last executing test programs: 6m36.496076716s ago: executing program 0 (id=752): socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto(0x3, 0x89e2, 0x91) ioctl$auto(0x3, 0x89e1, 0x91) 6m36.363568794s ago: executing program 0 (id=754): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x801, 0x84) io_uring_setup$auto(0x12, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x14, 0x0, 0x8) 6m36.13846441s ago: executing program 0 (id=759): socket(0x2, 0x3, 0x6) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) syz_clone(0x2360411, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x0, 0x31, 0x0, 0x28) 6m35.778311626s ago: executing program 0 (id=763): mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) setsockopt$auto(0x4, 0x88, 0x1, &(0x7f0000000000)='!/*:(*\'\x00', 0xe) 6m35.582287084s ago: executing program 0 (id=765): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) madvise$auto(0x0, 0xffffffffffff0001, 0x15) rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) 6m34.597083703s ago: executing program 0 (id=774): mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) r0 = io_uring_setup$auto(0x6, 0x0) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC0\x00', 0x802, 0x0) ioctl$auto(r1, 0xc1205531, r0) 6m34.165880701s ago: executing program 32 (id=774): mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) r0 = io_uring_setup$auto(0x6, 0x0) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC0\x00', 0x802, 0x0) ioctl$auto(r1, 0xc1205531, r0) 4m25.151387405s ago: executing program 2 (id=2209): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="013bbc40a8e71953412f0d"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) 4m24.503337493s ago: executing program 2 (id=2217): socket(0x1d, 0x2, 0x6) r0 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1, 0xfd}, 0x6a) write$auto(0x3, 0x0, 0xfdef) 4m24.204952283s ago: executing program 2 (id=2222): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0) r1 = openat$auto_severities_coverage_fops_severity(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) preadv$auto(r1, &(0x7f0000000200)={&(0x7f0000000100)="3c84a0e010ee2ed9bb978ec647331e63198384796b270c5201cf6d391422e1eb76f44484232adb7435f77bb54935530098d949828a4eeead56493e714c38b7206dcd28d57208164eb84e7d33adf464ad265000fa580cb2c497048898d1f292b23269618e81cf8cf09920ed9d6e883bb64e9599851d3ab93a2491f48552dc6b8347fd3e443b9f6c98374f27448878bcfd32e785fc139f6dbd474c48605d5746dafe97bfdb53ca06903588adc19ef8f99fdbd600ff2a22a0535eae1d56cf0c72104223f21ecc14f59624b490670cb295e466660151bf08cb044a753b1166c06db5e2fc94e2d841faf3a484", 0x8000000000000000}, 0xfffffffffffffff8, 0x6, 0x10001) ioctl$auto(r0, 0x540a, 0x0) write$auto(0x3, 0x0, 0xfdf3) 4m23.785521632s ago: executing program 2 (id=2225): mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) socket(0xa, 0x5, 0x0) socket(0xa, 0x801, 0x84) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) 4m23.503023906s ago: executing program 2 (id=2228): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) tkill$auto(0x1, 0x7) 4m22.093996054s ago: executing program 2 (id=2243): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x4000) mprotect$auto(0x1ffff000, 0x8000000000000000, 0x4) ppoll$auto(0x0, 0x31, &(0x7f0000000080)={0x1, 0xfffffffffffffffa}, 0x0, 0x99) 4m21.688712734s ago: executing program 33 (id=2243): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x4000) mprotect$auto(0x1ffff000, 0x8000000000000000, 0x4) ppoll$auto(0x0, 0x31, &(0x7f0000000080)={0x1, 0xfffffffffffffffa}, 0x0, 0x99) 4.200530532s ago: executing program 3 (id=5038): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9) io_uring_setup$auto(0x1, 0x0) connect$auto(0x3, 0x0, 0x56) 3.821458964s ago: executing program 3 (id=5042): socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xfffffffffffffc5a, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x6044814}, 0x4000000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1300"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.126962654s ago: executing program 5 (id=5043): mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0) mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', 0x0, 0xfffd, 0x0) mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', 0x0, 0xfffd, 0x0) 3.126864113s ago: executing program 3 (id=5045): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x4000008000) read$auto_fragmentation_threshold_ops_(0xffffffffffffffff, &(0x7f0000000040)=""/83, 0x53) prctl$auto(0x41, 0x1, 0x3, 0x2000000003, 0x7) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) write$auto(0x3, 0x0, 0x100082) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) link$auto(&(0x7f0000003240)='./file0\x00', &(0x7f0000003280)='./file2\x00') 2.962322883s ago: executing program 5 (id=5046): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) unshare$auto(0x20000080) sysfs$auto(0x2, 0x4, 0x4) mincore$auto(0x1000, 0x8001, 0x0) r0 = io_uring_setup$auto(0x877, 0x0) io_uring_enter$auto(r0, 0x3, 0xcd01, 0x7, 0x0, 0xffffffffffffffff) 2.870088178s ago: executing program 3 (id=5047): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x100000, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x2) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) clone$auto(0x9, 0x3, 0x0, 0x0, 0x7) 2.787505804s ago: executing program 5 (id=5048): set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) uname$auto(0x0) clone$auto(0x81000005, 0x6, 0xfffffffffffffffd, 0xffffffffffffffff, 0x80000001) move_pages$auto(0x0, 0xd0, 0x0, &(0x7f0000001140), 0x0, 0x2) 2.68740748s ago: executing program 4 (id=5049): mmap$auto(0x0, 0x20008, 0xdf, 0x9b72, 0x2, 0x8000) getpeername$auto(0x3, 0x0, 0x0) syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r0 = openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x82000, 0x0) pread64$auto(r0, 0x0, 0x80000000, 0x3) 2.403267908s ago: executing program 4 (id=5050): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) sendto$auto(0x3, 0x0, 0xfffffffffffffdef, 0x101, 0x0, 0x1c) ioctl$auto(0x3, 0x80000541b, 0x38) 2.085774223s ago: executing program 4 (id=5052): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002f40), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_GET(r0, &(0x7f0000003080)={0x0, 0x0, &(0x7f0000003040)={&(0x7f0000001b00)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="ffff2b2c9e088fdbdf250b0000001800018014000200776731"], 0x2c}, 0x1, 0x0, 0x0, 0x20004800}, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x7f, 0x1, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_JOIN_OCB(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x14, 0x0, 0x4, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x44040}, 0x20c0) 1.896371551s ago: executing program 3 (id=5055): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) faccessat2$auto(0x1, &(0x7f0000000040)='\x00', 0x4, 0x1000) 1.801487324s ago: executing program 1 (id=5056): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x0, 0x0) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/fail_io_timeout/probability\x00', 0x20000, 0x0) read$auto(0x3, 0x0, 0x80) r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0) write$auto(r0, 0x0, 0x9) 1.729240097s ago: executing program 5 (id=5057): sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000080)={0x30, 0x0, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@OVS_METER_ATTR_CLEAR={0x4}, @OVS_METER_ATTR_CLEAR={0x4}, @OVS_METER_ATTR_BANDS={0x8, 0x4, 0x0, 0x1, [@generic="c1826f76"]}, @OVS_METER_ATTR_USED={0xc, 0x5, 0x3}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x20040890) prctl$auto(0x4537, 0x0, 0xffffffffffffffff, 0x40, 0xb766) r0 = mq_open$auto(&(0x7f0000000300)='ovs_meter\x00', 0x3ff, 0x8, &(0x7f0000000340)={0x6, 0xd, 0x8, 0xbf}) mmap$auto(0x1, 0x8, 0x1, 0x17, r0, 0x7) r1 = clone$auto(0x6, 0x9, &(0x7f00000003c0)=0x7, &(0x7f0000000400)=0x100, 0xe08) move_pages$auto(r1, 0x9d27, 0x0, &(0x7f0000000580)=0x49d, &(0x7f00000005c0)=0x3, 0xf) mq_timedreceive$auto(r0, &(0x7f0000001740)='\x00', 0x5, &(0x7f0000001780), 0x0) 1.624330385s ago: executing program 4 (id=5058): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) set_tid_address$auto(0x0) getegid() 1.53318428s ago: executing program 1 (id=5059): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x183800, 0x0) pidfd_open$auto(0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyqd\x00', 0x20080, 0x0) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0) write$auto(0x3, 0x0, 0xfffffdef) 1.306090118s ago: executing program 1 (id=5060): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) unshare$auto(0x20000080) sysfs$auto(0x2, 0x4, 0x4) mincore$auto(0x1000, 0x8001, 0x0) r0 = io_uring_setup$auto(0x877, 0x0) io_uring_enter$auto(r0, 0x3, 0xcd01, 0x7, 0x0, 0xffffffffffffffff) 1.118495548s ago: executing program 1 (id=5061): select$auto(0x5, &(0x7f0000000080)={[0x400020000008, 0xfffffffffffffffc, 0x7, 0x6, 0xc, 0x3, 0x3, 0x1ffe000, 0xcad, 0x2, 0x9, 0xf, 0xa657, 0x202, 0xd3, 0x1]}, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) read$auto(0x3, 0x0, 0x80) 1.020044819s ago: executing program 5 (id=5062): sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00{', @ANYRES16=0x0, @ANYBLOB="000326bd7000fedbdf2502000000080027000e0000000a0010"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 943.431595ms ago: executing program 1 (id=5063): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x1ffff000, 0x7, 0x100000000) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) shmget$auto(0x8, 0x10563, 0x568d1af2) madvise$auto(0x0, 0xffffffffffff0004, 0x19) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) 515.813906ms ago: executing program 5 (id=5064): openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x29, 0x2, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) sendfile$auto(0x6, 0x3, 0x0, 0xfffffdef) 513.436455ms ago: executing program 4 (id=5072): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x5, 0x0) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x5, 0x0) semctl$auto(0x1ff, 0x2, 0x13, 0x1) getsockopt$auto(0x6, 0x84, 0x22, 0x0, 0x0) 113.903923ms ago: executing program 3 (id=5065): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x801, 0x106) getrandom$auto(0x0, 0x6000000, 0x3) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x3, 0x8, 0xc, 0x2e, 0x0, 0x3}, 0x6f4) bpf$auto(0x1, &(0x7f00000001c0)=@bpf_attr_1={0x3, 0xca99, @value=0x7, 0xa}, 0xc) 111.480787ms ago: executing program 4 (id=5066): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0x20499d, 0x9) 0s ago: executing program 1 (id=5067): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[], 0x1d0}}, 0x4000000) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="cb5b2cbd7000ffdbdf251f000000050006000900000005000400000000000800030009000000080002007f"], 0x34}}, 0x82) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x4000000) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.10.12' (ED25519) to the list of known hosts. [ 68.605094][ T5820] cgroup: Unknown subsys name 'net' [ 68.748396][ T5820] cgroup: Unknown subsys name 'cpuset' [ 68.756447][ T5820] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 70.147664][ T5820] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 71.871563][ T5831] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 71.893565][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.906693][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.926239][ T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 71.935138][ T5836] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 71.942753][ T5836] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 71.965961][ T5836] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 71.984788][ T5836] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 72.002847][ T5836] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 72.015287][ T5836] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 72.023755][ T5836] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 72.024830][ T5840] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 72.032429][ T5836] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 72.039678][ T5840] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 72.047004][ T5836] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 72.055487][ T5840] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 72.086914][ T5836] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 72.094901][ T5836] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 72.099983][ T5831] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 72.111999][ T5831] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 72.112341][ T5836] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 72.127639][ T5836] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 72.144687][ T5835] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 72.154500][ T5835] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 72.162904][ T5835] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 72.170360][ T5835] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 72.459445][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 72.488831][ T5833] chnl_net:caif_netlink_parms(): no params data found [ 72.644241][ T5837] chnl_net:caif_netlink_parms(): no params data found [ 72.664714][ T5841] chnl_net:caif_netlink_parms(): no params data found [ 72.693647][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.700989][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state [ 72.709177][ T5833] bridge_slave_0: entered allmulticast mode [ 72.716985][ T5833] bridge_slave_0: entered promiscuous mode [ 72.735700][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.742822][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 72.750129][ T5829] bridge_slave_0: entered allmulticast mode [ 72.756815][ T5829] bridge_slave_0: