last executing test programs: 5m30.355155212s ago: executing program 3 (id=858): ioprio_set$auto(0x1, 0x0, 0x0) 5m30.202507756s ago: executing program 3 (id=862): arch_prctl$auto_ARCH_GET_FS(0x1003, 0x7fffffffffffffff) 5m30.072539876s ago: executing program 3 (id=865): syz_clone(0x25342080, 0x0, 0x0, 0x0, 0x0, 0x0) 5m29.749540968s ago: executing program 3 (id=872): mmap$auto(0x7fffffffe000, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000) 5m29.541493901s ago: executing program 3 (id=877): rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) 5m29.036593906s ago: executing program 3 (id=888): bpf$auto(0xb, &(0x7f0000000000)=@bpf_attr_11={0xfffffffffffffffb, 0x9a, 0x80, 0x8, 0x7, 0x80000001, 0x6, 0x6}, 0x7) 5m28.617069654s ago: executing program 32 (id=888): bpf$auto(0xb, &(0x7f0000000000)=@bpf_attr_11={0xfffffffffffffffb, 0x9a, 0x80, 0x8, 0x7, 0x80000001, 0x6, 0x6}, 0x7) 1m13.980498986s ago: executing program 4 (id=6126): r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/block/loop9/hctx0/sched_tags_bitmap\x00', 0x101a00, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r0, &(0x7f0000000340)=""/179, 0xb3) 1m13.85668349s ago: executing program 4 (id=6129): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) 1m13.417677087s ago: executing program 4 (id=6138): openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x145280, 0x0) 1m13.228987005s ago: executing program 4 (id=6143): socket(0x200000000000011, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x11, 0x3, @empty}, 0x6a) 1m13.074323049s ago: executing program 4 (id=6146): tkill$auto(0x1, 0x7) keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x0, 0x0, 0x0, 0x48eafc79) 1m12.587139732s ago: executing program 4 (id=6154): socket(0x2c, 0x80003, 0x0) setsockopt$auto(0x3, 0x11b, 0x6, 0xffffffffffffffff, 0x2e) 1m12.242496521s ago: executing program 33 (id=6154): socket(0x2c, 0x80003, 0x0) setsockopt$auto(0x3, 0x11b, 0x6, 0xffffffffffffffff, 0x2e) 3.505862142s ago: executing program 0 (id=6939): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000180), 0x102001, 0x0) pwrite64$auto(r0, 0x0, 0x2, 0x0) 3.223033767s ago: executing program 0 (id=6942): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001840), r0) sendmsg$auto_NL802154_CMD_GET_SEC_DEVKEY(r0, &(0x7f00000019c0)={0x0, 0x0, &(0x7f0000001980)={&(0x7f0000001880)={0x14, r1, 0xf09, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0) 2.982735316s ago: executing program 0 (id=6945): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x28, 0x1, 0x0) getsockopt$auto(r0, 0x28, 0x2, 0x0, 0x0) 2.37849944s ago: executing program 0 (id=6950): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f0, 0x15) mlock$auto(0x5, 0xffff) 1.786172626s ago: executing program 2 (id=6958): r0 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) setresuid$auto(0xffffffffffffffff, 0x8, 0xffffffff) name_to_handle_at$auto(r0, &(0x7f0000000000)='@*#\xb3\x00', 0x0, 0x0, 0x200) 1.627715691s ago: executing program 5 (id=6959): socket(0x10, 0x3, 0x80000000) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x80000, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x74c) 1.511637835s ago: executing program 2 (id=6961): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(r0, 0x104000000000010e, 0x8, 0x0, 0x2000400) 1.359119855s ago: executing program 0 (id=6962): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) ustat$auto(0x801, 0x0) keyctl$auto(0xa, 0xfffffffffffffffd, 0x2, 0x628, 0xfffffffffffffffd) 1.340007956s ago: executing program 5 (id=6963): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), r0) sendmsg$auto_ILA_CMD_ADD(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000080)={0x14, r1, 0x201, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x8080}, 0x38) 1.294628323s ago: executing program 1 (id=6964): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) set_tid_address$auto(0x0) 1.231998356s ago: executing program 2 (id=6965): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f00000013c0), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_BIND_RX(r0, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001480)={&(0x7f0000001440)={0x14, r1, 0x1, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x10) 1.095886877s ago: executing program 0 (id=6966): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003ec, 0x14) 1.060475354s ago: executing program 5 (id=6967): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$auto_GTP_CMD_ECHOREQ(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0x14, r1, 0x203, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x0) 1.024741583s ago: executing program 1 (id=6968): r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(0x3, 0x400, 0x1) flock$auto(r0, 0x8) 972.280007ms ago: executing program 2 (id=6969): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xffffffffffffffff, 0x8000) getsockopt$auto(r0, 0x10e, 0x9, 0xfffffffffffffffe, 0x0) 795.498138ms ago: executing program 1 (id=6970): sendmsg$auto_SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008014}, 0x10) r0 = open(&(0x7f00000001c0)='./cgroup\x00', 0x0, 0x6f) bpf$auto(0x10, &(0x7f00000000c0)=@link_detach={r0}, 0x40) 777.675578ms ago: executing program 5 (id=6971): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff) sendmsg$auto_OVS_METER_CMD_SET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000003200)={&(0x7f0000000300)={0x2c, r1, 0x159198c6007aa95d, 0x70bd29, 0x25dfdbfc, {}, [@OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_BANDS={0x9, 0x4, 0x0, 0x1, [@generic="ac00fc008f"]}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0xc0}, 0x40) 725.279975ms ago: executing program 2 (id=6972): mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ram8\x00', 0x0, 0x0) ioctl$auto_BLKROTATIONAL(r0, 0x127e, 0x0) 520.246452ms ago: executing program 1 (id=6973): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xf6f6, 0x8000) r0 = socket(0x22, 0x2, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x80044943, 0x0) 492.150586ms ago: executing program 5 (id=6974): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_SESSION_CREATE(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)={0x14, r1, 0x1, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0) 470.117511ms ago: executing program 2 (id=6975): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/tty/console/active\x00', 0x103280, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 275.335156ms ago: executing program 1 (id=6976): socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x2f, 0x0, 0x0) 219.945809ms ago: executing program 5 (id=6977): r0 = socket(0x10, 0x2, 0xc) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x24, r1, 0x10, 0x70bd2c, 0x25dfdbfa, {0xa, 0x0, 0xa00}, [@CTRL_ATTR_FAMILY_NAME={0x0, 0x2, '%/\x00\xe2\xa8\\A\xe7Z\x02q[-\x00\x00\x00\\\xdc\xdf(\xff\xfee\xc3\x17py\x9f\xda\xb88\xaa\xf6q*\x82\xe6(\xc9\xe6B\x9aJ82\v-i(c\x92{\xd7D\xb4\xf7\xb4\t\xb2\x98b\xd3%vu\xd4\xfd\t\xd7J\x83\x19)\xb1\x00[\xdd(\xef?\xc5\xae(\x84\xefjx\xfe\xdb\xeb\xbceaAw\x1eW\x12Bh\xc3y2\xc9\x0e\xc9\x99#\x92j\x97\xbbDOi\x03\xa4\x11\x02F 1 [ 95.356965][ T5841] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 95.365015][ T5841] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 95.373989][ T5841] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 95.381916][ T5841] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 95.437447][ T56] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 95.475392][ T5850] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 95.483650][ T5850] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 95.512173][ T5850] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 95.552389][ T5850] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 95.562470][ T5850] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 95.563836][ T5854] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 95.576248][ T5853] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 95.585474][ T5854] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 95.585486][ T5850] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 95.586858][ T5853] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 95.607161][ T5850] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 95.608515][ T5853] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 95.630446][ T5853] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 95.643084][ T5853] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 95.898252][ T5838] chnl_net:caif_netlink_parms(): no params data found [ 96.121018][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.130019][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.137759][ T5838] bridge_slave_0: entered allmulticast mode [ 96.145818][ T5838] bridge_slave_0: entered promiscuous mode [ 96.157535][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.165322][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.172743][ T5838] bridge_slave_1: entered allmulticast mode [ 96.180122][ T5838] bridge_slave_1: entered promiscuous mode [ 96.251907][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.283139][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.369894][ T5838] team0: Port device team_slave_0 added [ 96.385344][ T5838] team0: Port device team_slave_1 added [ 96.471144][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.478537][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.505140][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.548321][ T5849] chnl_net:caif_netlink_parms(): no params data found [ 96.560983][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.568410][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.594404][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.660370][ T5843] chnl_net:caif_netlink_parms(): no params data found [ 96.786901][ T5838] hsr_slave_0: entered promiscuous mode [ 96.795266][ T5838] hsr_slave_1: entered promiscuous mode [ 96.817370][ T5842] chnl_net:caif_netlink_parms(): no params data found [ 96.992421][ T5849] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.999681][ T5849] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.007271][ T5849] bridge_slave_0: entered allmulticast mode [ 97.014743][ T5849] bridge_slave_0: entered promiscuous mode [ 97.059784][ T5849] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.067102][ T5849] bridge0: port 2(bridge_slave_1) entered disabled state [ 97.074593][ T5849] bridge_slave_1: entered allmulticast mode [ 97.081986][ T5849] bridge_slave_1: entered promiscuous mode [ 97.114247][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.121468][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.129070][ T5843] bridge_slave_0: entered allmulticast mode [ 97.136543][ T5843] bridge_slave_0: entered promiscuous mode [ 97.189340][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.196817][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state [ 97.205027][ T5843] bridge_slave_1: entered allmulticast mode [ 97.212853][ T5843] bridge_slave_1: entered promiscuous mode [ 97.230429][ T5849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 97.249083][ T975] cfg80211: failed to load regulatory.db [ 97.300198][ T5849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 97.326104][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.333492][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.340721][ T5842] bridge_slave_0: entered allmulticast mode [ 97.348398][ T5842] bridge_slave_0: entered promiscuous mode [ 97.360156][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 97.398456][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.406341][ T5153] Bluetooth: hci0: command tx timeout [ 97.406340][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state [ 97.411956][ T5842] bridge_slave_1: entered allmulticast mode [ 97.428197][ T5842] bridge_slave_1: entered promiscuous mode [ 97.438193][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 97.488026][ T5849] team0: Port device team_slave_0 added [ 97.549186][ T5849] team0: Port device team_slave_1 added [ 97.560815][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 97.574613][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 97.588233][ T5843] team0: Port device team_slave_0 added [ 97.635029][ T5843] team0: