last executing test programs:
1.984491259s ago: executing program 2 (id=8349):
setresuid$auto(0x8, 0x8, 0x0)
setfsuid$auto(0x0)
pivot_root$auto(&(0x7f0000000040)='..\x00', &(0x7f0000000080)='.\x00')
1.906834747s ago: executing program 3 (id=8350):
socket(0x1f, 0x800, 0x0)
r0 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r0, &(0x7f0000000000)="632d1bfe595046ab5c40bd7563307acb6d16baef6176e669a216aae183cccafdd80500ffffffff0600"/56, 0x38)
1.839593708s ago: executing program 2 (id=8352):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x2, 0x0)
getsockopt$auto(r0, 0x0, 0x17, 0xfffffffffffffffc, 0x0)
1.732634689s ago: executing program 3 (id=8355):
r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x34, r0, 0x1, 0x70bd25, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x1c, 0x1, 0x0, 0x1, [@nested={0x18, 0x10, 0x0, 0x1, [@typed={0x14, 0xc, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0xff}}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
1.690616424s ago: executing program 2 (id=8356):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x2c201, 0x0)
ioctl$auto_IOC_PR_RESERVE(r0, 0x401070c9, 0x0)
1.52461021s ago: executing program 2 (id=8358):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r0, 0x84, 0x75, 0x0, &(0x7f0000000000)=0x28000000)
1.524478277s ago: executing program 3 (id=8360):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000002b00)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf25050000001c0001800800058004007d00100001800a"], 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x4000000)
1.3514773s ago: executing program 2 (id=8363):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/seccomp/actions_logged\x00', 0x8202, 0x0)
sendfile$auto(r1, r0, 0x0, 0x48)
1.330149809s ago: executing program 3 (id=8364):
mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
futex$auto(&(0x7f0000000080)=0x1, 0xb, 0x1, 0x0, 0x0, 0xfffffffa)
futex$auto(&(0x7f0000000080)=0x2, 0xd, 0x0, 0x0, 0x0, 0x440a48d5)
1.196330888s ago: executing program 2 (id=8369):
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@buf=0x0, 0x800c000, 0x40000000, 0x800c000}, 0x4)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/crash_hotplug\x00', 0x8a080, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001100)=""/4105, 0x1009)
1.108400482s ago: executing program 0 (id=8371):
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
syz_clone3(&(0x7f0000000380)={0x101045100, 0x0, 0x0, 0x0, {0x3a}, 0x0, 0x0, 0x0, 0x0}, 0x58)
madvise$auto(0x0, 0x200204, 0x15)
799.015611ms ago: executing program 1 (id=8374):
r0 = socket(0x1d, 0x2, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
setsockopt$auto(r0, 0x6a, 0x3, 0x0, 0x4)
669.502442ms ago: executing program 1 (id=8375):
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x24, 0x0, 0x8)
635.383787ms ago: executing program 0 (id=8376):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='^\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8)
531.428111ms ago: executing program 1 (id=8377):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = fanotify_init$auto(0x1f53, 0x2000000000002)
fanotify_mark$auto(0x400000000000, 0x1, 0xf2b, r0, 0x0)
508.893228ms ago: executing program 0 (id=8378):
r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
fcntl$auto(r0, 0x400, 0x0)
link$auto(&(0x7f0000003240)='./file0\x00', &(0x7f0000003280)='./file2\x00')
415.030126ms ago: executing program 1 (id=8379):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000b00), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000b40)={0x20, r1, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@HWSIM_ATTR_PMSR_SUPPORT={0xc, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x6}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000800)
376.042633ms ago: executing program 0 (id=8380):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
ioctl$auto(0x3, 0xc0104d03, 0x5)
344.3295ms ago: executing program 3 (id=8381):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/nfc/nfc1/rfkill1/soft\x00', 0xa3182, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
188.77414ms ago: executing program 0 (id=8382):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x2, 0x0)
pwrite64$auto(r0, 0x0, 0x52, 0x5231)
188.628969ms ago: executing program 1 (id=8383):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f0000001c00)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)={0x1c, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0x8, 0x5, 0x0, 0x1, [@typed={0x4, 0x1}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x240088d4}, 0x2000c880)
142.938449ms ago: executing program 3 (id=8384):
mmap$auto(0x0, 0x400009, 0xfffffffffffffffa, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
signalfd$auto(r0, 0x0, 0x8)
27.456094ms ago: executing program 1 (id=8385):
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyc3\x00', 0x40001, 0x0)
ioctl$auto(r0, 0x80045438, r0)
0s ago: executing program 0 (id=8386):
ioctl$auto_BTRFS_IOC_RM_DEV(0xffffffffffffffff, 0x5000940b, &(0x7f0000000840)={@inferred, "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"})
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef)
kernel console output (not intermixed with test programs):
Warning: Permanently added '10.128.0.109' (ED25519) to the list of known hosts.
