Warning: Permanently added '10.128.1.56' (ED25519) to the list of known hosts.
2025/01/12 23:54:03 ignoring optional flag "sandboxArg"="0"
2025/01/12 23:54:03 parsed 1 programs
[  133.495323][ T5850] cgroup: Unknown subsys name 'net'
[  133.604059][ T5850] cgroup: Unknown subsys name 'cpuset'
[  133.612516][ T5850] cgroup: Unknown subsys name 'rlimit'
[  135.189096][ T5850] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  137.911085][ T5858] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  138.878925][   T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  138.889433][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  138.897961][   T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  138.906767][   T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  138.914726][   T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  138.922713][   T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  139.642673][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.651004][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.677698][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.685918][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  140.335538][ T5907] chnl_net:caif_netlink_parms(): no params data found
[  140.442430][ T5907] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.451380][ T5907] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.458644][ T5907] bridge_slave_0: entered allmulticast mode
[  140.466011][ T5907] bridge_slave_0: entered promiscuous mode
[  140.478587][ T5907] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.486024][ T5907] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.493761][ T5907] bridge_slave_1: entered allmulticast mode
[  140.500906][ T5907] bridge_slave_1: entered promiscuous mode
[  140.525718][ T5907] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  140.537029][ T5907] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  140.568635][ T5907] team0: Port device team_slave_0 added
[  140.578102][ T5907] team0: Port device team_slave_1 added
[  140.602569][ T5907] batman_adv: batadv0: Adding interface: batadv_slave_0
[  140.610166][ T5907] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  140.637426][ T5907] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  140.651418][ T5907] batman_adv: batadv0: Adding interface: batadv_slave_1
[  140.658409][ T5907] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  140.684401][ T5907] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  140.723927][ T5907] hsr_slave_0: entered promiscuous mode
[  140.730852][ T5907] hsr_slave_1: entered promiscuous mode
[  140.838018][ T5907] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  140.849473][ T5907] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  140.858803][ T5907] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  140.869009][ T5907] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  140.937254][ T5907] 8021q: adding VLAN 0 to HW filter on device bond0
[  140.959051][ T5907] 8021q: adding VLAN 0 to HW filter on device team0
[  140.974199][ T3004] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.981569][ T3004] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.998973][ T3004] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.006111][ T3004] bridge0: port 2(bridge_slave_1) entered forwarding state
[  141.152200][ T5907] 8021q: adding VLAN 0 to HW filter on device batadv0
[  141.187794][ T5907] veth0_vlan: entered promiscuous mode
[  141.199514][ T5907] veth1_vlan: entered promiscuous mode
[  141.225050][ T5907] veth0_macvtap: entered promiscuous mode
[  141.234319][ T5907] veth1_macvtap: entered promiscuous mode
[  141.251441][ T5907] batman_adv: batadv0: Interface activated: batadv_slave_0
[  141.265567][ T5907] batman_adv: batadv0: Interface activated: batadv_slave_1
[  141.276652][ T5907] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  141.286450][ T5907] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  141.295580][ T5907] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  141.305560][ T5907] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.448184][   T11] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.548907][   T11] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.616917][   T11] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.706465][   T11] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/01/12 23:54:16 executed programs: 0
[  142.669581][ T5147] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  142.678110][ T5147] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  142.688303][ T5147] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  142.700729][ T5147] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  142.708937][ T5147] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  142.717675][ T5147] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  142.843107][ T5943] chnl_net:caif_netlink_parms(): no params data found
[  142.903022][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state
[  142.910471][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.917667][ T5943] bridge_slave_0: entered allmulticast mode
[  142.924899][ T5943] bridge_slave_0: entered promiscuous mode