entered promiscuous mode [ 72.771717][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.778850][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 72.786610][ T5829] bridge_slave_1: entered allmulticast mode [ 72.793198][ T5829] bridge_slave_1: entered promiscuous mode [ 72.811228][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.818444][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state [ 72.825984][ T5833] bridge_slave_1: entered allmulticast mode [ 72.832645][ T5833] bridge_slave_1: entered promiscuous mode [ 72.870089][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 72.890766][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 72.915719][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 72.927485][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 72.997528][ T5833] team0: Port device team_slave_0 added [ 73.021911][ T5829] team0: Port device team_slave_0 added [ 73.030125][ T5833] team0: Port device team_slave_1 added [ 73.052677][ T5829] team0: Port device team_slave_1 added [ 73.068652][ T5841] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.076006][ T5841] bridge0: port 1(bridge_slave_0) entered disabled state [ 73.083187][ T5841] bridge_slave_0: entered allmulticast mode [ 73.090913][ T5841] bridge_slave_0: entered promiscuous mode [ 73.098395][ T5841] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.105721][ T5841] bridge0: port 2(bridge_slave_1) entered disabled state [ 73.112958][ T5841] bridge_slave_1: entered allmulticast mode [ 73.120612][ T5841] bridge_slave_1: entered promiscuous mode [ 73.127593][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.134999][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state [ 73.142225][ T5837] bridge_slave_0: entered allmulticast mode [ 73.149141][ T5837] bridge_slave_0: entered promiscuous mode [ 73.190424][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.198079][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state [ 73.205554][ T5837] bridge_slave_1: entered allmulticast mode [ 73.212126][ T5837] bridge_slave_1: entered promiscuous mode [ 73.230352][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 73.241593][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 73.270219][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 73.285380][ T5841] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 73.301500][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 73.308829][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 73.335148][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 73.347722][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 73.355093][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 73.381187][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 73.393967][ T5841] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 73.419074][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 73.426520][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 73.453212][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 73.489862][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 73.517058][ T5841] team0: Port device team_slave_0 added [ 73.524961][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 73.577202][ T5841] team0: Port device team_slave_1 added [ 73.585800][ T5837] team0: Port device team_slave_0 added [ 73.596025][ T5833] hsr_slave_0: entered promiscuous mode [ 73.602370][ T5833] hsr_slave_1: entered promiscuous mode [ 73.613783][ T5829] hsr_slave_0: entered promiscuous mode [ 73.620263][ T5829] hsr_slave_1: entered promiscuous mode [ 73.626983][ T5829] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 73.635263][ T5829] Cannot create hsr debugfs directory [ 73.658783][ T5837] team0: Port device team_slave_1 added [ 73.682213][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 73.689586][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 73.715670][ T5841] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 73.728927][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 73.736432][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 73.762496][ T5841] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 73.786972][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 73.793949][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 73.820419][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 73.836660][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 73.843729][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 73.870775][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 73.955551][ T5837] hsr_slave_0: entered promiscuous mode [ 73.962355][ T5837] hsr_slave_1: entered promiscuous mode [ 73.968451][ T5837] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 73.976385][ T5837] Cannot create hsr debugfs directory [ 73.998322][ T5841] hsr_slave_0: entered promiscuous mode [ 74.005437][ T5841] hsr_slave_1: entered promiscuous mode [ 74.011592][ T5841] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 74.019945][ T5841] Cannot create hsr debugfs directory [ 74.115179][ T5835] Bluetooth: hci0: command tx timeout [ 74.120823][ T5840] Bluetooth: hci1: command tx timeout [ 74.194612][ T5840] Bluetooth: hci3: command tx timeout [ 74.194618][ T5835] Bluetooth: hci2: command tx timeout [ 74.274642][ T5833] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 74.296134][ T5833] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 74.308939][ T5833] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 74.330339][ T5833] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 74.368552][ T5829] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 74.377966][ T5829] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 74.391726][ T5829] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 74.410084][ T5829] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 74.466972][ T5837] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 74.476979][ T5837] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 74.495670][ T5837] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 74.527404][ T5837] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 74.573450][ T5841] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 74.589843][ T5841] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 74.608430][ T5841] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 74.626932][ T5841] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 74.686321][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0 [ 74.748173][ T5833] 8021q: adding VLAN 0 to HW filter on device team0 [ 74.787150][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 74.797221][ T1146] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.804607][ T1146] bridge0: port 1(bridge_slave_0) entered forwarding state [ 74.832255][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.839975][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 74.858070][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0 [ 74.923119][ T5837] 8021q: adding VLAN 0 to HW filter on device team0 [ 74.935786][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 74.956189][ T62] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.963428][ T62] bridge0: port 1(bridge_slave_0) entered forwarding state [ 74.992476][ T62] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.000016][ T62] bridge0: port 1(bridge_slave_0) entered forwarding state [ 75.015958][ T62] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.023136][ T62] bridge0: port 2(bridge_slave_1) entered forwarding state [ 75.039375][ T62] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.046566][ T62] bridge0: port 2(bridge_slave_1) entered forwarding state [ 75.067426][ T5841] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.171196][ T5841] 8021q: adding VLAN 0 to HW filter on device team0 [ 75.211884][ T62] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.219471][ T62] bridge0: port 1(bridge_slave_0) entered forwarding state [ 75.234418][ T62] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.241680][ T62] bridge0: port 2(bridge_slave_1) entered forwarding state [ 75.319374][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 75.425121][ T5833] veth0_vlan: entered promiscuous mode [ 75.445995][ T5833] veth1_vlan: entered promiscuous mode [ 75.513322][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 75.543109][ T5833] veth0_macvtap: entered promiscuous mode [ 75.575988][ T5833] veth1_macvtap: entered promiscuous mode [ 75.633112][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 75.655806][ T5841] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 75.670419][ T5829] veth0_vlan: entered promiscuous mode [ 75.678804][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 75.693024][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 75.726203][ T5833] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.736007][ T5833] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.745309][ T5833] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.754682][ T5833] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.795525][ T5829] veth1_vlan: entered promiscuous mode [ 75.821747][ T5841] veth0_vlan: entered promiscuous mode [ 75.842104][ T5837] veth0_vlan: entered promiscuous mode [ 75.867025][ T5837] veth1_vlan: entered promiscuous mode [ 75.876614][ T5841] veth1_vlan: entered promiscuous mode [ 75.929876][ T5829] veth0_macvtap: entered promiscuous mode [ 75.963565][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.966067][ T5829] veth1_macvtap: entered promiscuous mode [ 75.978850][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.027001][ T5841] veth0_macvtap: entered promiscuous mode [ 76.037356][ T5841] veth1_macvtap: entered promiscuous mode [ 76.060671][ T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.066404][ T5837] veth0_macvtap: entered promiscuous mode [ 76.069120][ T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.092180][ T5829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.105860][ T5829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.119096][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 76.132706][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.143634][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.155876][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.172154][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.183665][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 76.200442][ T5835] Bluetooth: hci0: command tx timeout [ 76.200533][ T5840] Bluetooth: hci1: command tx timeout [ 76.209543][ T5829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.226458][ T5829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.239068][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.252099][ T5837] veth1_macvtap: entered promiscuous mode [ 76.252936][ T5833] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 76.277906][ T5840] Bluetooth: hci2: command tx timeout [ 76.280296][ T5829] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.292932][ T5840] Bluetooth: hci3: command tx timeout [ 76.304821][ T5829] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.313948][ T5829] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.323283][ T5829] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.336157][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.347243][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.358120][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.368984][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.379998][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.390409][ T5841] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.399951][ T5841] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.410446][ T5841] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.419490][ T5841] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.488034][ T5892] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 76.542615][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.554166][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.566896][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.579030][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.592132][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.607680][ T5894] Zero length message leads to an empty skb [ 76.610115][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.625423][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 76.709992][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.726529][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.745736][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.770276][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.780627][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.791877][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.810133][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.828785][ T5837] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.838014][ T5837] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.847626][ T5837] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.856815][ T5837] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.938692][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.948451][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.027305][ T1093] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.038022][ T1093] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.057309][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.096955][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.118632][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.137041][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.169390][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.190507][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.269238][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.277625][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.274685][ T5840] Bluetooth: hci0: command tx timeout [ 78.275125][ T5835] Bluetooth: hci1: command tx timeout [ 78.354549][ T5835] Bluetooth: hci3: command tx timeout [ 78.361078][ T5835] Bluetooth: hci2: command tx timeout [ 78.645649][ T5949] Process accounting resumed [ 80.354379][ T5835] Bluetooth: hci0: command tx timeout [ 80.354466][ T5840] Bluetooth: hci1: command tx timeout [ 80.434436][ T5840] Bluetooth: hci2: command tx timeout [ 80.444367][ T5840] Bluetooth: hci3: command tx timeout [ 80.988794][ T6013] process 'syz.2.53' launched './file0' with NULL argv: empty string added [ 81.196523][ T6017] syz.3.55 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 84.002542][ T6078] Process accounting resumed [ 87.365703][ T91] cfg80211: failed to load regulatory.db [ 87.908735][ T6169] [U] [ 87.912210][ T6169] [U] [ 87.914968][ T6169] [U] [ 87.917796][ T6169] [U] [ 87.945422][ T6169] [U] [ 87.948467][ T6169] [U] [ 87.951655][ T6169] [U] [ 87.954970][ T6169] [U] [ 87.987645][ T6169] [U] [ 87.990422][ T6169] [U] [ 87.993152][ T6169] [U] [ 87.995883][ T6169] [U] [ 88.047355][ T6169] [U] [ 88.050120][ T6169] [U] [ 88.052869][ T6169] [U] [ 88.055726][ T6169] [U] [ 88.094530][ T6169] [U] [ 88.097690][ T6169] [U] [ 88.100555][ T6169] [U] [ 88.103559][ T6169] [U] [ 88.154414][ T6169] [U] [ 88.157272][ T6169] [U] [ 88.160119][ T6169] [U] [ 88.162882][ T6169] [U] [ 88.265357][ T6169] [U] [ 88.268134][ T6169] [U] [ 88.270877][ T6169] [U] [ 88.273741][ T6169] [U] [ 88.285436][ T6169] [U] [ 88.289045][ T6169] [U] [ 88.293031][ T6169] [U] [ 88.296306][ T6169] [U] [ 88.353805][ T6169] [U] [ 88.356672][ T6169] [U] [ 88.359449][ T6169] [U] [ 88.362210][ T6169] [U] [ 88.422594][ T6169] [U] [ 88.425370][ T6169] [U] [ 88.428112][ T6169] [U] [ 88.431506][ T6169] [U] [ 88.451504][ T6169] [U] [ 88.454423][ T6169] [U] [ 88.457248][ T6169] [U] [ 88.459978][ T6169] [U] [ 88.504495][ T6169] [U] [ 88.507374][ T6169] [U] [ 88.510363][ T6169] [U] [ 88.513258][ T6169] [U] [ 88.572138][ T6169] [U] [ 88.574926][ T6169] [U] [ 88.577673][ T6169] [U] [ 88.580408][ T6169] [U] [ 88.614449][ T6169] [U] [ 88.617237][ T6169] [U] [ 88.620408][ T6169] [U] [ 88.623321][ T6169] [U] [ 88.675940][ T6169] [U] [ 88.678737][ T6169] [U] [ 88.681601][ T6169] [U] [ 88.684355][ T6169] [U] [ 88.758982][ T6169] [U] [ 88.761743][ T6169] [U] [ 88.764476][ T6169] [U] [ 88.767198][ T6169] [U] [ 88.782507][ T6169] [U] [ 88.785272][ T6169] [U] [ 88.788004][ T6169] [U] [ 88.790740][ T6169] [U] [ 88.810194][ T6169] [U] [ 88.813152][ T6169] [U] [ 88.816329][ T6169] [U] [ 88.819153][ T6169] [U] [ 88.874894][ T6169] [U] [ 88.974664][ T6196] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 90.790149][ T6237] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 91.364379][ T6249] netlink: 294 bytes leftover after parsing attributes in process `syz.2.147'. [ 92.130411][ T6268] bridge0: port 3(hsr0) entered blocking state [ 92.204487][ T6268] bridge0: port 3(hsr0) entered disabled state [ 92.231534][ T6268] hsr0: entered allmulticast mode [ 92.253661][ T6268] hsr_slave_0: entered allmulticast mode [ 92.304159][ T6268] hsr_slave_1: entered allmulticast mode [ 92.335129][ T6268] hsr0: entered promiscuous mode [ 92.356558][ T6268] bridge0: port 3(hsr0) entered blocking state [ 92.363461][ T6268] bridge0: port 3(hsr0) entered forwarding state [ 96.690686][ T6328] ======================================================= [ 96.690686][ T6328] WARNING: The mand mount option has been deprecated and [ 96.690686][ T6328] and is ignored by this kernel. Remove the mand [ 96.690686][ T6328] option from the mount to silence this warning. [ 96.690686][ T6328] ======================================================= [ 97.352760][ T6334] svc: failed to register nfsdv3 RPC service (errno 111). [ 97.362974][ T6334] svc: failed to register nfsaclv3 RPC service (errno 111). [ 98.390088][ T6365] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 98.572488][ T6368] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[6368] [ 103.161778][ T6489] capability: warning: `syz.0.243' uses 32-bit capabilities (legacy support in use) [ 106.732816][ T6574] netlink: 'syz.0.277': attribute type 1 has an invalid length. [ 108.525111][ T6616] netlink: 334 bytes leftover after parsing attributes in process `syz.2.295'. [ 109.675949][ T6663] netlink: 346 bytes leftover after parsing attributes in process `syz.3.311'. [ 110.742935][ T6695] binder: 6693:6695 unknown command 1819242352 [ 110.784279][ T6695] binder: 6693:6695 ioctl c0306201 9 returned -22 [ 110.957378][ T6706] netlink: 28 bytes leftover after parsing attributes in process `syz.3.331'. [ 111.830627][ T6738] netlink: 178 bytes leftover after parsing attributes in process `syz.3.345'. [ 112.469358][ T29] audit: type=1326 audit(1737382794.456:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.0.356" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7393d85d29 code=0x0 [ 114.985474][ T6810] zswap: compressor not available [ 118.009942][ T6934] netlink: 334 bytes leftover after parsing attributes in process `syz.0.428'. [ 119.880213][ T6980] netlink: 28 bytes leftover after parsing attributes in process `syz.2.446'. [ 120.610918][ T6997] Invalid ELF header magic: != ELF [ 121.436141][ T7009] netlink: 16 bytes leftover after parsing attributes in process `syz.0.463'. [ 121.841846][ T7023] syz.1.462 uses obsolete (PF_INET,SOCK_PACKET) [ 123.735659][ T7078] block nbd10: shutting down sockets [ 126.212478][ T7127] netlink: 4 bytes leftover after parsing attributes in process `syz.0.509'. [ 132.161871][ T7268] netlink: 4 bytes leftover after parsing attributes in process `syz.3.566'. [ 133.319046][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.325955][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.385263][ T7300] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ek 1 [ 151.119827][ T5835] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 151.130321][ T5835] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 151.159936][ T5835] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 151.167631][ T5835] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 151.178256][ T5835] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 151.330547][ T29] audit: type=1800 audit(1737382833.349:5): pid=7765 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.782" name="discovery_nqn" dev="configfs" ino=13289 res=0 errno=0 [ 151.603243][ T1146] hsr0: left allmulticast mode [ 151.608338][ T1146] hsr_slave_0: left allmulticast mode [ 151.618561][ T1146] hsr_slave_1: left allmulticast mode [ 151.628737][ T1146] hsr0: left promiscuous mode [ 151.671092][ T1146] bridge0: port 3(hsr0) entered disabled state [ 151.720440][ T1146] bridge_slave_1: left allmulticast mode [ 151.726147][ T1146] bridge_slave_1: left promiscuous mode [ 151.777850][ T1146] bridge0: port 2(bridge_slave_1) entered disabled state [ 151.842704][ T1146] bridge_slave_0: left allmulticast mode [ 151.862828][ T1146] bridge_slave_0: left promiscuous mode [ 151.869037][ T1146] bridge0: port 1(bridge_slave_0) entered disabled state [ 152.495483][ T7794] [U] [ 152.498266][ T7794] [U] [ 152.501001][ T7794] [U] [ 152.503732][ T7794] [U] [ 152.519179][ T7794] [U] [ 152.521946][ T7794] [U] [ 152.524680][ T7794] [U] [ 152.527409][ T7794] [U] [ 152.539451][ T7794] [U] [ 152.542420][ T7794] [U] [ 152.545154][ T7794] [U] [ 152.547889][ T7794] [U] [ 152.597899][ T7794] [U] [ 152.600670][ T7794] [U] [ 152.603403][ T7794] [U] [ 152.606140][ T7794] [U] [ 152.630561][ T7794] [U] [ 152.633335][ T7794] [U] [ 152.636074][ T7794] [U] [ 152.638804][ T7794] [U] [ 152.641783][ T7794] [U] [ 152.644519][ T7794] [U] [ 152.647252][ T7794] [U] [ 152.649980][ T7794] [U] [ 152.660988][ T7794] [U] [ 152.663755][ T7794] [U] [ 152.666485][ T7794] [U] [ 152.669227][ T7794] [U] [ 152.695913][ T7794] [U] [ 152.698686][ T7794] [U] [ 152.701417][ T7794] [U] [ 152.704133][ T7794] [U] [ 152.740455][ T7794] [U] [ 152.743221][ T7794] [U] [ 152.745935][ T7794] [U] [ 152.748631][ T7794] [U] [ 152.769404][ T7794] [U] [ 152.772169][ T7794] [U] [ 152.774902][ T7794] [U] [ 152.777631][ T7794] [U] [ 152.806073][ T7794] [U] [ 152.808837][ T7794] [U] [ 152.811596][ T7794] [U] [ 152.814342][ T7794] [U] [ 152.820811][ T7794] [U] [ 152.823642][ T7794] [U] [ 152.826371][ T7794] [U] [ 152.829098][ T7794] [U] [ 152.832523][ T1146] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 152.845811][ T1146] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 152.854654][ T7794] [U] [ 152.857394][ T7794] [U] [ 152.860122][ T7794] [U] [ 152.862845][ T7794] [U] [ 152.866212][ T7794] [U] [ 152.868946][ T7794] [U] [ 152.871666][ T7794] [U] [ 152.874377][ T7794] [U] [ 152.880376][ T1146] bond0 (unregistering): Released all slaves [ 152.888955][ T7794] [U] [ 152.891695][ T7794] [U] [ 152.894419][ T7794] [U] [ 152.897140][ T7794] [U] [ 152.903144][ T7794] [U] [ 152.905888][ T7794] [U] [ 152.908612][ T7794] [U] [ 152.911339][ T7794] [U] [ 152.918083][ T7794] [U] [ 152.920834][ T7794] [U] [ 152.923559][ T7794] [U] [ 152.926280][ T7794] [U] [ 152.948252][ T7794] [U] [ 152.951008][ T7794] [U] [ 152.953737][ T7794] [U] [ 152.956479][ T7794] [U] [ 152.962460][ T7794] [U] [ 152.965213][ T7794] [U] [ 152.967938][ T7794] [U] [ 152.970670][ T7794] [U] [ 152.994280][ T7794] [U] [ 152.997050][ T7794] [U] [ 152.999756][ T7794] [U] [ 153.002453][ T7794] [U] [ 153.005654][ T7794] [U] [ 153.008397][ T7794] [U] [ 153.011116][ T7794] [U] [ 153.013836][ T7794] [U] [ 153.017980][ T7794] [U] [ 153.020732][ T7794] [U] [ 153.023462][ T7794] [U] [ 153.026185][ T7794] [U] [ 153.030159][ T7794] [U] [ 153.032894][ T7794] [U] [ 153.035624][ T7794] [U] [ 153.038343][ T7794] [U] [ 153.041368][ T7794] [U] [ 153.044095][ T7794] [U] [ 153.046817][ T7794] [U] [ 153.049535][ T7794] [U] [ 153.052804][ T7794] [U] [ 153.055537][ T7794] [U] [ 153.058257][ T7794] [U] [ 153.060982][ T7794] [U] [ 153.064049][ T7794] [U] [ 153.066783][ T7794] [U] [ 153.069508][ T7794] [U] [ 153.072236][ T7794] [U] [ 153.101484][ T7794] [U] [ 153.104239][ T7794] [U] [ 153.106966][ T7794] [U] [ 153.109687][ T7794] [U] [ 153.163858][ T7794] [U] [ 153.166631][ T7794] [U] [ 153.169361][ T7794] [U] [ 153.172090][ T7794] [U] [ 153.208859][ T7794] [U] [ 153.211872][ T7794] [U] [ 153.214626][ T7794] [U] [ 153.217347][ T7794] [U] [ 153.238897][ T7794] [U] [ 153.241657][ T7794] [U] [ 153.244380][ T7794] [U] [ 153.247105][ T7794] [U] [ 153.301512][ T5835] Bluetooth: hci0: command tx timeout [ 153.347488][ T7793] [U] [ 153.428766][ T7758] chnl_net:caif_netlink_parms(): no params data found [ 154.195394][ T7758] bridge0: port 1(bridge_slave_0) entered blocking state [ 154.206577][ T7758] bridge0: port 1(bridge_slave_0) entered disabled state [ 154.233358][ T7758] bridge_slave_0: entered allmulticast mode [ 154.261888][ T7758] bridge_slave_0: entered promiscuous mode [ 154.478833][ T7758] bridge0: port 2(bridge_slave_1) entered blocking state [ 154.507277][ T7758] bridge0: port 2(bridge_slave_1) entered disabled state [ 154.522156][ T7758] bridge_slave_1: entered allmulticast mode [ 154.540308][ T7758] bridge_slave_1: entered promiscuous mode [ 154.630485][ T1146] hsr_slave_0: left promiscuous mode [ 154.637779][ T1146] hsr_slave_1: left promiscuous mode [ 154.652781][ T1146] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 154.672092][ T1146] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 154.728184][ T1146] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 154.736538][ T1146] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 154.775146][ T1146] veth1_macvtap: left promiscuous mode [ 154.781408][ T1146] veth0_macvtap: left promiscuous mode [ 154.791338][ T1146] veth1_vlan: left promiscuous mode [ 154.796920][ T1146] veth0_vlan: left promiscuous mode [ 155.379158][ T5835] Bluetooth: hci0: command tx timeout [ 155.586960][ T1146] team0 (unregistering): Port device team_slave_1 removed [ 155.627015][ T1146] team0 (unregistering): Port device team_slave_0 removed [ 156.066195][ T7758] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 156.099798][ T7758] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 156.290484][ T7758] team0: Port device team_slave_0 added [ 156.309447][ T7758] team0: Port device team_slave_1 added [ 156.494117][ T7758] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 156.522119][ T7758] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 156.574573][ T7758] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 156.610754][ T7758] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 156.630097][ T7758] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 156.657445][ T7758] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 156.734937][ T7758] hsr_slave_0: entered promiscuous mode [ 156.744032][ T7758] hsr_slave_1: entered promiscuous mode [ 156.751398][ T7758] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 156.762056][ T7758] Cannot create hsr debugfs directory [ 157.182724][ T7758] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 157.236632][ T7758] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 157.285427][ T7758] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 157.329540][ T7758] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 157.457937][ T5835] Bluetooth: hci0: command tx timeout [ 157.567689][ T7758] 8021q: adding VLAN 0 to HW filter on device bond0 [ 157.615726][ T7758] 8021q: adding VLAN 0 to HW filter on device team0 [ 157.644293][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 157.651469][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 157.687351][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 