last executing test programs: 2.551748037s ago: executing program 3 (id=2423): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000004c0), r2) sendmsg$auto_ETHTOOL_MSG_PAUSE_GET(r2, &(0x7f0000001a00)={0x0, 0x0, &(0x7f00000019c0)={&(0x7f0000000140)={0x20, r3, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_PAUSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40080}, 0x0) 2.056461636s ago: executing program 2 (id=2432): socket(0x2, 0x1, 0x100) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51) shutdown$auto(0x200000003, 0x2) ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0) 2.016223532s ago: executing program 3 (id=2433): r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x80040, 0x40, 0xe}, 0x18) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x88) fremovexattr$auto(r0, &(0x7f0000000000)='system.posix_acl_access\x00') 2.014864612s ago: executing program 0 (id=2434): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) ioctl$auto(0x3, 0x4b67, 0x38) 1.86745571s ago: executing program 0 (id=2435): mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x84) socketpair$auto(0x7, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) setsockopt$auto(r0, 0x84, 0x15, 0x0, 0x1) 1.708838467s ago: executing program 2 (id=2438): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0x2, 0x1, 0x0) fcntl$auto(0x3, 0x4, 0xa553) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @dev={0xac, 0x14, 0x14, 0xd}}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x101, 0x0, 0x5, 0x9ad}, 0x5}, 0x5, 0x20000000) 1.679508289s ago: executing program 3 (id=2439): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r0 = memfd_create$auto(0x0, 0xb) write$auto(r0, 0x0, 0xfd94) fcntl$auto(0xff80000000000000, 0x409, 0x3f) 1.507694938s ago: executing program 0 (id=2441): mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_CLAIM_PORT(r0, 0x80045518, 0x0) 1.427147037s ago: executing program 2 (id=2443): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/tasks\x00', 0x63102, 0x0) sendfile$auto(r0, r0, 0x0, 0x1) r1 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b) read$auto(r1, 0x0, 0x2) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) 1.314896071s ago: executing program 3 (id=2445): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/transparent_hugepage/khugepaged/alloc_sleep_millisecs\x00', 0x224683, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2b, 0x1, 0x0) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy1/airtime_flags\x00', 0x2, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)='5', 0x1) 1.100509312s ago: executing program 2 (id=2448): socket(0xa, 0x1, 0x100) r0 = gettid() listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) kill$auto(r0, 0x11) 1.031112116s ago: executing program 3 (id=2449): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x20, 0x0, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0xc0, 0x0, 0x0, @ipv4=@multicast2}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x50) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="011d3da4420008bd7100f9db5f2502000000"], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x7ff}, 0x7, 0x4008) 779.149784ms ago: executing program 2 (id=2451): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/lru_gen/enabled\x00', 0xb02, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) pread64$auto(r0, 0x0, 0x20000000001, 0x7fff) write$auto(0x3, 0x0, 0x7fffffff) 681.553279ms ago: executing program 3 (id=2453): r0 = pidfd_open$auto(0x1, 0x0) setns(r0, 0x60020000) setresuid$auto(0xffffffffffffffff, 0x0, 0x8000) r1 = syz_clone(0x10008000, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x4206, r1, 0x0, 0x5) 659.18606ms ago: executing program 1 (id=2454): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003040), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f0000003080)={0x28, r1, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x80}, @ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000004}, 0x20008800) 580.624737ms ago: executing program 1 (id=2455): kexec_load$auto(0x0, 0x7fffffffffffffff, &(0x7f0000000080)={@buf=&(0x7f0000000040), 0x3, 0x7ff, 0x1}, 0x958) r0 = socket$nl_generic(0x10, 0x3, 0x10) setresuid$auto(0x60, 0x1000, 0x8000) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'syzkaller1\x00'}) keyctl$auto(0x11, 0xfffffffffffffffc, 0x0, 0x4, 0x3) 569.594398ms ago: executing program 0 (id=2456): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000b80), r0) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, r1, 0x200, 0x70bd28, 0x25dfdbfc, {}, [@IOAM6_ATTR_SC_NONE={0x4}, @IOAM6_ATTR_SC_NONE={0x4}, @IOAM6_ATTR_SC_NONE={0x4}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x6}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000051}, 0x4011) clock_nanosleep$auto(0x4, 0x2, &(0x7f0000000100)={0x9, 0xd1c}, 0xffffffffffffffff) sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(r0, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x1c, r1, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x3}]}, 0x1c}}, 0x40040) 492.270513ms ago: executing program 1 (id=2457): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x0, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) 417.076519ms ago: executing program 0 (id=2458): socket(0x2, 0x801, 0x100) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) 401.088381ms ago: executing program 1 (id=2459): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(0x3, 0x10000000084, 0x75, 0x0, 0x8) 244.578321ms ago: executing program 0 (id=2460): mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(0x3, 0x10000000084, 0xa, 0x0, 0x20) 207.86041ms ago: executing program 1 (id=2461): mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) write$auto(0x4, 0x0, 0x100082) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfd, 0x0, 0xfffffffffffffffd) 54.532598ms ago: executing program 1 (id=2462): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x5, 0x3, 0x4200, 0x3, 0x7, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b366203e219", 0x0, 0xffffffffffffffff, 0x8000005, 0x7, 0x7, 0x8}, 0x10) bpf$auto(0x2, 0x0, 0xb) bpf$auto(0x15, 0x0, 0x0) 0s ago: executing program 2 (id=2463): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty51\x00', 0x40001, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x2, 0x10000002, 0x6}) ioctl$auto(0x3, 0x5605, r0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.84' (ED25519) to the list of known hosts. [ 85.569384][ T5828] cgroup: Unknown subsys name 'net' [ 85.705953][ T5828] cgroup: Unknown subsys name 'cpuset' [ 85.715133][ T5828] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 87.742377][ T5828] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 89.909563][ T5849] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 89.918818][ T5849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 89.927386][ T5849] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 89.935366][ T5849] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 89.944174][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 89.953395][ T5854] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 89.961443][ T5854] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 89.962264][ T5851] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 89.995625][ T5851] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 90.007842][ T5852] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 90.016870][ T5851] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 90.024533][ T5849] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 90.039896][ T5851] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 90.044557][ T5849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 90.047546][ T5851] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 90.055126][ T5849] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 90.069159][ T5851] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 90.070387][ T5849] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 90.093249][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 90.102149][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 90.621439][ T5838] chnl_net:caif_netlink_parms(): no params data found [ 90.763211][ T5837] chnl_net:caif_netlink_parms(): no params data found [ 90.900326][ T5839] chnl_net:caif_netlink_parms(): no params data found [ 90.916874][ T5840] chnl_net:caif_netlink_parms(): no params data found [ 90.935695][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.943926][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.951255][ T5838] bridge_slave_0: entered allmulticast mode [ 90.959017][ T5838] bridge_slave_0: entered promiscuous mode [ 90.985814][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.993192][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.000407][ T5838] bridge_slave_1: entered allmulticast mode [ 91.007827][ T5838] bridge_slave_1: entered promiscuous mode [ 91.110847][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.118250][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.125996][ T5837] bridge_slave_0: entered allmulticast mode [ 91.133842][ T5837] bridge_slave_0: entered promiscuous mode [ 91.146822][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.168363][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.175651][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.183300][ T5837] bridge_slave_1: entered allmulticast mode [ 91.190396][ T5837] bridge_slave_1: entered promiscuous mode [ 91.199367][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.276943][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.344883][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.370504][ T5838] team0: Port device team_slave_0 added [ 91.377168][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.384795][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.392090][ T5839] bridge_slave_0: entered allmulticast mode [ 91.399182][ T5839] bridge_slave_0: entered promiscuous mode [ 91.434089][ T5838] team0: Port device team_slave_1 added [ 91.442858][ T5837] team0: Port device team_slave_0 added [ 91.449183][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.456564][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.464175][ T5839] bridge_slave_1: entered allmulticast mode [ 91.471499][ T5839] bridge_slave_1: entered promiscuous mode [ 91.478743][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.486290][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.493638][ T5840] bridge_slave_0: entered allmulticast mode [ 91.500866][ T5840] bridge_slave_0: entered promiscuous mode [ 91.524862][ T5837] team0: Port device team_slave_1 added [ 91.543521][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.550715][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.558389][ T5840] bridge_slave_1: entered allmulticast mode [ 91.566345][ T5840] bridge_slave_1: entered promiscuous mode [ 91.591063][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 91.598838][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.624988][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 91.678757][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 91.686222][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.713678][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 91.739937][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.754708][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.786351][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 91.793561][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.820589][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 91.835429][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 91.842723][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.869913][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 91.899332][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.912378][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.986605][ T5839] team0: Port device team_slave_0 added [ 91.996906][ T5839] team0: Port device team_slave_1 added [ 92.023247][ T5838] hsr_slave_0: entered promiscuous mode [ 92.029766][ T5838] hsr_slave_1: entered promiscuous mode [ 92.038747][ T5840] team0: Port device team_slave_0 added [ 92.063351][ T5849] Bluetooth: hci0: command tx timeout [ 92.099774][ T5840] team0: Port device team_slave_1 added [ 92.142086][ T5849] Bluetooth: hci3: command tx timeout [ 92.152038][ T5849] Bluetooth: hci2: command tx timeout [ 92.154924][ T51] Bluetooth: hci1: command tx timeout [ 92.200084][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.208401][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.235173][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.274604][ T5837] hsr_slave_0: entered promiscuous mode [ 92.281574][ T5837] hsr_slave_1: entered promiscuous mode [ 92.288382][ T5837] debugfs: 'hsr0' already exists in 'hsr' [ 92.294284][ T5837] Cannot create hsr debugfs directory [ 92.300872][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.308953][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.335687][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.347766][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.356129][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.382172][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.407832][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.416851][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.446454][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.600464][ T5840] hsr_slave_0: entered promiscuous mode [ 92.607412][ T5840] hsr_slave_1: entered promiscuous mode [ 92.614286][ T5840] debugfs: 'hsr0' already exists in 'hsr' [ 92.620165][ T5840] Cannot create hsr debugfs directory [ 92.660777][ T5839] hsr_slave_0: entered promiscuous mode [ 92.667562][ T5839] hsr_slave_1: entered promiscuous mode [ 92.674238][ T5839] debugfs: 'hsr0' already exists in 'hsr' [ 92.680263][ T5839] Cannot create hsr debugfs directory [ 93.097727][ T5838] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 93.136993][ T5838] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 93.158022][ T5838] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 93.169236][ T5838] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 93.221393][ T5837] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 93.233716][ T5837] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 93.265240][ T5837] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 93.276453][ T5837] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 93.355759][ T5840] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 93.375510][ T5840] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 93.387871][ T5840] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 93.398957][ T5840] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 93.539277][ T5839] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 93.553612][ T5839] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 93.575400][ T5839] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 93.588908][ T5839] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 93.701520][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.768364][ T5838] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.781331][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.806890][ T64] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.814238][ T64] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.847530][ T64] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.854763][ T64] bridge0: port 2(bridge_slave_1) entered forwarding state [ 93.893507][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.916781][ T5837] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.945070][ T5840] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.975043][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.990247][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.997645][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.008477][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.015807][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.035383][ T1155] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.042768][ T1155] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.079816][ T1158] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.087767][ T1158] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.116643][ T5839] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.142252][ T51] Bluetooth: hci0: command tx timeout [ 94.150528][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.157706][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.222701][ T51] Bluetooth: hci2: command tx timeout [ 94.222727][ T5849] Bluetooth: hci3: command tx timeout [ 94.229353][ T51] Bluetooth: hci1: command tx timeout [ 94.247605][ T1158] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.254828][ T1158] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.436207][ T5839] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 94.898139][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 94.994605][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.025008][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.089416][ T5838] veth0_vlan: entered promiscuous mode [ 95.110142][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.128834][ T5838] veth1_vlan: entered promiscuous mode [ 95.176997][ T5840] veth0_vlan: entered promiscuous mode [ 95.220175][ T5840] veth1_vlan: entered promiscuous mode [ 95.245432][ T5837] veth0_vlan: entered promiscuous mode [ 95.271035][ T5838] veth0_macvtap: entered promiscuous mode [ 95.283599][ T5838] veth1_macvtap: entered promiscuous mode [ 95.312449][ T5837] veth1_vlan: entered promiscuous mode [ 95.329225][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.377759][ T5840] veth0_macvtap: entered promiscuous mode [ 95.389925][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.402151][ T5839] veth0_vlan: entered promiscuous mode [ 95.413798][ T5840] veth1_macvtap: entered promiscuous mode [ 95.451476][ T64] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.461559][ T64] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.497329][ T5839] veth1_vlan: entered promiscuous mode [ 95.508148][ T64] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.519427][ T64] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.532936][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.554760][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.601078][ T49] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.633199][ T49] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.643284][ T49] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.679860][ T49] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.691205][ T5837] veth0_macvtap: entered promiscuous mode [ 95.719237][ T5837] veth1_macvtap: entered promiscuous mode [ 95.734270][ T1155] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.748641][ T1155] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.751622][ T5839] veth0_macvtap: entered promiscuous mode [ 95.837082][ T5839] veth1_macvtap: entered promiscuous mode [ 95.861488][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.868437][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.870502][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.926571][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.940578][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.970143][ T1155] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.973615][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.994516][ T1155] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.012521][ T49] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.060809][ T1158] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.077008][ T1158] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.087822][ T5838] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 96.090055][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.125422][ T1158] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.152184][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.161268][ T1158] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.213884][ T1145] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.232696][ T51] Bluetooth: hci0: command tx timeout [ 96.233822][ T1145] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.272382][ T1145] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.302285][ T51] Bluetooth: hci3: command tx timeout [ 96.302898][ T5849] Bluetooth: hci1: command tx timeout [ 96.307762][ T51] Bluetooth: hci2: command tx timeout [ 96.409103][ T5935] FAULT_INJECTION: forcing a failure. [ 96.409103][ T5935] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 96.443577][ T5935] CPU: 1 UID: 0 PID: 5935 Comm: syz.0.5 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 96.443620][ T5935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 96.443636][ T5935] Call Trace: [ 96.443645][ T5935] [ 96.443656][ T5935] dump_stack_lvl+0x16c/0x1f0 [ 96.443700][ T5935] should_fail_ex+0x512/0x640 [ 96.443734][ T5935] _copy_from_user+0x2e/0xd0 [ 96.443775][ T5935] restore_altstack+0x93/0x170 [ 96.443815][ T5935] ? __pfx_restore_altstack+0x10/0x10 [ 96.443857][ T5935] ? _raw_spin_unlock_irq+0x23/0x50 [ 96.443893][ T5935] ? lockdep_hardirqs_on+0x7c/0x110 [ 96.443930][ T5935] ? _raw_spin_unlock_irq+0x2e/0x50 [ 96.443965][ T5935] ? set_current_blocked+0xdd/0x120 [ 96.443994][ T5935] __do_sys_rt_sigreturn+0x13c/0x230 [ 96.444032][ T5935] ? __pfx___do_sys_rt_sigreturn+0x10/0x10 [ 96.444085][ T5935] do_syscall_64+0xcd/0x490 [ 96.444130][ T5935] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 96.444159][ T5935] RIP: 0033:0x7f7bda12ad69 [ 96.444181][ T5935] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25 [ 96.444208][ T5935] RSP: 002b:00007f7bdaf9ba80 EFLAGS: 00000246 ORIG_RAX: 000000000000000f [ 96.444234][ T5935] RAX: ffffffffffffffda RBX: 00007f7bda3b5fa0 RCX: 00007f7bda12ad69 [ 96.444252][ T5935] RDX: 00007f7bdaf9ba80 RSI: 00007f7bdaf9bbb0 RDI: 0000000000000011 [ 96.444270][ T5935] RBP: 00007f7bda211df1 R08: 0000000000000000 R09: 0000000000000000 [ 96.444287][ T5935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 96.444304][ T5935] R13: 0000000000000000 R14: 00007f7bda3b5fa0 R15: 00007fffe7da9538 [ 96.444342][ T5935] [ 96.646890][ T3459] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.654935][ T3459] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.824683][ T1155] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.840412][ T5939] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 96.878428][ T1155] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.953849][ T1158] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.984013][ T1158] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.068029][ T1155] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.097923][ T1155] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.185315][ T9] cfg80211: failed to load regulatory.db [ 97.896765][ T5959] can: request_module (can-proto-0) failed. [ 98.235025][ T5975] netlink: 'syz.2.18': attribute type 1 has an invalid length. [ 98.282283][ T5977] capability: warning: `syz.0.19' uses 32-bit capabilities (legacy support in use) [ 98.302243][ T51] Bluetooth: hci0: command tx timeout [ 98.382219][ T51] Bluetooth: hci2: command tx timeout [ 98.387797][ T51] Bluetooth: hci1: command tx timeout [ 98.392269][ T5849] Bluetooth: hci3: command tx timeout [ 98.728952][ T5990] netlink: 4 bytes leftover after parsing attributes in process `syz.1.24'. [ 98.806432][ T5992] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 99.060423][ T5998] Zero length message leads to an empty skb [ 99.468667][ T6009] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 99.816883][ T5849] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 99.816923][ T5849] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 99.833354][ T5849] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 99.833411][ T5849] Bluetooth: hci0: adv larger than maximum supported [ 99.840791][ T5849] Bluetooth: hci0: adv larger than maximum supported [ 99.848096][ T5849] Bluetooth: hci0: Malformed LE Event: 0x0d [ 101.012166][ T6053] FAULT_INJECTION: forcing a failure. [ 101.012166][ T6053] name failslab, interval 1, probability 0, space 0, times 1 [ 101.012213][ T6053] CPU: 1 UID: 0 PID: 6053 Comm: syz.1.53 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 101.012248][ T6053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 101.012263][ T6053] Call Trace: [ 101.012273][ T6053] [ 101.012284][ T6053] dump_stack_lvl+0x16c/0x1f0 [ 101.012329][ T6053] should_fail_ex+0x512/0x640 [ 101.012353][ T6053] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 101.012384][ T6053] should_failslab+0xc2/0x120 [ 101.012420][ T6053] __kmalloc_cache_noprof+0x6a/0x3e0 [ 101.012448][ T6053] ? alloc_fs_context+0x57/0x9c0 [ 101.012486][ T6053] alloc_fs_context+0x57/0x9c0 [ 101.012533][ T6053] mq_init_ns+0x172/0x620 [ 101.012579][ T6053] copy_ipcs+0x383/0x610 [ 101.012618][ T6053] ? copy_utsname+0xab/0x470 [ 101.012657][ T6053] create_new_namespaces+0x20a/0xa90 [ 101.012696][ T6053] ? security_capable+0x7e/0x260 [ 101.012743][ T6053] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 101.012779][ T6053] ksys_unshare+0x45b/0xa40 [ 101.012823][ T6053] ? __pfx_ksys_unshare+0x10/0x10 [ 101.012863][ T6053] ? xfd_validate_state+0x61/0x180 [ 101.012925][ T6053] __x64_sys_unshare+0x31/0x40 [ 101.012963][ T6053] do_syscall_64+0xcd/0x490 [ 101.013009][ T6053] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 101.013038][ T6053] RIP: 0033:0x7f8689b8eb69 [ 101.013059][ T6053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 101.013085][ T6053] RSP: 002b:00007f86879f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 101.013113][ T6053] RAX: ffffffffffffffda RBX: 00007f8689db5fa0 RCX: 00007f8689b8eb69 [ 101.013131][ T6053] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400 [ 101.013147][ T6053] RBP: 00007f8689c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 101.013161][ T6053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 101.013177][ T6053] R13: 0000000000000000 R14: 00007f8689db5fa0 R15: 00007ffd6c1733c8 [ 101.013213][ T6053] [ 106.010359][ T6177] FAULT_INJECTION: forcing a failure. [ 106.010359][ T6177] name failslab, interval 1, probability 0, space 0, times 0 [ 106.032491][ T6177] CPU: 0 UID: 0 PID: 6177 Comm: syz.2.108 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 106.032536][ T6177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 106.032553][ T6177] Call Trace: [ 106.032564][ T6177] [ 106.032575][ T6177] dump_stack_lvl+0x16c/0x1f0 [ 106.032623][ T6177] should_fail_ex+0x512/0x640 [ 106.032649][ T6177] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 106.032684][ T6177] should_failslab+0xc2/0x120 [ 106.032722][ T6177] __kmalloc_cache_noprof+0x6a/0x3e0 [ 106.032753][ T6177] ? snd_seq_port_connect+0x61/0x550 [ 106.032804][ T6177] snd_seq_port_connect+0x61/0x550 [ 106.032849][ T6177] ? _raw_read_unlock+0x28/0x50 [ 106.032900][ T6177] ? check_subscription_permission.isra.0+0xf5/0x240 [ 106.032953][ T6177] snd_seq_ioctl_subscribe_port+0x211/0x450 [ 106.033007][ T6177] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 106.033080][ T6177] snd_seq_kernel_client_ctl+0x10a/0x1c0 [ 106.033139][ T6177] snd_seq_oss_midi_open+0x442/0x660 [ 106.033177][ T6177] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 106.033210][ T6177] ? __mutex_trylock_common+0xe9/0x250 [ 106.033285][ T6177] ? rcu_is_watching+0x12/0xc0 [ 106.033325][ T6177] ? trace_contention_end+0xdd/0x130 [ 106.033372][ T6177] snd_seq_oss_synth_reset+0x437/0x880 [ 106.033412][ T6177] ? __pfx_snd_seq_oss_synth_reset+0x10/0x10 [ 106.033449][ T6177] ? __pfx___fsnotify_parent+0x10/0x10 [ 106.033509][ T6177] snd_seq_oss_reset+0x73/0x290 [ 106.033559][ T6177] ? __pfx_odev_release+0x10/0x10 [ 106.033601][ T6177] snd_seq_oss_release+0x7c/0x180 [ 106.033649][ T6177] odev_release+0x4c/0x70 [ 106.033692][ T6177] __fput+0x402/0xb70 [ 106.033745][ T6177] task_work_run+0x150/0x240 [ 106.033794][ T6177] ? __pfx_task_work_run+0x10/0x10 [ 106.033839][ T6177] ? __pfx___do_sys_close_range+0x10/0x10 [ 106.033891][ T6177] exit_to_user_mode_loop+0xeb/0x110 [ 106.033944][ T6177] do_syscall_64+0x3f6/0x490 [ 106.033992][ T6177] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.034022][ T6177] RIP: 0033:0x7fd59258eb69 [ 106.034047][ T6177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 106.034082][ T6177] RSP: 002b:00007fd5934ac038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 106.034110][ T6177] RAX: 0000000000000000 RBX: 00007fd5927b5fa0 RCX: 00007fd59258eb69 [ 106.034129][ T6177] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000000000000002 [ 106.034146][ T6177] RBP: 00007fd592611df1 R08: 0000000000000000 R09: 0000000000000000 [ 106.034164][ T6177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 106.034181][ T6177] R13: 0000000000000000 R14: 00007fd5927b5fa0 R15: 00007ffe706821b8 [ 106.034239][ T6177] [ 106.043980][ T6178] random: crng reseeded on system resumption [ 108.090991][ T6211] svc: failed to register nfsdv3 RPC service (errno 111). [ 108.101211][ T6211] svc: failed to register nfsaclv3 RPC service (errno 111). [ 108.357284][ T6218] netlink: 206 bytes leftover after parsing attributes in process `syz.0.125'. [ 110.788958][ T6275] mmap: syz.0.149 (6275) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 112.476094][ T6319] zswap: compressor not available [ 113.210065][ T6350] bridge0: port 3(veth1_macvtap) entered blocking state [ 113.230689][ T6350] bridge0: port 3(veth1_macvtap) entered disabled state [ 113.250596][ T6350] veth1_macvtap: entered allmulticast mode [ 113.272327][ T6350] veth1_macvtap: left allmulticast mode [ 114.522250][ T6388] __vm_enough_memory: pid: 6388, comm: syz.2.197, bytes: 4398046511104 not enough memory for the allocation [ 114.625070][ T6388] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 116.826837][ T6450] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock [ 117.006667][ T6458] syz.3.228 uses obsolete (PF_INET,SOCK_PACKET) [ 117.107224][ T6462] process 'syz.0.229' launched ':,' with NULL argv: empty string added [ 117.195963][ T5849] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 117.196003][ T5849] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 117.214993][ T5849] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 117.215044][ T5849] Bluetooth: hci1: adv larger than maximum supported [ 117.224093][ T5849] Bluetooth: hci1: adv larger than maximum supported [ 117.230827][ T5849] Bluetooth: hci1: Malformed LE Event: 0x0d [ 117.240651][ T6461] svc: failed to register nfsdv3 RPC service (errno 111). [ 117.289986][ T6461] svc: failed to register nfsaclv3 RPC service (errno 111). [ 118.438273][ T5849] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 118.438313][ T5849] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 118.453392][ T5849] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 118.453441][ T5849] Bluetooth: hci3: adv larger than maximum supported [ 118.461172][ T5849] Bluetooth: hci3: adv larger than maximum supported [ 118.468049][ T5849] Bluetooth: hci3: Malformed LE Event: 0x0d [ 118.762239][ T6504] svc: failed to register nfsdv3 RPC service (errno 111). [ 118.799105][ T6504] svc: failed to register nfsaclv3 RPC service (errno 111). [ 119.009727][ T6509] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 120.578847][ T6544] svc: failed to register nfsdv3 RPC service (errno 111). [ 120.613630][ T6544] svc: failed to register nfsaclv3 RPC service (errno 111). [ 123.708375][ T6650] svc: failed to register nfsdv3 RPC service (errno 111). [ 123.754030][ T6650] svc: failed to register nfsaclv3 RPC service (errno 111). [ 123.814855][ T6659] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 125.205714][ T6688] svc: failed to register nfsdv3 RPC service (errno 111). [ 125.235507][ T6688] svc: failed to register nfsaclv3 RPC service (errno 111). [ 125.254398][ T6691] FAULT_INJECTION: forcing a failure. [ 125.254398][ T6691] name failslab, interval 1, probability 0, space 0, times 0 [ 125.271371][ T6691] CPU: 1 UID: 0 PID: 6691 Comm: syz.2.323 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 125.271432][ T6691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 125.271450][ T6691] Call Trace: [ 125.271460][ T6691] [ 125.271470][ T6691] dump_stack_lvl+0x16c/0x1f0 [ 125.271520][ T6691] should_fail_ex+0x512/0x640 [ 125.271549][ T6691] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 125.271587][ T6691] should_failslab+0xc2/0x120 [ 125.271626][ T6691] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 125.271659][ T6691] ? __pfx_map_id_range_down+0x10/0x10 [ 125.271700][ T6691] ? prepare_creds+0x2c/0x7d0 [ 125.271758][ T6691] prepare_creds+0x2c/0x7d0 [ 125.271799][ T6691] __sys_setfsuid+0xda/0x350 [ 125.271827][ T6691] ? rcu_is_watching+0x12/0xc0 [ 125.271856][ T6691] do_syscall_64+0xcd/0x490 [ 125.271898][ T6691] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.271928][ T6691] RIP: 0033:0x7fd59258eb69 [ 125.271953][ T6691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.271981][ T6691] RSP: 002b:00007fd5934ac038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a [ 125.272010][ T6691] RAX: ffffffffffffffda RBX: 00007fd5927b5fa0 RCX: 00007fd59258eb69 [ 125.272029][ T6691] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee01 [ 125.272047][ T6691] RBP: 00007fd592611df1 R08: 0000000000000000 R09: 0000000000000000 [ 125.272064][ T6691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 125.272079][ T6691] R13: 0000000000000000 R14: 00007fd5927b5fa0 R15: 00007ffe706821b8 [ 125.272110][ T6691] [ 125.435436][ C1] vkms_vblank_simulate: vblank timer overrun [ 126.039320][ T6704] zswap: compressor not available [ 127.132486][ T6754] FAULT_INJECTION: forcing a failure. [ 127.132486][ T6754] name failslab, interval 1, probability 0, space 0, times 0 [ 127.165839][ T6754] CPU: 1 UID: 0 PID: 6754 Comm: syz.2.351 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 127.165881][ T6754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 127.165898][ T6754] Call Trace: [ 127.165908][ T6754] [ 127.165919][ T6754] dump_stack_lvl+0x16c/0x1f0 [ 127.165966][ T6754] should_fail_ex+0x512/0x640 [ 127.165993][ T6754] ? __kmalloc_noprof+0xbf/0x510 [ 127.166027][ T6754] ? sk_prot_alloc+0x1a8/0x2a0 [ 127.166055][ T6754] should_failslab+0xc2/0x120 [ 127.166092][ T6754] __kmalloc_noprof+0xd2/0x510 [ 127.166122][ T6754] ? trace_cap_capable+0x18d/0x200 [ 127.166171][ T6754] sk_prot_alloc+0x1a8/0x2a0 [ 127.166202][ T6754] sk_alloc+0x36/0xc20 [ 127.166240][ T6754] xsk_create+0x11b/0x770 [ 127.166275][ T6754] __sock_create+0x335/0x8d0 [ 127.166314][ T6754] __sys_socket+0x14d/0x260 [ 127.166348][ T6754] ? __pfx___sys_socket+0x10/0x10 [ 127.166380][ T6754] ? xfd_validate_state+0x61/0x180 [ 127.166427][ T6754] ? __task_pid_nr_ns+0x17c/0x500 [ 127.166472][ T6754] __x64_sys_socket+0x72/0xb0 [ 127.166503][ T6754] ? lockdep_hardirqs_on+0x7c/0x110 [ 127.166538][ T6754] do_syscall_64+0xcd/0x490 [ 127.166583][ T6754] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.166612][ T6754] RIP: 0033:0x7fd59258eb69 [ 127.166635][ T6754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 127.166660][ T6754] RSP: 002b:00007fd5934ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 127.166695][ T6754] RAX: ffffffffffffffda RBX: 00007fd5927b5fa0 RCX: 00007fd59258eb69 [ 127.166712][ T6754] RDX: 0000000000000000 RSI: 0000000000080003 RDI: 000000000000002c [ 127.166728][ T6754] RBP: 00007fd592611df1 R08: 0000000000000000 R09: 0000000000000000 [ 127.166745][ T6754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 127.166761][ T6754] R13: 0000000000000000 R14: 00007fd5927b5fa0 R15: 00007ffe706821b8 [ 127.166799][ T6754] [ 127.529373][ T6762] netlink: 4 bytes leftover after parsing attributes in process `syz.0.352'. [ 127.541977][ T6753] zswap: compressor not available [ 128.222008][ T6786] FAULT_INJECTION: forcing a failure. [ 128.222008][ T6786] name fail_futex, interval 1, probability 0, space 0, times 1 [ 128.235261][ T6786] CPU: 0 UID: 0 PID: 6786 Comm: syz.3.364 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 128.235304][ T6786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 128.235321][ T6786] Call Trace: [ 128.235331][ T6786] [ 128.235342][ T6786] dump_stack_lvl+0x16c/0x1f0 [ 128.235391][ T6786] should_fail_ex+0x512/0x640 [ 128.235425][ T6786] should_fail_futex+0x4c/0x60 [ 128.235459][ T6786] futex_lock_pi_atomic+0x148/0xd50 [ 128.235510][ T6786] futex_lock_pi+0x23f/0x7c0 [ 128.235559][ T6786] ? __pfx_futex_lock_pi+0x10/0x10 [ 128.235602][ T6786] ? preempt_schedule_thunk+0x16/0x30 [ 128.235658][ T6786] ? find_held_lock+0x2b/0x80 [ 128.235705][ T6786] ? futex_private_hash_put+0x18a/0x300 [ 128.235747][ T6786] ? __pfx_futex_wake_mark+0x10/0x10 [ 128.235805][ T6786] ? ksys_write+0x190/0x250 [ 128.235847][ T6786] do_futex+0x11a/0x350 [ 128.235885][ T6786] ? __pfx_do_futex+0x10/0x10 [ 128.235936][ T6786] __x64_sys_futex+0x1e0/0x4c0 [ 128.235977][ T6786] ? fput+0x70/0xf0 [ 128.236014][ T6786] ? __pfx___x64_sys_futex+0x10/0x10 [ 128.236051][ T6786] ? xfd_validate_state+0x61/0x180 [ 128.236091][ T6786] ? __pfx_ksys_write+0x10/0x10 [ 128.236138][ T6786] do_syscall_64+0xcd/0x490 [ 128.236183][ T6786] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.236212][ T6786] RIP: 0033:0x7fe88098eb69 [ 128.236237][ T6786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.236264][ T6786] RSP: 002b:00007fe8817e4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 128.236292][ T6786] RAX: ffffffffffffffda RBX: 00007fe880bb5fa0 RCX: 00007fe88098eb69 [ 128.236310][ T6786] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 128.236326][ T6786] RBP: 00007fe880a11df1 R08: 0000000000000000 R09: 000000008000fff2 [ 128.236343][ T6786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 128.236359][ T6786] R13: 0000000000000000 R14: 00007fe880bb5fa0 R15: 00007ffe2d50b0f8 [ 128.236397][ T6786] [ 128.984916][ T6810] svc: failed to register nfsdv3 RPC service (errno 111). [ 129.003738][ T6810] svc: failed to register nfsaclv3 RPC service (errno 111). [ 131.851531][ T6890] FAULT_INJECTION: forcing a failure. [ 131.851531][ T6890] name failslab, interval 1, probability 0, space 0, times 0 [ 131.902990][ T6890] CPU: 0 UID: 0 PID: 6890 Comm: syz.3.407 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 131.903035][ T6890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 131.903052][ T6890] Call Trace: [ 131.903062][ T6890] [ 131.903074][ T6890] dump_stack_lvl+0x16c/0x1f0 [ 131.903124][ T6890] should_fail_ex+0x512/0x640 [ 131.903152][ T6890] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 131.903190][ T6890] should_failslab+0xc2/0x120 [ 131.903226][ T6890] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 131.903261][ T6890] ? __pmd_alloc+0xbf/0x930 [ 131.903308][ T6890] __pmd_alloc+0xbf/0x930 [ 131.903346][ T6890] ? find_held_lock+0x2b/0x80 [ 131.903378][ T6890] __handle_mm_fault+0xa06/0x2a50 [ 131.903419][ T6890] ? __pfx___handle_mm_fault+0x10/0x10 [ 131.903482][ T6890] handle_mm_fault+0x589/0xd10 [ 131.903519][ T6890] __get_user_pages+0x551/0x34a0 [ 131.903577][ T6890] ? __pfx___get_user_pages+0x10/0x10 [ 131.903632][ T6890] populate_vma_page_range+0x267/0x3f0 [ 131.903687][ T6890] ? __pfx_populate_vma_page_range+0x10/0x10 [ 131.903730][ T6890] ? __pfx_find_vma_intersection+0x10/0x10 [ 131.903772][ T6890] ? __pfx_apply_vma_lock_flags+0x10/0x10 [ 131.903813][ T6890] __mm_populate+0x1d8/0x380 [ 131.903860][ T6890] ? __pfx___mm_populate+0x10/0x10 [ 131.903908][ T6890] ? up_write+0x1b2/0x520 [ 131.903955][ T6890] do_mlock+0x448/0x810 [ 131.903994][ T6890] ? __pfx_do_mlock+0x10/0x10 [ 131.904024][ T6890] ? __x64_sys_futex+0x1e0/0x4c0 [ 131.904059][ T6890] ? __x64_sys_futex+0x1e9/0x4c0 [ 131.904097][ T6890] ? fput+0x70/0xf0 [ 131.904138][ T6890] ? xfd_validate_state+0x61/0x180 [ 131.904178][ T6890] ? __pfx_ksys_write+0x10/0x10 [ 131.904218][ T6890] __x64_sys_mlock2+0xbd/0x100 [ 131.904254][ T6890] do_syscall_64+0xcd/0x490 [ 131.904301][ T6890] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.904330][ T6890] RIP: 0033:0x7fe88098eb69 [ 131.904354][ T6890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.904382][ T6890] RSP: 002b:00007fe8817e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000145 [ 131.904410][ T6890] RAX: ffffffffffffffda RBX: 00007fe880bb5fa0 RCX: 00007fe88098eb69 [ 131.904428][ T6890] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000006 [ 131.904444][ T6890] RBP: 00007fe880a11df1 R08: 0000000000000000 R09: 0000000000000000 [ 131.904460][ T6890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 131.904477][ T6890] R13: 0000000000000000 R14: 00007fe880bb5fa0 R15: 00007ffe2d50b0f8 [ 131.904521][ T6890] [ 132.280744][ T6888] svc: failed to register nfsdv3 RPC service (errno 111). [ 132.354316][ T6888] svc: failed to register nfsaclv3 RPC service (errno 111). [ 133.216963][ T6918] device-mapper: ioctl: Unable to rename non-existent device, to uuid [ 133.620656][ T6924] svc: failed to register nfsdv3 RPC service (errno 111). [ 133.663995][ T6924] svc: failed to register nfsaclv3 RPC service (errno 111). [ 133.786834][ T6930] netlink: 8 bytes leftover after parsing attributes in process `syz.2.426'. [ 134.097547][ T6936] openvswitch: netlink: nsh attribute has 14 unknown bytes. [ 137.502033][ T6999] netlink: 16 bytes leftover after parsing attributes in process `syz.0.455'. [ 138.146659][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.153709][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 139.013914][ T7017] zswap: compressor not available [ 139.461618][ T7027] Device name cannot be null; rc = [-22] [ 140.573849][ T7052] nbd: nbd7 already in use [ 141.302990][ T7065] Invalid ELF header len 1 [ 142.613026][ T7095] TCP: TCP_TX_DELAY enabled [ 143.042158][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 143.052058][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 143.212462][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 143.626179][ T7112] erspan0: entered allmulticast mode [ 144.032237][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 144.342692][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 144.392307][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 144.402199][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 144.553989][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 144.702488][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 144.722361][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 146.987266][ T7146] Device name cannot be null; rc = [-22] [ 149.008839][ T7199] FAULT_INJECTION: forcing a failure. [ 149.008839][ T7199] name failslab, interval 1, probability 0, space 0, times 0 [ 149.047542][ T7199] CPU: 0 UID: 0 PID: 7199 Comm: syz.1.541 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 149.047588][ T7199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 149.047603][ T7199] Call Trace: [ 149.047613][ T7199] [ 149.047624][ T7199] dump_stack_lvl+0x16c/0x1f0 [ 149.047670][ T7199] should_fail_ex+0x512/0x640 [ 149.047696][ T7199] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 149.047732][ T7199] should_failslab+0xc2/0x120 [ 149.047768][ T7199] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 149.047798][ T7199] ? __pfx_map_id_range_down+0x10/0x10 [ 149.047839][ T7199] ? prepare_creds+0x2c/0x7d0 [ 149.047885][ T7199] prepare_creds+0x2c/0x7d0 [ 149.047927][ T7199] __sys_setfsuid+0xda/0x350 [ 149.047957][ T7199] ? rcu_is_watching+0x12/0xc0 [ 149.047988][ T7199] do_syscall_64+0xcd/0x490 [ 149.048031][ T7199] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.048058][ T7199] RIP: 0033:0x7f8689b8eb69 [ 149.048081][ T7199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.048106][ T7199] RSP: 002b:00007f86879f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a [ 149.048133][ T7199] RAX: ffffffffffffffda RBX: 00007f8689db5fa0 RCX: 00007f8689b8eb69 [ 149.048150][ T7199] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee01 [ 149.048167][ T7199] RBP: 00007f8689c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 149.048183][ T7199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 149.048198][ T7199] R13: 0000000000000000 R14: 00007f8689db5fa0 R15: 00007ffd6c1733c8 [ 149.048233][ T7199] [ 150.176089][ T7208] Device name cannot be null; rc = [-22] [ 151.669838][ T7240] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 154.264711][ T30] audit: type=1804 audit(1843104570.810:2): pid=7283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.574" name="/newroot/149/file0" dev="tmpfs" ino=771 res=1 errno=0 [ 154.338073][ T30] audit: type=1800 audit(1843104570.810:3): pid=7283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.574" name="file0" dev="tmpfs" ino=771 res=0 errno=0 [ 154.907307][ T7300] size and base must be multiples of 4 kiB [ 154.924751][ T7300] CPU: 0 UID: 0 PID: 7300 Comm: syz.1.582 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 154.924787][ T7300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 154.924803][ T7300] Call Trace: [ 154.924813][ T7300] [ 154.924825][ T7300] dump_stack_lvl+0x16c/0x1f0 [ 154.924871][ T7300] mtrr_del+0xd1/0x110 [ 154.924911][ T7300] mtrr_ioctl+0x922/0xcf0 [ 154.924951][ T7300] ? __pfx_mtrr_ioctl+0x10/0x10 [ 154.925001][ T7300] ? find_held_lock+0x2b/0x80 [ 154.925041][ T7300] ? __fget_files+0x20e/0x3c0 [ 154.925072][ T7300] ? __pfx_mtrr_ioctl+0x10/0x10 [ 154.925113][ T7300] proc_reg_unlocked_ioctl+0x229/0x320 [ 154.925150][ T7300] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 154.925203][ T7300] __x64_sys_ioctl+0x18b/0x210 [ 154.925252][ T7300] do_syscall_64+0xcd/0x490 [ 154.925299][ T7300] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.925329][ T7300] RIP: 0033:0x7f8689b8eb69 [ 154.925352][ T7300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.925379][ T7300] RSP: 002b:00007f86879f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 154.925406][ T7300] RAX: ffffffffffffffda RBX: 00007f8689db5fa0 RCX: 00007f8689b8eb69 [ 154.925424][ T7300] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 154.925442][ T7300] RBP: 00007f8689c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 154.925458][ T7300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 154.925474][ T7300] R13: 0000000000000000 R14: 00007f8689db5fa0 R15: 00007ffd6c1733c8 [ 154.925512][ T7300] [ 155.462371][ T7307] netlink: 206 bytes leftover after parsing attributes in process `syz.1.583'. [ 155.532092][ T7312] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 156.365254][ T7344] erspan0: entered allmulticast mode [ 159.862902][ T7437] FAULT_INJECTION: forcing a failure. [ 159.862902][ T7437] name failslab, interval 1, probability 0, space 0, times 0 [ 159.896021][ T7430] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 4294967282 out of range (51000000..2150000000) [ 159.933080][ T7437] CPU: 0 UID: 0 PID: 7437 Comm: syz.1.639 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 159.933120][ T7437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 159.933134][ T7437] Call Trace: [ 159.933143][ T7437] [ 159.933155][ T7437] dump_stack_lvl+0x16c/0x1f0 [ 159.933205][ T7437] should_fail_ex+0x512/0x640 [ 159.933233][ T7437] ? __kmalloc_noprof+0xbf/0x510 [ 159.933270][ T7437] ? lsm_blob_alloc+0x68/0x90 [ 159.933306][ T7437] should_failslab+0xc2/0x120 [ 159.933352][ T7437] __kmalloc_noprof+0xd2/0x510 [ 159.933397][ T7437] lsm_blob_alloc+0x68/0x90 [ 159.933436][ T7437] security_sk_alloc+0x30/0x270 [ 159.933485][ T7437] sk_prot_alloc+0x1c7/0x2a0 [ 159.933521][ T7437] sk_alloc+0x36/0xc20 [ 159.933563][ T7437] pppoe_create+0x32/0x310 [ 159.933604][ T7437] pppox_create+0x159/0x2c0 [ 159.933646][ T7437] __sock_create+0x335/0x8d0 [ 159.933688][ T7437] __sys_socket+0x14d/0x260 [ 159.933721][ T7437] ? __pfx___sys_socket+0x10/0x10 [ 159.933754][ T7437] ? xfd_validate_state+0x61/0x180 [ 159.933794][ T7437] ? __pfx_ksys_write+0x10/0x10 [ 159.933835][ T7437] __x64_sys_socket+0x72/0xb0 [ 159.933866][ T7437] ? lockdep_hardirqs_on+0x7c/0x110 [ 159.933915][ T7437] do_syscall_64+0xcd/0x490 [ 159.933962][ T7437] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 159.933992][ T7437] RIP: 0033:0x7f8689b8eb69 [ 159.934015][ T7437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 159.934042][ T7437] RSP: 002b:00007f86879f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 159.934070][ T7437] RAX: ffffffffffffffda RBX: 00007f8689db5fa0 RCX: 00007f8689b8eb69 [ 159.934088][ T7437] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000018 [ 159.934110][ T7437] RBP: 00007f8689c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 159.934127][ T7437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 159.934143][ T7437] R13: 0000000000000000 R14: 00007f8689db5fa0 R15: 00007ffd6c1733c8 [ 159.934186][ T7437] [ 160.455158][ T7444] mtrr: base(0x7961000) is not aligned on a size(0x0000) boundary [ 163.377130][ T7506] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64 [ 163.402143][ T7506] audit: out of memory in audit_log_start [ 165.572395][ T7552] netlink: 4 bytes leftover after parsing attributes in process `syz.3.689'. [ 165.825235][ T7557] input: jJǸ-9%vlQ J8fi as /devices/virtual/input/input5 [ 166.593461][ T7576] sctp: [Deprecated]: syz.3.700 (pid 7576) Use of struct sctp_assoc_value in delayed_ack socket option. [ 166.593461][ T7576] Use struct sctp_sack_info instead [ 167.735302][ T7608] FAULT_INJECTION: forcing a failure. [ 167.735302][ T7608] name failslab, interval 1, probability 0, space 0, times 0 [ 167.754383][ T7606] block nbd0: Unsupported socket: shutdown callout must be supported. [ 167.806976][ T7608] CPU: 0 UID: 0 PID: 7608 Comm: syz.0.713 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 167.807031][ T7608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 167.807050][ T7608] Call Trace: [ 167.807060][ T7608] [ 167.807071][ T7608] dump_stack_lvl+0x16c/0x1f0 [ 167.807120][ T7608] should_fail_ex+0x512/0x640 [ 167.807147][ T7608] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 167.807188][ T7608] should_failslab+0xc2/0x120 [ 167.807226][ T7608] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 167.807259][ T7608] ? __d_alloc+0x32/0xae0 [ 167.807296][ T7608] __d_alloc+0x32/0xae0 [ 167.807336][ T7608] d_alloc+0x4a/0x1e0 [ 167.807373][ T7608] lookup_one_qstr_excl+0x175/0x250 [ 167.807417][ T7608] ? mnt_want_write+0x161/0x450 [ 167.807465][ T7608] filename_create+0x1e7/0x4a0 [ 167.807496][ T7608] ? __pfx_filename_create+0x10/0x10 [ 167.807530][ T7608] ? __might_fault+0xe3/0x190 [ 167.807561][ T7608] ? __might_fault+0xe3/0x190 [ 167.807590][ T7608] ? __might_fault+0x13b/0x190 [ 167.807628][ T7608] do_mknodat+0x18a/0x5d0 [ 167.807676][ T7608] ? __pfx_do_mknodat+0x10/0x10 [ 167.807706][ T7608] ? getname_flags.part.0+0x1c5/0x550 [ 167.807758][ T7608] __x64_sys_mknod+0x87/0xb0 [ 167.807794][ T7608] do_syscall_64+0xcd/0x490 [ 167.807841][ T7608] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.807871][ T7608] RIP: 0033:0x7f7bda18eb69 [ 167.807903][ T7608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 167.807930][ T7608] RSP: 002b:00007f7bdaf9c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 167.807958][ T7608] RAX: ffffffffffffffda RBX: 00007f7bda3b5fa0 RCX: 00007f7bda18eb69 [ 167.807977][ T7608] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 167.808003][ T7608] RBP: 00007f7bda211df1 R08: 0000000000000000 R09: 0000000000000000 [ 167.808020][ T7608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 167.808037][ T7608] R13: 0000000000000000 R14: 00007f7bda3b5fa0 R15: 00007fffe7da9538 [ 167.808081][ T7608] [ 168.186947][ T7614] zswap: compressor not available [ 169.556198][ T7658] openvswitch: netlink: IP tunnel TTL not specified. [ 171.262300][ T7702] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input6 [ 171.413090][ T5849] Bluetooth: hci2: ACL packet too small [ 172.063518][ T7720] FAULT_INJECTION: forcing a failure. [ 172.063518][ T7720] name failslab, interval 1, probability 0, space 0, times 0 [ 172.113471][ T7720] CPU: 1 UID: 0 PID: 7720 Comm: syz.0.758 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 172.113516][ T7720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 172.113534][ T7720] Call Trace: [ 172.113543][ T7720] [ 172.113555][ T7720] dump_stack_lvl+0x16c/0x1f0 [ 172.113605][ T7720] should_fail_ex+0x512/0x640 [ 172.113632][ T7720] ? __kmalloc_noprof+0xbf/0x510 [ 172.113668][ T7720] ? sk_prot_alloc+0x1a8/0x2a0 [ 172.113696][ T7720] should_failslab+0xc2/0x120 [ 172.113734][ T7720] __kmalloc_noprof+0xd2/0x510 [ 172.113777][ T7720] sk_prot_alloc+0x1a8/0x2a0 [ 172.113810][ T7720] sk_alloc+0x36/0xc20 [ 172.113851][ T7720] alg_create+0x9e/0x150 [ 172.113897][ T7720] __sock_create+0x335/0x8d0 [ 172.113949][ T7720] __sys_socket+0x14d/0x260 [ 172.113983][ T7720] ? __pfx___sys_socket+0x10/0x10 [ 172.114017][ T7720] ? xfd_validate_state+0x61/0x180 [ 172.114072][ T7720] __x64_sys_socket+0x72/0xb0 [ 172.114103][ T7720] ? lockdep_hardirqs_on+0x7c/0x110 [ 172.114145][ T7720] do_syscall_64+0xcd/0x490 [ 172.114190][ T7720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.114219][ T7720] RIP: 0033:0x7f7bda18eb69 [ 172.114243][ T7720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 172.114270][ T7720] RSP: 002b:00007f7bdaf9c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 172.114298][ T7720] RAX: ffffffffffffffda RBX: 00007f7bda3b5fa0 RCX: 00007f7bda18eb69 [ 172.114318][ T7720] RDX: 0000000000000000 