Port device team_slave_1 added [ 97.642708][ T5850] Bluetooth: hci2: command tx timeout [ 97.648596][ T5153] Bluetooth: hci1: command tx timeout [ 97.709911][ T5842] team0: Port device team_slave_0 added [ 97.723361][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.730378][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.756450][ T5153] Bluetooth: hci3: command tx timeout [ 97.762668][ T5849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.777771][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.784911][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.811088][ T5849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.838578][ T5842] team0: Port device team_slave_1 added [ 97.887685][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.895095][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.921959][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.935537][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.942626][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.968828][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.988512][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.995609][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.021653][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 98.062951][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 98.069951][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.096826][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 98.179946][ T5849] hsr_slave_0: entered promiscuous mode [ 98.186722][ T5849] hsr_slave_1: entered promiscuous mode [ 98.193392][ T5849] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 98.201224][ T5849] Cannot create hsr debugfs directory [ 98.247275][ T5843] hsr_slave_0: entered promiscuous mode [ 98.254024][ T5843] hsr_slave_1: entered promiscuous mode [ 98.260209][ T5843] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 98.267951][ T5843] Cannot create hsr debugfs directory [ 98.331957][ T5838] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 98.348566][ T5838] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 98.400726][ T5842] hsr_slave_0: entered promiscuous mode [ 98.407886][ T5842] hsr_slave_1: entered promiscuous mode [ 98.414349][ T5842] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 98.421939][ T5842] Cannot create hsr debugfs directory [ 98.431200][ T5838] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 98.471484][ T5838] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 98.855040][ T5849] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 98.877737][ T5849] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 98.904426][ T5849] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 98.918360][ T5849] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 99.034558][ T5843] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 99.048925][ T5843] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 99.069611][ T5843] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 99.091188][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.106336][ T5843] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 99.221130][ T5838] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.235257][ T5842] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 99.248125][ T5842] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 99.259412][ T5842] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 99.278864][ T5842] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 99.311150][ T3548] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.318567][ T3548] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.367370][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.374647][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.483073][ T5153] Bluetooth: hci0: command tx timeout [ 99.488334][ T5838] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 99.518565][ T5849] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.606626][ T5849] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.694981][ T54] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.702270][ T54] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.722480][ T5850] Bluetooth: hci2: command tx timeout [ 99.728173][ T5153] Bluetooth: hci1: command tx timeout [ 99.749583][ T54] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.756895][ T54] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.802795][ T5153] Bluetooth: hci3: command tx timeout [ 99.806463][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.858707][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.891944][ T5849] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 99.910345][ T5843] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.937834][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.965411][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.972678][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.990385][ T5842] 8021q: adding VLAN 0 to HW filter on device team0 [ 100.024356][ T54] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.031591][ T54] bridge0: port 2(bridge_slave_1) entered forwarding state [ 100.086560][ T54] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.093887][ T54] bridge0: port 1(bridge_slave_0) entered forwarding state [ 100.145868][ T3489] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.153134][ T3489] bridge0: port 2(bridge_slave_1) entered forwarding state [ 100.291302][ T5838] veth0_vlan: entered promiscuous mode [ 100.329832][ T5842] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 100.368011][ T5838] veth1_vlan: entered promiscuous mode [ 100.416843][ T5849] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.515676][ T5838] veth0_macvtap: entered promiscuous mode [ 100.548030][ T5838] veth1_macvtap: entered promiscuous mode [ 100.616753][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.657242][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.670988][ T5838] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.680571][ T5838] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.695625][ T5838] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.706766][ T5838] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.730672][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.756209][ T5849] veth0_vlan: entered promiscuous mode [ 100.820980][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.851437][ T5849] veth1_vlan: entered promiscuous mode [ 100.957420][ T3548] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.986126][ T3548] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.049503][ T5843] veth0_vlan: entered promiscuous mode [ 101.072898][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.079604][ T5842] veth0_vlan: entered promiscuous mode [ 101.087130][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.099615][ T5849] veth0_macvtap: entered promiscuous mode [ 101.133765][ T5843] veth1_vlan: entered promiscuous mode [ 101.149114][ T5849] veth1_macvtap: entered promiscuous mode [ 101.161932][ T5842] veth1_vlan: entered promiscuous mode [ 101.237868][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 101.255729][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.268240][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.296425][ T5838] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 101.325885][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 101.339645][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.351351][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.369624][ T5842] veth0_macvtap: entered promiscuous mode [ 101.381269][ T5842] veth1_macvtap: entered promiscuous mode [ 101.445632][ T5849] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.473562][ T5849] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.492688][ T5849] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.501486][ T5849] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.534869][ T5843] veth0_macvtap: entered promiscuous mode [ 101.565586][ T5153] Bluetooth: hci0: command tx timeout [ 101.595565][ T5843] veth1_macvtap: entered promiscuous mode [ 101.611059][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 101.623353][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.633617][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 101.645107][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.657868][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.671300][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 101.682949][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.695914][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 101.706964][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.718960][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.783967][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 101.796415][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.807121][ T5153] Bluetooth: hci1: command tx timeout [ 101.812616][ T5850] Bluetooth: hci2: command tx timeout [ 101.819005][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 101.830435][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.840692][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 101.851606][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.864283][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.895588][ T5153] Bluetooth: hci3: command tx timeout [ 101.902985][ T5842] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.922536][ T5842] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.931330][ T5842] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.945791][ T5842] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.974664][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 102.009899][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.046298][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 102.068975][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.079340][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 102.090807][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.104780][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 102.138004][ T5843] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.157308][ T5843] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.167179][ T5843] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.176911][ T5843] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.315983][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.340969][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.474246][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.500517][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.593169][ T3489] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.601066][ T3489] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.653470][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.661875][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.747354][ T5153] Bluetooth: hci0: unexpected event 0x32 length: 10 > 9 [ 102.760255][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.786761][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.834756][ T3489] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.848247][ T3489] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.643540][ T5153] Bluetooth: hci0: command tx timeout [ 103.882504][ T5153] Bluetooth: hci1: command tx timeout [ 103.888108][ T5850] Bluetooth: hci2: command tx timeout [ 103.963182][ T5153] Bluetooth: hci3: command tx timeout [ 104.865552][ T5985] mmap: syz.2.41 (5985) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 107.854566][ T6100] syz.2.99 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 114.025472][ T6346] Unable to find swap-space signature [ 120.154833][ T6587] capability: warning: `syz.3.335' uses deprecated v2 capabilities in a way that may be insecure [ 121.350799][ T5153] Bluetooth: hci3: unexpected event 0x20 length: 123 > 7 [ 121.779577][ T6657] ptrace attach of "./syz-executor exec"[5843] was attempted by "./syz-executor exec"[6657] [ 122.433377][ T6679] Unable to find swap-space signature [ 123.748932][ T30] audit: type=1800 audit(1030.480:2): pid=6717 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.399" name="members" dev="configfs" ino=9293 res=0 errno=0 [ 123.848194][ T6666] kexec: Could not allocate control_code_buffer [ 124.263428][ T6737] futex_wake_op: syz.2.409 tries to shift op by 64; fix this program [ 124.606558][ T6746] Process accounting resumed [ 126.711350][ T6838] syz.2.458(6838): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 128.482335][ T30] audit: type=1800 audit(1035.210:3): pid=6906 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.493" name="discovery_nqn" dev="configfs" ino=10567 res=0 errno=0 [ 130.800184][ T7000] Process accounting resumed [ 132.411361][ T5153] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 135.344692][ T30] audit: type=1800 audit(4294968350.074:4): pid=7201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.637" name="trace_pipe" dev="tracefs" ino=1256 res=0 errno=0 [ 135.838678][ T30] audit: type=1326 audit(4294968350.574:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7220 comm="syz.0.646" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0f9d58e969 code=0x0 [ 137.237031][ T30] audit: type=1800 audit(4294968351.964:6): pid=7274 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.673" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 138.208397][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.215616][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.599887][ T30] audit: type=1800 audit(4294968353.334:7): pid=7332 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.702" name="dbroot" dev="configfs" ino=11336 res=0 errno=0 [ 141.974151][ T5153] Bluetooth: hci1: unexpected subevent 0x03 length: 253 > 9 [ 143.001557][ T7532] ptrace attach of "./syz-executor exec"[5849] was attempted by "./syz-executor exec"[7532] [ 146.700996][ T3489] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 146.828255][ T3489] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 146.910969][ T3489] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.141097][ T3489] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.565758][ T3489] bridge_slave_1: left allmulticast mode [ 147.592120][ T3489] bridge_slave_1: left promiscuous mode [ 147.615847][ T3489] bridge0: port 2(bridge_slave_1) entered disabled state [ 147.711204][ T3489] bridge_slave_0: left allmulticast mode [ 147.732163][ T3489] bridge_slave_0: left promiscuous mode [ 147.739118][ T3489] bridge0: port 1(bridge_slave_0) entered disabled state [ 147.844537][ T5850] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 147.853567][ T5850] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 147.861643][ T5850] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 147.872868][ T5850] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 147.881815][ T5850] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 149.180015][ T3489] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 149.244906][ T3489] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 149.271761][ T3489] bond0 (unregistering): Released all slaves [ 149.962429][ T5153] Bluetooth: hci3: command tx timeout [ 150.165602][ T3489] hsr_slave_0: left promiscuous mode [ 150.236115][ T3489] hsr_slave_1: left promiscuous mode [ 150.252744][ T3489] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 150.260282][ T3489] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 150.326511][ T3489] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 150.344594][ T3489] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 150.472546][ T3489] veth1_macvtap: left promiscuous mode [ 150.478507][ T3489] veth0_macvtap: left promiscuous mode [ 150.526745][ T3489] veth1_vlan: left promiscuous mode [ 150.537571][ T3489] veth0_vlan: left promiscuous mode [ 152.042239][ T5153] Bluetooth: hci3: command tx timeout [ 152.214286][ T3489] team0 (unregistering): Port device team_slave_1 removed [ 152.355941][ T3489] team0 (unregistering): Port device team_slave_0 removed [ 154.123300][ T5153] Bluetooth: hci3: command tx timeout [ 154.175601][ T7735] chnl_net:caif_netlink_parms(): no params data found [ 154.679035][ T7735] bridge0: port 1(bridge_slave_0) entered blocking state [ 154.715680][ T7735] bridge0: port 1(bridge_slave_0) entered disabled state [ 154.728598][ T7735] bridge_slave_0: entered allmulticast mode [ 154.747088][ T7995] random: crng reseeded on system resumption [ 154.761525][ T7735] bridge_slave_0: entered promiscuous mode [ 154.794686][ T7735] bridge0: port 2(bridge_slave_1) entered blocking state [ 154.826366][ T7735] bridge0: port 2(bridge_slave_1) entered disabled state [ 154.849281][ T7735] bridge_slave_1: entered allmulticast mode [ 154.874666][ T7735] bridge_slave_1: entered promiscuous mode [ 155.063251][ T7735] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 155.115576][ T7735] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 155.278075][ T7735] team0: Port device team_slave_0 added [ 155.319159][ T7735] team0: Port device team_slave_1 added [ 155.463930][ T7735] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 155.470953][ T7735] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 155.542574][ T7735] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 155.559437][ T7993] Process accounting paused [ 155.652984][ T7735] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 155.668678][ T7735] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 155.739921][ T7735] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 155.887075][ T7735] hsr_slave_0: entered promiscuous mode [ 155.899944][ T7735] hsr_slave_1: entered promiscuous mode [ 155.919283][ T7735] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 155.952759][ T7735] Cannot create hsr debugfs directory [ 156.208414][ T5153] Bluetooth: hci3: command tx timeout [ 156.650581][ T7735] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 156.720887][ T7735] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 156.800097][ T7735] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 156.841809][ T7735] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 157.227636][ T7735] 8021q: adding VLAN 0 to HW filter on device bond0 [ 157.308855][ T7735] 8021q: adding VLAN 0 to HW filter on device team0 [ 157.366102][ T3489] bridge0: port 1(bridge_slave_0) entered blocking state [ 157.373975][ T3489] bridge0: port 1(bridge_slave_0) entered forwarding state [ 157.439682][ T5153] Bluetooth: hci2: unexpected event 0x23 length: 127 > 13 [ 157.537769][ T1142] bridge0: port 2(bridge_slave_1) entered blocking state [ 157.552215][ T1142] bridge0: port 2(bridge_slave_1) entered forwarding state [ 157.706772][ T7735] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 158.283085][ T7735] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 158.688065][ T8143] Unable to find swap-space signature [ 159.127619][ T7735] veth0_vlan: entered promiscuous mode [ 159.185756][ T7735] veth1_vlan: entered promiscuous mode [ 159.276701][ T7735] veth0_macvtap: entered promiscuous mode [ 159.316373][ T7735] veth1_macvtap: entered promiscuous mode [ 159.395191][ T7735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 159.422267][ T7735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.443945][ T7735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 159.482109][ T7735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.491993][ T7735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 159.531776][ T7735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.554069][ T7735] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 159.603368][ T7735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 159.609496][ T8177] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 159.636916][ T7735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.664347][ T7735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 159.702222][ T7735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.723735][ T7735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 159.742211][ T7735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.760446][ T7735] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 159.807613][ T7735] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.833635][ T7735] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.850307][ T7735] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.872101][ T7735] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.146681][ T991] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 160.184761][ T991] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 160.290272][ T3489] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 160.315999][ T3489] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 160.847372][ T8215] Process accounting paused [ 161.369155][ T8244] : Can't lookup blockdev [ 161.867408][ T30] audit: type=1800 audit(4294968343.767:8): pid=8266 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1110" name="discovery_nqn" dev="configfs" ino=14034 res=0 errno=0 [ 164.609421][ T8377] sysfs_service_op_store: Client not running :-5: [ 165.486769][ T8413] block nbd8: NBD_DISCONNECT [ 165.885731][ T8433] kAFS: Invalid Command on /proc/fs/afs/cells file [ 171.663486][ T8697] futex_wake_op: syz.4.1301 tries to shift op by 64; fix this program [ 173.715927][ T8786] ceph: Failed to parse sending metrics switch value 'P^' [ 175.388166][ T8860] nvme_fabrics: missing parameter 'transport=%s' [ 175.403493][ T8860] nvme_fabrics: missing parameter 'nqn=%s' [ 176.079204][ T8902] kAFS: Invalid Command on /proc/fs/afs/cells file [ 181.550728][ T30] audit: type=1800 audit(4294968363.447:9): pid=9114 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1461" name="dbroot" dev="configfs" ino=16245 res=0 errno=0 [ 181.595208][ T9114] db_root: not a directory: /dev/audio1 [ 182.591610][ T9153] kafs: addr_prefs: Invalid Command [ 183.221470][ T9178] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 183.447188][ T9191] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 183.884283][ T9213] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 184.165491][ T9223] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 184.247935][ T9230] < [ 184.476724][ T30] audit: type=1400 audit(4294968366.377:10): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=9238 comm="syz.4.1508" [ 185.688080][ T9273] Process accounting resumed [ 187.060040][ T5153] Bluetooth: hci2: Malformed Event: 0x13 [ 188.734321][ T9433] WARNING! power/level is deprecated; use power/control instead [ 189.184574][ T9454] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5) [ 189.544646][ T9474] cougar: G6 mapped to F18 [ 190.859426][ T9525] Process accounting resumed [ 191.056472][ T9538] rnbd_client L213: map_device: Parameters missing [ 192.523096][ T9588] usb usb15: usbfs: process 9588 (syz.2.1679) did not claim interface 0 before use [ 194.809292][ T9689] Per memcg swappiness does not exist in cgroup v2. See memory.reclaim or memory.swap.max there [ 194.809292][ T9689] [ 194.886779][ T9693] i2c i2c-0: new_device: Can't parse I2C address [ 196.682313][ T9765] ima: policy update failed [ 196.687176][ T30] audit: type=1802 audit(4294968378.587:11): pid=9765 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1767" res=0 errno=0 [ 196.791717][ T9773] syz.0.1770 uses obsolete (PF_INET,SOCK_PACKET) [ 197.434949][ T5153] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 197.434999][ T5153] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 197.454715][ T5153] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 197.454828][ T5153] Bluetooth: hci2: Malformed LE Event: 0x0d [ 199.650526][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.656989][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 201.025724][ T5153] Bluetooth: hci3: unexpected event 0x3d length: 726 > 14 [ 204.688566][T10101] : Can't lookup blockdev [ 204.937271][T10110] ubi0: attaching mtd0 [ 204.941814][T10110] ubi0 error: ubi_attach_mtd_dev: bad VID header (3969) or data offsets (4033) [ 207.305577][T10222] Scaler: ================= START STATUS ================= [ 207.315970][T10222] Scaler: ================== END STATUS ================== [ 207.602431][T10236] usbip-vudc usbip-vudc.0: gadget not bound [ 207.695580][T10240] bcache: register_bcache() error : failed to open device [ 209.390113][T10326] Setting dangerous option i915.mitigations - tainting kernel [ 209.956071][ T30] audit: type=1800 audit(4294968391.847:12): pid=10356 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2053" name="members" dev="configfs" ino=21242 res=0 errno=0 [ 209.977012][ C1] vkms_vblank_simulate: vblank timer overrun [ 211.181434][T10412] synth uevent: /bus/memstick: unknown uevent action string [ 211.618907][T10433] kmem.limit_in_bytes is deprecated and will be removed. Writing any value to this file has no effect. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 215.845660][T10614] Process accounting paused [ 218.014976][ T5153] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 218.015020][ T5153] Bluetooth: hci0: unexpected subevent 0x05 length: 725 > 12 [ 220.052150][ T5153] Bluetooth: hci0: command tx timeout [ 222.205607][ T56] Bluetooth: hci0: command 0x0406 tx timeout [ 222.211810][ T56] Bluetooth: hci2: command 0x0406 tx timeout [ 222.219617][ T5841] Bluetooth: hci1: command 0x0406 tx timeout [ 222.387899][ T30] audit: type=1400 audit(4294968404.287:13): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=10931 comm="syz.1.2333" [ 222.897846][T10952] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations! [ 223.106481][T10962] ICMPv6: process `syz.1.2348' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 224.075414][T11010] kafs: addr_prefs: Invalid Command [ 225.628936][T11088] aoe: can't write to that file. [ 226.149335][T11112] Invalid input. Must be >= 4608 [ 226.375022][T11126] udc dummy_udc.0: soft-connect without a gadget driver [ 226.858118][T11150] delete_channel: no stack [ 227.017288][T11159] Setting dangerous option i915.mitigations - tainting kernel [ 227.497131][T11179] bond0: Unable to set down delay as MII monitoring is disabled [ 227.508447][T11181] QAT: Invalid ioctl 21531 [ 230.388954][T11323] program syz.2.2526 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 230.602447][T11332] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1048706]. [ 231.245194][T11364] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 234.184639][T11497] kAFS: Invalid Command on /proc/fs/afs/cells file [ 234.498998][T11515] vivid-007: ================= START STATUS ================= [ 234.508895][T11515] vivid-007: Generate PTS: true [ 234.515648][T11515] vivid-007: Generate SCR: true [ 234.521314][T11515] tpg source WxH: 640x360 (Y'CbCr) [ 234.528033][T11515] tpg field: 1 [ 234.552196][T11515] tpg crop: (0,0)/640x360 [ 234.556636][T11515] tpg compose: (0,0)/640x360 [ 234.572152][T11515] tpg colorspace: 8 [ 234.576065][T11515] tpg transfer function: 0/0 [ 234.580715][T11515] tpg Y'CbCr encoding: 0/0 [ 234.605130][T11515] tpg quantization: 0/0 [ 234.611160][T11515] tpg RGB range: 0/2 [ 234.662068][T11515] vivid-007: ================== END STATUS ================== [ 239.000946][T11723] blktrace: Concurrent blktraces are not allowed on ram7 [ 240.554938][T11783] cougar: G6 mapped to space [ 242.440379][ T30] audit: type=1806 audit(4294968424.337:14): res=-14 [ 243.443046][T11903] [ 243.773754][T11913] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x1aa pfn:0x7fe2c [ 243.807819][T11913] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 243.832334][T11913] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 243.844688][T11913] raw: 00000000000001aa ffff888033420000 00000001ffffffff 0000000000000000 [ 243.871745][T11913] page dumped because: unmovable page [ 243.891251][T11913] page_owner tracks the page as allocated [ 243.916350][T11913] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 11593, tgid 11591 (syz.0.2657), ts 236264795502, free_ts 232619554094 [ 243.956043][T11913] post_alloc_hook+0x181/0x1b0 [ 243.961043][T11913] get_page_from_freelist+0x135c/0x3920 [ 243.985046][T11913] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 244.005444][T11913] alloc_pages_mpol+0x1fb/0x550 [ 244.012471][T11913] alloc_pages_noprof+0x131/0x390 [ 244.017734][T11913] relay_open_buf.part.0+0x262/0xb90 [ 244.052078][T11913] relay_open+0x653/0xad0 [ 244.057132][T11913] do_blk_trace_setup+0x503/0xb50 [ 244.068021][T11913] blk_trace_setup+0xed/0x1b0 [ 244.073196][T11913] blk_trace_ioctl+0x146/0x280 [ 244.078057][T11913] blkdev_ioctl+0x108/0x6d0 [ 244.087594][T11913] __x64_sys_ioctl+0x190/0x200 [ 244.095972][T11913] do_syscall_64+0xcd/0x230 [ 244.100606][T11913] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.111084][T11913] page last free pid 11418 tgid 11409 stack trace: [ 244.118090][T11913] __free_frozen_pages+0x69d/0xff0 [ 244.127560][T11913] vfree+0x176/0x960 [ 244.135810][T11913] bpf_check+0x89a/0xb460 [ 244.140354][T11913] bpf_prog_load+0xe41/0x2490 [ 244.159495][T11913] __sys_bpf+0x433c/0x4d80 [ 244.175862][T11913] __x64_sys_bpf+0x78/0xc0 [ 244.180416][T11913] do_syscall_64+0xcd/0x230 [ 244.195785][T11913] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.197486][T11960] misc userio: Invalid payload size [ 245.921020][T11985] Process accounting resumed [ 246.329503][T12000] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88807fe03800 pfn:0x7fe00 [ 246.402237][T12000] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 246.450618][T12000] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 246.483114][T12000] page_type: f5(slab) [ 246.510827][T12000] raw: 00fff00000000040 ffff88801b441dc0 0000000000000000 dead000000000001 [ 246.562234][T12000] raw: ffff88807fe03800 000000000010000d 00000000f5000000 0000000000000000 [ 246.604518][T12000] head: 00fff00000000040 ffff88801b441dc0 0000000000000000 dead000000000001 [ 246.627381][T12000] head: ffff88807fe03800 000000000010000d 00000000f5000000 0000000000000000 [ 246.638545][T12000] head: 00fff00000000003 ffffea0001ff8001 00000000ffffffff 00000000ffffffff [ 246.692141][T12000] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 246.741334][T12000] page dumped because: unmovable page [ 246.763775][T12000] page_owner tracks the page as allocated [ 246.791493][T12000] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 54, tgid 54 (kworker/u8:3), ts 102528486255, free_ts 102433208174 [ 246.870329][T12000] post_alloc_hook+0x181/0x1b0 [ 246.884507][T12000] get_page_from_freelist+0x135c/0x3920 [ 246.905689][T12000] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 246.918333][T12000] alloc_pages_mpol+0x1fb/0x550 [ 246.928535][T12022] program syz.4.2864 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 246.939983][T12000] new_slab+0x244/0x340 [ 246.944417][T12000] ___slab_alloc+0xd9c/0x1940 [ 246.949798][T12000] __slab_alloc.constprop.0+0x56/0xb0 [ 246.957530][T12022] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 246.966258][T12000] __kmalloc_noprof+0x2f2/0x510 [ 246.971844][T12000] ___neigh_create+0x14e6/0x28c0 [ 246.983823][T12000] ip6_finish_output2+0x1299/0x2020 [ 246.997044][T12000] ip6_finish_output+0x3f9/0x1360 [ 247.023299][T12000] ip6_output+0x1f9/0x540 [ 247.042429][T12000] ndisc_send_skb+0xa91/0x1e40 [ 247.057919][T12000] ndisc_send_rs+0x129/0x670 [ 247.069580][T12000] addrconf_dad_completed+0x49d/0x10d0 [ 247.107012][T12000] addrconf_dad_work+0x84d/0x14e0 [ 247.140692][T12000] page last free pid 5852 tgid 5852 stack trace: [ 247.166739][T12000] __free_frozen_pages+0x69d/0xff0 [ 247.186888][T12000] __put_partials+0x16d/0x1c0 [ 247.199206][T12000] qlist_free_all+0x4e/0x120 [ 247.218594][T12000] kasan_quarantine_reduce+0x195/0x1e0 [ 247.236421][T12000] __kasan_slab_alloc+0x69/0x90 [ 247.247277][T12000] __kmalloc_cache_noprof+0x1f1/0x3e0 [ 247.264470][T12000] kernfs_fop_open+0x244/0xda0 [ 247.274982][T12000] do_dentry_open+0x741/0x1c10 [ 247.291705][T12000] vfs_open+0x82/0x3f0 [ 247.304063][T12000] path_openat+0x1e5e/0x2d40 [ 247.323948][T12000] do_filp_open+0x20b/0x470 [ 247.334212][T12000] do_sys_openat2+0x11b/0x1d0 [ 247.349114][T12000] __x64_sys_openat+0x174/0x210 [ 247.360992][T12000] do_syscall_64+0xcd/0x230 [ 247.382968][T12000] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 252.415616][T12172] nvme_fcloop: unknown parameter or missing value '7' [ 255.474028][ T5853] Bluetooth: hci1: ACL packet for unknown connection handle 0 [ 258.770771][T12432] kAFS: No cell specified [ 259.906819][ T30] audit: type=1800 audit(4294968441.807:15): pid=12479 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3089" name="lu_gp_id" dev="configfs" ino=27658 res=0 errno=0 [ 259.927258][ C1] vkms_vblank_simulate: vblank timer overrun [ 259.945908][T12479] kstrtoul() returned -22 for lu_gp_id [ 260.645526][T12509] syz.4.3102: vmalloc error: size 141863388262170624, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 260.692160][T12509] CPU: 1 UID: 0 PID: 12509 Comm: syz.4.3102 Tainted: G U 6.15.0-rc3-syzkaller-00076-ge72e9e693307 #0 PREEMPT(full) [ 260.692218][T12509] Tainted: [U]=USER [ 260.692229][T12509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 260.692255][T12509] Call Trace: [ 260.692266][T12509] [ 260.692282][T12509] dump_stack_lvl+0x16c/0x1f0 [ 260.692337][T12509] warn_alloc+0x248/0x3a0 [ 260.692391][T12509] ? __pfx_warn_alloc+0x10/0x10 [ 260.692442][T12509] ? check_path.constprop.0+0x24/0x50 [ 260.692504][T12509] __vmalloc_node_range_noprof+0x10ea/0x1540 [ 260.692557][T12509] ? disksize_store+0x117/0x670 [ 260.692605][T12509] ? __pfx___might_resched+0x10/0x10 [ 260.692648][T12509] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 260.692690][T12509] ? down_write+0x14d/0x200 [ 260.692740][T12509] ? __pfx_down_write+0x10/0x10 [ 260.692791][T12509] ? disksize_store+0x117/0x670 [ 260.692832][T12509] vzalloc_noprof+0x6b/0x90 [ 260.692864][T12509] ? disksize_store+0x117/0x670 [ 260.692903][T12509] disksize_store+0x117/0x670 [ 260.692962][T12509] ? __pfx_disksize_store+0x10/0x10 [ 260.693002][T12509] dev_attr_store+0x55/0x80 [ 260.693043][T12509] ? __pfx_dev_attr_store+0x10/0x10 [ 260.693076][T12509] sysfs_kf_write+0xef/0x150 [ 260.693131][T12509] kernfs_fop_write_iter+0x351/0x510 [ 260.693175][T12509] ? __pfx_sysfs_kf_write+0x10/0x10 [ 260.693230][T12509] vfs_write+0x5ba/0x1180 [ 260.693267][T12509] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 260.693315][T12509] ? __pfx___mutex_lock+0x10/0x10 [ 260.693363][T12509] ? __pfx_vfs_write+0x10/0x10 [ 260.693440][T12509] ksys_write+0x12a/0x240 [ 260.693474][T12509] ? __pfx_ksys_write+0x10/0x10 [ 260.693506][T12509] ? rcu_is_watching+0x12/0xc0 [ 260.693553][T12509] do_syscall_64+0xcd/0x230 [ 260.693606][T12509] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 260.693639][T12509] RIP: 0033:0x7fc6e218e969 [ 260.693673][T12509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 260.693705][T12509] RSP: 002b:00007fc6e3098038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 260.693735][T12509] RAX: ffffffffffffffda RBX: 00007fc6e23b5fa0 RCX: 00007fc6e218e969 [ 260.693754][T12509] RDX: 0000000000000006 RSI: 0000200000000ec0 RDI: 0000000000000003 [ 260.693773][T12509] RBP: 00007fc6e2210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 260.693798][T12509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 260.693815][T12509] R13: 0000000000000000 R14: 00007fc6e23b5fa0 R15: 00007fff226e7b58 [ 260.693860][T12509] [ 260.693995][T12509] Mem-Info: [ 260.983365][T12509] active_anon:4848 inactive_anon:0 isolated_anon:0 [ 260.983365][T12509] active_file:2784 inactive_file:51754 isolated_file:0 [ 260.983365][T12509] unevictable:768 dirty:272 writeback:0 [ 260.983365][T12509] slab_reclaimable:10377 slab_unreclaimable:95126 [ 260.983365][T12509] mapped:23353 shmem:1449 pagetables:924 [ 260.983365][T12509] sec_pagetables:0 bounce:0 [ 260.983365][T12509] kernel_misc_reclaimable:0 [ 260.983365][T12509] free:1341858 free_pcp:2105 free_cma:0 [ 261.028461][ C1] vkms_vblank_simulate: vblank timer overrun [ 261.088915][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.097020][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.105466][T12509] Node 0 active_anon:21220kB inactive_anon:0kB active_file:11076kB inactive_file:206944kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:93392kB dirty:1108kB writeback:0kB shmem:4260kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10592kB pagetables:3560kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 261.138945][ C1] vkms_vblank_simulate: vblank timer overrun [ 261.154124][T12509] Node 1 active_anon:0kB inactive_anon:0kB active_file:60kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 