[  142.933571][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state
[  142.940913][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.948167][ T5943] bridge_slave_1: entered allmulticast mode
[  142.955494][ T5943] bridge_slave_1: entered promiscuous mode
[  142.982884][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  142.995209][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  143.025957][ T5943] team0: Port device team_slave_0 added
[  143.034965][ T5943] team0: Port device team_slave_1 added
[  143.061186][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0
[  143.068358][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  143.094918][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  143.107943][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1
[  143.115382][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  143.141767][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  143.177677][ T5943] hsr_slave_0: entered promiscuous mode
[  143.184161][ T5943] hsr_slave_1: entered promiscuous mode
[  143.192606][ T5943] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  143.201141][ T5943] Cannot create hsr debugfs directory
[  144.770968][   T54] Bluetooth: hci0: command tx timeout
[  144.995996][   T11] bridge_slave_1: left allmulticast mode
[  145.002382][   T11] bridge_slave_1: left promiscuous mode
[  145.009050][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.023058][   T11] bridge_slave_0: left allmulticast mode
[  145.028749][   T11] bridge_slave_0: left promiscuous mode
[  145.036035][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.281761][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  145.295819][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  145.306152][   T11] bond0 (unregistering): Released all slaves
[  145.392694][   T11] hsr_slave_0: left promiscuous mode
[  145.398864][   T11] hsr_slave_1: left promiscuous mode
[  145.408454][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  145.422699][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  145.432422][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  145.439868][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  145.468870][   T11] veth1_macvtap: left promiscuous mode
[  145.476269][   T11] veth0_macvtap: left promiscuous mode
[  145.483580][   T11] veth1_vlan: left promiscuous mode
[  145.489203][   T11] veth0_vlan: left promiscuous mode
[  145.898599][   T11] team0 (unregistering): Port device team_slave_1 removed
[  145.927744][   T11] team0 (unregistering): Port device team_slave_0 removed
[  146.414220][ T5943] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  146.437985][ T5943] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  146.458306][ T5943] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  146.476341][ T5943] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  146.578455][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0
[  146.598507][ T5943] 8021q: adding VLAN 0 to HW filter on device team0
[  146.618664][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.625875][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  146.647297][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  146.654793][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  146.855833][   T54] Bluetooth: hci0: command tx timeout
[  147.149883][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0
[  147.232359][ T5943] veth0_vlan: entered promiscuous mode
[  147.255102][ T5943] veth1_vlan: entered promiscuous mode
[  147.303589][ T5943] veth0_macvtap: entered promiscuous mode
[  147.317389][ T5943] veth1_macvtap: entered promiscuous mode
[  147.342957][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0
[  147.357479][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1
[  147.369745][ T5943] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  147.378804][ T5943] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  147.387906][ T5943] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  147.397181][ T5943] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  147.456487][ T3016] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  147.467327][ T3016] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  147.492995][ T2138] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  147.502086][ T2138] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  147.559054][ T5999] 
[  147.561440][ T5999] ======================================================
[  147.568541][ T5999] WARNING: possible circular locking dependency detected
[  147.575554][ T5999] 6.13.0-rc6-next-20250107-syzkaller #0 Not tainted
[  147.582221][ T5999] ------------------------------------------------------
[  147.589320][ T5999] syz.0.16/5999 is trying to acquire lock:
[  147.595121][ T5999] ffff88807b321c08 (vm_lock){++++}-{0:0}, at: binder_alloc_free_page+0x150/0xd50
[  147.604305][ T5999] 
[  147.604305][ T5999] but task is already holding lock:
[  147.611676][ T5999] ffff88814c177030 (&l->lock){+.+.}-{3:3}, at: lock_list_lru_of_memcg+0x24c/0x4d0
[  147.621058][ T5999] 
[  147.621058][ T5999] which lock already depends on the new lock.