RSI: 0000000000080805 RDI: 0000000000000026 [ 172.114335][ T7720] RBP: 00007f7bda211df1 R08: 0000000000000000 R09: 0000000000000000 [ 172.114353][ T7720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 172.114370][ T7720] R13: 0000000000000000 R14: 00007f7bda3b5fa0 R15: 00007fffe7da9538 [ 172.114412][ T7720] [ 175.572211][ T7803] FAULT_INJECTION: forcing a failure. [ 175.572211][ T7803] name failslab, interval 1, probability 0, space 0, times 0 [ 175.612446][ T7803] CPU: 0 UID: 0 PID: 7803 Comm: syz.3.794 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 175.612490][ T7803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 175.612507][ T7803] Call Trace: [ 175.612517][ T7803] [ 175.612528][ T7803] dump_stack_lvl+0x16c/0x1f0 [ 175.612576][ T7803] should_fail_ex+0x512/0x640 [ 175.612603][ T7803] ? __kmalloc_noprof+0xbf/0x510 [ 175.612640][ T7803] ? sk_prot_alloc+0x1a8/0x2a0 [ 175.612668][ T7803] should_failslab+0xc2/0x120 [ 175.612706][ T7803] __kmalloc_noprof+0xd2/0x510 [ 175.612738][ T7803] ? trace_cap_capable+0x18d/0x200 [ 175.612789][ T7803] sk_prot_alloc+0x1a8/0x2a0 [ 175.612822][ T7803] sk_alloc+0x36/0xc20 [ 175.612863][ T7803] packet_create+0x127/0x8e0 [ 175.612903][ T7803] __sock_create+0x335/0x8d0 [ 175.612942][ T7803] __sys_socket+0x14d/0x260 [ 175.612973][ T7803] ? __pfx___sys_socket+0x10/0x10 [ 175.613006][ T7803] ? xfd_validate_state+0x61/0x180 [ 175.613059][ T7803] __x64_sys_socket+0x72/0xb0 [ 175.613089][ T7803] ? lockdep_hardirqs_on+0x7c/0x110 [ 175.613129][ T7803] do_syscall_64+0xcd/0x490 [ 175.613174][ T7803] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.613212][ T7803] RIP: 0033:0x7fe88098eb69 [ 175.613244][ T7803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 175.613272][ T7803] RSP: 002b:00007fe8817e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 175.613301][ T7803] RAX: ffffffffffffffda RBX: 00007fe880bb5fa0 RCX: 00007fe88098eb69 [ 175.613321][ T7803] RDX: 0000000000000002 RSI: 0000000000000003 RDI: 0000000000000011 [ 175.613338][ T7803] RBP: 00007fe880a11df1 R08: 0000000000000000 R09: 0000000000000000 [ 175.613356][ T7803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 175.613374][ T7803] R13: 0000000000000000 R14: 00007fe880bb5fa0 R15: 00007ffe2d50b0f8 [ 175.613413][ T7803] [ 177.235114][ T7835] netlink: 206 bytes leftover after parsing attributes in process `syz.0.809'. [ 177.279450][ T7836] synth uevent: /module/orangefs: unknown uevent action string [ 178.280669][ T7868] input: f as /devices/virtual/input/input7 [ 178.964437][ T5849] Bluetooth: hci0: ACL packet too small [ 180.406618][ T5849] Bluetooth: hci1: ACL packet too small [ 182.168035][ T7923] kexec: Could not allocate control_code_buffer [ 183.067348][ T7978] synth uevent: /module/orangefs: unknown uevent action string [ 187.414442][ T8082] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 187.442140][ T8082] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 187.472212][ T8082] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 187.491268][ T8082] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 187.520549][ T8082] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 187.583436][ T8082] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 187.638216][ T8082] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 187.664150][ T8082] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 187.680241][ T8082] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 187.706801][ T8082] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 187.722092][ T8082] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 187.750145][ T8082] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 188.039675][ T8105] ovs_: entered promiscuous mode [ 188.961422][ T8132] binder: 8131:8132 ioctl c00c6211 0 returned -14 [ 189.422479][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 189.435689][ T8143] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 189.442417][ T8143] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 189.502657][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 189.661839][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 189.741873][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 189.780537][ T8154] FAULT_INJECTION: forcing a failure. [ 189.780537][ T8154] name failslab, interval 1, probability 0, space 0, times 0 [ 189.780584][ T8154] CPU: 1 UID: 0 PID: 8154 Comm: syz.3.943 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 189.780620][ T8154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 189.780636][ T8154] Call Trace: [ 189.780645][ T8154] [ 189.780656][ T8154] dump_stack_lvl+0x16c/0x1f0 [ 189.780703][ T8154] should_fail_ex+0x512/0x640 [ 189.780729][ T8154] ? __kmalloc_noprof+0xbf/0x510 [ 189.780764][ T8154] ? sk_prot_alloc+0x1a8/0x2a0 [ 189.780789][ T8154] should_failslab+0xc2/0x120 [ 189.780838][ T8154] __kmalloc_noprof+0xd2/0x510 [ 189.780882][ T8154] sk_prot_alloc+0x1a8/0x2a0 [ 189.780916][ T8154] sk_alloc+0x36/0xc20 [ 189.780958][ T8154] mctp_pf_create+0xe8/0x330 [ 189.781000][ T8154] __sock_create+0x335/0x8d0 [ 189.781041][ T8154] __sys_socket+0x14d/0x260 [ 189.781072][ T8154] ? __pfx___sys_socket+0x10/0x10 [ 189.781104][ T8154] ? xfd_validate_state+0x61/0x180 [ 189.781142][ T8154] ? __pfx___do_sys_prctl+0x10/0x10 [ 189.781197][ T8154] __x64_sys_socket+0x72/0xb0 [ 189.781228][ T8154] ? lockdep_hardirqs_on+0x7c/0x110 [ 189.781267][ T8154] do_syscall_64+0xcd/0x490 [ 189.781313][ T8154] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.781341][ T8154] RIP: 0033:0x7fe88098eb69 [ 189.781365][ T8154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 189.781390][ T8154] RSP: 002b:00007fe8817e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 189.781418][ T8154] RAX: ffffffffffffffda RBX: 00007fe880bb5fa0 RCX: 00007fe88098eb69 [ 189.781437][ T8154] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000002d [ 189.781453][ T8154] RBP: 00007fe880a11df1 R08: 0000000000000000 R09: 0000000000000000 [ 189.781469][ T8154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 189.781485][ T8154] R13: 0000000000000000 R14: 00007fe880bb5fa0 R15: 00007ffe2d50b0f8 [ 189.781526][ T8154] [ 191.495977][ T8217] ovs_: entered promiscuous mode [ 191.502104][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 191.581915][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 191.743106][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 191.822023][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 193.044917][ T8244] sctp: [Deprecated]: syz.0.977 (pid 8244) Use of struct sctp_assoc_value in delayed_ack socket option. [ 193.044917][ T8244] Use struct sctp_sack_info instead [ 193.355031][ T8256] netlink: 16 bytes leftover after parsing attributes in process `syz.0.981'. [ 193.582118][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 193.662053][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 193.706766][ T8218] kexec: Could not allocate control_code_buffer [ 193.822229][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 193.905069][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 194.196054][ T8273] zswap: compressor not available [ 195.410712][ T8305] FAULT_INJECTION: forcing a failure. [ 195.410712][ T8305] name failslab, interval 1, probability 0, space 0, times 0 [ 195.465298][ T8305] CPU: 0 UID: 0 PID: 8305 Comm: syz.2.1001 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 195.465341][ T8305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 195.465358][ T8305] Call Trace: [ 195.465369][ T8305] [ 195.465381][ T8305] dump_stack_lvl+0x16c/0x1f0 [ 195.465426][ T8305] should_fail_ex+0x512/0x640 [ 195.465453][ T8305] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 195.465492][ T8305] should_failslab+0xc2/0x120 [ 195.465530][ T8305] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 195.465562][ T8305] ? __pfx___might_resched+0x10/0x10 [ 195.465592][ T8305] ? __anon_vma_prepare+0xae/0x5e0 [ 195.465630][ T8305] __anon_vma_prepare+0xae/0x5e0 [ 195.465660][ T8305] ? __filemap_get_folio+0x32b/0xc30 [ 195.465703][ T8305] __vmf_anon_prepare+0x11c/0x240 [ 195.465749][ T8305] hugetlb_fault+0x1ba4/0x2f40 [ 195.465815][ T8305] ? __pfx_hugetlb_fault+0x10/0x10 [ 195.465883][ T8305] ? find_vma+0xbf/0x140 [ 195.465920][ T8305] ? __pfx_find_vma+0x10/0x10 [ 195.465963][ T8305] handle_mm_fault+0xbfa/0xd10 [ 195.465995][ T8305] ? __pkru_allows_pkey+0x51/0xb0 [ 195.466044][ T8305] do_user_addr_fault+0x7a6/0x1370 [ 195.466092][ T8305] ? rcu_is_watching+0x12/0xc0 [ 195.466127][ T8305] exc_page_fault+0x5c/0xb0 [ 195.466168][ T8305] asm_exc_page_fault+0x26/0x30 [ 195.466196][ T8305] RIP: 0010:rep_movs_alternative+0x11/0x90 [ 195.466230][ T8305] Code: e9 04 20 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 cd 1f 04 00 66 66 2e 0f [ 195.466257][ T8305] RSP: 0018:ffffc9001abffdb0 EFLAGS: 00050206 [ 195.466281][ T8305] RAX: 000000000000002f RBX: 0000000000000005 RCX: 0000000000000005 [ 195.466298][ T8305] RDX: ffffed1005fa3a80 RSI: ffff88802fd1d3fb RDI: 0000000000000000 [ 195.466316][ T8305] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed1005fa3a7f [ 195.466334][ T8305] R10: ffff88802fd1d3ff R11: 0000000000000001 R12: ffff88802fd1d3fb [ 195.466351][ T8305] R13: 0000000000000005 R14: 00007ffffffff000 R15: 0000000000000000 [ 195.466391][ T8305] _copy_to_user+0xbb/0xd0 [ 195.466428][ T8305] __do_sys_getcwd+0x483/0x930 [ 195.466479][ T8305] ? __pfx___do_sys_getcwd+0x10/0x10 [ 195.466524][ T8305] ? xfd_validate_state+0x61/0x180 [ 195.466565][ T8305] ? __pfx_ksys_write+0x10/0x10 [ 195.466613][ T8305] do_syscall_64+0xcd/0x490 [ 195.466659][ T8305] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.466688][ T8305] RIP: 0033:0x7fd59258eb69 [ 195.466710][ T8305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.466736][ T8305] RSP: 002b:00007fd5934ac038 EFLAGS: 00000246 ORIG_RAX: 000000000000004f [ 195.466761][ T8305] RAX: ffffffffffffffda RBX: 00007fd5927b5fa0 RCX: 00007fd59258eb69 [ 195.466779][ T8305] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000000 [ 195.466802][ T8305] RBP: 00007fd592611df1 R08: 0000000000000000 R09: 0000000000000000 [ 195.466819][ T8305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 195.466836][ T8305] R13: 0000000000000000 R14: 00007fd5927b5fa0 R15: 00007ffe706821b8 [ 195.466881][ T8305] [ 195.780111][ C0] vkms_vblank_simulate: vblank timer overrun [ 196.738589][ T8335] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 196.749465][ T8337] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 196.842015][ T8335] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 196.851527][ T8335] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 196.875729][ T8335] page_type: f5(slab) [ 196.894083][ T8335] raw: 00fff00000000040 ffff88801b842140 dead000000000100 dead000000000122 [ 196.930460][ T8335] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 196.962130][ T8335] head: 00fff00000000040 ffff88801b842140 dead000000000100 dead000000000122 [ 196.981363][ T8335] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 197.000258][ T8335] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 197.032814][ T8335] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 197.041543][ T8335] page dumped because: unmovable page [ 197.065660][ T8335] page_owner tracks the page as allocated [ 197.088666][ T8335] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 64, tgid 64 (kworker/u8:4), ts 170753686159, free_ts 170684126169 [ 197.127900][ T8335] post_alloc_hook+0x1c0/0x230 [ 197.133769][ T8335] get_page_from_freelist+0x132b/0x38e0 [ 197.139502][ T8335] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 197.149569][ T8335] alloc_pages_mpol+0x1fb/0x550 [ 197.154613][ T8335] new_slab+0x247/0x330 [ 197.159011][ T8335] ___slab_alloc+0xd1e/0x1780 [ 197.184652][ T8335] __slab_alloc.constprop.0+0x56/0xb0 [ 197.203020][ T8335] __kmalloc_node_track_caller_noprof+0x2ee/0x510 [ 197.209583][ T8335] kmalloc_reserve+0xef/0x2c0 [ 197.217691][ T8335] __alloc_skb+0x166/0x380 [ 197.227257][ T8335] nsim_dev_trap_report_work+0x2b1/0xcf0 [ 197.233178][ T8335] process_one_work+0x9cc/0x1b70 [ 197.239716][ T8335] worker_thread+0x6c8/0xf10 [ 197.247462][ T8335] kthread+0x3c5/0x780 [ 197.252996][ T8335] ret_from_fork+0x5d7/0x6f0 [ 197.275309][ T8335] ret_from_fork_asm+0x1a/0x30 [ 197.288018][ T8335] page last free pid 5855 tgid 5855 stack trace: [ 197.295860][ T8335] __free_frozen_pages+0x7d5/0x10f0 [ 197.301204][ T8335] qlist_free_all+0x4d/0x120 [ 197.308602][ T8335] kasan_quarantine_reduce+0x195/0x1e0 [ 197.315456][ T8335] __kasan_slab_alloc+0x69/0x90 [ 197.320569][ T8335] kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 197.341085][ T8335] getname_flags.part.0+0x4c/0x550 [ 197.354620][ T8335] getname_flags+0x93/0xf0 [ 197.364789][ T8335] do_sys_openat2+0xb8/0x1d0 [ 197.374304][ T8335] __x64_sys_openat+0x174/0x210 [ 197.381968][ T8335] do_syscall_64+0xcd/0x490 [ 197.390969][ T8335] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.633497][ T8374] Invalid ELF header magic: != ELF [ 199.589306][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.595812][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 202.197545][ T8477] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1075'. [ 202.376798][ T8481] device-mapper: ioctl: device name cannot be "control", ".", or ".." [ 208.849793][ T8682] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 209.079522][ T8693] bridge0: port 3(gretap0) entered blocking state [ 209.109056][ T8693] bridge0: port 3(gretap0) entered disabled state [ 209.132008][ T8693] gretap0: entered allmulticast mode [ 209.139596][ T8693] gretap0: entered promiscuous mode [ 209.160429][ T8693] bridge0: port 3(gretap0) entered blocking state [ 209.167420][ T8693] bridge0: port 3(gretap0) entered forwarding state [ 210.650378][ T8730] FAULT_INJECTION: forcing a failure. [ 210.650378][ T8730] name failslab, interval 1, probability 0, space 0, times 0 [ 210.812009][ T8730] CPU: 0 UID: 0 PID: 8730 Comm: syz.2.1168 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 210.812056][ T8730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 210.812074][ T8730] Call Trace: [ 210.812084][ T8730] [ 210.812095][ T8730] dump_stack_lvl+0x16c/0x1f0 [ 210.812144][ T8730] should_fail_ex+0x512/0x640 [ 210.812172][ T8730] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 210.812206][ T8730] should_failslab+0xc2/0x120 [ 210.812244][ T8730] __kmalloc_cache_noprof+0x6a/0x3e0 [ 210.812275][ T8730] ? do_epoll_create+0x62/0x480 [ 210.812311][ T8730] do_epoll_create+0x62/0x480 [ 210.812342][ T8730] __x64_sys_epoll_create+0x45/0x70 [ 210.812373][ T8730] do_syscall_64+0xcd/0x490 [ 210.812420][ T8730] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.812450][ T8730] RIP: 0033:0x7fd59258eb69 [ 210.812474][ T8730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.812502][ T8730] RSP: 002b:00007fd5934ac038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d5 [ 210.812530][ T8730] RAX: ffffffffffffffda RBX: 00007fd5927b5fa0 RCX: 00007fd59258eb69 [ 210.812559][ T8730] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 210.812576][ T8730] RBP: 00007fd592611df1 R08: 0000000000000000 R09: 0000000000000000 [ 210.812593][ T8730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 210.812610][ T8730] R13: 0000000000000000 R14: 00007fd5927b5fa0 R15: 00007ffe706821b8 [ 210.812651][ T8730] [ 215.244213][ T8856] nvme_fabrics: missing parameter 'transport=%s' [ 215.263314][ T8856] nvme_fabrics: missing parameter 'nqn=%s' [ 215.460169][ T8867] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1216'. [ 215.495890][ T8867] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1216'. [ 217.793509][ T8919] mtrr: base(0x100000000) is not aligned on a size(0x0000) boundary [ 217.851923][ T8928] FAULT_INJECTION: forcing a failure. [ 217.851923][ T8928] name failslab, interval 1, probability 0, space 0, times 0 [ 217.877713][ T8928] CPU: 1 UID: 0 PID: 8928 Comm: syz.1.1241 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 217.877766][ T8928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 217.877782][ T8928] Call Trace: [ 217.877792][ T8928] [ 217.877804][ T8928] dump_stack_lvl+0x16c/0x1f0 [ 217.877853][ T8928] should_fail_ex+0x512/0x640 [ 217.877879][ T8928] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 217.877912][ T8928] should_failslab+0xc2/0x120 [ 217.877948][ T8928] __kmalloc_cache_noprof+0x6a/0x3e0 [ 217.877977][ T8928] ? resv_map_alloc+0x7e/0x400 [ 217.878022][ T8928] resv_map_alloc+0x7e/0x400 [ 217.878060][ T8928] hugetlbfs_get_inode+0x33f/0x730 [ 217.878117][ T8928] hugetlb_file_setup+0x15b/0x620 [ 217.878155][ T8928] ksys_mmap_pgoff+0x189/0x5c0 [ 217.878204][ T8928] __x64_sys_mmap+0x125/0x190 [ 217.878252][ T8928] do_syscall_64+0xcd/0x490 [ 217.878299][ T8928] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 217.878327][ T8928] RIP: 0033:0x7f8689b8eb69 [ 217.878351][ T8928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 217.878379][ T8928] RSP: 002b:00007f86879f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 217.878405][ T8928] RAX: ffffffffffffffda RBX: 00007f8689db5fa0 RCX: 00007f8689b8eb69 [ 217.878424][ T8928] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 217.878441][ T8928] RBP: 00007f8689c11df1 R08: 0000000000000401 R09: 0000300000000000 [ 217.878459][ T8928] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 217.878475][ T8928] R13: 0000000000000000 R14: 00007f8689db5fa0 R15: 00007ffd6c1733c8 [ 217.878511][ T8928] [ 222.981180][ T9031] syz.1.1282 (9031) used greatest stack depth: 17528 bytes left [ 223.299648][ T9054] netlink: 350 bytes leftover after parsing attributes in process `syz.2.1292'. [ 223.948250][ T9074] ======================================================= [ 223.948250][ T9074] WARNING: The mand mount option has been deprecated and [ 223.948250][ T9074] and is ignored by this kernel. Remove the mand [ 223.948250][ T9074] option from the mount to silence this warning. [ 223.948250][ T9074] ======================================================= [ 224.716041][ T9092] XFS: Clearing xfsstats [ 225.458874][ T9124] netlink: 222 bytes leftover after parsing attributes in process `syz.0.1322'. [ 226.212457][ T9149] netlink: 'syz.1.1332': attribute type 2 has an invalid length. [ 226.563156][ T9162] raw_sendmsg: syz.2.1338 forgot to set AF_INET. Fix it! [ 226.742211][ T9170] netlink: 19 bytes leftover after parsing attributes in process `syz.1.1342'. [ 229.443978][ T9230] FAULT_INJECTION: forcing a failure. [ 229.443978][ T9230] name failslab, interval 1, probability 0, space 0, times 0 [ 229.502856][ T9230] CPU: 1 UID: 0 PID: 9230 Comm: syz.0.1369 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 229.502900][ T9230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 229.502918][ T9230] Call Trace: [ 229.502928][ T9230] [ 229.502939][ T9230] dump_stack_lvl+0x16c/0x1f0 [ 229.502987][ T9230] should_fail_ex+0x512/0x640 [ 229.503015][ T9230] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 229.503050][ T9230] should_failslab+0xc2/0x120 [ 229.503088][ T9230] __kmalloc_cache_noprof+0x6a/0x3e0 [ 229.503114][ T9230] ? find_held_lock+0x2b/0x80 [ 229.503143][ T9230] ? yama_ptracer_add+0x48/0x590 [ 229.503184][ T9230] yama_ptracer_add+0x48/0x590 [ 229.503218][ T9230] yama_task_prctl+0xf4/0x1d0 [ 229.503250][ T9230] security_task_prctl+0xbf/0x160 [ 229.503298][ T9230] __do_sys_prctl+0xaa/0x20e0 [ 229.503347][ T9230] ? __pfx___do_sys_prctl+0x10/0x10 [ 229.503416][ T9230] do_syscall_64+0xcd/0x490 [ 229.503463][ T9230] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.503493][ T9230] RIP: 0033:0x7f7bda18eb69 [ 229.503517][ T9230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.503544][ T9230] RSP: 002b:00007f7bdaf9c038 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 229.503572][ T9230] RAX: ffffffffffffffda RBX: 00007f7bda3b5fa0 RCX: 00007f7bda18eb69 [ 229.503592][ T9230] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000059616d61 [ 229.503610][ T9230] RBP: 00007f7bda211df1 R08: 0000000000000000 R09: 0000000000000000 [ 229.503626][ T9230] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 229.503643][ T9230] R13: 0000000000000000 R14: 00007f7bda3b5fa0 R15: 00007fffe7da9538 [ 229.503681][ T9230] [ 230.525459][ T30] audit: type=1800 audit(1843104587.870:4): pid=9257 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1381" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 230.789219][ T9263] FAULT_INJECTION: forcing a failure. [ 230.789219][ T9263] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 230.842232][ T9263] CPU: 1 UID: 0 PID: 9263 Comm: syz.3.1384 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 230.842274][ T9263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 230.842292][ T9263] Call Trace: [ 230.842302][ T9263] [ 230.842314][ T9263] dump_stack_lvl+0x16c/0x1f0 [ 230.842363][ T9263] should_fail_ex+0x512/0x640 [ 230.842393][ T9263] _copy_to_user+0x32/0xd0 [ 230.842430][ T9263] copy_siginfo_to_user+0x27/0xc0 [ 230.842471][ T9263] x64_setup_rt_frame+0x811/0xcf0 [ 230.842521][ T9263] ? __pfx_x64_setup_rt_frame+0x10/0x10 [ 230.842564][ T9263] ? do_send_specific+0x15c/0x370 [ 230.842607][ T9263] arch_do_signal_or_restart+0x5b4/0x790 [ 230.842653][ T9263] ? __task_pid_nr_ns+0x186/0x500 [ 230.842693][ T9263] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 230.842760][ T9263] exit_to_user_mode_loop+0x84/0x110 [ 230.842805][ T9263] do_syscall_64+0x3f6/0x490 [ 230.842853][ T9263] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.842882][ T9263] RIP: 0033:0x7fe88098eb69 [ 230.842906][ T9263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.842933][ T9263] RSP: 002b:00007fe8817e4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c8 [ 230.842961][ T9263] RAX: 0000000000000000 RBX: 00007fe880bb5fa0 RCX: 00007fe88098eb69 [ 230.842980][ T9263] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 00000000000002f9 [ 230.842996][ T9263] RBP: 00007fe880a11df1 R08: 0000000000000000 R09: 0000000000000000 [ 230.843013][ T9263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 230.843029][ T9263] R13: 0000000000000000 R14: 00007fe880bb5fa0 R15: 00007ffe2d50b0f8 [ 230.843067][ T9263] [ 231.265546][ T9270] zswap: compressor not available [ 232.276259][ T9303] __vm_enough_memory: pid: 9303, comm: syz.0.1399, bytes: 4398046511104 not enough memory for the allocation [ 234.511631][ T9372] XFS: Clearing xfsstats [ 236.332447][ T9430] netlink: 346 bytes leftover after parsing attributes in process `syz.2.1454'. [ 236.385735][ T9432] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1455'. [ 237.422512][ T9474] netlink: 'syz.3.1473': attribute type 1 has an invalid length. [ 239.861257][ T9539] __vm_enough_memory: pid: 9539, comm: syz.3.1498, bytes: 4398046511104 not enough memory for the allocation [ 241.403091][ T9572] netlink: 'syz.1.1508': attribute type 9 has an invalid length. [ 241.411149][ T9572] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1508'. [ 242.100713][ T9598] FAULT_INJECTION: forcing a failure. [ 242.100713][ T9598] name failslab, interval 1, probability 0, space 0, times 0 [ 242.144362][ T9598] CPU: 0 UID: 0 PID: 9598 Comm: syz.0.1518 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 242.144406][ T9598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 242.144423][ T9598] Call Trace: [ 242.144433][ T9598] [ 242.144445][ T9598] dump_stack_lvl+0x16c/0x1f0 [ 242.144494][ T9598] should_fail_ex+0x512/0x640 [ 242.144520][ T9598] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 242.144558][ T9598] should_failslab+0xc2/0x120 [ 242.144596][ T9598] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 242.144628][ T9598] ? __pfx_map_id_range_down+0x10/0x10 [ 242.144677][ T9598] ? __x64_sys_futex+0x1e0/0x4c0 [ 242.144712][ T9598] ? __x64_sys_futex+0x1e9/0x4c0 [ 242.144745][ T9598] ? prepare_creds+0x2c/0x7d0 [ 242.144795][ T9598] prepare_creds+0x2c/0x7d0 [ 242.144841][ T9598] __sys_setreuid+0x101/0xaf0 [ 242.144876][ T9598] ? rcu_is_watching+0x12/0xc0 [ 242.144910][ T9598] do_syscall_64+0xcd/0x490 [ 242.144956][ T9598] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 242.144985][ T9598] RIP: 0033:0x7f7bda18eb69 [ 242.145008][ T9598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 242.145035][ T9598] RSP: 002b:00007f7bdaf9c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000071 [ 242.145063][ T9598] RAX: ffffffffffffffda RBX: 00007f7bda3b5fa0 RCX: 00007f7bda18eb69 [ 242.145081][ T9598] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000000 [ 242.145097][ T9598] RBP: 00007f7bda211df1 R08: 0000000000000000 R09: 0000000000000000 [ 242.145114][ T9598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 242.145129][ T9598] R13: 0000000000000000 R14: 00007f7bda3b5fa0 R15: 00007fffe7da9538 [ 242.145170][ T9598] [ 243.870119][ T9651] netlink: 130 bytes leftover after parsing attributes in process `syz.0.1535'. [ 246.072552][ T9728] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1568'. [ 246.107145][ T9728] vlan1: entered allmulticast mode [ 246.113802][ T9728] veth0_vlan: entered allmulticast mode [ 247.115891][ T9757] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1582'. [ 247.167868][ T9763] dyndbg: bad flag-op , at start of  [ 247.177874][ T9763] dyndbg: flags parse failed [ 248.270976][ T9795] FAULT_INJECTION: forcing a failure. [ 248.270976][ T9795] name failslab, interval 1, probability 0, space 0, times 0 [ 248.297445][ T9795] CPU: 1 UID: 0 PID: 9795 Comm: syz.0.1595 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 248.297493][ T9795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 248.297511][ T9795] Call Trace: [ 248.297521][ T9795] [ 248.297532][ T9795] dump_stack_lvl+0x16c/0x1f0 [ 248.297582][ T9795] should_fail_ex+0x512/0x640 [ 248.297611][ T9795] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 248.297653][ T9795] should_failslab+0xc2/0x120 [ 248.297692][ T9795] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 248.297728][ T9795] ? __d_alloc+0x32/0xae0 [ 248.297771][ T9795] __d_alloc+0x32/0xae0 [ 248.297811][ T9795] path_from_stashed+0x427/0x750 [ 248.297855][ T9795] open_namespace+0x8d/0x190 [ 248.297885][ T9795] ? __pfx_open_namespace+0x10/0x10 [ 248.297919][ T9795] ? bpf_lsm_capable+0x9/0x10 [ 248.297951][ T9795] open_related_ns+0x41/0x70 [ 248.297980][ T9795] __tun_chr_ioctl+0x1fd1/0x48b0 [ 248.298012][ T9795] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 248.298064][ T9795] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 248.298102][ T9795] ? hook_file_ioctl_common+0x145/0x410 [ 248.298159][ T9795] ? __fget_files+0x20e/0x3c0 [ 248.298202][ T9795] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 248.298235][ T9795] __x64_sys_ioctl+0x18b/0x210 [ 248.298275][ T9795] do_syscall_64+0xcd/0x490 [ 248.298316][ T9795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.298343][ T9795] RIP: 0033:0x7f7bda18eb69 [ 248.298366][ T9795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.298391][ T9795] RSP: 002b:00007f7bdaf9c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 248.298418][ T9795] RAX: ffffffffffffffda RBX: 00007f7bda3b5fa0 RCX: 00007f7bda18eb69 [ 248.298436][ T9795] RDX: 0000000000005c8d RSI: 00000000000054e3 RDI: 00000000000000c8 [ 248.298452][ T9795] RBP: 00007f7bda211df1 R08: 0000000000000000 R09: 0000000000000000 [ 248.298477][ T9795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 248.298492][ T9795] R13: 0000000000000000 R14: 00007f7bda3b5fa0 R15: 00007fffe7da9538 [ 248.298534][ T9795] [ 248.611924][ T9799] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1597'. [ 249.011535][ T9814] CIFS: VFS: Invalid SecurityFlags: 0 [ 249.011535][ T9814] [ 249.480839][ T9833] 0x000000000001-0x000000020000 : "" [ 249.525368][ T9833] ftl_cs: FTL header corrupt! [ 249.649000][ T9838] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1614'. [ 250.052156][ T9850] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1619'. [ 252.738978][ T5849] Bluetooth: hci2: Malformed Event: 0x2f [ 253.929673][ T5849] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 258.312285][T10077] [U] [ 258.315335][T10077] [U] [ 258.318060][T10077] [U] [ 258.320797][T10077] [U] [ 258.362063][T10077] [U] [ 258.364836][T10077] [U] [ 258.367588][T10077] [U] [ 258.370324][T10077] [U] [ 258.415898][T10076] [U] [ 258.547428][T10085] netlink: 206 bytes leftover after parsing attributes in process `syz.1.1705'. [ 258.652337][T10089] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1707'. [ 259.304164][T10108] nbd: socks must be embedded in a SOCK_ITEM attr [ 259.345434][T10108] block nbd0: shutting down sockets [ 259.626601][T10116] base or size exceeds the MTRR width [ 260.409374][ T5849] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 260.496932][ T5849] Bluetooth: hci1: Malformed Event: 0x2f [ 261.028288][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.039883][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.200824][T10153] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1730'. [ 262.615964][ T5849] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 262.678073][T10183] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1742'. [ 264.426258][T10240] binder: BINDER_SET_CONTEXT_MGR already set [ 264.446345][T10240] binder: 10239:10240 ioctl 4018620d 9 returned -16 [ 266.833552][T10299] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1783'. [ 267.019959][T10305] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1785'. [ 268.791381][T10353] sctp: [Deprecated]: syz.2.1801 (pid 10353) Use of int in max_burst socket option deprecated. [ 268.791381][T10353] Use struct sctp_assoc_value instead [ 270.098217][T10399] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1825'. [ 270.628144][T10417] sock: sock_timestamping_bind_phc: sock not bind to device [ 273.268220][T10509] FAULT_INJECTION: forcing a failure. [ 273.268220][T10509] name failslab, interval 1, probability 0, space 0, times 0 [ 273.281198][T10509] CPU: 0 UID: 0 PID: 10509 Comm: syz.1.1875 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 273.281239][T10509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 273.281256][T10509] Call Trace: [ 273.281266][T10509] [ 273.281277][T10509] dump_stack_lvl+0x16c/0x1f0 [ 273.281326][T10509] should_fail_ex+0x512/0x640 [ 273.281353][T10509] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 273.281391][T10509] should_failslab+0xc2/0x120 [ 273.281427][T10509] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 273.281468][T10509] ? ptlock_alloc+0x1f/0x70 [ 273.281501][T10509] ptlock_alloc+0x1f/0x70 [ 273.281528][T10509] pte_alloc_one+0x82/0x3a0 [ 273.281559][T10509] do_pte_missing+0x1afc/0x3ba0 [ 273.281591][T10509] ? do_raw_spin_unlock+0x172/0x230 [ 273.281642][T10509] ? __pmd_alloc+0x3fb/0x930 [ 273.281686][T10509] __handle_mm_fault+0x152a/0x2a50 [ 273.281722][T10509] ? mt_find+0x3ef/0xa30 [ 273.281771][T10509] ? __pfx___handle_mm_fault+0x10/0x10 [ 273.281796][T10509] ? __pfx_mt_find+0x10/0x10 [ 273.281866][T10509] ? find_vma+0xbf/0x140 [ 273.281901][T10509] ? __pfx_find_vma+0x10/0x10 [ 273.281943][T10509] handle_mm_fault+0x589/0xd10 [ 273.281973][T10509] ? __pkru_allows_pkey+0x51/0xb0 [ 273.282028][T10509] do_user_addr_fault+0x7a6/0x1370 [ 273.282077][T10509] ? rcu_is_watching+0x12/0xc0 [ 273.282111][T10509] exc_page_fault+0x5c/0xb0 [ 273.282151][T10509] asm_exc_page_fault+0x26/0x30 [ 273.282179][T10509] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 273.282212][T10509] Code: c4 10 e9 04 20 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 cd 1f 04 00 66 66 [ 273.282237][T10509] RSP: 0018:ffffc90003defd70 EFLAGS: 00050202 [ 273.282275][T10509] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000004 [ 273.282293][T10509] RDX: fffff520007bdfbc RSI: 0000000000000000 RDI: ffffc90003defde0 [ 273.282311][T10509] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff520007bdfbc [ 273.282328][T10509] R10: 0000000000000003 R11: 0000000000000001 R12: 0000000000000000 [ 273.282344][T10509] R13: ffffc90003defde0 R14: 0000000000000000 R15: 0000000000000000 [ 273.282385][T10509] _copy_from_user+0x98/0xd0 [ 273.282420][T10509] do_sock_getsockopt+0x3ca/0x440 [ 273.282453][T10509] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 273.282480][T10509] ? __fget_files+0x204/0x3c0 [ 273.282532][T10509] __sys_getsockopt+0x123/0x1b0 [ 273.282582][T10509] __x64_sys_getsockopt+0xbd/0x160 [ 273.282621][T10509] ? do_syscall_64+0x91/0x490 [ 273.282661][T10509] ? lockdep_hardirqs_on+0x7c/0x110 [ 273.282701][T10509] do_syscall_64+0xcd/0x490 [ 273.282746][T10509] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.282774][T10509] RIP: 0033:0x7f8689b8eb69 [ 273.282796][T10509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 273.282822][T10509] RSP: 002b:00007f86879f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 273.282848][T10509] RAX: ffffffffffffffda RBX: 00007f8689db5fa0 RCX: 00007f8689b8eb69 [ 273.282866][T10509] RDX: 000000000000006d RSI: 0000000000000084 RDI: 0000000000000003 [ 273.282882][T10509] RBP: 00007f8689c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 273.282899][T10509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 273.282915][T10509] R13: 0000000000000000 R14: 00007f8689db5fa0 R15: 00007ffd6c1733c8 [ 273.282955][T10509] [ 274.531061][T10529] zero sized request [ 274.913698][T10546] sctp: [Deprecated]: syz.1.1889 (pid 10546) Use of int in max_burst socket option deprecated. [ 274.913698][T10546] Use struct sctp_assoc_value instead [ 277.395265][T10627] sctp: [Deprecated]: syz.3.1920 (pid 10627) Use of int in max_burst socket option deprecated. [ 277.395265][T10627] Use struct sctp_assoc_value instead [ 277.668185][T10636] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1925'. [ 277.788740][T10639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1926'. [ 278.726480][T10680] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 279.248047][T10684] zswap: compressor not available [ 281.887332][T10767] zswap: compressor 000 not available [ 283.726538][T10844] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2009'. [ 286.614924][T10957] tc_dump_action: action bad kind [ 287.186995][ T30] audit: type=1804 audit(1843104644.530:5): pid=10971 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2061" name=2F6E6577726F6F742F3539362F22050820 dev="tmpfs" ino=3039 res=1 errno=0 [ 287.251767][ T30] audit: type=1800 audit(1843104644.550:6): pid=10971 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2061" name=22050820 dev="tmpfs" ino=3039 res=0 errno=0 [ 287.296713][T10973] ptrace attach of "./syz-executor exec"[5837] was attempted by ""[10973] [ 288.981386][T11022] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78010 [ 288.991466][T11022] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 289.021021][T11022] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 289.031309][T11022] page_type: f5(slab) [ 289.035750][T11022] raw: 00fff00000000040 ffff88801b842140 dead000000000122 0000000000000000 [ 289.045085][T11022] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 289.054483][T11022] head: 00fff00000000040 ffff88801b842140 dead000000000122 0000000000000000 [ 289.066870][T11022] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 289.073830][T11027] nbd: socks must be embedded in a SOCK_ITEM attr [ 289.077662][T11022] head: 00fff00000000003 ffffea0001e00401 00000000ffffffff 00000000ffffffff [ 289.096228][T11022] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 289.105197][T11022] page dumped because: unmovable page [ 289.110692][T11022] page_owner tracks the page as allocated [ 289.119910][T11022] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5855, tgid 5855 (udevd), ts 279429211949, free_ts 279413343715 [ 289.143389][T11022] post_alloc_hook+0x1c0/0x230 [ 289.148223][T11022] get_page_from_freelist+0x132b/0x38e0 [ 289.154236][T11022] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 289.160190][T11022] alloc_pages_mpol+0x1fb/0x550 [ 289.166732][T11022] new_slab+0x247/0x330 [ 289.170938][T11022] ___slab_alloc+0xd1e/0x1780 [ 289.175785][T11022] __slab_alloc.constprop.0+0x56/0xb0 [ 289.177247][T11027] block nbd1: shutting down sockets [ 289.181199][T11022] __kmalloc_noprof+0x2f2/0x510 [ 289.192524][T11022] tomoyo_realpath_from_path+0xc2/0x6e0 [ 289.198138][T11022] tomoyo_path2_perm+0x36a/0x710 [ 289.203169][T11022] tomoyo_path_rename+0xfc/0x1a0 [ 289.208161][T11022] security_path_rename+0x18e/0x3c0 [ 289.213545][T11022] do_renameat2+0x735/0xc50 [ 289.218102][T11022] __x64_sys_rename+0x7d/0xa0 [ 289.223189][T11022] do_syscall_64+0xcd/0x490 [ 289.227757][T11022] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.233806][T11022] page last free pid 5212 tgid 5212 stack trace: [ 289.240163][T11022] __free_frozen_pages+0x7d5/0x10f0 [ 289.245567][T11022] __put_partials+0x165/0x1c0 [ 289.250297][T11022] qlist_free_all+0x4d/0x120 [ 289.255210][T11022] kasan_quarantine_reduce+0x195/0x1e0 [ 289.260724][T11022] __kasan_slab_alloc+0x69/0x90 [ 289.266617][T11022] __kmalloc_noprof+0x1d4/0x510 [ 289.272213][T11022] tomoyo_realpath_from_path+0xc2/0x6e0 [ 289.277818][T11022] tomoyo_path_perm+0x274/0x460 [ 289.282779][T11022] security_inode_getattr+0x116/0x290 [ 289.288202][T11022] vfs_fstat+0x4b/0xe0 [ 289.293051][T11022] __do_sys_newfstat+0x87/0x100 [ 289.297957][T11022] do_syscall_64+0xcd/0x490 [ 289.302561][T11022] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.917304][T11107] tc_dump_action: action bad kind [ 291.962828][T11111] ubi0: attaching mtd0 [ 291.970807][T11111] ubi0: scanning is finished [ 291.978370][T11111] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 292.239515][T11111] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 292.745547][T11129] usb usb8: usbfs: interface 0 claimed by hub while 'syz.2.2128' sets config #0 [ 294.358527][T11173] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2150'. [ 295.004043][T11192] ubi0: attaching mtd0 [ 295.015872][T11192] ubi0: scanning is finished [ 295.021311][T11192] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 295.176693][T11192] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 298.264522][T11283] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input9 [ 300.671816][T11358] warning: `syz.0.2229' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 302.325213][T11421] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input10 [ 302.632502][T11428] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2259'. [ 303.148770][T11450] process 'syz.1.2269' launched ':,' with NULL argv: empty string added [ 303.392652][T11457] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 303.816029][T11471] FAULT_INJECTION: forcing a failure. [ 303.816029][T11471] name failslab, interval 1, probability 0, space 0, times 0 [ 303.861782][T11471] CPU: 0 UID: 0 PID: 11471 Comm: syz.0.2279 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 303.861825][T11471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 303.861841][T11471] Call Trace: [ 303.861851][T11471] [ 303.861862][T11471] dump_stack_lvl+0x16c/0x1f0 [ 303.861910][T11471] should_fail_ex+0x512/0x640 [ 303.861945][T11471] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 303.861985][T11471] should_failslab+0xc2/0x120 [ 303.862023][T11471] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 303.862058][T11471] ? copy_process+0x4b6/0x7690 [ 303.862096][T11471] ? _raw_spin_unlock_irq+0x23/0x50 [ 303.862138][T11471] copy_process+0x4b6/0x7690 [ 303.862175][T11471] ? __pfx___futex_wait+0x10/0x10 [ 303.862237][T11471] ? __pfx_copy_process+0x10/0x10 [ 303.862270][T11471] ? futex_private_hash_put+0x176/0x300 [ 303.862309][T11471] ? futex_private_hash_put+0x18a/0x300 [ 303.862353][T11471] kernel_clone+0xfc/0x930 [ 303.862394][T11471] ? __pfx_kernel_clone+0x10/0x10 [ 303.862460][T11471] __do_sys_clone+0xce/0x120 [ 303.862497][T11471] ? __pfx___do_sys_clone+0x10/0x10 [ 303.862533][T11471] ? find_held_lock+0x2b/0x80 [ 303.862582][T11471] ? xfd_validate_state+0x61/0x180 [ 303.862640][T11471] do_syscall_64+0xcd/0x490 [ 303.862686][T11471] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 303.862715][T11471] RIP: 0033:0x7f7bda18eb69 [ 303.862738][T11471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 