261.271114][T12509] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 261.339267][T12509] lowmem_reserve[]: 0 2482 2483 2483 2483 [ 261.385331][T12509] Node 0 DMA32 free:1448524kB boost:0kB min:34336kB low:42920kB high:51504kB reserved_highatomic:0KB active_anon:18668kB inactive_anon:0kB active_file:11076kB inactive_file:205352kB unevictable:1536kB writepending:1124kB present:3129332kB managed:2541752kB mlocked:0kB bounce:0kB free_pcp:6388kB local_pcp:4820kB free_cma:0kB [ 261.472228][T12509] lowmem_reserve[]: 0 0 1 1 1 [ 261.477302][T12509] Node 0 Normal free:0kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1592kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB [ 261.520838][T12509] lowmem_reserve[]: 0 0 0 0 0 [ 261.529289][T12509] Node 1 Normal free:3906888kB boost:0kB min:55540kB low:69424kB high:83308kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:60kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 261.578910][T12509] lowmem_reserve[]: 0 0 0 0 0 [ 261.587343][T12509] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 261.605465][T12509] Node 0 DMA32: 1283*4kB (UM) 824*8kB (UME) 605*16kB (UME) 575*32kB (UME) 437*64kB (UME) 167*128kB (UM) 66*256kB (UM) 42*512kB (UME) 33*1024kB (UME) 15*2048kB (UME) 308*4096kB (M) = 1453628kB [ 261.712251][T12509] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 261.746126][T12509] Node 1 Normal: 240*4kB (UME) 59*8kB (UME) 47*16kB (UME) 220*32kB (UME) 87*64kB (UME) 19*128kB (UME) 8*256kB (UM) 7*512kB (UME) 3*1024kB (UM) 3*2048kB (UE) 946*4096kB (M) = 3906888kB [ 261.767723][T12509] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 261.781581][T12540] ima: Unable to open file: /suritRy/integrity?iqa/policy (-2) [ 261.784868][T12509] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 261.792784][T12538] ima: policy update failed [ 261.802970][ T30] audit: type=1802 audit(4294968443.697:16): pid=12538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3113" res=0 errno=0 [ 261.806874][T12509] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 261.833717][T12509] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 261.843810][T12509] 55988 total pagecache pages [ 261.850755][T12509] 0 pages in swap cache [ 261.855630][T12509] Free swap = 124996kB [ 261.859879][T12509] Total swap = 124996kB [ 261.864254][T12509] 2097051 pages RAM [ 261.868109][T12509] 0 pages HighMem/MovableOnly [ 261.872988][T12509] 429571 pages reserved [ 261.877276][T12509] 0 pages cma reserved [ 263.395807][T12610] ubi0: attaching mtd0 [ 263.409058][T12610] ubi0: scanning is finished [ 263.441885][T12610] ubi0: empty MTD device detected [ 263.455858][T12610] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 263.604557][T12610] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 264.286874][T12626] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 265.695758][T12707] mmap: syz.1.3195 (12707): VmData 37601280 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 266.099774][T12723] ecryptfs_miscdev_write: Invalid packet size [192] [ 268.697642][T12847] ======================================================= [ 268.697642][T12847] WARNING: The mand mount option has been deprecated and [ 268.697642][T12847] and is ignored by this kernel. Remove the mand [ 268.697642][T12847] option from the mount to silence this warning. [ 268.697642][T12847] ======================================================= [ 269.157049][T12869] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 269.157049][T12869] M' is too long [ 269.192307][T12869] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 269.192307][T12869] W ' is too long [ 269.267538][T12877] ubi0: attaching mtd0 [ 269.284237][T12877] ubi0: scanning is finished [ 269.288930][T12877] ubi0: empty MTD device detected [ 269.301214][T12877] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 269.413792][T12877] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 269.693849][T12896] ubi0: attaching mtd0 [ 269.698741][T12896] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127) [ 269.710022][ T5899] Process accounting resumed [ 271.959753][T13002] block2mtd: illegal erase size [ 273.402473][ T5853] Bluetooth: hci3: command 0x0406 tx timeout [ 274.618544][T13138] dyndbg: bad flag-op , at start of [ 274.632199][T13138] dyndbg: flags parse failed [ 274.636883][T13138] dyndbg: bad flag-op , at start of [ 274.652117][T13138] dyndbg: flags parse failed [ 275.228084][T13164] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes [ 275.238767][T13165] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 276.085296][T13194] Process accounting paused [ 282.473729][T13479] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 282.531912][T13479] CIFS mount error: No usable UNC path provided in device string! [ 282.531912][T13479] [ 282.547824][T13479] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 282.589009][T13484] delete_channel: no stack [ 283.508942][T13529] kAFS: unparsable volume name [ 283.797729][T13545] Ignoring unsupported numa_zonelist_order value: [ 283.797729][T13545] [ 286.592594][T13655] delete_channel: no stack [ 286.658133][T13658] aoe: copy from user failed [ 286.681521][T13658] aoe: could not set interface list: too many interfaces [ 287.542363][T13697] ima: policy update failed [ 287.568718][ T30] audit: type=1802 audit(4294968469.467:17): pid=13697 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.3673" res=0 errno=0 [ 287.666721][ T5880] rtc_cmos 00:00: Alarms can be up to one day in the future [ 287.682561][ T5880] rtc_cmos 00:00: Alarms can be up to one day in the future [ 287.690223][ T5880] rtc_cmos 00:00: Alarms can be up to one day in the future [ 287.718921][ T5880] rtc_cmos 00:00: Alarms can be up to one day in the future [ 287.736205][ T5880] rtc rtc0: __rtc_set_alarm: err=-22 [ 288.121304][T13724] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma? [ 289.428890][T13788] warning: `syz.4.3717' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 289.938400][T13809] i2c i2c-0: delete_device: Extra parameters [ 293.290820][T13952] bdi 43:96: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead. [ 293.846801][T13976] CIFS mount error: No usable UNC path provided in device string! [ 293.846801][T13976] [ 293.858738][T13976] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 295.634256][T14060] process 'syz.0.3851' launched './file0' with NULL argv: empty string added [ 296.855936][T14121] bond0: option lp_interval: invalid value (/sys/devices/platform/vkms/graphics/fb0/rotate) [ 296.876001][T14121] bond0: option lp_interval: allowed values 1 - 2147483647 [ 298.000057][T14171] synth uevent: /devices/virtual/block/ram6: unknown uevent action string [ 298.019607][T14171] block ram6: uevent: failed to send synthetic uevent: -22 [ 301.563368][ T5850] Bluetooth: hci2: unexpected subevent 0x04 length: 122 > 11 [ 302.441147][T14369] block2mtd: Using custom MTD label '' for dev [ 302.465497][T14369] block2mtd: error: cannot open device [ 302.520179][T14373] program syz.0.4000 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 302.530615][T14373] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 303.026748][T14360] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 303.047231][T14360] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 303.107291][T14360] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 303.125637][T14360] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 303.145545][T14360] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 303.151834][T14360] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 303.161382][T14360] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 303.192509][T14360] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 304.372129][ T5850] Bluetooth: hci0: command 0x0406 tx timeout [ 305.162764][ T5853] Bluetooth: hci2: command 0x0406 tx timeout [ 305.164431][ T5153] Bluetooth: hci1: command 0x0406 tx timeout [ 305.168916][ T5850] Bluetooth: hci3: command 0x0406 tx timeout [ 306.100445][T14521] Process accounting resumed [ 306.442287][ T5850] Bluetooth: hci0: command 0x0406 tx timeout [ 306.574746][T14544] Format for deleting device is "id" (uint). [ 307.249133][ T5850] Bluetooth: hci3: command 0x0406 tx timeout [ 307.249169][ T5153] Bluetooth: hci2: command 0x0406 tx timeout [ 307.255796][ T5850] Bluetooth: hci1: command 0x0406 tx timeout [ 308.231593][ T5153] Bluetooth: hci3: unexpected event 0x02 length: 726 > 260 [ 309.237040][T14673] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 312.075845][ T5153] Bluetooth: hci1: unexpected event 0x02 length: 726 > 260 [ 312.325184][T14824] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 312.337059][T14823] ima: policy update failed [ 312.351159][ T30] audit: type=1802 audit(4294968494.247:18): pid=14823 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.4220" res=0 errno=0 [ 312.924760][T14845] delete_channel: no stack [ 315.124353][ T30] audit: type=1400 audit(4294968497.027:19): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=14958 comm="syz.0.4287" [ 317.621593][T15068] deleting an unspecified loop device is not supported. [ 317.631551][ T30] audit: type=1807 audit(4294968499.527:20): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 317.632689][T15067] ima: policy update failed [ 317.679878][ T30] audit: type=1802 audit(4294968499.527:21): pid=15069 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.4341" res=0 errno=0 [ 317.732173][ T30] audit: type=1802 audit(4294968499.567:22): pid=15067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.4341" res=0 errno=0 [ 320.236173][T15170] aoe: invalid device specification [ 320.718699][T15191] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd [ 320.979333][T15201] kafs: addr_prefs: Too many elements in string [ 322.530864][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.537546][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.866091][T15276] syz.1.4441 (15276): attempted to duplicate a private mapping with mremap. This is not supported. [ 326.692803][T15454] vivid-003: ================= START STATUS ================= [ 326.700567][T15454] vivid-003: Radio HW Seek Mode: Bounded [ 326.732200][T15454] vivid-003: Radio Programmable HW Seek: false [ 326.738484][T15454] vivid-003: RDS Rx I/O Mode: Block I/O [ 326.745710][T15454] vivid-003: Generate RBDS Instead of RDS: false [ 326.752898][T15454] vivid-003: RDS Reception: true [ 326.758083][T15454] vivid-003: RDS Program Type: 0 inactive [ 326.764708][T15454] vivid-003: RDS PS Name: inactive [ 326.771716][T15454] vivid-003: RDS Radio Text: inactive [ 326.781371][T15454] vivid-003: RDS Traffic Announcement: false inactive [ 326.788924][T15454] vivid-003: RDS Traffic Program: false inactive [ 326.795856][T15454] vivid-003: RDS Music: false inactive [ 326.801654][T15454] vivid-003: ================== END STATUS ================== [ 330.298010][T15623] block2mtd: device name too long [ 330.468524][T15625] : Can't lookup blockdev [ 330.921150][T15651] block2mtd: device name too long [ 332.278192][ T30] audit: type=1800 audit(4294967310.230:23): pid=15711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4651" name="discovery_nqn" dev="configfs" ino=37949 res=0 errno=0 [ 332.455978][T15718] QAT: failed to copy from user. [ 336.213177][T15897] Process accounting paused [ 337.371136][T15957] nvme_fcloop: unknown parameter or missing value '^/]' [ 338.985362][ T5153] Bluetooth: hci2: Unable to find connection for big 0xd2 [ 339.467140][T16021] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 340.579281][T16088] Setting dangerous option i915.mitigations - tainting kernel [ 341.040146][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 341.239860][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 341.246406][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 341.683063][T16135] ecryptfs_miscdev_write: Error while inspecting packet size [ 341.832502][T16140] i2c i2c-0: delete_device: Can't parse I2C address [ 342.435311][T16168] Debayer A: ================= START STATUS ================= [ 342.465196][T16168] Debayer A: Debayer Mean Window Size: 3 [ 342.491556][T16168] Debayer A: ================== END STATUS ================== [ 