[  147.621058][ T5999] 
[  147.631741][ T5999] 
[  147.631741][ T5999] the existing dependency chain (in reverse order) is:
[  147.640786][ T5999] 
[  147.640786][ T5999] -> #4 (&l->lock){+.+.}-{3:3}:
[  147.647851][ T5999]        lock_acquire+0x1ed/0x550
[  147.652890][ T5999]        _raw_spin_lock+0x2e/0x40
[  147.658011][ T5999]        lock_list_lru_of_memcg+0x24c/0x4d0
[  147.663970][ T5999]        list_lru_add+0x59/0x270
[  147.668935][ T5999]        list_lru_add_obj+0x17b/0x250
[  147.674348][ T5999]        iput+0x89c/0xa50
[  147.678680][ T5999]        __dentry_kill+0x20d/0x630
[  147.683795][ T5999]        shrink_kill+0xa9/0x2c0
[  147.688647][ T5999]        shrink_dentry_list+0x2c0/0x5b0
[  147.694200][ T5999]        shrink_dcache_sb+0x25e/0x3e0
[  147.699615][ T5999]        reconfigure_super+0x2c6/0x870
[  147.705102][ T5999]        path_mount+0xc22/0xfa0
[  147.709996][ T5999]        __se_sys_mount+0x2d6/0x3c0
[  147.715219][ T5999]        do_syscall_64+0xf3/0x230
[  147.720289][ T5999]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.726723][ T5999] 
[  147.726723][ T5999] -> #3 (&sb->s_type->i_lock_key#23){+.+.}-{3:3}:
[  147.735433][ T5999]        lock_acquire+0x1ed/0x550
[  147.740486][ T5999]        _raw_spin_lock+0x2e/0x40
[  147.745784][ T5999]        d_instantiate_new+0x76/0x130
[  147.751162][ T5999]        ext4_add_nondir+0x21e/0x290
[  147.756461][ T5999]        ext4_create+0x377/0x550
[  147.761420][ T5999]        path_openat+0x192f/0x3580
[  147.766538][ T5999]        do_filp_open+0x27f/0x4e0
[  147.771630][ T5999]        do_sys_openat2+0x13e/0x1d0
[  147.776860][ T5999]        __x64_sys_openat+0x247/0x2a0
[  147.782246][ T5999]        do_syscall_64+0xf3/0x230
[  147.787453][ T5999]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.793878][ T5999] 
[  147.793878][ T5999] -> #2 (jbd2_handle){++++}-{0:0}:
[  147.801200][ T5999]        lock_acquire+0x1ed/0x550
[  147.806847][ T5999]        start_this_handle+0x1eb4/0x2110
[  147.812525][ T5999]        jbd2__journal_start+0x2da/0x5d0
[  147.818364][ T5999]        __ext4_journal_start_sb+0x239/0x600
[  147.824453][ T5999]        ext4_dirty_inode+0x92/0x110
[  147.829752][ T5999]        __mark_inode_dirty+0x2ee/0xe90
[  147.835307][ T5999]        file_update_time+0x3d2/0x450
[  147.840729][ T5999]        ext4_page_mkwrite+0x210/0x1100
[  147.846371][ T5999]        do_page_mkwrite+0x159/0x340
[  147.851690][ T5999]        __handle_mm_fault+0x22dc/0x70f0
[  147.857348][ T5999]        handle_mm_fault+0x3e2/0x8c0
[  147.862664][ T5999]        exc_page_fault+0x2b9/0x8b0
[  147.867874][ T5999]        asm_exc_page_fault+0x26/0x30
[  147.873256][ T5999] 
[  147.873256][ T5999] -> #1 (sb_pagefaults){.+.+}-{0:0}:
[  147.880746][ T5999]        lock_acquire+0x1ed/0x550
[  147.885869][ T5999]        percpu_down_read+0x44/0x1b0
[  147.891161][ T5999]        ext4_page_mkwrite+0x1f9/0x1100
[  147.896711][ T5999]        do_page_mkwrite+0x159/0x340
[  147.902019][ T5999]        __handle_mm_fault+0x22dc/0x70f0
[  147.907656][ T5999]        handle_mm_fault+0x3e2/0x8c0
[  147.912971][ T5999]        exc_page_fault+0x459/0x8b0
[  147.918183][ T5999]        asm_exc_page_fault+0x26/0x30
[  147.923569][ T5999] 
[  147.923569][ T5999] -> #0 (vm_lock){++++}-{0:0}:
[  147.930583][ T5999]        validate_chain+0x18ef/0x5920
[  147.935976][ T5999]        __lock_acquire+0x1397/0x2100