157.694498][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 158.034932][ T7758] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 158.764826][ T7758] veth0_vlan: entered promiscuous mode [ 158.808219][ T7758] veth1_vlan: entered promiscuous mode [ 158.874104][ T7758] veth0_macvtap: entered promiscuous mode [ 158.924932][ T7758] veth1_macvtap: entered promiscuous mode [ 159.000303][ T7758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 159.026370][ T7758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.046978][ T7758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 159.103210][ T7758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.144785][ T7758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 159.164013][ T7758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.207126][ T7758] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 159.243066][ T7758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 159.275200][ T7758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.325314][ T7758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 159.365576][ T7758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.388936][ T7758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 159.426565][ T7758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.472107][ T7758] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 159.503503][ T7758] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.524152][ T7758] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.535834][ T5835] Bluetooth: hci0: command tx timeout [ 159.541056][ T7758] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.585574][ T7758] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.725968][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 159.749335][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 159.821768][ T1093] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 159.849140][ T1093] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 160.248258][ T8002] openvswitch: netlink: Multiple metadata blocks provided [ 160.617362][ T8017] netlink: 350 bytes leftover after parsing attributes in process `syz.3.847'. [ 161.677390][ T8060] ptrace attach of "./syz-executor exec"[7758] was attempted by "ݚ!iQ 3S܊אڽk#|1Xj\x0dK?\x5c$`ɳ&dyS@['s|0) (Qq\x07\x5cGAlLWI\x5cl#7 _?Xb`[+\x09/x2./ 76-p8agYT> #\x5c,h3ڑCr} 0_IZ[gf%{h{+t=!_wGQ*W@+_Y$ѿB10AnCЫ'O*#]{#QF\x0d}l%`>ڹl߷Ir*54RSL' >q99!~$g^PD{&\x0cK5//Q\x1b9s7|8^AC\x0dʬ#\x0a]Wډ>\x1bfЀyrBǢ*)PĘ\x5cĖa\x0d~Saqmr(p\x0c8`y0[^oR|l}eb/EmqC\x0c4\x07(r01:\x5ciG>hm\x0bcrNF,w2p\x0bEL=ag˶|o)l8We|{:uIqᄾp٠xKȒC䔜;\x0bZ[eQ7}<b7%%~|N3Ց…o1m7Sj `e?r$9?nFڔ\x0cdR춏]>2 X۝tr7Fy{Sq'vN[qwN r$1Ap?A@kIS]?2-3Gt(UfSxUsKZҚlRD}3\x1 [ 167.304610][ T8241] netlink: 4 bytes leftover after parsing attributes in process `syz.4.923'. [ 170.031539][ T8325] ovs9: entered promiscuous mode [ 176.474450][ T8537] netlink: 350 bytes leftover after parsing attributes in process `syz.4.1029'. [ 182.749017][ T8711] size and base must be multiples of 4 kiB [ 182.797093][ T8711] CPU: 1 UID: 0 PID: 8711 Comm: syz.4.1070 Not tainted 6.13.0-syzkaller #0 [ 182.805778][ T8711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 182.815881][ T8711] Call Trace: [ 182.819193][ T8711] [ 182.822155][ T8711] dump_stack_lvl+0x16c/0x1f0 [ 182.826904][ T8711] mtrr_del+0xd1/0x110 [ 182.831034][ T8711] mtrr_ioctl+0x900/0xcd0 [ 182.835425][ T8711] ? __pfx_mtrr_ioctl+0x10/0x10 [ 182.840343][ T8711] ? __pfx_lock_release+0x10/0x10 [ 182.845514][ T8711] ? __fget_files+0x206/0x3a0 [ 182.850245][ T8711] ? __pfx_mtrr_ioctl+0x10/0x10 [ 182.855158][ T8711] proc_reg_unlocked_ioctl+0x226/0x320 [ 182.860669][ T8711] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 182.866719][ T8711] __x64_sys_ioctl+0x190/0x200 [ 182.871549][ T8711] do_syscall_64+0xcd/0x250 [ 182.876109][ T8711] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.882055][ T8711] RIP: 0033:0x7fb38e385d29 [ 182.886610][ T8711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 182.906267][ T8711] RSP: 002b:00007fb38f204038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 182.914729][ T8711] RAX: ffffffffffffffda RBX: 00007fb38e576080 RCX: 00007fb38e385d29 [ 182.922743][ T8711] RDX: 0000000000000003 RSI: 0000000040104d04 RDI: 0000000000000003 [ 182.930758][ T8711] RBP: 00007fb38e401b08 R08: 0000000000000000 R09: 0000000000000000 [ 182.938780][ T8711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 182.946791][ T8711] R13: 0000000000000000 R14: 00007fb38e576080 R15: 00007ffddd92e5b8 [ 182.954821][ T8711] [ 182.957915][ C1] vkms_vblank_simulate: vblank timer overrun [ 187.725898][ T8808] device-mapper: ioctl: Unable to rename non-existent device, to [ 188.243522][ T8825] sd 0:0:1:0: PR command failed: 1026 [ 188.273536][ T8825] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 188.280326][ T8825] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 193.032653][ T8962] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1180'. [ 194.029150][ T8990] Sensor A: ================= START STATUS ================= [ 194.064150][ T8990] Sensor A: Test Pattern: 75% Colorbar [ 194.093854][ T8990] Sensor A: Show Information: All [ 194.102800][ T8990] Sensor A: Vertical Flip: false [ 194.137087][ T8990] Sensor A: Horizontal Flip: false [ 194.152551][ T8990] Sensor A: Brightness: 128 [ 194.178189][ T8990] Sensor A: Contrast: 128 [ 194.186885][ T8990] Sensor A: Hue: 0 [ 194.191678][ T8990] Sensor A: Saturation: 128 [ 194.209239][ T8990] Sensor A: ================== END STATUS ================== [ 194.724124][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.747552][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.784664][ T9055] netlink: zone id is out of range [ 195.795703][ T9055] netlink: zone id is out of range [ 196.812819][ T5142] Bluetooth: hci2: command 0x0406 tx timeout [ 196.819076][ T5831] Bluetooth: hci3: command 0x0406 tx timeout [ 196.819104][ T5839] Bluetooth: hci1: command 0x0406 tx timeout [ 197.233705][ T9113] Process accounting resumed [ 201.050516][ T9222] netlink: 'syz.2.1295': attribute type 1 has an invalid length. [ 201.074758][ T9222] netlink: 53 bytes leftover after parsing attributes in process `syz.2.1295'. [ 204.289129][ T9320] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1335'. [ 204.326765][ T9320] vxcan1: entered promiscuous mode [ 206.854113][ T9378] nbd: socks must be embedded in a SOCK_ITEM attr [ 206.894907][ T9378] block nbd0: shutting down sockets [ 207.986809][ T9400] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 208.531410][ T9416] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1375'. [ 210.677168][ T9479] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1400'. [ 210.691874][ T9479] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1400'. [ 211.911387][ T9510] bridge0: port 3(batadv0) entered blocking state [ 211.933232][ T9510] bridge0: port 3(batadv0) entered disabled state [ 211.959472][ T9510] batadv0: entered allmulticast mode [ 211.965930][ T9510] batadv0: entered promiscuous mode [ 211.980520][ T9510] bridge0: port 3(batadv0) entered blocking state [ 211.987109][ T9510] bridge0: port 3(batadv0) entered forwarding state [ 212.290004][ T9520] Invalid ELF header magic: != ELF [ 212.362102][ T11] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 212.371845][ T11] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 213.860718][ T9557] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 214.154354][ T9573] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1438'. [ 215.071388][ T9601] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.609914][ T9647] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1467'. [ 218.605422][ T9718] Invalid ELF header magic: != ELF [ 220.065319][ T1146] Trying to write to read-only block-device sda1 [ 222.180832][ T5840] Bluetooth: hci1: Received unexpected HCI Event 0x00 [ 222.391761][ T9804] netlink: 'syz.2.1528': attribute type 19 has an invalid length. [ 222.399885][ T9804] netlink: 310 bytes leftover after parsing attributes in process `syz.2.1528'. [ 225.424725][ T11] Trying to write to read-only block-device sda [ 227.336119][ T9872] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1552'. [ 227.885056][ T9892] misc userio: The device must be registered before sending interrupts [ 228.561704][ T9912] sctp: [Deprecated]: syz.3.1571 (pid 9912) Use of int in max_burst socket option deprecated. [ 228.561704][ T9912] Use struct sctp_assoc_value instead [ 230.177431][ T9976] bridge0: port 3(macsec0) entered blocking state [ 230.214383][ T9976] bridge0: port 3(macsec0) entered disabled state [ 230.265088][ T9976] macsec0: entered allmulticast mode [ 230.285713][ T9976] veth1_macvtap: entered allmulticast mode [ 230.293085][ T9976] macsec0: entered promiscuous mode [ 230.306464][ T9976] bridge0: port 3(macsec0) entered blocking state [ 230.313071][ T9976] bridge0: port 3(macsec0) entered listening state [ 232.019629][ T29] audit: type=1800 audit(1737382914.069:6): pid=10021 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1614" name="lu_gp_id" dev="configfs" ino=20294 res=0 errno=0 [ 236.253528][T10149] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1669'. [ 236.268682][T10149] veth0_macvtap: left promiscuous mode [ 236.282399][T10149] macvtap0: entered allmulticast mode [ 238.575949][T10223] mmap: syz.3.1698 (10223) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 238.681615][T10228] Invalid ELF header magic: != ELF [ 242.949696][T10294] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1724'. [ 243.157738][T10299] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1727'. [ 243.304322][T10301] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1726'. [ 243.342686][T10301] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 243.489514][T10299] veth0_macvtap: left promiscuous mode [ 243.573594][T10299] macvtap0: entered allmulticast mode [ 244.642958][T10328] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1739'. [ 245.893966][ C0] bridge0: port 3(macsec0) entered learning state [ 246.197781][T10376] sg_write: data in/out 32732/16086 bytes for SCSI command 0x0-- guessing data in; [ 246.197781][T10376] program syz.2.1760 not setting count and/or reply_len properly [ 247.846689][T10415] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1774'. [ 249.403232][T10464] sg_read: process 1032 (syz.3.1795) changed security contexts after opening file descriptor, this is not allowed. [ 250.132456][T10491] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1807'. [ 250.445940][T10499] IPVS: length: 11322 != 24 [ 250.768488][T10511] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1815'. [ 252.319965][T10546] IPVS: length: 11322 != 8 [ 254.470159][T10617] tipc: Started in network mode [ 254.475592][T10617] tipc: Node identity ffffffff, cluster identity 4711 [ 254.483118][T10617] tipc: Node number set to 4294967295 [ 256.135091][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.142188][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.503401][T10700] netlink: 'syz.3.1893': attribute type 2 has an invalid length. [ 256.511617][T10700] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1893'. [ 257.823878][T10758] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1916'. [ 257.843991][T10758] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1916'. [ 257.871584][T10762] netlink: 'syz.2.1918': attribute type 1 has an invalid length. [ 257.901120][T10762] netlink: 'syz.2.1918': attribute type 1 has an invalid length. [ 258.020139][T10770] netlink: 11 bytes leftover after parsing attributes in process `syz.2.1921'. [ 258.476316][T10789] netlink: 'syz.4.1929': attribute type 9 has an invalid length. [ 258.495619][T10789] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1929'. [ 260.675998][T10869] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1962'. [ 261.245873][ C0] bridge0: port 3(macsec0) entered forwarding state [ 261.252558][ C0] bridge0: topology change detected, propagating [ 261.748870][T10908] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1978'. [ 261.769135][T10908] ksmbd: Unknown IPC event: 0, ignore. [ 262.317338][T10929] Process accounting resumed [ 264.132045][T10993] netlink: 'syz.2.2013': attribute type 19 has an invalid length. [ 264.150279][T10993] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2013'. [ 265.266682][T11042] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2033'. [ 265.294635][T11042] bridge0: port 2(bridge_slave_1) entered disabled state [ 265.304133][T11042] bridge0: port 1(bridge_slave_0) entered disabled state [ 265.328835][T11042] bridge0: entered promiscuous mode [ 265.342707][T11042] bridge0: entered allmulticast mode [ 265.503492][T11048] netlink: 'syz.4.2035': attribute type 21 has an invalid length. [ 265.557682][T11048] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2035'. [ 266.030505][T11064] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2041'. [ 266.252136][ T29] audit: type=1326 audit(1737382948.316:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11065 comm="syz.4.2042" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb38e385d29 code=0x0 [ 268.258158][ T29] audit: type=1326 audit(1737382950.330:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11120 comm="syz.3.2063" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f579f985d29 code=0x0 [ 269.403482][T11162] tipc: Trying to set illegal importance in message [ 271.539419][T11205] vivid-013: ================= START STATUS ================= [ 271.574988][T11205] vivid-013: Generate PTS: true [ 271.604936][T11205] vivid-013: Generate SCR: true [ 271.609968][T11205] tpg source WxH: 640x360 (Y'CbCr) [ 271.637740][T11205] tpg field: 1 [ 271.641173][T11205] tpg crop: 640x360@0x0 [ 271.665657][T11205] tpg compose: 640x360@0x0 [ 