344.192019][ T30] audit: type=1806 audit(4294967322.140:24): xattr=2EC7871B res=-22 [ 344.463257][ T5853] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 348.034770][ T5853] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 348.815353][T16438] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 348.832996][ T5153] Bluetooth: hci2: Unable to find connection for big 0xd2 [ 350.581619][T16513] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed. [ 351.606646][ T5153] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 352.951905][T16618] Line length is too long: Should be less than 4094 [ 356.644278][T16792] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 356.901934][T16792] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 357.010663][T16792] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 357.165491][T16792] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 358.334612][ T30] audit: type=1800 audit(4294967336.290:25): pid=16853 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.5203" name="members" dev="configfs" ino=40750 res=0 errno=0 [ 359.348081][T16904] bond0: no command found in slaves file - use +ifname or -ifname [ 361.270476][T16984] QAT: failed to copy from user cfg_data. [ 361.962662][ T30] audit: type=1800 audit(4294967339.920:26): pid=17014 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5282" name="lu_gp_id" dev="configfs" ino=42038 res=0 errno=0 [ 361.983066][ C1] vkms_vblank_simulate: vblank timer overrun [ 365.739650][T17165] tipc: Can't bind to reserved service type 1 [ 366.341547][T17185] Process accounting resumed [ 375.249536][T17547] ICMPv6: process `syz.4.5541' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead [ 378.020157][T17671] zram: Added device: zram1 [ 380.079932][T17755] zram: Added device: zram2 [ 380.821620][T17785] Process accounting resumed [ 381.101128][ T5153] Bluetooth: hci2: unexpected event 0x3e length: 728 > 260 [ 381.101175][ T5153] Bluetooth: hci2: unexpected subevent 0x03 length: 727 > 9 [ 381.639716][T17830] bcache: register_bcache() error : Not a bcache superblock (bad offset) [ 381.857505][T17846] usbcore.quirks: string doesn't fit in 127 chars. [ 381.939736][T17847] zram: Added device: zram3 [ 382.808729][T17882] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 383.970774][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.977356][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 385.199727][T18012] nfsd: Unknown parameter '^B-' [ 385.202692][T18011] [U] LÈ'F_ـg [ 387.891420][T18136] ecryptfs_parse_packet_length: Error parsing packet length [ 387.915801][T18136] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 388.997404][T18186] sysfs_service_op_show: Client not running :-5: [ 391.618591][T18309] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 393.951513][T18423] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 395.184027][T18479] bond0: option mode: unable to set because the bond device is up [ 396.255612][T18530] sg_write: data in/out 3292/1 bytes for SCSI command 0xa3-- guessing data in; [ 396.255612][T18530] program syz.2.6009 not setting count and/or reply_len properly [ 396.559286][T18545] queue_state_write: unsupported operation '' [ 396.571572][T18545] queue_state_write: use 'run', 'start' or 'kick' [ 397.121076][T18570] vivid-007: ================= START STATUS ================= [ 397.146789][T18570] vivid-007: Enable Output Cropping: true [ 397.205475][T18570] vivid-007: Enable Output Composing: true [ 397.211417][T18570] vivid-007: Enable Output Scaler: true [ 397.245772][T18570] vivid-007: Tx RGB Quantization Range: Automatic [ 397.259649][T18570] vivid-007: Transmit Mode: HDMI [ 397.282414][T18570] vivid-007: Hotplug Present: 0x00000000 [ 397.288352][T18570] vivid-007: RxSense Present: 0x00000000 [ 397.294381][T18570] vivid-007: EDID Present: 0x00000000 [ 397.304026][T18570] vivid-007: ================== END STATUS ================== [ 398.677550][T18644] queue_state_write: operation too long [ 398.685768][T18644] queue_state_write: use 'run', 'start' or 'kick' [ 400.692539][T18729] bond0: no command found in slaves file - use +ifname or -ifname [ 401.412856][T18763] virtio-pci 0000:00:04.0: [Firmware Bug]: Overriding NUMA node to -1. Contact your vendor for updates. [ 401.835249][T18781] Invalid ELF header magic: != ELF [ 402.828331][T18832] scsi_dev_info_list_add_str: bad dev info string ')zD 5fk+*X#R84*VsndvqQW}~YrȀ-8VGDƘLB%v†v}Ypq|?O[,! 7xWDr%[}E$3?G9Ff=lrGH;2L<=|8 -c Fո"[v9q4Mmvqk[(iNDСMX PSqqX4X`V!;r֍)y]WzfIH0,v{q8שUܹ䑉m؛HTwCz-nR%2]x05oՕ|3>lS*L/Cdgӑ[C=Cwem)l#' ''S.sHgi-TY%ܹF*8nFTH?i{' '' [ 402.875329][ C1] vkms_vblank_simulate: vblank timer overrun [ 402.999762][ T35] bridge_slave_1: left allmulticast mode [ 403.008117][ T35] bridge_slave_1: left promiscuous mode [ 403.024566][ T35] bridge0: port 2(bridge_slave_1) entered disabled state [ 403.083186][ T35] bridge_slave_0: left allmulticast mode [ 403.093147][ T35] bridge_slave_0: left promiscuous mode [ 403.099028][ T35] bridge0: port 1(bridge_slave_0) entered disabled state [ 404.158447][ T5853] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 404.168747][ T5853] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 404.180821][ T5853] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 404.230582][ T5853] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 404.241696][ T5853] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 404.497695][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 404.528717][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 404.549262][ T35] bond0 (unregistering): Released all slaves [ 405.455827][ T35] hsr_slave_0: left promiscuous mode [ 405.482279][ T35] hsr_slave_1: left promiscuous mode [ 405.488776][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 405.503896][ T35] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 405.533617][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 405.541137][ T35] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 405.616804][ T35] veth1_macvtap: left promiscuous mode [ 405.639591][ T35] veth0_macvtap: left promiscuous mode [ 405.647338][ T35] veth1_vlan: left promiscuous mode [ 405.662675][ T35] veth0_vlan: left promiscuous mode [ 406.288126][ T5153] Bluetooth: hci3: command tx timeout [ 407.474873][ T35] team0 (unregistering): Port device team_slave_1 removed [ 407.667701][ T35] team0 (unregistering): Port device team_slave_0 removed [ 408.372839][ T5153] Bluetooth: hci3: command tx timeout [ 409.020742][T19098] ima: policy update failed [ 409.031610][ T30] audit: type=1802 audit(4294967386.980:27): pid=19098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.6251" res=0 errno=0 [ 409.160393][T19104] vmstat_refresh: nr_hugetlb -4096 [ 409.660262][T18864] chnl_net:caif_netlink_parms(): no params data found [ 410.041784][T18864] bridge0: port 1(bridge_slave_0) entered blocking state [ 410.061153][T18864] bridge0: port 1(bridge_slave_0) entered disabled state [ 410.072562][T18864] bridge_slave_0: entered allmulticast mode [ 410.086479][T18864] bridge_slave_0: entered promiscuous mode [ 410.116859][T18864] bridge0: port 2(bridge_slave_1) entered blocking state [ 410.146843][T18864] bridge0: port 2(bridge_slave_1) entered disabled state [ 410.169978][T18864] bridge_slave_1: entered allmulticast mode [ 410.212147][T18864] bridge_slave_1: entered promiscuous mode [ 410.353998][T19261] nvme_fabrics: missing parameter 'transport=%s' [ 410.372485][T19261] nvme_fabrics: missing parameter 'nqn=%s' [ 410.408188][T18864] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 410.447888][ T5153] Bluetooth: hci3: command tx timeout [ 410.488589][T18864] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 410.629660][T18864] team0: Port device team_slave_0 added [ 410.687683][T19326] ICMPv6: process `syz.1.6274' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead [ 410.687943][T18864] team0: Port device team_slave_1 added [ 410.875331][T18864] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 410.885833][T19335] Process accounting paused [ 410.899643][T18864] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 410.975226][T18864] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 411.010681][T18864] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 411.028400][ T30] audit: type=1807 audit(4294967388.980:28): UNKNOWN= res=0 [ 411.032981][T18864] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 411.051468][T19363] ima: policy update failed [ 411.072109][ T30] audit: type=1802 audit(4294967389.000:29): pid=19365 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.6280" res=0 errno=0 [ 411.124717][T18864] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 411.136993][ T30] audit: type=1802 audit(4294967389.070:30): pid=19363 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.6280" res=0 errno=0 [ 411.328395][T19387] program syz.2.6283 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 411.459690][T18864] hsr_slave_0: entered promiscuous mode [ 411.507325][T18864] hsr_slave_1: entered promiscuous mode [ 411.533466][T18864] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 411.541111][T18864] Cannot create hsr debugfs directory [ 412.242421][T19499] ptrace attach of "./syz-executor exec"[5842] was attempted by ""[19499] [ 412.261622][T18864] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 412.327486][T18864] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 412.356476][T18864] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 412.397337][T18864] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 412.522686][ T5153] Bluetooth: hci3: command tx timeout [ 412.714281][T18864] 8021q: adding VLAN 0 to HW filter on device bond0 [ 412.762608][T18864] 8021q: adding VLAN 0 to HW filter on device team0 [ 412.781777][ T54] bridge0: port 1(bridge_slave_0) entered blocking state [ 412.789049][ T54] bridge0: port 1(bridge_slave_0) entered forwarding state [ 412.838893][ T54] bridge0: port 2(bridge_slave_1) entered blocking state [ 412.846418][ T54] bridge0: port 2(bridge_slave_1) entered forwarding state [ 413.399475][T18864] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 413.949737][T18864] veth0_vlan: entered promiscuous mode [ 414.003421][T18864] veth1_vlan: entered promiscuous mode [ 414.086655][T18864] veth0_macvtap: entered promiscuous mode [ 414.126145][T18864] veth1_macvtap: entered promiscuous mode [ 414.193548][T18864] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 414.232117][T18864] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 414.251528][T18864] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 414.265702][T18864] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 414.276680][T18864] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 414.290918][T19580] synth uevent: /devices/platform/dummy_hcd.3/usb4/ep_00: unknown uevent action string [ 414.310438][T18864] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 414.312270][T19580] ep_00: uevent: failed to send synthetic uevent: -22 [ 414.327453][T18864] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 414.336183][T18864] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 414.369195][T18864] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 414.389972][T18864] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 414.410921][T18864] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 414.429042][T18864] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 414.445356][T18864] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 414.477408][T18864] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 414.515444][T18864] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 414.527707][T18864] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 414.574697][T18864] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 414.601688][T18864] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 414.838194][ T54] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 414.882159][ T54] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 414.977840][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 415.005598][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 415.653794][T19598] smpboot: CPU 1 is now offline [ 