel/config/nvmet/discovery_nqn" dev="configfs" ino=28718 res=1 errno=0 [ 375.122812][T11659] program syz.1.1670 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 376.712018][T11673] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[11673] [ 378.162136][ T9831] Bluetooth: hci0: unexpected event 0x16 length: 11 > 6 [ 378.177780][T11695] can: request_module (can-proto-0) failed. [ 378.637583][T11702] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1680'. [ 378.764966][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.771702][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.036652][T11709] program syz.0.1682 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 380.713532][T11725] netlink: 322 bytes leftover after parsing attributes in process `syz.3.1687'. [ 380.742237][T11725] vcan0: entered promiscuous mode [ 380.856713][T11718] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec"[11718] [ 381.995970][ T9831] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 382.671900][T11754] can: request_module (can-proto-0) failed. [ 383.052854][T11761] program syz.2.1694 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 383.345682][T11766] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1695'. [ 386.172989][T11791] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec"[11791] [ 387.100874][T11800] can: request_module (can-proto-0) failed. [ 387.490788][T11803] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[11803] [ 388.089976][ T9831] Bluetooth: hci2: ACL packet for unknown connection handle 16 [ 388.328533][T11812] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1707'. [ 388.360310][T11812] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1707'. [ 388.602495][T11815] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec"[11815] [ 388.912636][T11821] program syz.0.1709 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 389.430869][T11829] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1711'. [ 390.736597][T11844] can: request_module (can-proto-0) failed. [ 391.984098][T11862] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1721'. [ 392.074938][T11862] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1721'. [ 392.359352][T11859] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec"[11859] [ 392.369810][ T9831] Bluetooth: hci1: ACL packet for unknown connection handle 16 [ 392.661617][T11872] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec"[11872] [ 392.672215][T11874] program syz.2.1724 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 393.682723][ T9831] Bluetooth: hci1: unexpected event 0x10 length: 11 > 1 [ 393.685656][ T9716] Bluetooth: hci1: hardware error 0x00 [ 393.708363][T11888] can: request_module (can-proto-0) failed. [ 395.722004][ T9716] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 395.937298][T11923] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1734'. [ 395.999952][T11923] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1734'. [ 396.399814][ T9716] Bluetooth: hci3: ACL packet for unknown connection handle 16 [ 396.572188][T11928] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[11928] [ 397.076661][T11941] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11941] [ 397.247356][ T9716] Bluetooth: hci3: unexpected event 0x10 length: 11 > 1 [ 397.249096][ T9831] Bluetooth: hci3: hardware error 0x00 [ 397.251938][T11944] can: request_module (can-proto-0) failed. [ 399.321952][ T9831] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 400.561852][ T9831] Bluetooth: hci2: ACL packet for unknown connection handle 16 [ 400.959437][ T9831] Bluetooth: hci2: unexpected event 0x10 length: 11 > 1 [ 400.961000][ T9716] Bluetooth: hci2: hardware error 0x00 [ 400.974463][T11998] can: request_module (can-proto-0) failed. [ 401.261547][T11996] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[11996] [ 401.474149][ T9831] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 401.936798][T12016] program syz.1.1760 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 401.962152][T12016] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 402.074132][T12013] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[12013] [ 403.001971][ T9716] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 403.780491][T12051] syz.1.1769 (12051): attempted to duplicate a private mapping with mremap. This is not supported. [ 403.871564][T12050] can: request_module (can-proto-0) failed. [ 403.930387][T12051] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec"[12051] [ 404.826068][ T9716] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 406.861350][T12102] can: request_module (can-proto-0) failed. [ 407.626614][T12117] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec"[12117] [ 408.381231][T12135] can: request_module (can-proto-0) failed. [ 409.424984][T12162] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec"[12162] [ 410.156757][T12180] can: request_module (can-proto-0) failed. [ 412.942035][T12207] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12207] [ 413.520258][T12223] can: request_module (can-proto-0) failed. [ 414.415008][T12243] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12243] [ 415.501857][T12268] can: request_module (can-proto-0) failed. [ 416.224455][T12286] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1836'. [ 416.287063][T12284] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12284] [ 416.883553][ T9716] Bluetooth: hci0: unexpected event 0x16 length: 11 > 6 [ 417.132384][T12311] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12311] [ 417.580272][T12320] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1847'. [ 417.904378][T12326] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1850'. [ 420.072610][T12365] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12365] [ 420.113646][T12364] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1859'. [ 420.201533][T12367] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1860'. [ 421.733679][T12400] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12400] [ 421.812021][T12402] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1874'. [ 422.908829][T12428] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1883'. [ 423.374848][T12442] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12442] [ 423.630239][T12445] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1888'. [ 424.642178][T12476] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1899'. [ 424.986170][T12482] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12482] [ 425.978378][T12505] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1908'. [ 426.413143][T12512] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12512] [ 426.447772][T12520] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1914'. [ 426.463046][T12520] veth0_macvtap: left promiscuous mode [ 426.494231][T12520] macvtap0: entered allmulticast mode [ 427.239864][T12536] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1919'. [ 427.857027][T12554] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12554] [ 428.754411][T12570] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12570] [ 429.421579][T12584] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1932'. [ 430.397262][T12611] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12611] [ 430.847254][T12629] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1947'. [ 432.081716][T12662] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1959'. [ 432.305626][T12659] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12659] [ 432.576667][T12657] netlink: 'syz.2.1956': attribute type 2 has an invalid length. [ 432.929117][T12681] sctp: [Deprecated]: syz.0.1962 (pid 12681) Use of struct sctp_assoc_value in delayed_ack socket option. [ 432.929117][T12681] Use struct sctp_sack_info instead [ 433.701652][T12707] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12707] [ 434.326753][T12735] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1981'. [ 434.854986][ T9716] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 435.823375][T12760] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12760] [ 436.274818][T12778] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1992'. [ 436.592086][ T9716] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 437.745559][T12810] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2005'. [ 437.873363][T12808] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12808] [ 438.349422][T12826] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2008'. [ 439.673996][T12849] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2017'. [ 439.972684][T12856] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12856] [ 440.202518][T12862] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2022'. [ 440.213683][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.220959][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.459517][T12871] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12871] [ 440.687190][T12869] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2023'. [ 441.245599][T12884] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12884] [ 442.096650][T12911] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2037'. [ 443.197728][T12924] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2040'. [ 443.341390][T12935] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[12935] [ 443.714083][T12942] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2047'. [ 444.372027][ T9716] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 444.606469][T12978] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2060'. [ 446.486258][T13016] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2071'. [ 448.065639][T13058] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2087'. [ 448.110931][T13061] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2088'. [ 449.001571][ T9716] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 449.199794][T13085] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2097'. [ 450.058764][ T9716] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 450.144472][T13116] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2110'. [ 450.437803][T13128] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2115'. [ 450.462355][T13128] veth0_macvtap: left promiscuous mode [ 450.481432][T13128] macvtap0: entered allmulticast mode [ 451.840313][T13175] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2128'. [ 451.858833][T13175] veth0_macvtap: left promiscuous mode [ 451.867074][T13175] macvtap0: entered allmulticast mode [ 452.968915][ T9716] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 453.257383][ T9716] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 456.366439][T13289] netlink: 'syz.1.2177': attribute type 2 has an invalid length. [ 457.869727][ T9716] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 458.498242][T13337] netlink: 'syz.0.2182': attribute type 2 has an invalid length. [ 458.772494][T13350] sctp: [Deprecated]: syz.1.2184 (pid 13350) Use of struct sctp_assoc_value in delayed_ack socket option. [ 458.772494][T13350] Use struct sctp_sack_info instead [ 459.242723][T13363] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2191'. [ 459.409938][T13370] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2202'. [ 460.063669][ T9716] Bluetooth: hci0: unexpected event 0x16 length: 11 > 6 [ 460.268634][T13384] sctp: [Deprecated]: syz.2.2205 (pid 13384) Use of struct sctp_assoc_value in delayed_ack socket option. [ 460.268634][T13384] Use struct sctp_sack_info instead [ 460.578980][T13411] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2204'. [ 462.188837][T13450] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2216'. [ 463.154748][T13468] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2228'. [ 463.499467][T13481] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2232'. [ 465.058686][T13524] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2236'. [ 