271.670149][T11205] tpg colorspace: 8 [ 271.705263][T11205] tpg transfer function: 0/0 [ 271.709916][T11205] tpg Y'CbCr encoding: 0/0 [ 271.742022][T11205] tpg quantization: 0/0 [ 271.746265][T11205] tpg RGB range: 0/2 [ 271.750186][T11205] vivid-013: ================== END STATUS ================== [ 273.198488][T11248] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2114'. [ 273.563816][ T5839] Bluetooth: hci0: command 0x0406 tx timeout [ 273.620736][T11260] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 273.634877][T11260] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 275.585044][T11334] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2150'. [ 277.222290][T11394] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2175'. [ 277.705491][T11411] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2180'. [ 278.165594][T11422] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2185'. [ 278.192502][T11422] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2185'. [ 278.469802][T11432] lo: entered allmulticast mode [ 278.487419][T11431] lo: left allmulticast mode [ 279.842188][T11488] TCP: TCP_TX_DELAY enabled [ 280.056294][T11492] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2214'. [ 280.254869][T11502] program syz.1.2219 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 282.026001][ T52] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 282.056086][T11553] delete_channel: no stack [ 282.233299][ T52] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 282.410011][ T52] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 282.606758][T11566] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2242'. [ 282.627582][ T52] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 282.903538][ T52] batadv0: left allmulticast mode [ 282.908640][ T52] batadv0: left promiscuous mode [ 282.919134][ T52] bridge0: port 3(batadv0) entered disabled state [ 282.988176][ T52] bridge_slave_1: left allmulticast mode [ 282.994492][ T52] bridge_slave_1: left promiscuous mode [ 283.005749][ T52] bridge0: port 2(bridge_slave_1) entered disabled state [ 283.052587][ T52] bridge_slave_0: left allmulticast mode [ 283.058291][ T52] bridge_slave_0: left promiscuous mode [ 283.084749][ T52] bridge0: port 1(bridge_slave_0) entered disabled state [ 283.603513][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 283.613521][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 283.621460][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 283.631147][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 283.643587][ T5839] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 283.656520][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 284.273790][ T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 284.300583][ T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 284.320858][ T52] bond0 (unregistering): Released all slaves [ 284.428496][ T52] ovs9: left promiscuous mode [ 284.521166][ T52] tipc: Left network mode [ 284.741665][T11628] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2265'. [ 285.023581][ T52] hsr_slave_0: left promiscuous mode [ 285.072576][ T52] hsr_slave_1: left promiscuous mode [ 285.100151][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 285.123718][ T52] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 285.146661][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 285.164526][ T52] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 285.210808][ T52] veth1_macvtap: left promiscuous mode [ 285.232168][ T52] veth1_vlan: left promiscuous mode [ 285.237519][ T52] veth0_vlan: left promiscuous mode [ 285.389380][T11653] nbd: socks must be embedded in a SOCK_ITEM attr [ 285.420917][T11653] block nbd2: shutting down sockets [ 285.736189][ T5836] Bluetooth: hci1: command tx timeout [ 286.005993][ T52] team0 (unregistering): Port device team_slave_1 removed [ 286.058961][ T52] team0 (unregistering): Port device team_slave_0 removed [ 286.472116][T11590] chnl_net:caif_netlink_parms(): no params data found [ 286.654333][T11590] bridge0: port 1(bridge_slave_0) entered blocking state [ 286.667819][T11590] bridge0: port 1(bridge_slave_0) entered disabled state [ 286.676846][T11590] bridge_slave_0: entered allmulticast mode [ 286.691305][T11590] bridge_slave_0: entered promiscuous mode [ 286.699965][T11590] bridge0: port 2(bridge_slave_1) entered blocking state [ 286.721327][T11590] bridge0: port 2(bridge_slave_1) entered disabled state [ 286.741435][T11590] bridge_slave_1: entered allmulticast mode [ 286.749910][T11590] bridge_slave_1: entered promiscuous mode [ 286.829128][T11590] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 286.840823][T11590] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 286.923342][T11590] team0: Port device team_slave_0 added [ 286.945846][T11590] team0: Port device team_slave_1 added [ 286.995598][T11590] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 287.014544][T11590] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 287.047142][T11590] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 287.116198][T11590] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 287.127948][T11590] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 287.174705][T11590] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 287.252747][T11590] hsr_slave_0: entered promiscuous mode [ 287.275568][T11590] hsr_slave_1: entered promiscuous mode [ 287.468013][T11704] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2286'. [ 287.512758][T11704] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2286'. [ 287.666388][T11590] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 287.691354][T11590] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 287.707536][T11590] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 287.738136][T11590] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 287.812478][ T5836] Bluetooth: hci1: command tx timeout [ 287.889399][T11590] 8021q: adding VLAN 0 to HW filter on device bond0 [ 287.907407][T11590] 8021q: adding VLAN 0 to HW filter on device team0 [ 287.949351][ T1093] bridge0: port 1(bridge_slave_0) entered blocking state [ 287.956554][ T1093] bridge0: port 1(bridge_slave_0) entered forwarding state [ 287.995592][ T1093] bridge0: port 2(bridge_slave_1) entered blocking state [ 288.002749][ T1093] bridge0: port 2(bridge_slave_1) entered forwarding state [ 288.437143][T11590] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 288.574242][T11752] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2295'. [ 288.943215][T11590] veth0_vlan: entered promiscuous mode [ 288.968373][T11590] veth1_vlan: entered promiscuous mode [ 289.074562][T11590] veth0_macvtap: entered promiscuous mode [ 289.096342][T11590] veth1_macvtap: entered promiscuous mode [ 289.151576][T11590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 289.196640][T11590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 289.220253][T11590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 289.252038][T11590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 289.261904][T11590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 289.272541][T11590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 289.284993][T11590] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 289.319678][T11590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 289.338959][T11590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 289.372001][T11590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 289.392391][T11590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 289.431189][T11590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 289.451419][T11590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 289.473651][T11590] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 289.531048][T11590] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 289.564201][T11590] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 289.598010][T11590] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 289.622030][T11590] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 289.798923][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 289.819065][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 289.882229][ T5836] Bluetooth: hci1: command tx timeout [ 289.890759][ T3923] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 289.916194][ T3923] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 291.414154][T11873] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2327'. [ 291.962610][ T5836] Bluetooth: hci1: command tx timeout [ 292.340767][T11908] Process accounting paused [ 292.946544][T11942] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2345'. [ 292.969253][T11942] ipvlan0: entered allmulticast mode [ 292.974688][T11942] veth0_vlan: entered allmulticast mode [ 297.358440][T12065] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2388'. [ 297.378487][T12065] netlink: 23 bytes leftover after parsing attributes in process `syz.1.2388'. [ 297.672231][T12073] nbd: socks must be embedded in a SOCK_ITEM attr [ 297.705857][T12073] block nbd2: shutting down sockets [ 298.760739][T12097] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2401'. [ 299.137985][T12111] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2406'. [ 299.630316][T12123] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2410'. [ 299.668783][T12123] macvlan1: entered allmulticast mode [ 299.675393][T12123] veth1_vlan: entered allmulticast mode [ 299.735929][T12128] device-mapper: ioctl: device name cannot contain '/' [ 300.067378][T12136] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2415'. [ 300.134522][T12136] ipvlan0: entered allmulticast mode [ 300.161217][T12136] veth0_vlan: entered allmulticast mode [ 302.214172][T12189] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2434'. [ 304.298537][T12252] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2453'. [ 304.354885][T12252] ipvlan0: entered allmulticast mode [ 304.360241][T12252] veth0_vlan: entered allmulticast mode [ 305.733254][T12296] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2466'. [ 306.013181][T12305] blktrace: Concurrent blktraces are not allowed on sg0 [ 306.036954][T12308] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2469'. [ 306.319890][T12319] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2471'. [ 306.857642][T12345] netlink: 346 bytes leftover after parsing attributes in process `syz.5.2480'. [ 307.068147][T12352] blktrace: Concurrent blktraces are not allowed on sg0 [ 308.359455][T12396] netlink: 334 bytes leftover after parsing attributes in process `syz.5.2495'. [ 308.899366][T12418] Process accounting resumed [ 311.275249][T12519] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2528'. [ 313.817250][T12576] netlink: 178 bytes leftover after parsing attributes in process `syz.1.2547'. [ 314.052522][T12577] nbd2: detected capacity change from 0 to 68719476736 [ 314.087587][T11550] block nbd2: Send control failed (result -22) [ 314.109110][T11550] block nbd2: Request send failed, requeueing [ 314.133010][ T5836] block nbd2: Receive control failed (result -32) [ 314.142133][ T41] block nbd2: Dead connection, failed to find a fallback [ 314.150324][ T41] block nbd2: shutting down sockets [ 314.156082][ T41] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 314.168231][ T41] Buffer I/O error on dev nbd2, logical block 0, async page read [ 314.186267][T11550] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 314.252032][T11550] Buffer I/O error on dev nbd2, logical block 0, async page read [ 314.288962][T11550] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 314.331234][T11550] Buffer I/O error on dev nbd2, logical block 0, async page read [ 314.355197][T11550] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 314.378378][T11550] Buffer I/O error on dev nbd2, logical block 0, async page read [ 314.406310][T11550] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 314.433491][T11550] Buffer I/O error on dev nbd2, logical block 0, async page read [ 314.441525][T11550] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 314.469062][T11550] Buffer I/O error on dev nbd2, logical block 0, async page read [ 314.491557][T11550] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 314.517918][T11550] Buffer I/O error on dev nbd2, logical block 0, async page read [ 314.537381][T11550] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 314.557083][T11550] Buffer I/O error on dev nbd2, logical block 0, async page read [ 314.582184][T11550] ldm_validate_partition_table(): Disk read failed. [ 314.623622][T11550] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 314.665521][T11550] Buffer I/O error on dev nbd2, logical block 0, async page read [ 314.678482][T11550] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 314.687803][T11550] Buffer I/O error on dev nbd2, logical block 0, async page read [ 314.695994][T11550] Dev nbd2: unable to read RDB block 0 [ 314.703693][T11550] nbd2: unable to read partition table [ 314.715003][T11550] ldm_validate_partition_table(): Disk read failed. [ 314.722115][T11550] Dev nbd2: unable to read RDB block 0 [ 314.728105][T11550] nbd2: unable to read partition table [ 317.574872][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.582550][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 319.639847][T12727] nvme_fcloop: unknown parameter or missing value '' [ 320.387457][T12755] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2618'. [ 321.220595][T12791] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2633'. [ 322.267478][T12815] kernel read not supported for file /8SpExYXgh|lH敿9.KgPn֤L]XF (pid: 12815 comm: syz.4.2645) [ 322.300903][ T29] audit: type=1800 audit(1737383004.370:9): pid=12815 