[ 80.231186][ T5812] cgroup: Unknown subsys name 'net'
[ 80.367893][ T5812] cgroup: Unknown subsys name 'cpuset'
[ 80.377321][ T5812] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 82.126583][ T5812] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 83.942854][ T5827] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 83.952078][ T5827] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 83.960144][ T5827] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 83.970060][ T5827] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 83.971775][ T5831] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 83.977859][ T5827] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 83.994424][ T5827] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 84.002807][ T5831] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 84.012334][ T5830] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 84.023975][ T5145] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 84.049090][ T5831] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 84.056792][ T5837] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 84.065908][ T5831] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 84.077411][ T5834] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 84.085050][ T5831] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 84.094967][ T5834] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 84.102699][ T5831] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 84.103820][ T51] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 84.111748][ T5831] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 84.125232][ T5831] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 84.560076][ T5823] chnl_net:caif_netlink_parms(): no params data found
[ 84.649326][ T5828] chnl_net:caif_netlink_parms(): no params data found
[ 84.845543][ T5836] chnl_net:caif_netlink_parms(): no params data found
[ 84.923315][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state
[ 84.933074][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state
[ 84.941951][ T5828] bridge_slave_0: entered allmulticast mode
[ 84.949369][ T5828] bridge_slave_0: entered promiscuous mode
[ 84.958222][ T5823] bridge0: port 1(bridge_slave_0) entered blocking state
[ 84.965731][ T5823] bridge0: port 1(bridge_slave_0) entered disabled state
[ 84.972998][ T5823] bridge_slave_0: entered allmulticast mode
[ 84.980439][ T5823] bridge_slave_0: entered promiscuous mode
[ 84.998482][ T5833] chnl_net:caif_netlink_parms(): no params data found
[ 85.010167][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state
[ 85.017577][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state
[ 85.024912][ T5828] bridge_slave_1: entered allmulticast mode
[ 85.032244][ T5828] bridge_slave_1: entered promiscuous mode
[ 85.039996][ T5823] bridge0: port 2(bridge_slave_1) entered blocking state
[ 85.047174][ T5823] bridge0: port 2(bridge_slave_1) entered disabled state
[ 85.054579][ T5823] bridge_slave_1: entered allmulticast mode
[ 85.061760][ T5823] bridge_slave_1: entered promiscuous mode
[ 85.174506][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 85.186629][ T5823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 85.215711][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 85.227357][ T5823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 85.285903][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state
[ 85.293185][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state
[ 85.300739][ T5836] bridge_slave_0: entered allmulticast mode
[ 85.308096][ T5836] bridge_slave_0: entered promiscuous mode
[ 85.323743][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state
[ 85.330985][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state
[ 85.338410][ T5836] bridge_slave_1: entered allmulticast mode
[ 85.345545][ T5836] bridge_slave_1: entered promiscuous mode
[ 85.364786][ T5823] team0: Port device team_slave_0 added
[ 85.392904][ T5828] team0: Port device team_slave_0 added
[ 85.400814][ T5823] team0: Port device team_slave_1 added
[ 85.431390][ T5828] team0: Port device team_slave_1 added
[ 85.458734][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state
[ 85.466202][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state
[ 85.473333][ T5833] bridge_slave_0: entered allmulticast mode
[ 85.480971][ T5833] bridge_slave_0: entered promiscuous mode
[ 85.490967][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 85.522854][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state
[ 85.530144][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state
[ 85.537878][ T5833] bridge_slave_1: entered allmulticast mode
[ 85.545254][ T5833] bridge_slave_1: entered promiscuous mode
[ 85.555779][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 85.565802][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 85.572854][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 85.599479][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 85.612415][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 85.620090][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 85.646255][ T5823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 85.681224][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 85.688589][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 85.714625][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 85.726252][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 85.733213][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 85.759367][ T5823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 85.802258][ T5836] team0: Port device team_slave_0 added