465.444311][T13534] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2250'. [ 467.567943][T13577] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2254'. [ 468.847754][T13613] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2265'. [ 469.912244][T13627] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[13627] [ 470.701313][T13652] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2276'. [ 471.270580][ T9716] Bluetooth: hci0: ACL packet too small [ 471.410355][T13669] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[13669] [ 472.245864][T13691] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2291'. [ 473.919692][T13717] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec"[13717] [ 474.153502][T13732] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13732] [ 475.271213][T13770] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13770] [ 476.136055][T13785] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13785] [ 476.901172][T13800] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13800] [ 477.741097][T13823] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13823] [ 477.889910][T13825] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13825] [ 478.224176][T13835] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13835] [ 478.734074][T13853] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13853] [ 479.785497][T13872] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13872] [ 480.070533][T13876] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13876] [ 480.604360][T13891] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13891] [ 482.249821][T13933] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13933] [ 482.717812][T13940] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13940] [ 483.282683][T13957] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[13957] [ 484.949454][ T9831] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 484.958929][ T9831] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 485.005119][ T9831] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 485.022521][ T9831] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 485.043393][ T9831] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 485.052738][ T9831] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 485.605349][T14002] chnl_net:caif_netlink_parms(): no params data found [ 485.843793][T14002] bridge0: port 1(bridge_slave_0) entered blocking state [ 485.869654][T14002] bridge0: port 1(bridge_slave_0) entered disabled state [ 485.907358][T14002] bridge_slave_0: entered allmulticast mode [ 485.942960][T14002] bridge_slave_0: entered promiscuous mode [ 485.990245][T14002] bridge0: port 2(bridge_slave_1) entered blocking state [ 485.997547][T14002] bridge0: port 2(bridge_slave_1) entered disabled state [ 486.004987][T14002] bridge_slave_1: entered allmulticast mode [ 486.012071][T14002] bridge_slave_1: entered promiscuous mode [ 486.070585][T14002] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 486.093089][T14002] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 486.177324][T14002] team0: Port device team_slave_0 added [ 486.196228][T14002] team0: Port device team_slave_1 added [ 486.253967][T14002] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 486.260935][T14002] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 486.301861][T14002] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 486.333862][T14002] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 486.340830][T14002] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 486.391874][T14002] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 486.477146][T14002] hsr_slave_0: entered promiscuous mode [ 486.494823][T14002] hsr_slave_1: entered promiscuous mode [ 486.505103][T14002] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 486.521964][T14002] Cannot create hsr debugfs directory [ 487.082790][ T9831] Bluetooth: hci4: command tx timeout [ 487.206071][T14002] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 487.219645][T14002] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 487.230252][T14002] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 487.240628][T14002] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 487.306834][T14032] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[14032] [ 487.329916][T14002] 8021q: adding VLAN 0 to HW filter on device bond0 [ 487.360695][T14002] 8021q: adding VLAN 0 to HW filter on device team0 [ 487.390269][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 487.397415][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 487.425883][ T8822] bridge0: port 2(bridge_slave_1) entered blocking state [ 487.433013][ T8822] bridge0: port 2(bridge_slave_1) entered forwarding state [ 487.542055][T14002] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 487.553993][T14002] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 487.841415][T14002] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 487.925056][T14002] veth0_vlan: entered promiscuous mode [ 487.955866][T14002] veth1_vlan: entered promiscuous mode [ 488.011157][T14002] veth0_macvtap: entered promiscuous mode [ 488.037380][T14002] veth1_macvtap: entered promiscuous mode [ 488.056918][T14002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 488.073963][T14002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 488.084408][T14002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 488.096006][T14002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 488.110233][T14002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 488.121194][T14002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 488.132221][T14002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 488.143430][T14002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 488.221303][T14002] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 488.248952][T14002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 488.266657][T14002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 488.277749][T14002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 488.289428][T14002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 488.299509][T14002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 488.310250][T14002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 488.320357][T14002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 488.331093][T14002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 488.344546][T14002] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 488.359936][T14002] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 488.372206][T14002] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 488.381189][T14002] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 488.396969][T14002] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 488.497907][ T6554] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 488.515787][ T6554] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 488.560206][ T8822] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 488.572272][ T8822] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 489.162677][ T9831] Bluetooth: hci4: command tx timeout [ 489.344149][ T9716] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 489.360170][ T9716] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 489.369245][ T9716] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 489.384818][ T9716] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 489.392878][ T9716] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 489.400306][ T9716] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 490.069712][T14070] chnl_net:caif_netlink_parms(): no params data found [ 490.257838][T14070] bridge0: port 1(bridge_slave_0) entered blocking state [ 490.265175][T14070] bridge0: port 1(bridge_slave_0) entered disabled state [ 490.274312][T14070] bridge_slave_0: entered allmulticast mode [ 490.281279][T14070] bridge_slave_0: entered promiscuous mode [ 490.292884][T14070] bridge0: port 2(bridge_slave_1) entered blocking state [ 490.299992][T14070] bridge0: port 2(bridge_slave_1) entered disabled state [ 490.307304][T14070] bridge_slave_1: entered allmulticast mode [ 490.314426][T14070] bridge_slave_1: entered promiscuous mode [ 490.402478][T14070] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 490.427119][T14070] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 490.477173][T14070] team0: Port device team_slave_0 added [ 490.489368][T14070] team0: Port device team_slave_1 added [ 490.493575][T14085] ptrace attach of "./syz-executor exec"[14002] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[14085] [ 490.526907][T14070] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 490.534187][T14070] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 490.561199][T14070] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 490.583265][T14070] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 490.590229][T14070] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 490.619972][T14070] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 490.737552][T14070] hsr_slave_0: entered promiscuous mode [ 490.778399][T14070] hsr_slave_1: entered promiscuous mode [ 490.817393][T14070] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 490.838144][T14070] Cannot create hsr debugfs directory [ 491.101032][T14070] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 491.235976][T14070] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 491.251315][ T9716] Bluetooth: hci4: command tx timeout [ 491.489521][ T9716] Bluetooth: hci0: command tx timeout [ 491.532183][T14070] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 491.726780][T14070] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 491.950825][T14070] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 491.973035][T14070] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 491.996361][T14070] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 492.022143][T14070] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 492.193514][T14070] 8021q: adding VLAN 0 to HW filter on device bond0 [ 492.244375][T14070] 8021q: adding VLAN 0 to HW filter on device team0 [ 492.275108][ T6560] bridge0: port 1(bridge_slave_0) entered blocking state [ 492.282261][ T6560] bridge0: port 1(bridge_slave_0) entered forwarding state [ 492.325518][ T6560] bridge0: port 2(bridge_slave_1) entered blocking state [ 492.332687][ T6560] bridge0: port 2(bridge_slave_1) entered forwarding state [ 492.384345][T14070] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 492.425463][T14070] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 492.782585][T14070] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 492.897777][T14070] veth0_vlan: entered promiscuous mode [ 492.936834][T14070] veth1_vlan: entered promiscuous mode [ 492.986199][T14070] veth0_macvtap: entered promiscuous mode [ 493.000896][T14070] veth1_macvtap: entered promiscuous mode [ 493.044378][T14070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 493.080164][T14070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 493.103318][T14070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 493.138868][T14070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 493.148869][T14070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 493.171267][T14070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 493.181483][T14070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 493.200329][T14070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 493.211367][T14070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 493.230074][T14070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 493.241494][T14070] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 493.266345][T14070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 493.282489][T14070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 493.322064][ T9716] Bluetooth: hci4: command tx timeout [ 