[  147.941356][ T5999]        lock_acquire+0x1ed/0x550
[  147.946387][ T5999]        lock_vma_under_rcu+0x35f/0x9a0
[  147.951942][ T5999]        binder_alloc_free_page+0x150/0xd50
[  147.957843][ T5999]        __list_lru_walk_one+0x170/0x470
[  147.963483][ T5999]        list_lru_walk_node+0xc4/0xa70
[  147.968951][ T5999]        binder_shrink_scan+0x138/0x260
[  147.974591][ T5999]        do_shrink_slab+0x72d/0x1160
[  147.979880][ T5999]        shrink_slab+0x1093/0x14d0
[  147.985023][ T5999]        drop_slab+0x142/0x280
[  147.989833][ T5999]        drop_caches_sysctl_handler+0xbc/0x160
[  147.996024][ T5999]        proc_sys_call_handler+0x5ec/0x920
[  148.001843][ T5999]        do_iter_readv_writev+0x71a/0x9d0
[  148.007588][ T5999]        vfs_writev+0x38b/0xbc0
[  148.012469][ T5999]        do_writev+0x1b6/0x360
[  148.017253][ T5999]        do_syscall_64+0xf3/0x230
[  148.022299][ T5999]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.028726][ T5999] 
[  148.028726][ T5999] other info that might help us debug this:
[  148.028726][ T5999] 
[  148.038954][ T5999] Chain exists of:
[  148.038954][ T5999]   vm_lock --> &sb->s_type->i_lock_key#23 --> &l->lock
[  148.038954][ T5999] 
[  148.052104][ T5999]  Possible unsafe locking scenario:
[  148.052104][ T5999] 
[  148.059574][ T5999]        CPU0                    CPU1
[  148.064941][ T5999]        ----                    ----
[  148.070305][ T5999]   lock(&l->lock);
[  148.074221][ T5999]                                lock(&sb->s_type->i_lock_key#23);
[  148.082146][ T5999]                                lock(&l->lock);
[  148.088478][ T5999]   rlock(vm_lock);
[  148.092290][ T5999] 
[  148.092290][ T5999]  *** DEADLOCK ***
[  148.092290][ T5999] 
[  148.100428][ T5999] 3 locks held by syz.0.16/5999:
[  148.105360][ T5999]  #0: ffff888032b52420 (sb_writers#3){.+.+}-{0:0}, at: vfs_writev+0x2d6/0xbc0
[  148.114353][ T5999]  #1: ffff88814c177030 (&l->lock){+.+.}-{3:3}, at: lock_list_lru_of_memcg+0x24c/0x4d0
[  148.124037][ T5999]  #2: ffffffff8e937ee0 (rcu_read_lock){....}-{1:3}, at: lock_vma_under_rcu+0x1dd/0x9a0
[  148.133808][ T5999] 
[  148.133808][ T5999] stack backtrace:
[  148.139719][ T5999] CPU: 0 UID: 0 PID: 5999 Comm: syz.0.16 Not tainted 6.13.0-rc6-next-20250107-syzkaller #0
[  148.139738][ T5999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  148.139752][ T5999] Call Trace:
[  148.139761][ T5999]  <TASK>
[  148.139769][ T5999]  dump_stack_lvl+0x241/0x360
[  148.139789][ T5999]  ? __pfx_dump_stack_lvl+0x10/0x10
[  148.139805][ T5999]  ? __pfx__printk+0x10/0x10
[  148.139839][ T5999]  print_circular_bug+0x13a/0x1b0
[  148.139857][ T5999]  check_noncircular+0x36a/0x4a0
[  148.139883][ T5999]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  148.139903][ T5999]  ? __pfx_check_noncircular+0x10/0x10
[  148.139929][ T5999]  ? lockdep_lock+0x123/0x2b0
[  148.139951][ T5999]  ? lockdep_unlock+0x16a/0x300
[  148.139973][ T5999]  validate_chain+0x18ef/0x5920
[  148.140009][ T5999]  ? __pfx_validate_chain+0x10/0x10
[  148.140036][ T5999]  ? __pfx_validate_chain+0x10/0x10
[  148.140068][ T5999]  ? __pfx_validate_chain+0x10/0x10
[  148.140092][ T5999]  ? stack_trace_save+0x118/0x1d0
[  148.140110][ T5999]  ? mark_lock+0x9a/0x360
[  148.140133][ T5999]  __lock_acquire+0x1397/0x2100
[  148.140160][ T5999]  lock_acquire+0x1ed/0x550