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2645" name=11F9BC9A3897C953FE7016B04578951E595883AE6714BB68CF7C6C489B01FCFA14C2EC06E695BF392E1B4B6702A0A9EFFE500EE66ED6A44C8F9A1EEF5D58DB46A6D0 dev="mqueue" ino=30314 res=0 errno=0 [ 323.050427][T12840] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2655'. [ 324.073961][T12866] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2665'. [ 325.186798][T12885] netlink: 350 bytes leftover after parsing attributes in process `syz.5.2673'. [ 326.660587][T12911] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2681'. [ 326.671065][T12911] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2681'. [ 328.919768][T12962] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2703'. [ 330.971003][T13012] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2722'. [ 331.033505][T13012] bridge0: port 3(macsec0) entered disabled state [ 331.040123][T13012] bridge0: port 2(bridge_slave_1) entered disabled state [ 331.047672][T13012] bridge0: port 1(bridge_slave_0) entered disabled state [ 331.062571][T13012] bridge0: entered allmulticast mode [ 331.302448][T13017] netlink: 350 bytes leftover after parsing attributes in process `syz.4.2725'. [ 331.370948][T13022] ALUA LU Group already has a valid ID, ignoring request [ 332.565910][T13057] erspan0: entered allmulticast mode [ 333.074524][T13069] zswap: compressor not available [ 335.292514][T13168] netlink: 346 bytes leftover after parsing attributes in process `syz.1.2790'. [ 337.869096][T13254] : entered promiscuous mode [ 338.654850][T13285] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2841'. [ 338.665901][T13285] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2841'. [ 338.797251][T13291] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2843'. [ 339.795243][T13330] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2858'. [ 340.531869][T13363] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2871'. [ 341.183776][T13387] netlink: 346 bytes leftover after parsing attributes in process `syz.3.2881'. [ 341.287754][T13394] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2883'. [ 341.299773][T13394] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2883'. [ 342.377336][T13431] netlink: 172 bytes leftover after parsing attributes in process `syz.3.2897'. [ 343.597171][T13477] sctp: [Deprecated]: syz.4.2916 (pid 13477) Use of struct sctp_assoc_value in delayed_ack socket option. [ 343.597171][T13477] Use struct sctp_sack_info instead [ 344.288296][T13504] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2928'. [ 347.251318][T13592] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2963'. [ 347.291358][T13592] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 347.389591][T13586] sg_write: data in/out 32655/1048664 bytes for SCSI command 0x0-- guessing data in; [ 347.389591][T13586] program syz.4.2959 not setting count and/or reply_len properly [ 347.577374][T13602] netlink: 'syz.1.2968': attribute type 1 has an invalid length. [ 348.727881][T13626] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2975'. [ 348.939499][T13634] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2982'. [ 349.090069][T13643] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2986'. [ 349.118526][T13643] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2986'. [ 349.529376][T13658] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2991'. [ 350.000332][T13672] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2999'. [ 350.089135][T13677] ALUA LU Group already has a valid ID, ignoring request [ 350.630804][T13693] netlink: 'syz.3.3009': attribute type 1 has an invalid length. [ 350.641142][T13693] netlink: 'syz.3.3009': attribute type 1 has an invalid length. [ 350.982331][T13701] sctp: [Deprecated]: syz.1.3010 (pid 13701) Use of struct sctp_assoc_value in delayed_ack socket option. [ 350.982331][T13701] Use struct sctp_sack_info instead [ 351.510642][T13722] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3019'. [ 352.328296][T13740] netlink: 74 bytes leftover after parsing attributes in process `syz.3.3026'. [ 352.737061][T13750] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3031'. [ 353.132145][T13759] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3034'. [ 353.370304][T13763] kernel read not supported for file /8SpExYXgh|lH敿9.KgPn֤L]XF (pid: 13763 comm: syz.5.3036) [ 353.389449][ T29] audit: type=1800 audit(1737383035.460:10): pid=13763 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3036" name=11F9BC9A3897C953FE7016B04578951E595883AE6714BB68CF7C6C489B01FCFA14C2EC06E695BF392E1B4B6702A0A9EFFE500EE66ED6A44C8F9A1EEF5D58DB46A6D0 dev="mqueue" ino=33418 res=0 errno=0 [ 353.791195][T13776] sctp: [Deprecated]: syz.3.3040 (pid 13776) Use of struct sctp_assoc_value in delayed_ack socket option. [ 353.791195][T13776] Use struct sctp_sack_info instead [ 355.960263][T13825] netlink: 330 bytes leftover after parsing attributes in process `syz.4.3060'. [ 358.263142][T13851] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3068'. [ 358.938008][T13878] netlink: 346 bytes leftover after parsing attributes in process `syz.5.3077'. [ 360.072712][T13918] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3092'. [ 360.968889][T13953] netlink: 244 bytes leftover after parsing attributes in process `syz.3.3109'. [ 361.341058][T13959] zswap: compressor not available [ 364.935944][T14076] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3157'. [ 364.955230][T14076] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3157'. [ 366.251760][T14119] netlink: 'syz.3.3177': attribute type 2 has an invalid length. [ 366.289538][T14119] netlink: 'syz.3.3177': attribute type 2 has an invalid length. [ 367.698189][T14164] netlink: 334 bytes leftover after parsing attributes in process `syz.5.3196'. [ 367.731059][T14164] netlink: 334 bytes leftover after parsing attributes in process `syz.5.3196'. [ 367.971964][T14170] netlink: 334 bytes leftover after parsing attributes in process `syz.5.3198'. [ 368.152666][T14172] nbd: socks must be embedded in a SOCK_ITEM attr [ 368.173502][T14172] block nbd3: shutting down sockets [ 370.440840][T14223] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3219'. [ 374.609582][T14337] netlink: 346 bytes leftover after parsing attributes in process `syz.3.3264'. [ 375.196685][T14362] netlink: 'syz.3.3275': attribute type 16 has an invalid length. [ 375.588772][T14368] netlink: 'syz.5.3285': attribute type 1 has an invalid length. [ 375.596740][T14368] netlink: 'syz.5.3285': attribute type 1 has an invalid length. [ 375.777940][T14377] netlink: 'syz.4.3280': attribute type 1 has an invalid length. [ 376.595378][T14396] bond0: option all_slaves_active: invalid value (7) [ 377.877394][T14447] sd 0:0:1:0: PR command failed: 1026 [ 377.899635][T14447] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 377.923775][T14447] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 378.511558][T14462] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3316'. [ 378.605464][T14465] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3317'. [ 379.007919][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.014563][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.089503][T14481] ptrace attach of "./syz-executor exec"[7758] was attempted by ""[14481] [ 379.874062][T14504] netlink: 330 bytes leftover after parsing attributes in process `syz.3.3332'. [ 379.969230][T14509] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3334'. [ 380.809356][T14532] [U] [ 380.812126][T14532] [U] [ 380.814857][T14532] [U] [ 380.817585][T14532] [U] [ 380.833953][T14532] [U] [ 380.836725][T14532] [U] [ 380.839453][T14532] [U] [ 380.842169][T14532] [U] [ 380.852701][T14532] [U] [ 380.855451][T14532] [U] [ 380.858204][T14532] [U] [ 380.860931][T14532] [U] [ 380.884794][T14532] [U] [ 380.887549][T14532] [U] [ 380.890269][T14532] [U] [ 380.893014][T14532] [U] [ 380.920645][T14535] [U] [ 382.282983][T14581] netlink: 330 bytes leftover after parsing attributes in process `syz.1.3364'. [ 383.390258][T14605] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3374'. [ 384.879981][T14646] netlink: 74 bytes leftover after parsing attributes in process `syz.1.3390'. [ 386.138562][T14674] can: request_module (can-proto-3) failed. [ 386.851134][T14694] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3409'. [ 388.890772][T14743] netlink: 346 bytes leftover after parsing attributes in process `syz.1.3429'. [ 389.685709][T14767] netlink: 330 bytes leftover after parsing attributes in process `syz.5.3438'. [ 390.133606][T14779] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3450'. [ 393.781051][T14822] netlink: 334 bytes leftover after parsing attributes in process `syz.4.3462'. [ 393.797234][T14825] netlink: 326 bytes leftover after parsing attributes in process `syz.1.3459'. [ 395.367061][T14872] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3482'. [ 396.359245][T14887] __vm_enough_memory: pid: 14887, comm: syz.3.3488, bytes: 4503599627366400 not enough memory for the allocation [ 398.030763][T14935] binder: 14932:14935 ioctl c0105512 1 returned -22 [ 398.065538][T14935] binder: 14932:14935 ioctl c0306201 9 returned -14 [ 398.783539][T14954] lo: entered allmulticast mode [ 398.869095][T14959] lo: left allmulticast mode [ 399.667252][T14982] netlink: 346 bytes leftover after parsing attributes in process `syz.4.3523'. [ 400.163794][T14996] netlink: 'syz.3.3529': attribute type 4 has an invalid length. [ 400.171583][T14996] netlink: 330 bytes leftover after parsing attributes in process `syz.3.3529'. [ 400.589127][T15011] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3535'. [ 402.184802][T15045] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3550'. [ 405.200890][T15137] sctp: [Deprecated]: syz.5.3588 (pid 15137) Use of struct sctp_assoc_value in delayed_ack socket option. [ 405.200890][T15137] Use struct sctp_sack_info instead [ 405.398442][T15145] netlink: 314 bytes leftover after parsing attributes in process `syz.3.3590'. [ 405.409274][T15145] netlink: 314 bytes leftover after parsing attributes in process `syz.3.3590'. [ 406.682148][ T5839] Bluetooth: hci1: command 0x0406 tx timeout [ 406.982430][T15187] netlink: 334 bytes leftover after parsing attributes in process `syz.5.3607'. [ 407.773923][T15185] __vm_enough_memory: pid: 15185, comm: syz.4.3606, bytes: 4503599627366400 not enough memory for the allocation [ 408.157050][T15207] netlink: 326 bytes leftover after parsing attributes in process `syz.4.3614'. [ 408.743814][T15226] netlink: 342 bytes leftover after parsing attributes in process `syz.5.3622'. [ 409.662977][T15252] netlink: 2 bytes leftover after parsing attributes in process `syz.4.3633'. [ 410.064325][T15260] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3636'. [ 410.303599][T15271] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3641'. [ 410.716751][T15288] netlink: 'syz.3.3649': attribute type 28 has an invalid length. [ 410.731044][T15288] netlink: 326 bytes leftover after parsing attributes in process `syz.3.3649'. [ 410.917172][T15294] netlink: 334 bytes leftover after parsing attributes in process `syz.1.3651'. [ 411.749512][T15315] netlink: 346 bytes leftover after parsing attributes in process `syz.3.3660'. [ 412.047544][T15322] netlink: 'syz.1.3662': attribute type 27 has an invalid length. [ 412.071951][T15322] netlink: 334 bytes leftover after parsing attributes in process `syz.1.3662'. [ 415.544715][T15397] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 416.766894][T15426] netlink: 350 bytes leftover after parsing attributes in process `syz.4.3710'. [ 418.111379][T15475] netlink: 306 bytes leftover after parsing attributes in process `syz.3.3723'. [ 419.524819][T15516] sd 0:0:1:0: PR command failed: 1026 [ 419.538591][T15516] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 419.555635][T15516] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 420.842087][T15551] Invalid ELF header magic: != ELF [ 420.912133][T15556] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3754'. [ 420.928331][T15558] netlink: 334 bytes leftover after parsing attributes in process `syz.1.3755'. [ 422.669693][T15616] netlink: 342 bytes leftover after parsing attributes in process `syz.5.3779'. [ 423.327431][T15643] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 423.353202][T15643] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 423.918845][T15668] netlink: 350 bytes leftover after parsing attributes in process `syz.4.3799'. [ 424.168000][T15680] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3802'. [ 424.493067][T15698] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3806'. [ 424.516471][T15698] macvlan1: entered promiscuous mode [ 424.917734][T15716] netlink: 338 bytes leftover after parsing attributes in process `syz.4.3815'. [ 427.523606][T15804] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3840'. [ 427.906241][T15813] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3844'. [ 428.516789][T15833] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3853'. [ 429.830911][T15869] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3868'. [ 429.888975][T15869] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3868'. [ 430.658056][T15888] Invalid ELF header magic: != ELF [ 431.770584][T15914] netlink: 'syz.5.3888': attribute type 29 has an invalid length. [ 431.795712][T15914] netlink: 334 bytes leftover after parsing attributes in process `syz.5.3888'. [ 431.813614][T15916] netlink: 334 bytes leftover after parsing attributes in process `syz.4.3889'. [ 431.963417][T15923] Invalid ELF header magic: != ELF [ 432.872088][T15951] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3900'. [ 438.176182][T16085] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3956'. [ 