493.330266][T14070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 493.348811][T14070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 493.359022][T14070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 493.371501][T14070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 493.381419][T14070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 493.392825][T14070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 493.409679][T14070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 493.421619][T14070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 493.432805][T14070] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 493.450325][T14070] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 493.459181][T14070] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 493.469492][T14070] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 493.478473][T14070] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 493.544563][ T6553] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 493.555199][ T6553] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 493.563239][ T9716] Bluetooth: hci0: command tx timeout [ 493.588477][ T6560] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 493.597495][ T6560] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 493.671710][ T9716] Bluetooth: hci0: unexpected event 0x16 length: 11 > 6 [ 494.547543][ T9831] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 494.597306][ T9831] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 494.614640][ T9831] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 494.632396][ T9831] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 494.642616][ T9831] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 494.649935][ T9831] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 494.666025][ T9831] Bluetooth: hci4: ACL packet for unknown connection handle 16 [ 495.285206][T14159] chnl_net:caif_netlink_parms(): no params data found [ 495.496686][T14159] bridge0: port 1(bridge_slave_0) entered blocking state [ 495.509166][T14159] bridge0: port 1(bridge_slave_0) entered disabled state [ 495.526324][T14159] bridge_slave_0: entered allmulticast mode [ 495.537345][T14159] bridge_slave_0: entered promiscuous mode [ 495.573951][T14159] bridge0: port 2(bridge_slave_1) entered blocking state [ 495.584429][T14159] bridge0: port 2(bridge_slave_1) entered disabled state [ 495.591702][T14159] bridge_slave_1: entered allmulticast mode [ 495.598870][T14159] bridge_slave_1: entered promiscuous mode [ 495.641956][ T9831] Bluetooth: hci0: command tx timeout [ 495.764033][T14159] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 495.815611][T14159] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 495.939359][T14159] team0: Port device team_slave_0 added [ 495.977367][T14159] team0: Port device team_slave_1 added [ 496.066779][T14159] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 496.081997][T14159] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 496.127466][T14159] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 496.154357][T14159] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 496.161456][ T9831] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 496.161488][T14159] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 496.221905][T14159] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 496.337148][T14159] hsr_slave_0: entered promiscuous mode [ 496.379684][T14159] hsr_slave_1: entered promiscuous mode [ 496.396313][T14159] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 496.419554][T14159] Cannot create hsr debugfs directory [ 496.691925][ T9831] Bluetooth: hci2: command tx timeout [ 496.750322][T14159] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 496.875372][T14159] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 496.989098][T14159] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 497.075664][T14159] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 497.104318][ T9831] Bluetooth: hci0: unexpected event 0x16 length: 11 > 6 [ 497.228758][T14159] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 497.254621][T14159] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 497.268222][T14159] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 497.279482][T14159] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 497.459932][T14159] 8021q: adding VLAN 0 to HW filter on device bond0 [ 497.492929][T14159] 8021q: adding VLAN 0 to HW filter on device team0 [ 497.505532][ T6553] bridge0: port 1(bridge_slave_0) entered blocking state [ 497.512679][ T6553] bridge0: port 1(bridge_slave_0) entered forwarding state [ 497.576359][ T6553] bridge0: port 2(bridge_slave_1) entered blocking state [ 497.583502][ T6553] bridge0: port 2(bridge_slave_1) entered forwarding state [ 497.722163][ T9831] Bluetooth: hci0: command tx timeout [ 497.942229][T14159] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 498.024105][T14159] veth0_vlan: entered promiscuous mode [ 498.047688][T14159] veth1_vlan: entered promiscuous mode [ 498.153825][T14159] veth0_macvtap: entered promiscuous mode [ 498.187393][T14159] veth1_macvtap: entered promiscuous mode [ 498.244054][T14159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 498.279820][T14159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.319280][T14159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 498.351591][T14159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.371775][T14159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 498.410086][T14159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.441101][T14159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 498.481772][T14159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.501814][T14159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 498.524636][T14159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.535230][T14159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 498.546093][T14159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.557483][T14159] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 498.643598][T14159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 498.664678][T14159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.688464][T14159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 498.707447][T14159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.719999][T14159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 498.740184][T14159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.750396][T14159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 498.762777][ T9831] Bluetooth: hci2: command tx timeout [ 498.770516][T14159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.780810][T14159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 498.801651][T14159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.819979][T14159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 498.851794][T14159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 498.869461][T14159] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 498.907480][T14159] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 498.926975][T14159] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 498.941792][T14159] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 498.958490][T14159] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 499.047952][ T6560] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 499.082557][ T6560] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 499.136193][ T6553] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 499.145777][ T6553] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 499.344941][ T9831] Bluetooth: hci4: ACL packet for unknown connection handle 16 [ 499.645523][ T9831] Bluetooth: hci2: unexpected event 0x16 length: 11 > 6 [ 499.682173][ T5142] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 499.706896][ T5142] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 499.716206][ T5142] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 499.736068][ T5142] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 499.758040][ T5142] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 499.767637][ T5142] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 499.958786][ T9831] Bluetooth: hci4: ACL packet for unknown connection handle 16 [ 500.387403][T14248] chnl_net:caif_netlink_parms(): no params data found [ 500.714625][T14248] bridge0: port 1(bridge_slave_0) entered blocking state [ 500.721943][T14248] bridge0: port 1(bridge_slave_0) entered disabled state [ 500.729159][T14248] bridge_slave_0: entered allmulticast mode [ 500.739046][T14248] bridge_slave_0: entered promiscuous mode [ 500.748469][T14248] bridge0: port 2(bridge_slave_1) entered blocking state [ 500.755631][T14248] bridge0: port 2(bridge_slave_1) entered disabled state [ 500.762866][T14248] bridge_slave_1: entered allmulticast mode [ 500.769875][T14248] bridge_slave_1: entered promiscuous mode [ 500.815240][T14248] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 500.842061][ T9831] Bluetooth: hci2: command tx timeout [ 500.843415][T14248] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 500.965436][T14248] team0: Port device team_slave_0 added [ 501.010769][T14248] team0: Port device team_slave_1 added [ 501.140129][T14248] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 501.157607][T14248] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 501.221441][T14248] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 501.267383][T14248] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 501.290331][T14248] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 501.371810][T14248] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 501.384622][ T9831] Bluetooth: hci4: ACL packet for unknown connection handle 16 [ 501.596790][T14248] hsr_slave_0: entered promiscuous mode [ 501.628228][T14248] hsr_slave_1: entered promiscuous mode [ 501.644436][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.653879][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.666399][T14248] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 501.701810][T14248] Cannot create hsr debugfs directory [ 501.801984][ T9831] Bluetooth: hci3: command tx timeout [ 502.073970][T14248] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 502.184631][T14248] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 502.295201][T14248] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 502.410057][T14248] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 502.471261][ T9831] Bluetooth: hci4: unexpected event 0x16 length: 11 > 6 [ 502.581842][T14248] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 502.626761][T14248] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 502.644712][T14248] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 502.654951][T14248] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 502.847233][T14248] 8021q: adding VLAN 0 to HW filter on device bond0 [ 502.893850][T14248] 8021q: adding VLAN 0 to HW filter on device team0 [ 502.924018][ T9831] Bluetooth: hci2: command tx timeout [ 502.933375][ T6560] bridge0: port 1(bridge_slave_0) entered blocking state [ 502.940504][ T6560] bridge0: port 1(bridge_slave_0) entered forwarding state [ 502.967720][ T6560] bridge0: port 2(bridge_slave_1) entered blocking state [ 502.974848][ T6560] bridge0: port 2(bridge_slave_1) entered forwarding state [ 503.002441][ T9831] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 503.429796][T14248] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 503.597101][T14248] veth0_vlan: entered promiscuous mode [ 503.693428][T14248] veth1_vlan: entered promiscuous mode [ 503.756563][T14248] veth0_macvtap: entered promiscuous mode [ 503.795544][T14248] veth1_macvtap: entered promiscuous mode [ 503.866732][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 503.881986][ T9831] Bluetooth: hci3: command tx timeout [ 503.902002][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 