417.751517][T19723] scsi_dev_info_list_add_str: bad dev info string '' '' '' [ 421.894291][T19880] writes to the poll attribute are ignored. [ 421.926794][T19880] please use driver specific parameters instead. [ 423.229891][ T30] audit: type=1326 audit(4294967401.180:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19926 comm="syz.2.6443" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f333d58e969 code=0x0 [ 424.152153][T19956] netlink: 206 bytes leftover after parsing attributes in process `syz.5.6455'. [ 424.200141][T19956] Zero length message leads to an empty skb [ 424.275315][T19961] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 426.926145][ T5153] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260 [ 426.926179][ T5153] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260 [ 426.942425][ T5153] Bluetooth: hci0: Dropping invalid advertising data [ 426.949159][ T5153] Bluetooth: hci0: unknown advertising packet type: 0xe9 [ 426.949190][ T5153] Bluetooth: hci0: Dropping invalid advertising data [ 426.964158][ T5153] Bluetooth: hci0: Malformed LE Event: 0x02 [ 426.995422][T20069] netlink: del zone limit has 8 unknown bytes [ 427.087790][T20071] HSR: entered promiscuous mode [ 430.114421][T20179] HSR: entered promiscuous mode [ 432.003858][T20225] svc: failed to register nfsdv3 RPC service (errno 111). [ 432.060880][T20225] svc: failed to register nfsaclv3 RPC service (errno 111). [ 432.233383][T20240] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6539'. [ 433.237901][T20285] HSR: entered promiscuous mode [ 433.481351][T20298] delete_channel: no stack [ 434.399257][T20325] netlink: 'syz.5.6558': attribute type 11 has an invalid length. [ 434.858997][T20339] HSR: entered promiscuous mode [ 436.764849][T20405] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 437.280212][T20421] dyndbg: bad flag-op , at start of [ 437.306022][T20421] dyndbg: flags parse failed [ 438.414687][T20459] netlink: 342 bytes leftover after parsing attributes in process `syz.5.6602'. [ 440.645550][T20516] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 441.378874][T20528] Process accounting resumed [ 442.527924][T20597] netlink: zone id is out of range [ 442.552666][T20597] netlink: zone id is out of range [ 442.557832][T20597] netlink: zone id is out of range [ 442.616610][T20597] netlink: zone id is out of range [ 442.655022][T20597] netlink: zone id is out of range [ 442.692264][T20597] netlink: zone id is out of range [ 442.716856][T20597] netlink: zone id is out of range [ 442.744652][T20597] netlink: zone id is out of range [ 442.770271][T20597] netlink: zone id is out of range [ 442.790764][T20597] netlink: zone id is out of range [ 443.363682][T20642] netlink: 'syz.0.6651': attribute type 2 has an invalid length. [ 445.408273][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.414993][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 446.057702][T20719] nbd: must specify a device to reconfigure [ 446.377718][T20730] tc_dump_action: action bad kind [ 446.916538][T20742] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 447.569214][T20763] net_ratelimit: 21 callbacks suppressed [ 447.569233][T20763] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 448.078039][T20790] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6701'. [ 448.850619][T20811] svc: failed to register nfsdv3 RPC service (errno 111). [ 448.875491][T20820] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6709'. [ 448.893401][T20811] svc: failed to register nfsaclv3 RPC service (errno 111). [ 451.264100][T20898] netlink: zone id is out of range [ 451.293201][T20898] netlink: zone id is out of range [ 451.298367][T20898] netlink: zone id is out of range [ 451.362787][T20898] netlink: zone id is out of range [ 451.396737][T20898] netlink: zone id is out of range [ 451.410072][T20900] svc: failed to register nfsdv3 RPC service (errno 111). [ 451.424018][T20898] netlink: zone id is out of range [ 451.439785][T20900] svc: failed to register nfsaclv3 RPC service (errno 111). [ 451.463936][T20898] netlink: zone id is out of range [ 451.482432][T20898] netlink: zone id is out of range [ 451.515227][T20898] netlink: zone id is out of range [ 454.693667][T21008] sg_read: process 229 (syz.5.6773) changed security contexts after opening file descriptor, this is not allowed. [ 455.292501][T21021] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ek /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 623.357314][ T31] task:syz-executor state:D stack:22040 pid:5829 tgid:5829 ppid:5827 task_flags:0x440100 flags:0x00004002 [ 623.372487][ T31] Call Trace: [ 623.376391][ T31] [ 623.379512][ T31] __schedule+0x116f/0x5de0 [ 623.386678][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 623.391762][ T31] ? __pfx___schedule+0x10/0x10 [ 623.399180][ T31] ? find_held_lock+0x2b/0x80 [ 623.407610][ T31] ? schedule+0x2d7/0x3a0 [ 623.414814][ T31] schedule+0xe7/0x3a0 [ 623.418996][ T31] io_schedule+0xbf/0x130 [ 623.428903][ T31] bit_wait_io+0x15/0xe0 [ 623.434483][ T31] __wait_on_bit+0x62/0x180 [ 623.439179][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 623.446737][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 623.455254][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 623.461495][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 623.470830][ T31] do_get_write_access+0x93d/0x12a0 [ 623.477367][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 623.487804][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 623.495419][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 623.504727][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 623.510316][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 623.517004][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 623.529367][ T31] ? rcu_is_watching+0x12/0xc0 [ 623.536470][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 623.544541][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 623.549939][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 623.557392][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 623.568708][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 623.577276][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 623.587048][ T31] ext4_dirty_inode+0xd9/0x130 [ 623.593138][ T31] ? rcu_is_watching+0x12/0xc0 [ 623.598112][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 623.607081][ T31] generic_update_time+0xcf/0xf0 [ 623.614985][ T31] file_update_time+0x17d/0x1c0 [ 623.620161][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 623.630045][ T31] ? anon_pipe_read+0xc85/0x1210 [ 623.639153][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 623.651480][ T31] ? vm_normal_page+0x13b/0x2b0 [ 623.658074][ T31] ? find_held_lock+0x2b/0x80 [ 623.665589][ T31] ? find_held_lock+0x2b/0x80 [ 623.670500][ T31] do_page_mkwrite+0x171/0x380 [ 623.685433][ T31] do_wp_page+0xb9e/0x58e0 [ 623.690423][ T31] ? __pfx_do_wp_page+0x10/0x10 [ 623.697311][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 623.705541][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 623.711047][ T31] ? ___pte_offset_map+0x1bc/0x540 [ 623.717672][ T31] __handle_mm_fault+0x1ada/0x2a40 [ 623.729455][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 623.736120][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 623.741406][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 623.751713][ T31] handle_mm_fault+0x3fe/0xad0 [ 623.758653][ T31] do_user_addr_fault+0x60c/0x1370 [ 623.766977][ T31] exc_page_fault+0x5c/0xc0 [ 623.774139][ T31] asm_exc_page_fault+0x26/0x30 [ 623.779385][ T31] RIP: 0033:0x7f7dc80689c5 [ 623.786341][ T31] RSP: 002b:00007ffec8ecbca0 EFLAGS: 00010212 [ 623.795554][ T31] RAX: 00007f7dc53edd84 RBX: 00007ffec8ecbda0 RCX: 0000000000000000 [ 623.810124][ T31] RDX: 00007f7dc53edd80 RSI: 0000000000000008 RDI: 00007ffec8ecbda0 [ 623.819586][ T31] RBP: 00000000000003e6 R08: 0000000000000000 R09: 0000000000000000 [ 623.833781][ T31] R10: 00007ffec8ecbd80 R11: 0000000000000000 R12: 0000000000000000 [ 623.843244][ T31] R13: 000000000001227c R14: fffffffffffedd84 R15: 000000000001227c [ 623.851375][ T31] [ 623.859100][ T31] INFO: task syz.2.6975:21524 blocked for more than 143 seconds. [ 623.870532][ T31] Tainted: G U I 6.15.0-rc3-syzkaller-00076-ge72e9e693307 #0 [ 623.883164][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 623.894007][ T31] task:syz.2.6975 state:D stack:26488 pid:21524 tgid:21524 ppid:5843 task_flags:0x440040 flags:0x00004004 [ 623.910980][ T31] Call Trace: [ 623.916717][ T31] [ 623.919737][ T31] __schedule+0x116f/0x5de0 [ 623.926084][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 623.931348][ T31] ? __pfx___schedule+0x10/0x10 [ 623.940295][ T31] ? find_held_lock+0x2b/0x80 [ 623.947318][ T31] ? schedule+0x2d7/0x3a0 [ 623.953598][ T31] schedule+0xe7/0x3a0 [ 623.957869][ T31] io_schedule+0xbf/0x130 [ 623.965847][ T31] bit_wait_io+0x15/0xe0 [ 623.970320][ T31] __wait_on_bit+0x62/0x180 [ 623.978484][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 623.985343][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 623.990902][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 623.999270][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 624.006846][ T31] do_get_write_access+0x93d/0x12a0 [ 624.016141][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 624.024313][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 624.030587][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 624.040099][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 624.048047][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 624.055689][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 624.063854][ T31] ? rcu_is_watching+0x12/0xc0 [ 624.068906][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 624.078903][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 624.086427][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 624.093877][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 624.099602][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 624.106379][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 624.113726][ T31] ext4_dirty_inode+0xd9/0x130 [ 624.119423][ T31] ? rcu_is_watching+0x12/0xc0 [ 624.127970][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 624.135022][ T31] generic_update_time+0xcf/0xf0 [ 624.143846][ T31] file_update_time+0x17d/0x1c0 [ 624.148806][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 624.156104][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 624.161695][ T31] do_page_mkwrite+0x171/0x380 [ 624.169232][ T31] do_pte_missing+0x29c/0x3fb0 [ 624.175720][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 624.181095][ T31] __handle_mm_fault+0x103d/0x2a40 [ 624.189458][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 624.197574][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 624.205598][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 624.210920][ T31] handle_mm_fault+0x3fe/0xad0 [ 624.218034][ T31] do_user_addr_fault+0x60c/0x1370 [ 624.224818][ T31] exc_page_fault+0x5c/0xc0 [ 624.229438][ T31] asm_exc_page_fault+0x26/0x30 [ 624.238085][ T31] RIP: 0033:0x7f333d46f282 [ 624.246747][ T31] RSP: 002b:00007ffe4f811af0 EFLAGS: 00010202 [ 624.254643][ T31] RAX: 000000000000e008 RBX: 00007f333e2e5720 RCX: 0000000000000000 [ 624.264677][ T31] RDX: 0000001b30e12000 RSI: 0000000000000008 RDI: 00007f333e2e5720 [ 624.275182][ T31] RBP: 0000000000000663 R08: 00007f333cbff070 R09: 00007f333d7a2000 [ 624.285610][ T31] R10: 00007f333cbff008 R11: 0000000000000001 R12: ffffffff820fc508 [ 624.296778][ T31] R13: 00007f333d7b6038 R14: 00000000000003a7 R15: ffffffffffff2000 [ 624.307417][ T31] ? validate_mm+0x88/0x570 [ 624.313609][ T31] [ 624.316704][ T31] INFO: task syz.5.6977:21532 blocked for more than 144 seconds. [ 624.327071][ T31] Tainted: G U I 6.15.0-rc3-syzkaller-00076-ge72e9e693307 #0 [ 624.337962][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 624.353405][ T31] task:syz.5.6977 state:D stack:28344 pid:21532 tgid:21532 ppid:18864 task_flags:0x440040 flags:0x00004004 [ 624.367525][ T31] Call Trace: [ 624.370856][ T31] [ 624.375525][ T31] __schedule+0x116f/0x5de0 [ 624.380106][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 