[  148.140180][ T5999]  ? binder_alloc_free_page+0x150/0xd50
[  148.140206][ T5999]  ? __pfx_lock_acquire+0x10/0x10
[  148.140232][ T5999]  ? mas_walk+0x1f3/0x280
[  148.140257][ T5999]  lock_vma_under_rcu+0x35f/0x9a0
[  148.140275][ T5999]  ? binder_alloc_free_page+0x150/0xd50
[  148.140297][ T5999]  ? lock_vma_under_rcu+0x1dd/0x9a0
[  148.140316][ T5999]  ? binder_alloc_free_page+0x150/0xd50
[  148.140338][ T5999]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  148.140396][ T5999]  ? __pfx_validate_chain+0x10/0x10
[  148.140422][ T5999]  ? lock_list_lru_of_memcg+0x2e/0x4d0
[  148.140449][ T5999]  binder_alloc_free_page+0x150/0xd50
[  148.140475][ T5999]  __list_lru_walk_one+0x170/0x470
[  148.140492][ T5999]  ? __pfx_binder_alloc_free_page+0x10/0x10
[  148.140515][ T5999]  ? __pfx_binder_alloc_free_page+0x10/0x10
[  148.140537][ T5999]  list_lru_walk_node+0xc4/0xa70
[  148.140553][ T5999]  ? mark_lock+0x9a/0x360
[  148.140577][ T5999]  ? __pfx_binder_alloc_free_page+0x10/0x10
[  148.140600][ T5999]  ? __pfx_list_lru_walk_node+0x10/0x10
[  148.140619][ T5999]  binder_shrink_scan+0x138/0x260
[  148.140642][ T5999]  ? __pfx_binder_shrink_scan+0x10/0x10
[  148.140667][ T5999]  do_shrink_slab+0x72d/0x1160
[  148.140690][ T5999]  ? shrink_slab+0x12b/0x14d0
[  148.140708][ T5999]  shrink_slab+0x1093/0x14d0
[  148.140729][ T5999]  ? shrink_slab+0x12b/0x14d0
[  148.140746][ T5999]  ? __pfx_lock_release+0x10/0x10
[  148.140767][ T5999]  ? __pfx_shrink_slab+0x10/0x10
[  148.140790][ T5999]  ? mem_cgroup_iter+0x3d/0x420
[  148.140807][ T5999]  drop_slab+0x142/0x280
[  148.140828][ T5999]  drop_caches_sysctl_handler+0xbc/0x160
[  148.140859][ T5999]  ? __pfx_drop_caches_sysctl_handler+0x10/0x10
[  148.140884][ T5999]  proc_sys_call_handler+0x5ec/0x920
[  148.140905][ T5999]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  148.140928][ T5999]  do_iter_readv_writev+0x71a/0x9d0
[  148.140953][ T5999]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  148.140975][ T5999]  ? rcu_read_lock_any_held+0xb7/0x160
[  148.140997][ T5999]  vfs_writev+0x38b/0xbc0
[  148.141015][ T5999]  ? tomoyo_path_number_perm+0x206/0x860
[  148.141037][ T5999]  ? __pfx_vfs_writev+0x10/0x10
[  148.141065][ T5999]  do_writev+0x1b6/0x360
[  148.141083][ T5999]  ? __pfx_do_writev+0x10/0x10
[  148.141099][ T5999]  ? do_syscall_64+0x100/0x230
[  148.141118][ T5999]  ? do_syscall_64+0xb6/0x230
[  148.141136][ T5999]  do_syscall_64+0xf3/0x230
[  148.141154][ T5999]  ? clear_bhb_loop+0x35/0x90
[  148.141179][ T5999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.141206][ T5999] RIP: 0033:0x7fc19f585d29
[  148.141227][ T5999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.141240][ T5999] RSP: 002b:00007ffdde2ee088 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  148.141257][ T5999] RAX: ffffffffffffffda RBX: 00007fc19f775fa0 RCX: 00007fc19f585d29
[  148.141269][ T5999] RDX: 0000000000000001 RSI: 00000000200000c0 RDI: 0000000000000003
[  148.141279][ T5999] RBP: 00007fc19f601b08 R08: 0000000000000000 R09: 0000000000000000
[  148.141289][ T5999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  148.141298][ T5999] R13: 00007fc19f775fa0 R14: 00007fc19f775fa0 R15: 00000000000019d2
[  148.141315][ T5999]  </TASK>
[  148.940074][   T54] Bluetooth: hci0: command tx timeout
[  149.043720][ T5999] syz.0.16 (5999): drop_caches: 2