503.912013][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 503.922534][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 503.932388][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 503.942849][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 503.952763][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 503.964192][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 503.974579][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 503.985046][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 503.994919][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 504.005465][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.015432][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 504.025944][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.037024][T14248] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 504.051603][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 504.062104][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.072295][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 504.083171][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.093075][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 504.103548][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.113488][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 504.124244][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.134221][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 504.144723][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.154574][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 504.165347][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.175553][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 504.186067][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.197051][T14248] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 504.227499][T14248] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 504.236266][T14248] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 504.245032][T14248] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 504.253807][T14248] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 504.386874][ T6560] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 504.420315][ T6560] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 504.481134][ T6563] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 504.500318][ T6563] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 504.654052][ T9831] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 505.296237][T14314] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2462'. [ 505.919600][ T9831] Bluetooth: hci4: unexpected event 0x16 length: 11 > 6 [ 505.970125][ T9831] Bluetooth: hci3: command tx timeout [ 506.413141][ T9831] Bluetooth: hci4: ACL packet for unknown connection handle 16 [ 506.621000][ T9831] Bluetooth: hci4: ACL packet for unknown connection handle 16 [ 508.042398][ T9831] Bluetooth: hci3: command tx timeout [ 508.444378][ T9831] Bluetooth: hci4: ACL packet for unknown connection handle 16 [ 508.515024][T14364] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2475'. [ 509.814332][ T9831] Bluetooth: hci2: ACL packet for unknown connection handle 16 [ 510.712150][T14403] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2490'. [ 511.325751][ T9831] Bluetooth: hci2: unexpected event 0x16 length: 11 > 6 [ 511.951561][ T9831] Bluetooth: hci0: unexpected event 0x16 length: 11 > 6 [ 512.040910][ T9831] Bluetooth: hci3: ACL packet for unknown connection handle 16 [ 513.207996][ T9831] Bluetooth: hci2: ACL packet for unknown connection handle 16 [ 513.475257][ T9831] Bluetooth: hci3: unexpected event 0x16 length: 11 > 6 [ 514.299329][ T9831] Bluetooth: hci2: unexpected event 0x16 length: 11 > 6 [ 514.960942][ T9831] Bluetooth: hci4: ACL packet for unknown connection handle 16 [ 516.432161][ T9831] Bluetooth: hci0: unexpected event 0x16 length: 11 > 6 [ 516.617324][ T9831] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 517.745943][ T9831] Bluetooth: hci3: unexpected event 0x16 length: 11 > 6 [ 517.764032][ T9831] Bluetooth: hci2: ACL packet for unknown connection handle 16 [ 518.126416][ T9831] Bluetooth: hci4: ACL packet for unknown connection handle 16 [ 518.675414][T14558] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2543'. [ 518.699470][T14558] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2543'. [ 519.062071][ T9831] Bluetooth: hci0: unexpected event 0x16 length: 11 > 6 [ 519.231064][ T9831] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 519.516610][ T9831] Bluetooth: hci0: unexpected event 0x10 length: 11 > 1 [ 519.518161][ T5142] Bluetooth: hci0: hardware error 0x00 [ 520.006845][ T9831] Bluetooth: hci3: unexpected event 0x16 length: 11 > 6 [ 520.509191][T14606] FAULT_INJECTION: forcing a failure. [ 520.509191][T14606] name failslab, interval 1, probability 0, space 0, times 0 [ 520.561859][T14606] CPU: 0 UID: 0 PID: 14606 Comm: syz.3.2561 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 520.572671][T14606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 520.582758][T14606] Call Trace: [ 520.586053][T14606] [ 520.589001][T14606] dump_stack_lvl+0x16c/0x1f0 [ 520.593724][T14606] should_fail_ex+0x497/0x5b0 [ 520.598430][T14606] ? fs_reclaim_acquire+0xae/0x150 [ 520.603567][T14606] should_failslab+0xc2/0x120 [ 520.608257][T14606] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 520.613639][T14606] ? alloc_empty_file+0x73/0x1e0 [ 520.618592][T14606] alloc_empty_file+0x73/0x1e0 [ 520.623367][T14606] path_openat+0xe1/0x2d60 [ 520.627790][T14606] ? hlock_class+0x4e/0x130 [ 520.632298][T14606] ? __lock_acquire+0x15a9/0x3c40 [ 520.637343][T14606] ? __pfx_path_openat+0x10/0x10 [ 520.642284][T14606] ? __pfx___lock_acquire+0x10/0x10 [ 520.647491][T14606] ? lock_acquire.part.0+0x11b/0x380 [ 520.652779][T14606] ? find_held_lock+0x2d/0x110 [ 520.657554][T14606] do_filp_open+0x20c/0x470 [ 520.662074][T14606] ? __pfx_do_filp_open+0x10/0x10 [ 520.667104][T14606] ? find_held_lock+0x2d/0x110 [ 520.671892][T14606] ? alloc_fd+0x41f/0x760 [ 520.676233][T14606] do_sys_openat2+0x17a/0x1e0 [ 520.680920][T14606] ? __pfx_do_sys_openat2+0x10/0x10 [ 520.686131][T14606] ? __fget_files+0x206/0x3a0 [ 520.690815][T14606] __x64_sys_openat+0x175/0x210 [ 520.695680][T14606] ? __pfx___x64_sys_openat+0x10/0x10 [ 520.701077][T14606] ? ksys_write+0x1ba/0x250 [ 520.705604][T14606] do_syscall_64+0xcd/0x250 [ 520.710118][T14606] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 520.716016][T14606] RIP: 0033:0x7f2544b85d19 [ 520.720431][T14606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 520.740041][T14606] RSP: 002b:00007f2545959038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 520.748459][T14606] RAX: ffffffffffffffda RBX: 00007f2544d75fa0 RCX: 00007f2544b85d19 [ 520.756434][T14606] RDX: 0000000000008082 RSI: 0000000020000040 RDI: ffffffffffffff9c [ 520.764408][T14606] RBP: 00007f2545959090 R08: 0000000000000000 R09: 0000000000000000 [ 520.772387][T14606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 520.780362][T14606] R13: 0000000000000001 R14: 00007f2544d75fa0 R15: 00007ffc2ae7e008 [ 520.788346][T14606] [ 520.895129][ T9831] Bluetooth: hci3: unexpected event 0x10 length: 11 > 1 [ 520.896668][ T9831] Bluetooth: hci3: hardware error 0x00 [ 521.212007][ T9716] Bluetooth: hci2: unexpected event 0x14 length: 11 > 6 [ 521.591868][ T5142] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 521.621046][ T5142] Bluetooth: hci2: unexpected event 0x10 length: 11 > 1 [ 521.622664][ T5142] Bluetooth: hci2: hardware error 0x00 [ 521.961640][ T9716] Bluetooth: hci2: unexpected event 0x14 length: 11 > 6 [ 522.107727][T14658] FAULT_INJECTION: forcing a failure. [ 522.107727][T14658] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 522.157386][T14658] CPU: 1 UID: 0 PID: 14658 Comm: syz.1.2584 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 522.168200][T14658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 522.178276][T14658] Call Trace: [ 522.181569][T14658] [ 522.184521][T14658] dump_stack_lvl+0x16c/0x1f0 [ 522.189233][T14658] should_fail_ex+0x497/0x5b0 [ 522.193949][T14658] _copy_to_user+0x32/0xd0 [ 522.198399][T14658] simple_read_from_buffer+0xd0/0x160 [ 522.203820][T14658] proc_fail_nth_read+0x198/0x270 [ 522.208887][T14658] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 522.214466][T14658] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 522.220029][T14658] vfs_read+0x1df/0xbe0 [ 522.224193][T14658] ? __fget_files+0x1fc/0x3a0 [ 522.228877][T14658] ? __pfx___mutex_lock+0x10/0x10 [ 522.233913][T14658] ? __pfx_vfs_read+0x10/0x10 [ 522.238608][T14658] ? __fget_files+0x206/0x3a0 [ 522.243299][T14658] ksys_read+0x12b/0x250 [ 522.247546][T14658] ? __pfx_ksys_read+0x10/0x10 [ 522.252320][T14658] do_syscall_64+0xcd/0x250 [ 522.256836][T14658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 522.262736][T14658] RIP: 0033:0x7f4d33d8472c [ 522.267152][T14658] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 522.286764][T14658] RSP: 002b:00007f4d34c31030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 522.295181][T14658] RAX: ffffffffffffffda RBX: 00007f4d33f75fa0 RCX: 00007f4d33d8472c [ 522.303154][T14658] RDX: 000000000000000f RSI: 00007f4d34c310a0 RDI: 0000000000000004 [ 522.311127][T14658] RBP: 00007f4d34c31090 R08: 0000000000000000 R09: 0000000000000000 [ 522.319100][T14658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 522.327075][T14658] R13: 0000000000000000 R14: 00007f4d33f75fa0 R15: 00007ffffcaa4848 [ 522.335058][T14658] [ 522.390560][T14662] Process accounting resumed [ 523.002048][ T9831] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 523.881841][ T5142] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 524.039825][T14719] FAULT_INJECTION: forcing a failure. [ 524.039825][T14719] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 524.085682][T14719] CPU: 0 UID: 0 PID: 14719 Comm: syz.3.2607 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 524.096495][T14719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 524.106583][T14719] Call Trace: [ 524.109874][T14719] [ 524.112828][T14719] dump_stack_lvl+0x16c/0x1f0 [ 524.117545][T14719] should_fail_ex+0x497/0x5b0 [ 524.122264][T14719] _copy_from_iter+0x29b/0x1400 [ 524.127149][T14719] ? trace_lock_acquire+0x14e/0x1f0 [ 524.132381][T14719] ? __alloc_skb+0x200/0x380 [ 524.137005][T14719] ? __pfx__copy_from_iter+0x10/0x10 [ 524.142332][T14719] ? __virt_addr_valid+0x1a4/0x590 [ 524.147478][T14719] ? __virt_addr_valid+0x5e/0x590 [ 524.152535][T14719] ? __phys_addr_symbol+0x30/0x80 [ 524.157594][T14719] ? __check_object_size+0x488/0x710 [ 524.162913][T14719] netlink_sendmsg+0x813/0xd70 [ 524.167708][T14719] ? __pfx_netlink_sendmsg+0x10/0x10 [ 524.173031][T14719] ____sys_sendmsg+0x9ae/0xb40 [ 524.177819][T14719] ? copy_msghdr_from_user+0x10b/0x160 [ 524.183310][T14719] ? __pfx_____sys_sendmsg+0x10/0x10 [ 524.188623][T14719] ___sys_sendmsg+0x135/0x1e0 [ 524.193314][T14719] ? __pfx____sys_sendmsg+0x10/0x10 [ 524.198533][T14719] ? __pfx_lock_release+0x10/0x10 [ 524.203576][T14719] ? trace_lock_acquire+0x14e/0x1f0 [ 524.208791][T14719] ? __fget_files+0x206/0x3a0 [ 524.213480][T14719] __sys_sendmsg+0x16e/0x220 [ 524.218079][T14719] ? __pfx___sys_sendmsg+0x10/0x10 [ 524.223216][T14719] do_syscall_64+0xcd/0x250 [ 524.227726][T14719] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 524.233628][T14719] RIP: 0033:0x7f2544b85d19 [ 524.238047][T14719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 524.257662][T14719] RSP: 002b:00007f2545959038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 524.266082][T14719] RAX: ffffffffffffffda RBX: 00007f2544d75fa0 RCX: 00007f2544b85d19 [ 524.274055][T14719] RDX: 0000000000040004 RSI: 0000000020002bc0 RDI: 0000000000000003 [ 524.282029][T14719] RBP: 00007f2545959090 R08: 0000000000000000 R09: 0000000000000000 [ 524.290001][T14719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 524.297972][T14719] R13: 0000000000000000 