303.862766][T11471] RSP: 002b:00007f7bdaf9bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 303.862793][T11471] RAX: ffffffffffffffda RBX: 00007f7bda3b5fa0 RCX: 00007f7bda18eb69 [ 303.862812][T11471] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 303.862828][T11471] RBP: 00007f7bda211df1 R08: 0000000000000000 R09: 0000000000000000 [ 303.862845][T11471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 303.862862][T11471] R13: 0000000000000000 R14: 00007f7bda3b5fa0 R15: 00007fffe7da9538 [ 303.862904][T11471] [ 304.162513][T11476] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 304.618994][T11494] capability: warning: `syz.1.2289' uses 32-bit capabilities (legacy support in use) [ 306.296700][T11546] mmap: syz.2.2309 (11546) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 308.535093][T11621] FAULT_INJECTION: forcing a failure. [ 308.535093][T11621] name failslab, interval 1, probability 0, space 0, times 0 [ 308.554077][T11621] CPU: 0 UID: 0 PID: 11621 Comm: syz.1.2343 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 308.554122][T11621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 308.554139][T11621] Call Trace: [ 308.554149][T11621] [ 308.554160][T11621] dump_stack_lvl+0x16c/0x1f0 [ 308.554207][T11621] should_fail_ex+0x512/0x640 [ 308.554236][T11621] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 308.554275][T11621] should_failslab+0xc2/0x120 [ 308.554312][T11621] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 308.554346][T11621] ? alloc_inode+0xc3/0x240 [ 308.554391][T11621] alloc_inode+0xc3/0x240 [ 308.554429][T11621] path_from_stashed+0x25b/0x750 [ 308.554459][T11621] ? alloc_fd+0x471/0x7d0 [ 308.554494][T11621] pidfs_alloc_file+0xf8/0x290 [ 308.554539][T11621] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 308.554589][T11621] ? _raw_spin_unlock_irq+0x23/0x50 [ 308.554642][T11621] pidfd_prepare+0x112/0x1c0 [ 308.554682][T11621] __x64_sys_pidfd_open+0x105/0x1a0 [ 308.554728][T11621] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 308.554777][T11621] ? rcu_is_watching+0x12/0xc0 [ 308.554810][T11621] do_syscall_64+0xcd/0x490 [ 308.554855][T11621] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 308.554884][T11621] RIP: 0033:0x7f8689b8eb69 [ 308.554908][T11621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 308.554934][T11621] RSP: 002b:00007f86879f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 308.554961][T11621] RAX: ffffffffffffffda RBX: 00007f8689db5fa0 RCX: 00007f8689b8eb69 [ 308.554979][T11621] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 308.554995][T11621] RBP: 00007f8689c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 308.555012][T11621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 308.555028][T11621] R13: 0000000000000000 R14: 00007f8689db5fa0 R15: 00007ffd6c1733c8 [ 308.555066][T11621] [ 310.060375][T11673] block nbd9: NBD_DISCONNECT [ 310.412062][T11688] nbd: socks must be embedded in a SOCK_ITEM attr [ 310.423545][T11688] block nbd1: shutting down sockets syzkaller syzkaller login: [ 310.740146][T11703] Zero length message leads to an empty skb [ 313.100926][T11795] Device name cannot be null; rc = [-22] [ 313.314405][T11800] FAULT_INJECTION: forcing a failure. [ 313.314405][T11800] name failslab, interval 1, probability 0, space 0, times 0 [ 313.347572][T11800] CPU: 1 UID: 0 PID: 11800 Comm: syz.2.2417 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 313.347617][T11800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 313.347635][T11800] Call Trace: [ 313.347645][T11800] [ 313.347655][T11800] dump_stack_lvl+0x16c/0x1f0 [ 313.347700][T11800] should_fail_ex+0x512/0x640 [ 313.347726][T11800] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 313.347763][T11800] should_failslab+0xc2/0x120 [ 313.347798][T11800] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 313.347830][T11800] ? new_userfaultfd+0x79/0x3d0 [ 313.347882][T11800] new_userfaultfd+0x79/0x3d0 [ 313.347923][T11800] __x64_sys_userfaultfd+0x4b/0xb0 [ 313.347978][T11800] do_syscall_64+0xcd/0x490 [ 313.348025][T11800] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.348054][T11800] RIP: 0033:0x7fd59258eb69 [ 313.348079][T11800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 313.348106][T11800] RSP: 002b:00007fd5934ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000143 [ 313.348136][T11800] RAX: ffffffffffffffda RBX: 00007fd5927b5fa0 RCX: 00007fd59258eb69 [ 313.348155][T11800] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 313.348170][T11800] RBP: 00007fd592611df1 R08: 0000000000000000 R09: 0000000000000000 [ 313.348187][T11800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.348204][T11800] R13: 0000000000000000 R14: 00007fd5927b5fa0 R15: 00007ffe706821b8 [ 313.348243][T11800] [ 313.725197][T11810] sctp: [Deprecated]: syz.1.2422 (pid 11810) Use of int in maxseg socket option. [ 313.725197][T11810] Use struct sctp_assoc_value instead [ 314.363899][T11836] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 316.273008][T11906] [ 316.275373][T11906] ====================================================== [ 316.282391][T11906] WARNING: possible circular locking dependency detected [ 316.289407][T11906] 6.16.0-syzkaller-10499-g89748acdf226 #0 Not tainted [ 316.296168][T11906] ------------------------------------------------------ [ 316.303619][T11906] syz.1.2462/11906 is trying to acquire lock: [ 316.309680][T11906] ffffffff8e75a5c0 (fs_reclaim){+.+.}-{0:0}, at: prepare_alloc_pages+0x162/0x610 [ 316.318849][T11906] [ 316.318849][T11906] but task is already holding lock: [ 316.326214][T11906] ffffffff8e726d68 (pcpu_alloc_mutex){+.+.}-{4:4}, at: pcpu_alloc_noprof+0xb4c/0x1470 [ 316.335893][T11906] [ 316.335893][T11906] which lock already depends on the new lock. [ 316.335893][T11906] [ 316.346298][T11906] [ 316.346298][T11906] the existing dependency chain (in reverse order) is: [ 316.355307][T11906] [ 316.355307][T11906] -> #3 (pcpu_alloc_mutex){+.+.}-{4:4}: [ 316.363055][T11906] __mutex_lock+0x191/0x1070 [ 316.368183][T11906] pcpu_alloc_noprof+0xb4c/0x1470 [ 316.373737][T11906] sbitmap_init_node+0x2fd/0x770 [ 316.379220][T11906] sbitmap_queue_init_node+0x41/0x560 [ 316.385382][T11906] blk_mq_init_tags+0x12d/0x2b0 [ 316.390771][T11906] blk_mq_alloc_map_and_rqs+0x237/0xf60 [ 316.396851][T11906] blk_mq_init_sched+0x30c/0x610 [ 316.402318][T11906] elevator_switch+0x1e1/0x7f0 [ 316.407611][T11906] elevator_change+0x2ac/0x400 [ 316.412901][T11906] elevator_set_default+0x2c4/0x360 [ 316.418631][T11906] blk_register_queue+0x393/0x4f0 [ 316.424185][T11906] __add_disk+0x74a/0xf00 [ 316.429050][T11906] add_disk_fwnode+0x13f/0x5d0 [ 316.434352][T11906] nbd_dev_add+0x783/0xbb0 [ 316.439308][T11906] nbd_init+0x181/0x320 [ 316.443989][T11906] do_one_initcall+0x120/0x6e0 [ 316.449283][T11906] kernel_init_freeable+0x5c2/0x900 [ 316.455025][T11906] kernel_init+0x1c/0x2b0 [ 316.459882][T11906] ret_from_fork+0x5d7/0x6f0 [ 316.465011][T11906] ret_from_fork_asm+0x1a/0x30 [ 316.470303][T11906] [ 316.470303][T11906] -> #2 (&q->elevator_lock){+.+.}-{4:4}: [ 316.478135][T11906] __mutex_lock+0x191/0x1070 [ 316.483259][T11906] elevator_change+0x103/0x400 [ 316.488572][T11906] elv_iosched_store+0x2eb/0x3a0 [ 316.494042][T11906] queue_attr_store+0x268/0x310 [ 316.499417][T11906] sysfs_kf_write+0xef/0x150 [ 316.504545][T11906] kernfs_fop_write_iter+0x354/0x510 [ 316.510382][T11906] vfs_write+0x6c7/0x1150 [ 316.515327][T11906] ksys_write+0x12a/0x250 [ 316.520186][T11906] do_syscall_64+0xcd/0x490 [ 316.525229][T11906] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.531673][T11906] [ 316.531673][T11906] -> #1 (&q->q_usage_counter(io)#18){++++}-{0:0}: [ 316.540303][T11906] blk_alloc_queue+0x619/0x760 [ 316.545606][T11906] blk_mq_alloc_queue+0x172/0x280 [ 316.551172][T11906] __blk_mq_alloc_disk+0x29/0x120 [ 316.556738][T11906] loop_add+0x490/0xb70 [ 316.561426][T11906] loop_init+0x164/0x270 [ 316.566197][T11906] do_one_initcall+0x120/0x6e0 [ 316.571496][T11906] kernel_init_freeable+0x5c2/0x900 [ 316.577240][T11906] kernel_init+0x1c/0x2b0 [ 316.582099][T11906] ret_from_fork+0x5d7/0x6f0 [ 316.587226][T11906] ret_from_fork_asm+0x1a/0x30 [ 316.592517][T11906] [ 316.592517][T11906] -> #0 (fs_reclaim){+.+.}-{0:0}: [ 316.599737][T11906] __lock_acquire+0x126f/0x1c90 [ 316.605122][T11906] lock_acquire+0x179/0x350 [ 316.610157][T11906] fs_reclaim_acquire+0x102/0x150 [ 316.615717][T11906] prepare_alloc_pages+0x162/0x610 [ 316.621367][T11906] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 316.627788][T11906] __alloc_pages_noprof+0xb/0x1b0 [ 316.633343][T11906] pcpu_populate_chunk+0x110/0xb00 [ 316.638982][T11906] pcpu_alloc_noprof+0x86a/0x1470 [ 316.644530][T11906] bpf_map_alloc_percpu+0x9a/0x4b0 [ 316.650176][T11906] htab_map_alloc+0x10ca/0x1570 [ 316.655566][T11906] map_create+0x58f/0x1db0 [ 316.660518][T11906] __sys_bpf+0x44d2/0x4de0 [ 316.665475][T11906] __x64_sys_bpf+0x78/0xc0 [ 316.670425][T11906] do_syscall_64+0xcd/0x490 [ 316.675466][T11906] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.681884][T11906] [ 316.681884][T11906] other info that might help us debug this: [ 316.681884][T11906] [ 316.692108][T11906] Chain exists of: [ 316.692108][T11906] fs_reclaim --> &q->elevator_lock --> pcpu_alloc_mutex [ 316.692108][T11906] [ 316.704984][T11906] Possible unsafe locking scenario: [ 316.704984][T11906] [ 316.712431][T11906] CPU0 CPU1 [ 316.717792][T11906] ---- ---- [ 316.723154][T11906] lock(pcpu_alloc_mutex); [ 316.727665][T11906] lock(&q->elevator_lock); [ 316.734781][T11906] lock(pcpu_alloc_mutex); [ 316.741807][T11906] lock(fs_reclaim); [ 316.745793][T11906] [ 316.745793][T11906] *** DEADLOCK *** [ 316.745793][T11906] [ 316.753935][T11906] 1 lock held by syz.1.2462/11906: [ 316.759044][T11906] #0: ffffffff8e726d68 (pcpu_alloc_mutex){+.+.}-{4:4}, at: pcpu_alloc_noprof+0xb4c/0x1470 [ 316.769162][T11906] [ 316.769162][T11906] stack backtrace: [ 316.775053][T11906] CPU: 1 UID: 0 PID: 11906 Comm: syz.1.2462 Not tainted 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 316.775082][T11906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 316.775095][T11906] Call Trace: [ 316.775102][T11906] [ 316.775110][T11906] dump_stack_lvl+0x116/0x1f0 [ 316.775142][T11906] print_circular_bug+0x275/0x350 [ 316.775169][T11906] check_noncircular+0x14c/0x170 [ 316.775198][T11906] __lock_acquire+0x126f/0x1c90 [ 316.775226][T11906] ? find_held_lock+0x2b/0x80 [ 316.775248][T11906] lock_acquire+0x179/0x350 [ 316.775275][T11906] ? prepare_alloc_pages+0x162/0x610 [ 316.775310][T11906] fs_reclaim_acquire+0x102/0x150 [ 316.775340][T11906] ? prepare_alloc_pages+0x162/0x610 [ 316.775371][T11906] prepare_alloc_pages+0x162/0x610 [ 316.775401][T11906] ? __pick_eevdf+0x30a/0x670 [ 316.775426][T11906] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 316.775453][T11906] ? check_preempt_wakeup_fair+0x51e/0x9d0 [ 316.775489][T11906] ? find_held_lock+0x2b/0x80 [ 316.775510][T11906] ? try_to_wake_up+0xa25/0x1680 [ 316.775543][T11906] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 316.775568][T11906] ? do_raw_spin_unlock+0x172/0x230 [ 316.775600][T11906] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 316.775630][T11906] ? try_to_wake_up+0x157/0x1680 [ 316.775664][T11906] ? __pfx_try_to_wake_up+0x10/0x10 [ 316.775698][T11906] ? find_held_lock+0x2b/0x80 [ 316.775716][T11906] ? find_held_lock+0x2b/0x80 [ 316.775739][T11906] __alloc_pages_noprof+0xb/0x1b0 [ 316.775768][T11906] pcpu_populate_chunk+0x110/0xb00 [ 316.775790][T11906] ? mark_held_locks+0x49/0x80 [ 316.775815][T11906] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 316.775844][T11906] pcpu_alloc_noprof+0x86a/0x1470 [ 316.775873][T11906] bpf_map_alloc_percpu+0x9a/0x4b0 [ 316.775901][T11906] htab_map_alloc+0x10ca/0x1570 [ 316.775940][T11906] map_create+0x58f/0x1db0 [ 316.775972][T11906] ? __pfx_map_create+0x10/0x10 [ 316.775999][T11906] ? __might_fault+0xe3/0x190 [ 316.776021][T11906] ? __might_fault+0xe3/0x190 [ 316.776043][T11906] ? __might_fault+0x13b/0x190 [ 316.776070][T11906] __sys_bpf+0x44d2/0x4de0 [ 316.776102][T11906] ? __pfx___sys_bpf+0x10/0x10 [ 316.776136][T11906] ? do_futex+0x122/0x350 [ 316.776162][T11906] ? __pfx_do_futex+0x10/0x10 [ 316.776192][T11906] ? __do_sys_close_range+0x278/0x730 [ 316.776218][T11906] ? xfd_validate_state+0x61/0x180 [ 316.776247][T11906] ? __pfx___do_sys_close_range+0x10/0x10 [ 316.776273][T11906] __x64_sys_bpf+0x78/0xc0 [ 316.776304][T11906] ? lockdep_hardirqs_on+0x7c/0x110 [ 316.776333][T11906] do_syscall_64+0xcd/0x490 [ 316.776364][T11906] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.776386][T11906] RIP: 0033:0x7f8689b8eb69 [ 316.776403][T11906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 316.776423][T11906] RSP: 002b:00007f86879f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 316.776444][T11906] RAX: ffffffffffffffda RBX: 00007f8689db5fa0 RCX: 00007f8689b8eb69 [ 316.776458][T11906] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000000 [ 316.776472][T11906] RBP: 00007f8689c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 316.776485][T11906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 316.776498][T11906] R13: 0000000000000000 R14: 00007f8689db5fa0 R15: 00007ffd6c1733c8 [ 316.776519][T11906] [ 322.463891][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.470456][ T1305] ieee802154 phy1 wpan1: encryption failed: -22