624.387651][ T31] ? __pfx___schedule+0x10/0x10 [ 624.394130][ T31] ? find_held_lock+0x2b/0x80 [ 624.398924][ T31] ? schedule+0x2d7/0x3a0 [ 624.406850][ T31] schedule+0xe7/0x3a0 [ 624.411019][ T31] io_schedule+0xbf/0x130 [ 624.417676][ T31] bit_wait_io+0x15/0xe0 [ 624.424450][ T31] __wait_on_bit+0x62/0x180 [ 624.429211][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 624.435947][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 624.441405][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 624.455296][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 624.460880][ T31] do_get_write_access+0x93d/0x12a0 [ 624.467516][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 624.476034][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 624.483559][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 624.489689][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 624.498271][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 624.505248][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 624.511347][ T31] ? rcu_is_watching+0x12/0xc0 [ 624.520904][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 624.530668][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 624.538133][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 624.545054][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 624.555384][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 624.560416][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 624.568516][ T31] ext4_dirty_inode+0xd9/0x130 [ 624.575520][ T31] ? rcu_is_watching+0x12/0xc0 [ 624.580448][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 624.586739][ T31] generic_update_time+0xcf/0xf0 [ 624.591752][ T31] file_update_time+0x17d/0x1c0 [ 624.599115][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 624.611181][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 624.619434][ T31] do_page_mkwrite+0x171/0x380 [ 624.627905][ T31] do_pte_missing+0x29c/0x3fb0 [ 624.636055][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 624.641426][ T31] __handle_mm_fault+0x103d/0x2a40 [ 624.647778][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 624.657795][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 624.664346][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 624.669649][ T31] handle_mm_fault+0x3fe/0xad0 [ 624.678292][ T31] do_user_addr_fault+0x60c/0x1370 [ 624.688438][ T31] exc_page_fault+0x5c/0xc0 [ 624.695233][ T31] asm_exc_page_fault+0x26/0x30 [ 624.700156][ T31] RIP: 0033:0x7f75d9c6eada [ 624.705765][ T31] RSP: 002b:00007ffcda395cf0 EFLAGS: 00010202 [ 624.714262][ T31] RAX: 0000001b2d519000 RBX: 00007f75daae5720 RCX: 0000001b2d518ff8 [ 624.723584][ T31] RDX: 0000001b2d12021c RSI: 0000000000000008 RDI: 00007f75daae5720 [ 624.736171][ T31] RBP: ffffffff893fc701 R08: 00007f75d9fb6038 R09: 00007f75d9fa2000 [ 624.746371][ T31] R10: 00007f75d93ff008 R11: 0000000000000002 R12: 0000000000000002 [ 624.758792][ T31] R13: 000000000000010a R14: ffffffff893fc0b1 R15: 0000000000000113 [ 624.770354][ T31] ? __alloc_skb+0x2a1/0x380 [ 624.777527][ T31] ? skb_copy+0x321/0x3a0 [ 624.785132][ T31] [ 624.788316][ T31] INFO: task syz.1.6978:21534 blocked for more than 144 seconds. [ 624.799149][ T31] Tainted: G U I 6.15.0-rc3-syzkaller-00076-ge72e9e693307 #0 [ 624.809844][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 624.820771][ T31] task:syz.1.6978 state:D stack:28632 pid:21534 tgid:21534 ppid:5842 task_flags:0x440040 flags:0x00000004 [ 624.836613][ T31] Call Trace: [ 624.840056][ T31] [ 624.845532][ T31] __schedule+0x116f/0x5de0 [ 624.850342][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 624.860700][ T31] ? __pfx___schedule+0x10/0x10 [ 624.866036][ T31] ? find_held_lock+0x2b/0x80 [ 624.870862][ T31] ? schedule+0x2d7/0x3a0 [ 624.878249][ T31] schedule+0xe7/0x3a0 [ 624.882850][ T31] io_schedule+0xbf/0x130 [ 624.887274][ T31] bit_wait_io+0x15/0xe0 [ 624.891677][ T31] __wait_on_bit+0x62/0x180 [ 624.900921][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 624.906539][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 624.914795][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 624.920957][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 624.927566][ T31] do_get_write_access+0x93d/0x12a0 [ 624.936583][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 624.943451][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 624.949632][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 624.963093][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 624.968686][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 624.977251][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 624.983893][ T31] ? rcu_is_watching+0x12/0xc0 [ 624.988720][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 624.997764][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 625.005223][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 625.010947][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 625.019550][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 625.025085][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 625.030639][ T31] ext4_dirty_inode+0xd9/0x130 [ 625.039159][ T31] ? rcu_is_watching+0x12/0xc0 [ 625.044365][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 625.049680][ T31] generic_update_time+0xcf/0xf0 [ 625.057915][ T31] file_update_time+0x17d/0x1c0 [ 625.067115][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 625.076327][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 625.083900][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 625.089531][ T31] ? pte_alloc_one+0x2b1/0x380 [ 625.097224][ T31] do_page_mkwrite+0x171/0x380 [ 625.102495][ T31] do_pte_missing+0x29c/0x3fb0 [ 625.107328][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 625.116883][ T31] ? __pmd_alloc+0x3c2/0x870 [ 625.122338][ T31] __handle_mm_fault+0x103d/0x2a40 [ 625.127913][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 625.136723][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 625.144159][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 625.149521][ T31] handle_mm_fault+0x3fe/0xad0 [ 625.157362][ T31] do_user_addr_fault+0x60c/0x1370 [ 625.165510][ T31] exc_page_fault+0x5c/0xc0 [ 625.170282][ T31] asm_exc_page_fault+0x26/0x30 [ 625.179956][ T31] RIP: 0033:0x7f6fe1c6547b [ 625.185615][ T31] RSP: 002b:00007fff6630aff0 EFLAGS: 00010246 [ 625.191765][ T31] RAX: 00000000005ffde8 RBX: 0000000000000000 RCX: 0000000000000000 [ 625.203282][ T31] RDX: 0000001b30720000 RSI: 0000000000600000 RDI: 00007f6fe1e98d50 [ 625.211532][ T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000 [ 625.221690][ T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 625.235014][ T31] R13: 00000000000927c0 R14: 00000000000740f5 R15: 00007fff6630b2a0 [ 625.247686][ T31] [ 625.250806][ T31] [ 625.250806][ T31] Showing all locks held in the system: [ 625.261049][ T31] 6 locks held by kworker/u8:0/12: [ 625.269213][ T31] #0: ffff888143ecf148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 625.284820][ T31] #1: ffffc90000117d18 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 625.298479][ T31] #2: ffff8880300020e0 (&type->s_umount_key#32){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0 [ 625.311532][ T31] #3: ffff888030004b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b2/0x820 [ 625.325881][ T31] #4: ffff888030006950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 625.336797][ T31] #5: ffff88807ca85208 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x355/0x1390 [ 625.350891][ T31] 1 lock held by khungtaskd/31: [ 625.356319][ T31] #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 625.371697][ T31] 3 locks held by syz-executor/5829: [ 625.377827][ T31] #0: ffff888064541948 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 625.390758][ T31] #1: ffff888030002518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 625.406470][ T31] #2: ffff888030006950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 625.416613][ T31] 2 locks held by getty/9906: [ 625.421515][ T31] #0: ffff8880314b10a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 625.434644][ T31] #1: ffffc90006d232f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 625.446916][ T31] 3 locks held by syz.2.6975/21524: [ 625.455707][ T31] #0: ffff88806313abc8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 625.465568][ T31] #1: ffff888030002518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 625.479913][ T31] #2: ffff888030006950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 625.491452][ T31] 3 locks held by syz.5.6977/21532: [ 625.500151][ T31] #0: ffff88802a145088 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 625.510399][ T31] #1: ffff888030002518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 625.525796][ T31] #2: ffff888030006950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 625.537710][ T31] 3 locks held by syz.1.6978/21534: [ 625.545428][ T31] #0: ffff888028555a88 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 625.558405][ T31] #1: ffff888030002518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 625.575834][ T31] #2: ffff888030006950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 625.586093][ T31] [ 625.588491][ T31] ============================================= [ 625.588491][ T31] [ 625.604344][ T31] NMI backtrace for cpu 0 [ 625.604369][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U I 6.15.0-rc3-syzkaller-00076-ge72e9e693307 #0 PREEMPT(full) [ 625.604407][ T31] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND [ 625.604415][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 625.604428][ T31] Call Trace: [ 625.604437][ T31] [ 625.604445][ T31] dump_stack_lvl+0x116/0x1f0 [ 625.604487][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 625.604513][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 625.604537][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 625.604564][ T31] watchdog+0xf70/0x12c0 [ 625.604601][ T31] ? __pfx_watchdog+0x10/0x10 [ 625.604631][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 625.604663][ T31] ? __kthread_parkme+0x19e/0x250 [ 625.604693][ T31] ? __pfx_watchdog+0x10/0x10 [ 625.604724][ T31] kthread+0x3c2/0x780 [ 625.604758][ T31] ? __pfx_kthread+0x10/0x10 [ 625.604797][ T31] ? __pfx_kthread+0x10/0x10 [ 625.604831][ T31] ? __pfx_kthread+0x10/0x10 [ 625.604863][ T31] ? __pfx_kthread+0x10/0x10 [ 625.604896][ T31] ? rcu_is_watching+0x12/0xc0 [ 625.604920][ T31] ? __pfx_kthread+0x10/0x10 [ 625.604955][ T31] ret_from_fork+0x45/0x80 [ 625.604977][ T31] ? __pfx_kthread+0x10/0x10 [ 625.605011][ T31] ret_from_fork_asm+0x1a/0x30 [ 625.605060][ T31] [ 625.605077][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 625.748508][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U I 6.15.0-rc3-syzkaller-00076-ge72e9e693307 #0 PREEMPT(full) [ 625.762092][ T31] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND [ 625.768186][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 625.778579][ T31] Call Trace: [ 625.781924][ T31] [ 625.784922][ T31] dump_stack_lvl+0x3d/0x1f0 [ 625.789638][ T31] panic+0x71c/0x800 [ 625.793980][ T31] ? __pfx_panic+0x10/0x10 [ 625.798466][ T31] ? ret_from_fork_asm+0x1a/0x30 [ 625.803699][ T31] ? nmi_backtrace_stall_check+0x6e/0x540 [ 625.809487][ T31] ? irq_work_queue+0xce/0x100 [ 625.814912][ T31] ? watchdog+0xdda/0x12c0 [ 625.819495][ T31] ? watchdog+0xdcd/0x12c0 [ 625.824172][ T31] watchdog+0xdeb/0x12c0 [ 625.829906][ T31] ? __pfx_watchdog+0x10/0x10 [ 625.834743][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 625.840506][ T31] ? __kthread_parkme+0x19e/0x250 [ 625.846031][ T31] ? __pfx_watchdog+0x10/0x10 [ 625.851473][ T31] kthread+0x3c2/0x780 [ 625.856523][ T31] ? __pfx_kthread+0x10/0x10 [ 625.861427][ T31] ? __pfx_kthread+0x10/0x10 [ 625.866120][ T31] ? __pfx_kthread+0x10/0x10 [ 625.870780][ T31] ? __pfx_kthread+0x10/0x10 [ 625.875427][ T31] ? rcu_is_watching+0x12/0xc0 [ 625.880233][ T31] ? __pfx_kthread+0x10/0x10 [ 625.884878][ T31] ret_from_fork+0x45/0x80 [ 625.889329][ T31] ? __pfx_kthread+0x10/0x10 [ 625.893973][ T31] ret_from_fork_asm+0x1a/0x30 [ 625.899327][ T31] [ 625.902474][ T31] Kernel Offset: disabled [ 625.906958][ T31] Rebooting in 86400 seconds..