440.252245][T16146] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3979'. [ 440.444809][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.452412][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 441.545404][T16178] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3991'. [ 443.888004][T16242] cgroup2: Unknown parameter 'S' [ 444.570380][T16263] kernel read not supported for file /#)-\"[} (pid: 16263 comm: syz.4.4031) [ 444.593418][ T29] audit: type=1800 audit(1737383126.670:11): pid=16263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4031" name=23292D5C225B7D dev="mqueue" ino=40929 res=0 errno=0 [ 446.496119][T16323] netlink: 'syz.3.4056': attribute type 1 has an invalid length. [ 448.106333][T16389] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4085'. [ 453.055491][T16523] dyndbg: expected <4096 bytes into control [ 454.228681][T16542] openvswitch: netlink: IP tunnel dst address not specified [ 454.229502][T16542] openvswitch: netlink: IP tunnel dst address not specified [ 455.701134][T16582] netlink: 326 bytes leftover after parsing attributes in process `syz.3.4161'. [ 455.762931][T16585] netlink: 330 bytes leftover after parsing attributes in process `syz.4.4162'. [ 455.787103][T16587] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4163'. [ 457.047998][T16617] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4174'. [ 458.960457][T16652] netlink: 130 bytes leftover after parsing attributes in process `syz.1.4190'. [ 463.232960][T16756] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4226'. [ 463.722318][T16763] netlink: 330 bytes leftover after parsing attributes in process `syz.1.4229'. [ 464.346520][T16779] RDS: rds_bind could not find a transport for 86a4:131b:e300:1000::, load rds_tcp or rds_rdma? [ 469.213351][T16902] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4281'. [ 469.245112][T16902] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4281'. [ 475.603821][T17070] netlink: 334 bytes leftover after parsing attributes in process `syz.4.4342'. [ 475.620073][T17070] netlink: 334 bytes leftover after parsing attributes in process `syz.4.4342'. [ 475.984664][T17081] FAULT_INJECTION: forcing a failure. [ 475.984664][T17081] name failslab, interval 1, probability 0, space 0, times 1 [ 476.026930][T17081] CPU: 1 UID: 0 PID: 17081 Comm: syz.4.4346 Not tainted 6.13.0-syzkaller #0 [ 476.035677][T17081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 476.045760][T17081] Call Trace: [ 476.049061][T17081] [ 476.052006][T17081] dump_stack_lvl+0x16c/0x1f0 [ 476.056724][T17081] should_fail_ex+0x497/0x5b0 [ 476.061438][T17081] ? fs_reclaim_acquire+0xae/0x150 [ 476.066583][T17081] should_failslab+0xc2/0x120 [ 476.071296][T17081] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 476.076703][T17081] ? lock_acquire+0x2f/0xb0 [ 476.081264][T17081] ? __proc_create+0xa4/0x8b0 [ 476.085973][T17081] ? __proc_create+0x2c3/0x8b0 [ 476.090775][T17081] __proc_create+0x2c3/0x8b0 [ 476.095399][T17081] ? __pfx___proc_create+0x10/0x10 [ 476.100548][T17081] ? __pfx___netlink_kernel_create+0x10/0x10 [ 476.106568][T17081] proc_create_reg+0x7d/0x180 [ 476.111282][T17081] proc_create_seq_private+0x8f/0x180 [ 476.116690][T17081] ? __pfx_proc_create_seq_private+0x10/0x10 [ 476.122704][T17081] ? __pfx_nl_fib_input+0x10/0x10 [ 476.127786][T17081] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 476.133393][T17081] ip_rt_do_proc_init+0x57/0x1b0 [ 476.138385][T17081] ops_init+0x1df/0x5f0 [ 476.142604][T17081] setup_net+0x21f/0x860 [ 476.146902][T17081] ? __pfx_setup_net+0x10/0x10 [ 476.151708][T17081] ? down_read_killable+0xcc/0x380 [ 476.156866][T17081] ? __pfx_down_read_killable+0x10/0x10 [ 476.162458][T17081] ? debug_mutex_init+0x37/0x70 [ 476.167355][T17081] copy_net_ns+0x2b4/0x6c0 [ 476.171802][T17081] create_new_namespaces+0x3ea/0xad0 [ 476.177140][T17081] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 476.182818][T17081] ksys_unshare+0x45d/0xa40 [ 476.187366][T17081] ? __pfx_ksys_unshare+0x10/0x10 [ 476.192430][T17081] ? xfd_validate_state+0x5d/0x180 [ 476.197595][T17081] __x64_sys_unshare+0x31/0x40 [ 476.202401][T17081] do_syscall_64+0xcd/0x250 [ 476.206951][T17081] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 476.212890][T17081] RIP: 0033:0x7fb38e385d29 [ 476.217330][T17081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 476.236972][T17081] RSP: 002b:00007fb38f225038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 476.245420][T17081] RAX: ffffffffffffffda RBX: 00007fb38e575fa0 RCX: 00007fb38e385d29 [ 476.253416][T17081] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 476.261407][T17081] RBP: 00007fb38e401b08 R08: 0000000000000000 R09: 0000000000000000 [ 476.269398][T17081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 476.277389][T17081] R13: 0000000000000000 R14: 00007fb38e575fa0 R15: 00007ffddd92e5b8 [ 476.285400][T17081] [ 476.473613][T17088] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4350'. [ 476.530217][T17088] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4350'. [ 477.829737][T17130] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4366'. [ 477.859756][T17130] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4366'. [ 479.152978][T17174] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 479.711553][T17192] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4391'. [ 479.743207][T17185] netlink: 74 bytes leftover after parsing attributes in process `syz.4.4388'. [ 480.445065][T17216] [U] [ 480.447840][T17216] [U] [ 480.450563][T17216] [U] [ 480.453276][T17216] [U] [ 480.472303][T17216] [U] [ 480.475074][T17216] [U] [ 480.477809][T17216] [U] [ 480.480532][T17216] [U] [ 480.506868][T17216] [U] [ 480.509638][T17216] [U] [ 480.512368][T17216] [U] [ 480.515092][T17216] [U] [ 480.538091][T17216] [U] [ 480.540862][T17216] [U] [ 480.543586][T17216] [U] [ 480.546300][T17216] [U] [ 480.562192][T17216] [U] [ 480.564956][T17216] [U] [ 480.567688][T17216] [U] [ 480.570405][T17216] [U] [ 480.592367][T17216] [U] [ 480.595127][T17216] [U] [ 480.597859][T17216] [U] [ 480.600590][T17216] [U] [ 480.627476][T17216] [U] [ 480.630244][T17216] [U] [ 480.632977][T17216] [U] [ 480.635710][T17216] [U] [ 480.668134][T17216] [U] [ 480.670909][T17216] [U] [ 480.673641][T17216] [U] [ 480.676373][T17216] [U] [ 480.703734][T17216] [U] [ 480.706496][T17216] [U] [ 480.709227][T17216] [U] [ 480.711953][T17216] [U] [ 480.730602][T17216] [U] [ 480.733367][T17216] [U] [ 480.736095][T17216] [U] [ 480.738825][T17216] [U] [ 480.790623][T17216] [U] [ 480.793392][T17216] [U] [ 480.796128][T17216] [U] [ 480.798865][T17216] [U] [ 480.822200][T17216] [U] [ 480.824960][T17216] [U] [ 480.827679][T17216] [U] [ 480.830403][T17216] [U] [ 480.849759][T17216] [U] [ 480.852525][T17216] [U] [ 480.855247][T17216] [U] [ 480.857967][T17216] [U] [ 480.886414][T17216] [U] [ 480.889178][T17216] [U] [ 480.891894][T17216] [U] [ 480.894614][T17216] [U] [ 480.913115][T17216] [U] [ 480.915855][T17216] [U] [ 480.918555][T17216] [U] [ 480.921255][T17216] [U] [ 480.932950][T17216] [U] [ 480.935715][T17216] [U] [ 480.938438][T17216] [U] [ 480.941158][T17216] [U] [ 480.977641][T17216] [U] [ 480.980409][T17216] [U] [ 480.983139][T17216] [U] [ 480.985865][T17216] [U] [ 480.995744][T17216] [U] [ 480.998514][T17216] [U] [ 481.001244][T17216] [U] [ 481.003974][T17216] [U] [ 481.032401][T17216] [U] [ 481.035164][T17216] [U] [ 481.037888][T17216] [U] [ 481.040606][T17216] [U] [ 481.047526][T17216] [U] [ 481.050276][T17216] [U] [ 481.053004][T17216] [U] [ 481.055722][T17216] [U] [ 481.089237][T17216] [U] [ 481.092006][T17216] [U] [ 481.094733][T17216] [U] [ 481.097449][T17216] [U] [ 481.105158][T17231] futex_wake_op: syz.5.4407 tries to shift op by 64; fix this program [ 481.115016][T17216] [U] [ 481.117765][T17216] [U] [ 481.120489][T17216] [U] [ 481.123203][T17216] [U] [ 481.142213][T17216] [U] [ 481.144973][T17216] [U] [ 481.147710][T17216] [U] [ 481.150435][T17216] [U] [ 481.170818][T17216] [U] [ 481.173574][T17216] [U] [ 481.176274][T17216] [U] [ 481.178968][T17216] [U] [ 481.202221][T17216] [U] [ 481.204984][T17216] [U] [ 481.207703][T17216] [U] [ 481.210425][T17216] [U] [ 481.221616][T17216] [U] [ 481.224384][T17216] [U] [ 481.227112][T17216] [U] [ 481.229833][T17216] [U] [ 481.242323][T17216] [U] [ 481.245089][T17216] [U] [ 481.247806][T17216] [U] [ 481.250523][T17216] [U] [ 481.254230][T17216] [U] [ 481.256959][T17216] [U] [ 481.259682][T17216] [U] [ 481.262406][T17216] [U] [ 481.323266][T17216] [U] [ 481.360459][T17240] sd 0:0:1:0: PR command failed: 1026 [ 481.381380][T17240] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 481.393625][T17240] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 483.359265][T17288] netlink: 'syz.3.4429': attribute type 2 has an invalid length. [ 483.578224][T17296] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4434'. [ 483.620835][T17296] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4434'. [ 484.399161][T17322] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4442'. [ 485.070092][T17343] netlink: 74 bytes leftover after parsing attributes in process `syz.1.4451'. [ 486.514259][T17380] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4464'. [ 486.529106][T17380] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode [ 487.530033][T17418] netlink: 326 bytes leftover after parsing attributes in process `syz.3.4476'. [ 488.711916][T17464] netlink: 'syz.1.4495': attribute type 19 has an invalid length. [ 488.728936][T17464] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4495'. [ 488.754617][T17470] netlink: 338 bytes leftover after parsing attributes in process `syz.5.4494'. [ 491.471467][T17550] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4525'. [ 492.346890][T17577] netlink: 'syz.4.4537': attribute type 3 has an invalid length. [ 492.560890][T17584] HfR: entered promiscuous mode [ 492.593549][T17584] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4540'. [ 492.622733][T17584] HfR: left promiscuous mode [ 493.428172][T17618] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4551'. [ 493.870242][T17637] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4559'. [ 495.547468][T17674] tc_dump_action: action bad kind [ 497.764670][T17732] ubi0: attaching mtd0 [ 497.780746][T17732] ubi0 error: ubi_attach_mtd_dev: bad VID header (65536) or data offsets (65600) [ 499.806774][T17775] netlink: 326 bytes leftover after parsing attributes in process `syz.1.4611'. [ 500.289829][T17793] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4617'. [ 501.026665][T17820] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 501.062054][T17820] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 501.884944][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.891820][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.045092][T17847] netlink: 'syz.4.4639': attribute type 2 has an invalid length. [ 502.085250][T17847] netlink: 'syz.4.4639': attribute type 2 has an invalid length. [ 502.494177][T17860] netlink: 172 bytes leftover after parsing attributes in process `syz.1.4644'. [ 502.524849][T17860] netlink: 172 bytes leftover after parsing attributes in process `syz.1.4644'. [ 503.422337][T17893] netlink: 'syz.5.4654': attribute type 9 has an invalid length. [ 503.660924][T17898] netlink: 'syz.5.4657': attribute type 11 has an invalid length. [ 504.974341][T17934] devtmpfs: Unknown parameter '--::' [ 505.946729][T17957] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4674'. [ 507.859965][T17993] openvswitch: netlink: VXLAN extension 0 has unexpected len 1 expected 0 [ 508.651636][T18011] netlink: 'syz.1.4696': attribute type 16 has an invalid length. [ 508.800013][T18011] netlink: 330 bytes leftover after parsing attributes in process `syz.1.4696'. [ 509.335133][T18023] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4698'. [ 512.075130][T18079] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4715'. [ 513.953742][T18121] netlink: 'syz.4.4733': attribute type 1 has an invalid length. [ 514.300666][T18135] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4739'. [ 514.433443][T18138] netlink: 130 bytes leftover after parsing attributes in process `syz.3.4741'. [ 514.448752][T18140] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4740'. [ 514.590278][T18141] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4740'. [ 515.101574][T18151] netlink: 326 bytes leftover after parsing attributes in process `syz.3.4744'. [ 515.212421][T18153] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4745'. [ 515.230586][T18155] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4746'. [ 515.324252][T18153] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4745'. [ 515.465956][T18163] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4749'. [ 515.495428][T18163] vxcan1: entered promiscuous mode [ 515.558376][T18165] netlink: 'syz.4.4750': attribute type 2 has an invalid length. [ 518.399187][T18214] sctp: [Deprecated]: syz.1.4767 (pid 18214) Use of struct sctp_assoc_value in delayed_ack socket option. [ 518.399187][T18214] Use struct sctp_sack_info instead [ 519.242604][T18241] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4774'. [ 519.279591][T18241] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4774'. [ 520.021777][T18268] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4781'. [ 522.140965][T18339] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4801'. [ 522.398580][T18344] binder: 18343:18344 ioctl c0046209 9 returned -22 [ 522.669560][T18351] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4808'. [ 523.467591][T18371] Invalid ELF header magic: != ELF [ 524.013413][T18391] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4824'. [ 524.451562][T18402] netlink: 326 bytes