R14: 00007f2544d75fa0 R15: 00007ffc2ae7e008 [ 524.305960][T14719] [ 525.271554][ T29] audit: type=1800 audit(8277292411.390:45): pid=14723 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2609" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 525.673170][T14748] can0: slcan on pty73. [ 525.903013][T14746] can0 (unregistered): slcan off pty73. [ 527.785120][T14816] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2629'. [ 529.783296][ T5142] Bluetooth: hci4: ACL packet for unknown connection handle 16 [ 530.226900][ T5142] Bluetooth: hci4: ACL packet for unknown connection handle 16 [ 532.584320][T14892] netlink: 'syz.0.2650': attribute type 4 has an invalid length. [ 532.651064][T14892] netlink: 314 bytes leftover after parsing attributes in process `syz.0.2650'. [ 532.761539][T14892] IPv6: NLM_F_CREATE should be specified when creating new route [ 533.563854][ T9831] Bluetooth: hci4: ACL packet for unknown connection handle 16 [ 537.595919][T14968] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2674'. [ 537.832492][T14968] veth0_macvtap: left promiscuous mode [ 540.042270][T14998] zero sized request [ 540.221668][T14972] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2677'. [ 540.322049][ T9716] Bluetooth: hci4: ACL packet for unknown connection handle 16 [ 540.422675][T15008] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2687'. [ 540.459708][T15008] veth0_macvtap: left promiscuous mode [ 541.792749][T15044] FAULT_INJECTION: forcing a failure. [ 541.792749][T15044] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 541.806431][T15044] CPU: 0 UID: 0 PID: 15044 Comm: syz.3.2699 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 541.817237][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 541.820456][ T9716] Bluetooth: hci4: unexpected event 0x10 length: 11 > 1 [ 541.827296][T15044] Call Trace: [ 541.827328][T15044] [ 541.827339][T15044] dump_stack_lvl+0x16c/0x1f0 [ 541.827373][T15044] should_fail_ex+0x497/0x5b0 [ 541.827407][T15044] _copy_from_user+0x2e/0xd0 [ 541.836454][ T9716] Bluetooth: hci4: hardware error 0x00 [ 541.837600][T15044] kstrtouint_from_user+0xd7/0x1c0 [ 541.865180][T15044] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 541.870940][T15044] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 541.876606][T15044] proc_fail_nth_write+0x84/0x250 [ 541.881757][T15044] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 541.887428][T15044] ? ksys_write+0x12b/0x250 [ 541.891961][T15044] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 541.897606][T15044] vfs_write+0x24c/0x1150 [ 541.901949][T15044] ? __fget_files+0x1fc/0x3a0 [ 541.906636][T15044] ? __pfx___mutex_lock+0x10/0x10 [ 541.911667][T15044] ? __pfx_vfs_write+0x10/0x10 [ 541.916446][T15044] ? __fget_files+0x206/0x3a0 [ 541.921144][T15044] ksys_write+0x12b/0x250 [ 541.925481][T15044] ? __pfx_ksys_write+0x10/0x10 [ 541.930343][T15044] do_syscall_64+0xcd/0x250 [ 541.934857][T15044] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 541.940761][T15044] RIP: 0033:0x7f2544b847cf [ 541.945177][T15044] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 541.964793][T15044] RSP: 002b:00007f2545959030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 541.973217][T15044] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2544b847cf [ 541.981189][T15044] RDX: 0000000000000001 RSI: 00007f25459590a0 RDI: 0000000000000007 [ 541.989165][T15044] RBP: 00007f2545959090 R08: 0000000000000000 R09: 0000000000000000 [ 541.997143][T15044] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 542.005124][T15044] R13: 0000000000000000 R14: 00007f2544d75fa0 R15: 00007ffc2ae7e008 [ 542.013115][T15044] [ 542.104873][T15047] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2698'. [ 542.116906][T15047] veth0_macvtap: left promiscuous mode [ 543.483056][T15094] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2716'. [ 543.575367][T15096] FAULT_INJECTION: forcing a failure. [ 543.575367][T15096] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 543.620954][T15096] CPU: 0 UID: 0 PID: 15096 Comm: syz.2.2717 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 543.631767][T15096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 543.641847][T15096] Call Trace: [ 543.645141][T15096] [ 543.648087][T15096] dump_stack_lvl+0x16c/0x1f0 [ 543.652796][T15096] should_fail_ex+0x497/0x5b0 [ 543.657508][T15096] ? fs_reclaim_acquire+0xae/0x150 [ 543.662657][T15096] should_fail_alloc_page+0xe7/0x130 [ 543.667981][T15096] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 543.674170][T15096] __alloc_pages_noprof+0x190/0x25b0 [ 543.679494][T15096] ? stack_trace_save+0x95/0xd0 [ 543.684381][T15096] ? __pfx_stack_trace_save+0x10/0x10 [ 543.689785][T15096] ? __pfx_mark_lock+0x10/0x10 [ 543.694583][T15096] ? stack_depot_save_flags+0x28/0x9e0 [ 543.700084][T15096] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 543.705835][T15096] ? kasan_save_stack+0x33/0x60 [ 543.710714][T15096] ? kasan_save_free_info+0x3b/0x60 [ 543.715939][T15096] ? kfree+0x14f/0x4b0 [ 543.720037][T15096] ? tomoyo_path_number_perm+0x46d/0x5b0 [ 543.725700][T15096] ? security_file_ioctl+0x9b/0x240 [ 543.730917][T15096] ? __x64_sys_ioctl+0xb7/0x200 [ 543.735802][T15096] ? do_syscall_64+0xcd/0x250 [ 543.740508][T15096] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 543.746613][T15096] ? aa_get_newest_label+0x376/0x680 [ 543.751933][T15096] ? __pfx_aa_get_newest_label+0x10/0x10 [ 543.757598][T15096] ? aa_get_newest_label+0x376/0x680 [ 543.762921][T15096] ? __pfx_aa_get_newest_label+0x10/0x10 [ 543.768590][T15096] ___kmalloc_large_node+0x84/0x1b0 [ 543.773823][T15096] __kmalloc_large_noprof+0x1c/0x70 [ 543.779043][T15096] ? bpf_lsm_locked_down+0x9/0x10 [ 543.784095][T15096] ksys_ioperm+0x3c9/0x4f0 [ 543.788538][T15096] vt_ioctl+0xe8e/0x2fd0 [ 543.792809][T15096] ? __pfx_vt_ioctl+0x10/0x10 [ 543.797513][T15096] ? tomoyo_path_number_perm+0x46d/0x5b0 [ 543.803193][T15096] ? tomoyo_path_number_perm+0x190/0x5b0 [ 543.808863][T15096] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 543.814967][T15096] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 543.820891][T15096] ? do_vfs_ioctl+0x513/0x1950 [ 543.825691][T15096] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 543.831617][T15096] ? tty_jobctrl_ioctl+0x152/0xe00 [ 543.836757][T15096] ? __pfx_vt_ioctl+0x10/0x10 [ 543.841464][T15096] tty_ioctl+0x651/0x1640 [ 543.845831][T15096] ? __pfx_tty_ioctl+0x10/0x10 [ 543.850636][T15096] ? __pfx_lock_release+0x10/0x10 [ 543.855697][T15096] ? trace_lock_acquire+0x14e/0x1f0 [ 543.860939][T15096] ? __fget_files+0x206/0x3a0 [ 543.865647][T15096] ? __pfx_tty_ioctl+0x10/0x10 [ 543.870453][T15096] __x64_sys_ioctl+0x190/0x200 [ 543.875262][T15096] do_syscall_64+0xcd/0x250 [ 543.879803][T15096] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 543.885726][T15096] RIP: 0033:0x7f4af0d85d19 [ 543.890168][T15096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 543.909799][T15096] RSP: 002b:00007f4af1c2c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 543.918240][T15096] RAX: ffffffffffffffda RBX: 00007f4af0f75fa0 RCX: 00007f4af0d85d19 [ 543.926231][T15096] RDX: 000000000000000b RSI: 0000000000004b36 RDI: 0000000000000003 [ 543.934219][T15096] RBP: 00007f4af1c2c090 R08: 0000000000000000 R09: 0000000000000000 [ 543.942209][T15096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 543.950201][T15096] R13: 0000000000000000 R14: 00007f4af0f75fa0 R15: 00007ffcf594a9d8 [ 543.958209][T15096] [ 544.003645][T15094] veth0_macvtap: left promiscuous mode [ 544.123427][ T9716] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 545.912079][T15151] FAULT_INJECTION: forcing a failure. [ 545.912079][T15151] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 545.931753][T15151] CPU: 0 UID: 0 PID: 15151 Comm: syz.1.2735 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 545.942554][T15151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 545.952616][T15151] Call Trace: [ 545.955895][T15151] [ 545.958834][T15151] dump_stack_lvl+0x16c/0x1f0 [ 545.963525][T15151] should_fail_ex+0x497/0x5b0 [ 545.968217][T15151] _copy_to_user+0x32/0xd0 [ 545.972649][T15151] simple_read_from_buffer+0xd0/0x160 [ 545.978041][T15151] proc_fail_nth_read+0x198/0x270 [ 545.983081][T15151] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 545.988643][T15151] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 545.994211][T15151] vfs_read+0x1df/0xbe0 [ 545.998373][T15151] ? __fget_files+0x1fc/0x3a0 [ 546.003057][T15151] ? __pfx___mutex_lock+0x10/0x10 [ 546.008090][T15151] ? __pfx_vfs_read+0x10/0x10 [ 546.012784][T15151] ? __fget_files+0x206/0x3a0 [ 546.017475][T15151] ksys_read+0x12b/0x250 [ 546.021727][T15151] ? __pfx_ksys_read+0x10/0x10 [ 546.026514][T15151] do_syscall_64+0xcd/0x250 [ 546.031027][T15151] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 546.036935][T15151] RIP: 0033:0x7f4d33d8472c [ 546.041353][T15151] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 546.060972][T15151] RSP: 002b:00007f4d34c31030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 546.069393][T15151] RAX: ffffffffffffffda RBX: 00007f4d33f75fa0 RCX: 00007f4d33d8472c [ 546.077369][T15151] RDX: 000000000000000f RSI: 00007f4d34c310a0 RDI: 0000000000000004 [ 546.085341][T15151] RBP: 00007f4d34c31090 R08: 0000000000000000 R09: 0000000000000000 [ 546.093315][T15151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 546.101290][T15151] R13: 0000000000000000 R14: 00007f4d33f75fa0 R15: 00007ffffcaa4848 [ 546.109279][T15151] [ 553.482729][T15319] netlink: 93 bytes leftover after parsing attributes in process `syz.3.2792'. [ 553.502852][T15314] netlink: 93 bytes leftover after parsing attributes in process `syz.3.2792'. [ 555.744794][T15390] FAULT_INJECTION: forcing a failure. [ 555.744794][T15390] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 555.845320][T15390] CPU: 0 UID: 0 PID: 15390 Comm: syz.1.2816 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 555.856147][T15390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 555.866575][T15390] Call Trace: [ 555.869876][T15390] [ 555.872829][T15390] dump_stack_lvl+0x16c/0x1f0 [ 555.877543][T15390] should_fail_ex+0x497/0x5b0 [ 555.882264][T15390] _copy_from_iter+0x29b/0x1400 [ 555.887162][T15390] ? trace_lock_acquire+0x14e/0x1f0 [ 555.892412][T15390] ? __pfx__copy_from_iter+0x10/0x10 [ 555.897743][T15390] ? __virt_addr_valid+0x1a4/0x590 [ 555.902903][T15390] ? __virt_addr_valid+0x5e/0x590 [ 555.907963][T15390] ? __phys_addr+0xc6/0x150 [ 555.912502][T15390] ? __phys_addr_symbol+0x30/0x80 [ 555.917564][T15390] ? __check_object_size+0x488/0x710 [ 555.922898][T15390] netlink_sendmsg+0x813/0xd70 [ 555.927702][T15390] ? __pfx_netlink_sendmsg+0x10/0x10 [ 555.933038][T15390] sock_write_iter+0x4fe/0x5b0 [ 555.937836][T15390] ? __pfx_sock_write_iter+0x10/0x10 [ 555.943165][T15390] ? bpf_lsm_file_permission+0x9/0x10 [ 555.948581][T15390] ? security_file_permission+0x71/0x210 [ 555.954254][T15390] vfs_write+0x5ae/0x1150 [ 555.958618][T15390] ? __pfx_sock_write_iter+0x10/0x10 [ 555.963939][T15390] ? __pfx_vfs_write+0x10/0x10 [ 555.968744][T15390] ? __pfx_do_sys_openat2+0x10/0x10 [ 555.974001][T15390] ksys_write+0x207/0x250 [ 555.978370][T15390] ? __pfx_ksys_write+0x10/0x10 [ 555.983263][T15390] do_syscall_64+0xcd/0x250 [ 555.987811][T15390] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 555.993741][T15390] RIP: 0033:0x7f4d33d85d19 [ 555.998185][T15390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 556.017827][T15390] RSP: 002b:00007f4d34c31038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 556.026275][T15390] RAX: ffffffffffffffda RBX: 00007f4d33f75fa0 RCX: 00007f4d33d85d19 [ 556.034275][T15390] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 556.042273][T15390] RBP: 00007f4d34c31090 R08: 0000000000000000 R09: 0000000000000000 [ 556.050265][T15390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 556.058258][T15390] R13: 0000000000000000 R14: 00007f4d33f75fa0 R15: 00007ffffcaa4848 [ 556.066269][T15390] [ 556.495664][T15409] pty pty245: ldisc open failed (-12), clearing slot 245 [ 556.588899][T15412] openvswitch: netlink: Key type 261 is out of range max 32 [ 556.806979][ T29] audit: type=1806 audit(8277292442.930:46): xattr="" res=-22 [ 559.860879][T15507] FAULT_INJECTION: forcing a failure. [ 559.860879][T15507] name failslab, interval 1, probability 0, space 0, times 0 [ 559.889721][T15491] netlink: 93 bytes leftover after parsing attributes in process `syz.2.2853'. [ 559.901091][T15506] netlink: 93 bytes leftover after parsing attributes in process `syz.3.2859'. [ 559.909441][T15507] CPU: 0 UID: 0 PID: 15507 Comm: syz.2.2853 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 559.920814][T15507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 559.930892][T15507] Call Trace: [ 559.934194][T15507] [ 559.937144][T15507] dump_stack_lvl+0x16c/0x1f0 [ 559.941856][T15507] should_fail_ex+0x497/0x5b0 [ 559.946570][T15507] ? fs_reclaim_acquire+0xae/0x150 [ 559.951720][T15507] should_failslab+0xc2/0x120 [ 559.956437][T15507] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 559.962281][T15507] ? __alloc_skb+0x2b3/0x380 [ 559.966916][T15507] __alloc_skb+0x2b3/0x380 [ 559.971381][T15507] ? __pfx___alloc_skb+0x10/0x10 [ 559.976366][T15507] netlink_alloc_large_skb+0x69/0x130 [ 559.981772][T15507] netlink_sendmsg+0x689/0xd70 [ 559.986575][T15507] ? __pfx_netlink_sendmsg+0x10/0x10 [ 559.991904][T15507] ____sys_sendmsg+0x9ae/0xb40 [ 559.996690][T15507] ? copy_msghdr_from_user+0x10b/0x160 [ 560.002164][T15507] ? __pfx_____sys_sendmsg+0x10/0x10 [ 560.007467][T15507] ___sys_sendmsg+0x135/0x1e0 [ 560.012158][T15507] ? __pfx____sys_sendmsg+0x10/0x10 [ 560.017377][T15507] ? __pfx_lock_release+0x10/0x10 [ 560.022417][T15507] ? trace_lock_acquire+0x14e/0x1f0 [ 560.027636][T15507] ? __fget_files+0x206/0x3a0 [ 560.032330][T15507] __sys_sendmsg+0x16e/0x220 [ 560.036937][T15507] ? __pfx___sys_sendmsg+0x10/0x10 [ 560.042075][T15507] do_syscall_64+0xcd/0x250 [ 560.046590][T15507] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.052493][T15507] RIP: 0033:0x7f4af0d85d19 [ 560.056910][T15507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 560.076527][T15507] RSP: 002b:00007f4af1c0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 560.084949][T15507] RAX: ffffffffffffffda RBX: 00007f4af0f76080 RCX: 00007f4af0d85d19 [ 560.092931][T15507] RDX: 0000000010004010 RSI: 0000000020000100 RDI: 0000000000000003 [ 560.100913][T15507] RBP: 00007f4af1c0b090 R08: 0000000000000000 R09: 0000000000000000 [ 560.108893][T15507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 560.116877][T15507] R13: 0000000000000000 R14: 00007f4af0f76080 R15: 00007ffcf594a9d8 [ 560.124870][T15507] [ 560.946803][T15528] netlink: 93 bytes leftover after parsing attributes in process `syz.0.2866'. [ 561.461113][T15550] can: request_module (can-proto-4) failed. [ 561.571211][T15550] can: request_module (can-proto-4) failed. [ 561.660593][T15550] can: request_module (can-proto-4) failed. [ 561.759809][T15550] can: request_module (can-proto-4) failed. [ 561.864898][T15550] can: request_module (can-proto-4) failed. [ 561.969585][T15550] can: request_module (can-proto-4) failed. [ 561.987800][T15565] netlink: 'syz.1.2877': attribute type 4 has an invalid length. [ 562.043985][T15550] can: request_module (can-proto-4) failed. [ 562.098103][T15550] can: request_module (can-proto-4) failed. [ 562.177813][T15550] can: request_module (can-proto-4) failed. [ 562.228160][T15550] can: request_module (can-proto-4) failed. [ 562.500357][T15584] FAULT_INJECTION: forcing a failure. [ 562.500357][T15584] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 562.538683][T15584] CPU: 1 UID: 0 PID: 15584 Comm: syz.3.2882 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 562.549505][T15584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 562.559588][T15584] Call Trace: [ 562.562888][T15584] [ 562.565841][T15584] dump_stack_lvl+0x16c/0x1f0 [ 562.570556][T15584] should_fail_ex+0x497/0x5b0 [ 562.575274][T15584] _copy_to_iter+0x4a5/0x1400 [ 562.580002][T15584] ? __pfx__copy_to_iter+0x10/0x10 [ 562.585145][T15584] ? __virt_addr_valid+0x1a4/0x590 [ 562.590291][T15584] ? __virt_addr_valid+0x5e/0x590 [ 562.595347][T15584] ? __phys_addr_symbol+0x30/0x80 [ 562.600397][T15584] ? __check_object_size+0x488/0x710 [ 562.605712][T15584] seq_read_iter+0xd00/0x12b0 [ 562.610426][T15584] seq_read+0x39f/0x4e0 [ 562.614607][T15584] ? __pfx_seq_read+0x10/0x10 [ 562.619341][T15584] full_proxy_read+0xfb/0x1b0 [ 562.624051][T15584] ? __pfx_full_proxy_read+0x10/0x10 [ 562.629368][T15584] vfs_read+0x1df/0xbe0 [ 562.633555][T15584] ? __fget_files+0x1fc/0x3a0 [ 562.638262][T15584] ? __pfx___mutex_lock+0x10/0x10 [ 562.643317][T15584] ? __pfx_vfs_read+0x10/0x10 [ 562.648039][T15584] ? __fget_files+0x206/0x3a0 [ 562.652753][T15584] ksys_read+0x12b/0x250 [ 562.657032][T15584] ? __pfx_ksys_read+0x10/0x10 [ 562.661832][T15584] do_syscall_64+0xcd/0x250 [ 562.666374][T15584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 562.672300][T15584] RIP: 0033:0x7f2544b85d19 [ 562.676741][T15584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 562.696379][T15584] RSP: 002b:00007f2545959038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 562.704823][T15584] RAX: ffffffffffffffda RBX: 00007f2544d75fa0 RCX: 00007f2544b85d19 [ 562.712828][T15584] RDX: 0000000000400000 RSI: 0000000000000000 RDI: 0000000000000003 [ 562.720824][T15584] RBP: 00007f2545959090 R08: 0000000000000000 R09: 0000000000000000 [ 562.728819][T15584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 562.736813][T15584] R13: 0000000000000000 R14: 00007f2544d75fa0 R15: 00007ffc2ae7e008 [ 562.744831][T15584] [ 563.094464][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.102359][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.407514][T15616] netlink: 'syz.3.2892': attribute type 4 has an invalid length. [ 564.269812][T15644] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2903'. [ 564.477754][T15652] netlink: 'syz.0.2906': attribute type 4 has an invalid length. [ 564.584091][T15657] FAULT_INJECTION: forcing a failure. [ 564.584091][T15657] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 564.631966][T15657] CPU: 1 UID: 0 PID: 15657 Comm: syz.3.2907 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 564.642782][T15657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 564.652866][T15657] Call Trace: [ 564.656161][T15657] [ 564.659111][T15657] dump_stack_lvl+0x16c/0x1f0 [ 564.663828][T15657] should_fail_ex+0x497/0x5b0 [ 564.668545][T15657] ? fs_reclaim_acquire+0xae/0x150 [ 564.673688][T15657] should_fail_alloc_page+0xe7/0x130 [ 564.679011][T15657] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 564.685205][T15657] __alloc_pages_noprof+0x190/0x25b0 [ 564.690532][T15657] ? __lock_acquire+0x15a9/0x3c40 [ 564.695617][T15657] ? hlock_class+0x4e/0x130 [ 564.700155][T15657] ? mark_lock+0xb5/0xc60 [ 564.704527][T15657] ? __pfx_mark_lock+0x10/0x10 [ 564.709335][T15657] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 564.715106][T15657] ? hlock_class+0x4e/0x130 [ 564.719651][T15657] ? hlock_class+0x4e/0x130 [ 564.724191][T15657] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 564.730123][T15657] ? policy_nodemask+0xea/0x4e0 [ 564.735018][T15657] alloc_pages_mpol_noprof+0x2c9/0x610 [ 564.740518][T15657] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 564.746546][T15657] ? __pfx___lock_acquire+0x10/0x10 [ 564.751790][T15657] ? trace_lock_acquire+0x14e/0x1f0 [ 564.757037][T15657] pte_alloc_one+0x20/0x390 [ 564.761569][T15657] do_pte_missing+0x1ae7/0x3e00 [ 564.766476][T15657] __handle_mm_fault+0x103c/0x2a40 [ 564.771639][T15657] ? __pfx___handle_mm_fault+0x10/0x10 [ 564.777128][T15657] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 564.782811][T15657] ? find_vma+0xc0/0x140 [ 564.787086][T15657] ? __pfx_find_vma+0x10/0x10 [ 564.791801][T15657] handle_mm_fault+0x3fa/0xaa0 [ 564.796615][T15657] do_user_addr_fault+0x7a3/0x13f0 [ 564.801766][T15657] exc_page_fault+0x5c/0xc0 [ 564.806303][T15657] asm_exc_page_fault+0x26/0x30 [ 564.811182][T15657] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 564.817026][T15657] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 564.836664][T15657] RSP: 0018:ffffc90003cd7b68 EFLAGS: 00050206 [ 564.842763][T15657] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000052 [ 564.850756][T15657] RDX: ffffed100484a45a RSI: 0000000000000000 RDI: ffff888024252280 [ 564.858751][T15657] RBP: 0000000000000052 R08: 0000000000000001 R09: ffffed100484a45a [ 564.866748][T15657] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000 [ 564.874743][T15657] R13: ffff888024252280 R14: 0000000000000052 R15: 1ffff9200079afae [ 564.882761][T15657] _copy_from_user+0x9a/0xd0 [ 564.887392][T15657] memdup_user_nul+0x72/0x110 [ 564.892105][T15657] event_inject_write+0xbe/0x1ec0 [ 564.897164][T15657] ? hlock_class+0x4e/0x130 [ 564.901712][T15657] ? __pfx_event_inject_write+0x10/0x10 [ 564.907287][T15657] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 564.912953][T15657] ? rcu_is_watching+0x12/0xc0 [ 564.917745][T15657] ? trace_lock_acquire+0x14e/0x1f0 [ 564.922975][T15657] ? __x64_sys_pwrite64+0x1f6/0x250 [ 564.928212][T15657] ? __pfx_event_inject_write+0x10/0x10 [ 564.933790][T15657] vfs_write+0x24c/0x1150 [ 564.938162][T15657] ? __fget_files+0x1fc/0x3a0 [ 564.942869][T15657] ? __pfx_lock_release+0x10/0x10 [ 564.947928][T15657] ? __pfx_vfs_write+0x10/0x10 [ 564.952726][T15657] ? lock_acquire+0x2f/0xb0 [ 564.957248][T15657] ? __fget_files+0x40/0x3a0 [ 564.961868][T15657] ? __fget_files+0x206/0x3a0 [ 564.966580][T15657] __x64_sys_pwrite64+0x1f6/0x250 [ 564.971641][T15657] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 564.977227][T15657] do_syscall_64+0xcd/0x250 [ 564.981764][T15657] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 564.987701][T15657] RIP: 0033:0x7f2544b85d19 [ 564.992141][T15657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 565.011778][T15657] RSP: 002b:00007f2545959038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 565.020227][T15657] RAX: ffffffffffffffda RBX: 00007f2544d75fa0 RCX: 00007f2544b85d19 [ 565.028220][T15657] RDX: 0000000000000052 RSI: 0000000000000000 RDI: 0000000000000003 [ 565.036214][T15657] RBP: 00007f2545959090 R08: 0000000000000000 R09: 0000000000000000 [ 565.044209][T15657] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 565.052205][T15657] R13: 0000000000000000 R14: 00007f2544d75fa0 R15: 00007ffc2ae7e008 [ 565.060219][T15657] [ 565.760386][T15676] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2913'. [ 566.183306][T15690] FAULT_INJECTION: forcing a failure. [ 566.183306][T15690] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 566.208849][T15690] CPU: 1 UID: 0 PID: 15690 Comm: syz.3.2925 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 566.219657][T15690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 566.229734][T15690] Call Trace: [ 566.233067][T15690] [ 566.236015][T15690] dump_stack_lvl+0x16c/0x1f0 [ 566.240733][T15690] should_fail_ex+0x497/0x5b0 [ 566.245452][T15690] _copy_to_user+0x32/0xd0 [ 566.249904][T15690] simple_read_from_buffer+0xd0/0x160 [ 566.255319][T15690] proc_fail_nth_read+0x198/0x270 [ 566.260383][T15690] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 566.265970][T15690] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 566.271554][T15690] vfs_read+0x1df/0xbe0 [ 566.275743][T15690] ? __fget_files+0x1fc/0x3a0 [ 566.280463][T15690] ? __pfx___mutex_lock+0x10/0x10 [ 566.285519][T15690] ? __pfx_vfs_read+0x10/0x10 [ 566.290235][T15690] ? __fget_files+0x206/0x3a0 [ 566.294952][T15690] ksys_read+0x12b/0x250 [ 566.299227][T15690] ? __pfx_ksys_read+0x10/0x10 [ 566.304029][T15690] do_syscall_64+0xcd/0x250 [ 566.308564][T15690] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.314491][T15690] RIP: 0033:0x7f2544b8472c [ 