leftover after parsing attributes in process `syz.4.4831'. [ 525.404462][T18423] openvswitch: netlink: Unknown nsh attribute 0 [ 526.860281][T18459] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4852'. [ 527.170141][T18469] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4856'. [ 528.381606][T18503] netlink: 'syz.3.4871': attribute type 16 has an invalid length. [ 528.391935][T18503] netlink: 322 bytes leftover after parsing attributes in process `syz.3.4871'. [ 528.693687][T18514] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4876'. [ 528.946080][T18524] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4881'. [ 529.623869][T18553] netlink: 350 bytes leftover after parsing attributes in process `syz.5.4893'. [ 530.270998][T18573] netlink: 130 bytes leftover after parsing attributes in process `syz.1.4901'. [ 530.356983][T18574] delete_channel: no stack [ 530.455180][ T29] audit: type=1800 audit(1737383212.530:12): pid=18579 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4904" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0 [ 531.230986][T18615] netlink: 330 bytes leftover after parsing attributes in process `syz.5.4921'. [ 532.090406][T18648] netlink: 334 bytes leftover after parsing attributes in process `syz.5.4933'. [ 532.453885][T18665] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4942'. [ 533.012539][T18692] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4953'. [ 533.043976][T18692] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4953'. [ 533.324173][T18707] netlink: 'syz.5.4958': attribute type 22 has an invalid length. [ 533.336815][T18707] netlink: 334 bytes leftover after parsing attributes in process `syz.5.4958'. [ 534.175397][T18735] nbd: socks must be embedded in a SOCK_ITEM attr [ 534.199639][T18735] block nbd5: shutting down sockets [ 534.401566][T18748] misc userio: No port type given on /dev/userio [ 536.416148][T18803] netlink: 'syz.5.4996': attribute type 14 has an invalid length. [ 536.424074][T18803] netlink: 330 bytes leftover after parsing attributes in process `syz.5.4996'. [ 540.089995][T18907] netlink: 330 bytes leftover after parsing attributes in process `syz.3.5032'. [ 543.839866][T18993] netlink: 'syz.5.5062': attribute type 16 has an invalid length. [ 543.866629][T18993] netlink: 330 bytes leftover after parsing attributes in process `syz.5.5062'. [ 544.733490][T19004] [ 544.735868][T19004] ====================================================== [ 544.742903][T19004] WARNING: possible circular locking dependency detected [ 544.749945][T19004] 6.13.0-syzkaller #0 Not tainted [ 544.754988][T19004] ------------------------------------------------------ [ 544.762024][T19004] syz.4.5066/19004 is trying to acquire lock: [ 544.768125][T19004] ffff888023486540 (mapping.invalidate_lock#2){++++}-{4:4}, at: filemap_fault+0x2e0/0x2820 [ 544.778206][T19004] [ 544.778206][T19004] but task is already holding lock: [ 544.785592][T19004] ffff88802bcded20 (&mm->mmap_lock){++++}-{4:4}, at: lock_mm_and_find_vma+0x35/0x6a0 [ 544.795135][T19004] [ 544.795135][T19004] which lock already depends on the new lock. [ 544.795135][T19004] [ 544.805556][T19004] [ 544.805556][T19004] the existing dependency chain (in reverse order) is: [ 544.814593][T19004] [ 544.814593][T19004] -> #5 (&mm->mmap_lock){++++}-{4:4}: [ 544.822198][T19004] __might_fault+0x11b/0x190 [ 544.827347][T19004] _copy_from_user+0x29/0xd0 [ 544.832502][T19004] __blk_trace_setup+0xa8/0x180 [ 544.837908][T19004] blk_trace_setup+0x47/0x70 [ 544.843032][T19004] sg_ioctl+0x7a3/0x26b0 [ 544.847808][T19004] __x64_sys_ioctl+0x190/0x200 [ 544.853098][T19004] do_syscall_64+0xcd/0x250 [ 544.858134][T19004] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 544.864581][T19004] [ 544.864581][T19004] -> #4 (&q->debugfs_mutex){+.+.}-{4:4}: [ 544.872410][T19004] __mutex_lock+0x19b/0xa60 [ 544.877441][T19004] blk_mq_init_sched+0x42b/0x640 [ 544.882903][T19004] elevator_init_mq+0x2cd/0x420 [ 544.888281][T19004] add_disk_fwnode+0x113/0x1300 [ 544.893647][T19004] sd_probe+0xa66/0xfa0 [ 544.898322][T19004] really_probe+0x23e/0xa90 [ 544.903352][T19004] __driver_probe_device+0x1de/0x440 [ 544.909162][T19004] driver_probe_device+0x4c/0x1b0 [ 544.914714][T19004] __device_attach_driver+0x1df/0x310 [ 544.920615][T19004] bus_for_each_drv+0x157/0x1e0 [ 544.925986][T19004] __device_attach_async_helper+0x1d3/0x290 [ 544.932403][T19004] async_run_entry_fn+0x9c/0x530 [ 544.937863][T19004] process_one_work+0x958/0x1b30 [ 544.943317][T19004] worker_thread+0x6c8/0xf00 [ 544.948429][T19004] kthread+0x2c1/0x3a0 [ 544.953037][T19004] ret_from_fork+0x45/0x80 [ 544.957979][T19004] ret_from_fork_asm+0x1a/0x30 [ 544.963356][T19004] [ 544.963356][T19004] -> #3 (&q->q_usage_counter(queue)#50){++++}-{0:0}: [ 544.972243][T19004] blk_queue_enter+0x50f/0x640 [ 544.977535][T19004] blk_mq_alloc_request+0x59b/0x950 [ 544.983257][T19004] scsi_execute_cmd+0x20a/0xf30 [ 544.988630][T19004] read_capacity_16+0x21a/0xe20 [ 544.994009][T19004] sd_revalidate_disk.isra.0+0x1a06/0xa8d0 [ 545.000356][T19004] sd_probe+0x8ee/0xfa0 [ 545.005043][T19004] really_probe+0x23e/0xa90 [ 545.010083][T19004] __driver_probe_device+0x1de/0x440 [ 545.015892][T19004] driver_probe_device+0x4c/0x1b0 [ 545.021441][T19004] __device_attach_driver+0x1df/0x310 [ 545.027345][T19004] bus_for_each_drv+0x157/0x1e0 [ 545.032718][T19004] __device_attach_async_helper+0x1d3/0x290 [ 545.039134][T19004] async_run_entry_fn+0x9c/0x530 [ 545.044592][T19004] process_one_work+0x958/0x1b30 [ 545.050047][T19004] worker_thread+0x6c8/0xf00 [ 545.055158][T19004] kthread+0x2c1/0x3a0 [ 545.059749][T19004] ret_from_fork+0x45/0x80 [ 545.064684][T19004] ret_from_fork_asm+0x1a/0x30 [ 545.069973][T19004] [ 545.069973][T19004] -> #2 (&q->limits_lock){+.+.}-{4:4}: [ 545.077630][T19004] __mutex_lock+0x19b/0xa60 [ 545.082658][T19004] __nbd_set_size+0x2c0/0x730 [ 545.087854][T19004] nbd_start_device+0x8fd/0xd70 [ 545.093226][T19004] nbd_genl_connect+0x1204/0x1c00 [ 545.098774][T19004] genl_family_rcv_msg_doit+0x202/0x2f0 [ 545.104845][T19004] genl_rcv_msg+0x565/0x800 [ 545.109878][T19004] netlink_rcv_skb+0x165/0x410 [ 545.115163][T19004] genl_rcv+0x28/0x40 [ 545.119666][T19004] netlink_unicast+0x53c/0x7f0 [ 545.124951][T19004] netlink_sendmsg+0x8b8/0xd70 [ 545.130235][T19004] ____sys_sendmsg+0x9ae/0xb40 [ 545.135521][T19004] ___sys_sendmsg+0x135/0x1e0 [ 545.140723][T19004] __sys_sendmsg+0x16e/0x220 [ 545.145839][T19004] do_syscall_64+0xcd/0x250 [ 545.150870][T19004] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.157288][T19004] [ 545.157288][T19004] -> #1 (&q->q_usage_counter(io)#51){++++}-{0:0}: [ 545.165896][T19004] blk_mq_submit_bio+0x1fb6/0x24c0 [ 545.171542][T19004] __submit_bio+0x384/0x540 [ 545.176574][T19004] submit_bio_noacct_nocheck+0x698/0xd70 [ 545.182735][T19004] submit_bio_noacct+0x93a/0x1e20 [ 545.188290][T19004] mpage_readahead+0x41d/0x590 [ 545.193581][T19004] read_pages+0x1a8/0xdc0 [ 545.198433][T19004] page_cache_ra_unbounded+0x3dc/0x750 [ 545.204415][T19004] force_page_cache_ra+0x24b/0x340 [ 545.210054][T19004] page_cache_sync_ra+0x110/0x9c0 [ 545.215605][T19004] filemap_get_pages+0xd7b/0x1be0 [ 545.221169][T19004] filemap_read+0x3ca/0xd70 [ 545.226197][T19004] blkdev_read_iter+0x187/0x480 [ 545.231567][T19004] vfs_read+0x87f/0xbe0 [ 545.236242][T19004] ksys_read+0x12b/0x250 [ 545.241004][T19004] do_syscall_64+0xcd/0x250 [ 545.246045][T19004] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.252467][T19004] [ 545.252467][T19004] -> #0 (mapping.invalidate_lock#2){++++}-{4:4}: [ 545.260988][T19004] __lock_acquire+0x249e/0x3c40 [ 545.266368][T19004] lock_acquire.part.0+0x11b/0x380 [ 545.271998][T19004] down_read+0x9a/0x330 [ 545.276700][T19004] filemap_fault+0x2e0/0x2820 [ 545.281903][T19004] __do_fault+0x10a/0x490 [ 545.286753][T19004] do_pte_missing+0x1a8/0x3e00 [ 545.292046][T19004] __handle_mm_fault+0x103c/0x2a40 [ 545.297683][T19004] handle_mm_fault+0x3fa/0xaa0 [ 545.302974][T19004] do_user_addr_fault+0x7a3/0x13f0 [ 545.308605][T19004] exc_page_fault+0x5c/0xc0 [ 545.313629][T19004] asm_exc_page_fault+0x26/0x30 [ 545.319008][T19004] rep_movs_alternative+0x4a/0x70 [ 545.324555][T19004] _copy_to_iter+0x384/0x1400 [ 545.329758][T19004] get_random_bytes_user+0x180/0x3c0 [ 545.335563][T19004] __x64_sys_getrandom+0x184/0x290 [ 545.341194][T19004] do_syscall_64+0xcd/0x250 [ 545.346223][T19004] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.352641][T19004] [ 545.352641][T19004] other info that might help us debug this: [ 545.352641][T19004] [ 545.362861][T19004] Chain exists of: [ 545.362861][T19004] mapping.invalidate_lock#2 --> &q->debugfs_mutex --> &mm->mmap_lock [ 545.362861][T19004] [ 545.376861][T19004] Possible unsafe locking scenario: [ 545.376861][T19004] [ 545.384305][T19004] CPU0 CPU1 [ 545.389665][T19004] ---- ---- [ 545.395030][T19004] rlock(&mm->mmap_lock); [ 545.399445][T19004] lock(&q->debugfs_mutex); [ 545.406568][T19004] lock(&mm->mmap_lock); [ 545.413414][T19004] rlock(mapping.invalidate_lock#2); [ 545.418796][T19004] [ 545.418796][T19004] *** DEADLOCK *** [ 545.418796][T19004] [ 545.426931][T19004] 1 lock held by syz.4.5066/19004: [ 545.432045][T19004] #0: ffff88802bcded20 (&mm->mmap_lock){++++}-{4:4}, at: lock_mm_and_find_vma+0x35/0x6a0 [ 545.441980][T19004] [ 545.441980][T19004] stack backtrace: [ 545.447863][T19004] CPU: 0 UID: 0 PID: 19004 Comm: syz.4.5066 Not tainted 6.13.0-syzkaller #0 [ 545.456534][T19004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 545.466585][T19004] Call Trace: [ 545.469869][T19004] [ 545.472794][T19004] dump_stack_lvl+0x116/0x1f0 [ 545.477480][T19004] print_circular_bug+0x41c/0x610 [ 545.482515][T19004] check_noncircular+0x31a/0x400 [ 545.487460][T19004] ? __pfx_check_noncircular+0x10/0x10 [ 545.492924][T19004] ? __lock_acquire+0xcc5/0x3c40 [ 545.497858][T19004] ? lockdep_lock+0xc6/0x200 [ 545.502451][T19004] ? __pfx_lockdep_lock+0x10/0x10 [ 545.507566][T19004] __lock_acquire+0x249e/0x3c40 [ 545.512418][T19004] ? __pfx___lock_acquire+0x10/0x10 [ 545.517627][T19004] ? filemap_get_entry+0x1a8/0x3c0 [ 545.522757][T19004] lock_acquire.part.0+0x11b/0x380 [ 545.527970][T19004] ? filemap_fault+0x2e0/0x2820 [ 545.532840][T19004] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 545.538472][T19004] ? rcu_is_watching+0x12/0xc0 [ 545.543237][T19004] ? trace_lock_acquire+0x14e/0x1f0 [ 545.548441][T19004] ? filemap_fault+0x2e0/0x2820 [ 545.553306][T19004] ? lock_acquire+0x2f/0xb0 [ 545.557812][T19004] ? filemap_fault+0x2e0/0x2820 [ 545.562671][T19004] down_read+0x9a/0x330 [ 545.566832][T19004] ? filemap_fault+0x2e0/0x2820 [ 545.571691][T19004] ? __pfx_down_read+0x10/0x10 [ 545.576457][T19004] ? __filemap_get_folio+0x2a5/0xaf0 [ 545.581749][T19004] filemap_fault+0x2e0/0x2820 [ 545.586432][T19004] ? __pfx_filemap_fault+0x10/0x10 [ 545.591547][T19004] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 545.597177][T19004] ? rcu_is_watching+0x12/0xc0 [ 545.601944][T19004] ? __pfx_filemap_map_pages+0x10/0x10 [ 545.607405][T19004] __do_fault+0x10a/0x490 [ 545.611733][T19004] ? __pfx_filemap_map_pages+0x10/0x10 [ 545.617201][T19004] do_pte_missing+0x1a8/0x3e00 [ 545.621977][T19004] __handle_mm_fault+0x103c/0x2a40 [ 545.627105][T19004] ? __pfx___handle_mm_fault+0x10/0x10 [ 545.632566][T19004] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 545.638206][T19004] ? find_vma+0xc0/0x140 [ 545.642448][T19004] ? __pfx_find_vma+0x10/0x10 [ 545.647125][T19004] handle_mm_fault+0x3fa/0xaa0 [ 545.651897][T19004] do_user_addr_fault+0x7a3/0x13f0 [ 545.657013][T19004] exc_page_fault+0x5c/0xc0 [ 545.661518][T19004] asm_exc_page_fault+0x26/0x30 [ 545.666369][T19004] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 545.672180][T19004] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 545.691789][T19004] RSP: 0018:ffffc9000ca0fbc8 EFLAGS: 00050246 [ 545.697856][T19004] RAX: 0000000000000001 RBX: 0000000000035ec0 RCX: 0000000000000040 [ 545.705821][T19004] RDX: fffff52001941fbb RSI: ffffc9000ca0fd98 RDI: 0000000000035ec0 [ 545.713792][T19004] RBP: ffffc9000ca0fe88 R08: 0000000000000000 R09: fffff52001941fba [ 545.721764][T19004] R10: ffffc9000ca0fdd7 R11: 0000000000000000 R12: 0000000000035f00 [ 545.729737][T19004] R13: 00007ffffffff000 R14: ffffc9000ca0fd98 R15: 0000000000000040 [ 545.737723][T19004] _copy_to_iter+0x384/0x1400 [ 545.742415][T19004] ? chacha_block_generic+0x181/0x260 [ 545.747796][T19004] ? __pfx__copy_to_iter+0x10/0x10 [ 545.752912][T19004] ? __pfx___might_resched+0x10/0x10 [ 545.758197][T19004] ? crng_make_state+0x48e/0x6d0 [ 545.763148][T19004] get_random_bytes_user+0x180/0x3c0 [ 545.768433][T19004] ? __pfx_get_random_bytes_user+0x10/0x10 [ 545.774239][T19004] ? do_futex+0x123/0x350 [ 545.778576][T19004] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 545.783695][T19004] ? import_ubuf+0x1b6/0x220 [ 545.788295][T19004] __x64_sys_getrandom+0x184/0x290 [ 545.793404][T19004] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 545.799037][T19004] ? xfd_validate_state+0x5d/0x180 [ 545.804150][T19004] do_syscall_64+0xcd/0x250 [ 545.808656][T19004] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.814556][T19004] RIP: 0033:0x7fb38e385d29 [ 545.818970][T19004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 545.838675][T19004] RSP: 002b:00007fb38f225038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 545.847174][T19004] RAX: ffffffffffffffda RBX: 00007fb38e575fa0 RCX: 00007fb38e385d29 [ 545.855155][T19004] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 545.863125][T19004] RBP: 00007fb38e401b08 R08: 0000000000000000 R09: 0000000000000000 [ 545.871091][T19004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 545.879060][T19004] R13: 0000000000000000 R14: 00007fb38e575fa0 R15: 00007ffddd92e5b8 [ 545.887033][T19004]