566.318930][T15690] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 566.338562][T15690] RSP: 002b:00007f2545959030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 566.347007][T15690] RAX: ffffffffffffffda RBX: 00007f2544d75fa0 RCX: 00007f2544b8472c [ 566.355004][T15690] RDX: 000000000000000f RSI: 00007f25459590a0 RDI: 0000000000000006 [ 566.362997][T15690] RBP: 00007f2545959090 R08: 0000000000000000 R09: 0000000000000000 [ 566.370990][T15690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 566.378982][T15690] R13: 0000000000000000 R14: 00007f2544d75fa0 R15: 00007ffc2ae7e008 [ 566.386997][T15690] [ 566.633059][T15695] FAULT_INJECTION: forcing a failure. [ 566.633059][T15695] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 566.646318][T15695] CPU: 1 UID: 0 PID: 15695 Comm: syz.3.2919 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 566.657111][T15695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 566.667186][T15695] Call Trace: [ 566.670482][T15695] [ 566.673433][T15695] dump_stack_lvl+0x16c/0x1f0 [ 566.678139][T15695] should_fail_ex+0x497/0x5b0 [ 566.682852][T15695] _copy_from_user+0x2e/0xd0 [ 566.687482][T15695] copy_msghdr_from_user+0x99/0x160 [ 566.692723][T15695] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 566.698575][T15695] ? get_pid_task+0xfc/0x250 [ 566.703206][T15695] ___sys_sendmsg+0xff/0x1e0 [ 566.707836][T15695] ? __pfx____sys_sendmsg+0x10/0x10 [ 566.713080][T15695] ? __pfx_vfs_write+0x10/0x10 [ 566.717851][T15695] ? do_sys_openat2+0xb1/0x1e0 [ 566.722629][T15695] __sys_sendmsg+0x16e/0x220 [ 566.727227][T15695] ? __pfx___sys_sendmsg+0x10/0x10 [ 566.732364][T15695] do_syscall_64+0xcd/0x250 [ 566.736875][T15695] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.742774][T15695] RIP: 0033:0x7f2544b85d19 [ 566.747191][T15695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 566.766800][T15695] RSP: 002b:00007f2545959038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 566.775220][T15695] RAX: ffffffffffffffda RBX: 00007f2544d75fa0 RCX: 00007f2544b85d19 [ 566.783204][T15695] RDX: 0000000000000080 RSI: 0000000020000180 RDI: 0000000000000001 [ 566.791202][T15695] RBP: 00007f2545959090 R08: 0000000000000000 R09: 0000000000000000 [ 566.799177][T15695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 566.807151][T15695] R13: 0000000000000000 R14: 00007f2544d75fa0 R15: 00007ffc2ae7e008 [ 566.815140][T15695] [ 567.483983][T15719] netlink: 'syz.2.2931': attribute type 1 has an invalid length. [ 567.585507][ T8822] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.058879][T15056] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 568.069662][T15056] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 568.078719][T15056] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 568.087253][T15056] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 568.095025][T15056] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 568.102911][T15056] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 568.146816][ T8822] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.351578][ T8822] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.538577][ T8822] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 569.011319][T15728] chnl_net:caif_netlink_parms(): no params data found [ 569.066458][ T8822] bridge_slave_1: left allmulticast mode [ 569.092167][ T8822] bridge_slave_1: left promiscuous mode [ 569.103829][ T8822] bridge0: port 2(bridge_slave_1) entered disabled state [ 569.158107][ T8822] bridge_slave_0: left allmulticast mode [ 569.171793][ T8822] bridge_slave_0: left promiscuous mode [ 569.177514][ T8822] bridge0: port 1(bridge_slave_0) entered disabled state [ 569.976442][ T8822] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 569.987350][ T8822] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 569.997623][ T8822] bond0 (unregistering): Released all slaves [ 570.108831][T15728] bridge0: port 1(bridge_slave_0) entered blocking state [ 570.161945][T15728] bridge0: port 1(bridge_slave_0) entered disabled state [ 570.169105][T15728] bridge_slave_0: entered allmulticast mode [ 570.189361][T15728] bridge_slave_0: entered promiscuous mode [ 570.199307][T15728] bridge0: port 2(bridge_slave_1) entered blocking state [ 570.202133][T15056] Bluetooth: hci1: command tx timeout [ 570.211294][T15728] bridge0: port 2(bridge_slave_1) entered disabled state [ 570.219652][T15728] bridge_slave_1: entered allmulticast mode [ 570.235302][T15728] bridge_slave_1: entered promiscuous mode [ 570.318825][T15728] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 570.358853][T15728] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 570.421655][T15728] team0: Port device team_slave_0 added [ 570.431281][T15728] team0: Port device team_slave_1 added [ 570.500177][T15728] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 570.522068][T15728] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 570.558846][T15728] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 570.579148][ T8822] hsr_slave_0: left promiscuous mode [ 570.585212][ T8822] hsr_slave_1: left promiscuous mode [ 570.592658][ T8822] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 570.600123][ T8822] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 570.621257][ T8822] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 570.630595][ T8822] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 570.653990][ T8822] veth1_macvtap: left promiscuous mode [ 570.659960][ T8822] veth1_vlan: left promiscuous mode [ 570.666483][ T8822] veth0_vlan: left promiscuous mode [ 571.050785][ T8822] team0 (unregistering): Port device team_slave_1 removed [ 571.089315][ T8822] team0 (unregistering): Port device team_slave_0 removed [ 571.414257][T15728] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 571.421235][T15728] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 571.447924][T15728] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 571.542006][T15728] hsr_slave_0: entered promiscuous mode [ 571.548902][T15728] hsr_slave_1: entered promiscuous mode [ 571.557736][T15728] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 571.565879][T15728] Cannot create hsr debugfs directory [ 572.091308][T15728] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 572.102883][T15728] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 572.114030][T15728] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 572.123371][T15728] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 572.203729][T15728] 8021q: adding VLAN 0 to HW filter on device bond0 [ 572.226290][T15728] 8021q: adding VLAN 0 to HW filter on device team0 [ 572.241084][ T8822] bridge0: port 1(bridge_slave_0) entered blocking state [ 572.248227][ T8822] bridge0: port 1(bridge_slave_0) entered forwarding state [ 572.268895][ T8822] bridge0: port 2(bridge_slave_1) entered blocking state [ 572.275990][ T8822] bridge0: port 2(bridge_slave_1) entered forwarding state [ 572.283598][T15056] Bluetooth: hci1: command tx timeout [ 572.532259][T15728] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 572.609785][T15728] veth0_vlan: entered promiscuous mode [ 572.629551][T15728] veth1_vlan: entered promiscuous mode [ 572.675986][T15728] veth0_macvtap: entered promiscuous mode [ 572.694683][T15728] veth1_macvtap: entered promiscuous mode [ 572.719494][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 572.741666][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 572.751672][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 572.776362][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 572.788635][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 572.799373][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 572.809580][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 572.820336][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 572.830539][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 572.850386][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 572.860525][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 572.876369][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 572.886415][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 572.897256][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 572.914645][T15728] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 572.933275][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 572.949317][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 572.959476][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 572.969985][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 572.981177][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 572.991889][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 573.001953][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 573.013861][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 573.035434][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 573.051833][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 573.061665][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 573.082818][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 573.101212][T15728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 573.117168][T15728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 573.140359][T15728] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 573.167578][T15728] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 573.176894][T15728] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 573.189332][T15728] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 573.199750][T15728] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 573.339767][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 573.362470][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 573.394846][ T8825] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 573.404596][ T8825] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 574.361848][T15056] Bluetooth: hci1: command tx timeout [ 574.978380][T15894] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2958'. [ 575.892968][ T29] audit: type=1800 audit(8277292462.020:47): pid=15909 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2964" name="discovery_nqn" dev="configfs" ino=48368 res=0 errno=0 [ 576.288948][ T29] audit: type=1800 audit(8277292462.410:48): pid=15916 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2967" name="discovery_nqn" dev="configfs" ino=47898 res=0 errno=0 [ 576.312939][T15916] FAULT_INJECTION: forcing a failure. [ 576.312939][T15916] name failslab, interval 1, probability 0, space 0, times 0 [ 576.371353][T15916] CPU: 1 UID: 0 PID: 15916 Comm: syz.1.2967 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 576.382161][T15916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 576.392235][T15916] Call Trace: [ 576.395532][T15916] [ 576.398487][T15916] dump_stack_lvl+0x16c/0x1f0 [ 576.403198][T15916] should_fail_ex+0x497/0x5b0 [ 576.407909][T15916] ? fs_reclaim_acquire+0xae/0x150 [ 576.413055][T15916] should_failslab+0xc2/0x120 [ 576.417774][T15916] __kmalloc_noprof+0xce/0x4f0 [ 576.422570][T15916] ? d_absolute_path+0x137/0x1b0 [ 576.427540][T15916] ? tomoyo_encode2+0x100/0x3e0 [ 576.432425][T15916] tomoyo_encode2+0x100/0x3e0 [ 576.437137][T15916] tomoyo_realpath_from_path+0x1a7/0x710 [ 576.442813][T15916] tomoyo_path_number_perm+0x248/0x5b0 [ 576.448308][T15916] ? tomoyo_path_number_perm+0x235/0x5b0 [ 576.453981][T15916] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 576.460026][T15916] ? __pfx_lock_release+0x10/0x10 [ 576.465093][T15916] ? trace_lock_acquire+0x14e/0x1f0 [ 576.470332][T15916] ? lock_acquire+0x2f/0xb0 [ 576.474854][T15916] ? __fget_files+0x40/0x3a0 [ 576.479455][T15916] ? __fget_files+0x206/0x3a0 [ 576.484140][T15916] security_file_ioctl+0x9b/0x240 [ 576.489167][T15916] __x64_sys_ioctl+0xb7/0x200 [ 576.493861][T15916] do_syscall_64+0xcd/0x250 [ 576.498372][T15916] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.504272][T15916] RIP: 0033:0x7f4d33d85d19 [ 576.508688][T15916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 576.528298][T15916] RSP: 002b:00007f4d34c31038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 576.536717][T15916] RAX: ffffffffffffffda RBX: 00007f4d33f75fa0 RCX: 00007f4d33d85d19 [ 576.544692][T15916] RDX: 0000000000000081 RSI: 000000008004552d RDI: 0000000000000004 [ 576.552670][T15916] RBP: 00007f4d34c31090 R08: 0000000000000000 R09: 0000000000000000 [ 576.560640][T15916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 576.568611][T15916] R13: 0000000000000000 R14: 00007f4d33f75fa0 R15: 00007ffffcaa4848 [ 576.576599][T15916] [ 576.582170][T15916] ERROR: Out of memory at tomoyo_realpath_from_path. [ 576.601227][T15056] Bluetooth: hci1: command tx timeout [ 578.804287][T15955] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2976'. [ 580.626506][T15980] delete_channel: no stack [ 580.766192][T15986] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2990'. [ 580.971992][T15987] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2987'. [ 581.702647][T16007] netlink: 'syz.1.2998': attribute type 11 has an invalid length. [ 581.731835][T16007] netlink: 'syz.1.2998': attribute type 11 has an invalid length. [ 581.739691][T16007] netlink: 'syz.1.2998': attribute type 11 has an invalid length. [ 584.401435][T16054] netlink: 93 bytes leftover after parsing attributes in process `syz.1.3014'. [ 584.491660][T16057] netlink: 93 bytes leftover after parsing attributes in process `syz.1.3014'. [ 585.386049][T16066] FAULT_INJECTION: forcing a failure. [ 585.386049][T16066] name failslab, interval 1, probability 0, space 0, times 0 [ 585.444771][T16063] netlink: 93 bytes leftover after parsing attributes in process `syz.2.3016'. [ 585.482764][T16066] CPU: 1 UID: 0 PID: 16066 Comm: syz.2.3016 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 585.493565][T16066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 585.503638][T16066] Call Trace: [ 585.506930][T16066] [ 585.509876][T16066] dump_stack_lvl+0x16c/0x1f0 [ 585.514585][T16066] should_fail_ex+0x497/0x5b0 [ 585.519293][T16066] ? fs_reclaim_acquire+0xae/0x150 [ 585.524434][T16066] should_failslab+0xc2/0x120 [ 585.529144][T16066] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 585.534981][T16066] ? __alloc_skb+0x2b3/0x380 [ 585.539608][T16066] __alloc_skb+0x2b3/0x380 [ 585.544051][T16066] ? __pfx___alloc_skb+0x10/0x10 [ 585.549002][T16066] ? lock_acquire+0x2f/0xb0 [ 585.553512][T16066] netlink_alloc_large_skb+0x69/0x130 [ 585.558890][T16066] netlink_sendmsg+0x689/0xd70 [ 585.563658][T16066] ? __pfx_netlink_sendmsg+0x10/0x10 [ 585.568954][T16066] ____sys_sendmsg+0x9ae/0xb40 [ 585.573722][T16066] ? copy_msghdr_from_user+0x10b/0x160 [ 585.579190][T16066] ? __pfx_____sys_sendmsg+0x10/0x10 [ 585.584476][T16066] ? __lock_acquire+0xcc5/0x3c40 [ 585.589435][T16066] ___sys_sendmsg+0x135/0x1e0 [ 585.594166][T16066] ? __pfx____sys_sendmsg+0x10/0x10 [ 585.599419][T16066] ? trace_lock_acquire+0x14e/0x1f0 [ 585.604646][T16066] __sys_sendmmsg+0x201/0x420 [ 585.609338][T16066] ? __pfx___sys_sendmmsg+0x10/0x10 [ 585.614562][T16066] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 585.620558][T16066] ? fput+0x67/0x440 [ 585.624465][T16066] ? ksys_write+0x1ba/0x250 [ 585.628985][T16066] ? __pfx_ksys_write+0x10/0x10 [ 585.633848][T16066] __x64_sys_sendmmsg+0x9c/0x100 [ 585.638803][T16066] ? lockdep_hardirqs_on+0x7c/0x110 [ 585.644022][T16066] do_syscall_64+0xcd/0x250 [ 585.648538][T16066] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 585.654441][T16066] RIP: 0033:0x7f4af0d85d19 [ 585.658860][T16066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 585.678474][T16066] RSP: 002b:00007f4af1c0b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 585.686893][T16066] RAX: ffffffffffffffda RBX: 00007f4af0f76080 RCX: 00007f4af0d85d19 [ 585.694870][T16066] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003 [ 585.702844][T16066] RBP: 00007f4af1c0b090 R08: 0000000000000000 R09: 0000000000000000 [ 585.710815][T16066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 585.718785][T16066] R13: 0000000000000000 R14: 00007f4af0f76080 R15: 00007ffcf594a9d8 [ 585.726770][T16066] [ 585.960412][T15940] ------------[ cut here ]------------ [ 585.966459][T15940] WARNING: CPU: 0 PID: 15940 at mm/page_alloc.c:4727 __alloc_pages_noprof+0xeff/0x25b0 [ 585.976243][T15940] Modules linked in: [ 585.980176][T15940] CPU: 0 UID: 0 PID: 15940 Comm: syz.0.2973 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 585.991491][T15940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 586.002118][T15940] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 586.008239][T15940] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 0e b3 fe ff e9 69 f9 ff ff c6 05 e1 44 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 9f a2 0c 00 8b 14 24 e9 [ 586.027978][T15940] RSP: 0018:ffffc90017807918 EFLAGS: 00010246 [ 586.034380][T15940] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 586.042553][T15940] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000040d40 [ 586.050554][T15940] RBP: 0000000000000000 R08: 0000000000000006 R09: 00000000003fffff [ 586.058619][T15940] R10: 00000000003fffff R11: 0000000000000004 R12: 000000000000000b [ 586.066697][T15940] R13: 0000000000040d40 R14: 1ffff92002f00f37 R15: 00000000003fffff [ 586.074734][T15940] FS: 00007feae290e6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 586.083980][T15940] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 586.091098][T15940] CR2: 0000001b30015ff8 CR3: 00000000253c8000 CR4: 00000000003526f0 [ 586.099616][T15940] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 586.107675][T15940] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 586.115720][T15940] Call Trace: [ 586.119028][T15940] [ 586.122988][T15940] ? __warn+0xea/0x3c0 [ 586.127111][T15940] ? __alloc_pages_noprof+0xeff/0x25b0 [ 586.133319][T15940] ? report_bug+0x3c0/0x580 [ 586.137977][T15940] ? handle_bug+0x54/0xa0 [ 586.142397][T15940] ? exc_invalid_op+0x17/0x50 [ 586.147122][T15940] ? asm_exc_invalid_op+0x1a/0x20 [ 586.152282][T15940] ? __alloc_pages_noprof+0xeff/0x25b0 [ 586.157806][T15940] ? __pfx___schedule+0x10/0x10 [ 586.162744][T15940] ? hlock_class+0x4e/0x130 [ 586.167292][T15940] ? __lock_acquire+0x15a9/0x3c40 [ 586.172531][T15940] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 586.178305][T15940] ? smb2_duplicate_extents+0x1cb/0x1160 [ 586.184027][T15940] ? lockdep_hardirqs_on+0x7c/0x110 [ 586.189771][T15940] ? find_held_lock+0x2d/0x110 [ 586.195075][T15940] ___kmalloc_large_node+0x84/0x1b0 [ 586.200328][T15940] __kmalloc_large_node_noprof+0x1c/0x70 [ 586.206238][T15940] __kmalloc_noprof.cold+0xc/0x63 [ 586.211314][T15940] ? __might_fault+0xe3/0x190 [ 586.216092][T15940] ? tomoyo_write_control+0x267/0x13d0 [ 586.221605][T15940] tomoyo_write_control+0x267/0x13d0 [ 586.227010][T15940] ? rcu_is_watching+0x12/0xc0 [ 586.231880][T15940] ? __pfx_tomoyo_write_control+0x10/0x10 [ 586.237737][T15940] ? ksys_write+0x12b/0x250 [ 586.242343][T15940] ? __pfx_tomoyo_write+0x10/0x10 [ 586.247408][T15940] vfs_write+0x24c/0x1150 [ 586.251829][T15940] ? __fget_files+0x1fc/0x3a0 [ 586.256552][T15940] ? __pfx___mutex_lock+0x10/0x10 [ 586.261622][T15940] ? __pfx_vfs_write+0x10/0x10 [ 586.266488][T15940] ? __fget_files+0x206/0x3a0 [ 586.271216][T15940] ksys_write+0x12b/0x250 [ 586.275631][T15940] ? __pfx_ksys_write+0x10/0x10 [ 586.280533][T15940] do_syscall_64+0xcd/0x250 [ 586.285171][T15940] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 586.291546][T15940] RIP: 0033:0x7feae1b85d19 [ 586.296660][T15940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 586.316471][T15940] RSP: 002b:00007feae290e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 586.324966][T15940] RAX: ffffffffffffffda RBX: 00007feae1d76080 RCX: 00007feae1b85d19 [ 586.332998][T15940] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 586.341099][T15940] RBP: 00007feae1c01a20 R08: 0000000000000000 R09: 0000000000000000 [ 586.349138][T15940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 586.357176][T15940] R13: 0000000000000000 R14: 00007feae1d76080 R15: 00007ffc0fbde648 [ 586.365337][T15940] [ 586.368394][T15940] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 586.375691][T15940] CPU: 0 UID: 0 PID: 15940 Comm: syz.0.2973 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 586.386478][T15940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 586.396553][T15940] Call Trace: [ 586.399852][T15940] [ 586.402798][T15940] dump_stack_lvl+0x3d/0x1f0 [ 586.407405][T15940] panic+0x71d/0x800 [ 586.411316][T15940] ? __pfx_panic+0x10/0x10 [ 586.415746][T15940] ? show_trace_log_lvl+0x29d/0x3d0 [ 586.420966][T15940] ? __alloc_pages_noprof+0xeff/0x25b0 [ 586.426437][T15940] check_panic_on_warn+0xab/0xb0 [ 586.431386][T15940] __warn+0xf6/0x3c0 [ 586.435293][T15940] ? __alloc_pages_noprof+0xeff/0x25b0 [ 586.440768][T15940] report_bug+0x3c0/0x580 [ 586.445110][T15940] handle_bug+0x54/0xa0 [ 586.449280][T15940] exc_invalid_op+0x17/0x50 [ 586.453806][T15940] asm_exc_invalid_op+0x1a/0x20 [ 586.458668][T15940] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 586.464750][T15940] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 0e b3 fe ff e9 69 f9 ff ff c6 05 e1 44 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 9f a2 0c 00 8b 14 24 e9 [ 586.484362][T15940] RSP: 0018:ffffc90017807918 EFLAGS: 00010246 [ 586.490435][T15940] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 586.498410][T15940] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000040d40 [ 586.506386][T15940] RBP: 0000000000000000 R08: 0000000000000006 R09: 00000000003fffff [ 586.514361][T15940] R10: 00000000003fffff R11: 0000000000000004 R12: 000000000000000b [ 586.522333][T15940] R13: 0000000000040d40 R14: 1ffff92002f00f37 R15: 00000000003fffff [ 586.530329][T15940] ? __pfx___schedule+0x10/0x10 [ 586.535193][T15940] ? hlock_class+0x4e/0x130 [ 586.539708][T15940] ? __lock_acquire+0x15a9/0x3c40 [ 586.544752][T15940] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 586.550490][T15940] ? smb2_duplicate_extents+0x1cb/0x1160 [ 586.556136][T15940] ? lockdep_hardirqs_on+0x7c/0x110 [ 586.561352][T15940] ? find_held_lock+0x2d/0x110 [ 586.566129][T15940] ___kmalloc_large_node+0x84/0x1b0 [ 586.571335][T15940] __kmalloc_large_node_noprof+0x1c/0x70 [ 586.576974][T15940] __kmalloc_noprof.cold+0xc/0x63 [ 586.582014][T15940] ? __might_fault+0xe3/0x190 [ 586.586707][T15940] ? tomoyo_write_control+0x267/0x13d0 [ 586.592177][T15940] tomoyo_write_control+0x267/0x13d0 [ 586.597483][T15940] ? rcu_is_watching+0x12/0xc0 [ 586.602263][T15940] ? __pfx_tomoyo_write_control+0x10/0x10 [ 586.607997][T15940] ? ksys_write+0x12b/0x250 [ 586.612514][T15940] ? __pfx_tomoyo_write+0x10/0x10 [ 586.617543][T15940] vfs_write+0x24c/0x1150 [ 586.621884][T15940] ? __fget_files+0x1fc/0x3a0 [ 586.626567][T15940] ? __pfx___mutex_lock+0x10/0x10 [ 586.631603][T15940] ? __pfx_vfs_write+0x10/0x10 [ 586.636381][T15940] ? __fget_files+0x206/0x3a0 [ 586.641074][T15940] ksys_write+0x12b/0x250 [ 586.645419][T15940] ? __pfx_ksys_write+0x10/0x10 [ 586.650286][T15940] do_syscall_64+0xcd/0x250 [ 586.654807][T15940] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 586.660706][T15940] RIP: 0033:0x7feae1b85d19 [ 586.665123][T15940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 586.684733][T15940] RSP: 002b:00007feae290e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 586.693154][T15940] RAX: ffffffffffffffda RBX: 00007feae1d76080 RCX: 00007feae1b85d19 [ 586.701128][T15940] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 586.709100][T15940] RBP: 00007feae1c01a20 R08: 0000000000000000 R09: 0000000000000000 [ 586.717074][T15940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 586.725047][T15940] R13: 0000000000000000 R14: 00007feae1d76080 R15: 00007ffc0fbde648 [ 586.733036][T15940] [ 586.736294][T15940] Kernel Offset: disabled [ 586.740655][T15940] Rebooting in 86400 seconds..