[ 85.818472][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 85.831296][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 85.844584][ T5836] team0: Port device team_slave_1 added
[ 85.909834][ T5833] team0: Port device team_slave_0 added
[ 85.927703][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 85.934802][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 85.961066][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 85.984788][ T5833] team0: Port device team_slave_1 added
[ 86.001637][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 86.009040][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 86.035177][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 86.052546][ T5828] hsr_slave_0: entered promiscuous mode
[ 86.059355][ T5828] hsr_slave_1: entered promiscuous mode
[ 86.083533][ T5823] hsr_slave_0: entered promiscuous mode
[ 86.089943][ T5145] Bluetooth: hci0: command tx timeout
[ 86.091051][ T5823] hsr_slave_1: entered promiscuous mode
[ 86.101788][ T5823] debugfs: 'hsr0' already exists in 'hsr'
[ 86.107845][ T5823] Cannot create hsr debugfs directory
[ 86.146569][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 86.153553][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 86.180431][ T5145] Bluetooth: hci3: command tx timeout
[ 86.180596][ T5145] Bluetooth: hci1: command tx timeout
[ 86.186504][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 86.242928][ T5836] hsr_slave_0: entered promiscuous mode
[ 86.249383][ T5145] Bluetooth: hci2: command tx timeout
[ 86.255524][ T5836] hsr_slave_1: entered promiscuous mode
[ 86.261621][ T5836] debugfs: 'hsr0' already exists in 'hsr'
[ 86.267483][ T5836] Cannot create hsr debugfs directory
[ 86.273805][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 86.281321][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 86.307648][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 86.520609][ T5833] hsr_slave_0: entered promiscuous mode
[ 86.526989][ T5833] hsr_slave_1: entered promiscuous mode
[ 86.533050][ T5833] debugfs: 'hsr0' already exists in 'hsr'
[ 86.539393][ T5833] Cannot create hsr debugfs directory
[ 86.873589][ T5823] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 86.895746][ T5823] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 86.917512][ T5823] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 86.927754][ T5823] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 86.983031][ T5828] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 86.996274][ T5828] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 87.012095][ T5828] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 87.026411][ T5828] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 87.163066][ T5836] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 87.201264][ T5836] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 87.217170][ T5836] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 87.254320][ T5836] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 87.418205][ T5833] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 87.446638][ T5833] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 87.459886][ T5833] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 87.476730][ T5833] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 87.559650][ T5823] 8021q: adding VLAN 0 to HW filter on device bond0
[ 87.583852][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[ 87.626778][ T5823] 8021q: adding VLAN 0 to HW filter on device team0
[ 87.638189][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[ 87.671237][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 87.678639][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 87.689111][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 87.696277][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 87.706121][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 87.713263][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 87.758077][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 87.765279][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 87.829289][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0
[ 87.870063][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0
[ 87.906266][ T5836] 8021q: adding VLAN 0 to HW filter on device team0
[ 87.967109][ T5833] 8021q: adding VLAN 0 to HW filter on device team0
[ 87.981199][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 87.988370][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 88.016725][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 88.023899][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 88.118077][ T233] bridge0: port 1(bridge_slave_0) entered blocking state
[ 88.125412][ T233] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 88.137505][ T233] bridge0: port 2(bridge_slave_1) entered blocking state
[ 88.144830][ T233] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 88.166292][ T5145] Bluetooth: hci0: command tx timeout
[ 88.244347][ T5145] Bluetooth: hci3: command tx timeout
[ 88.244558][ T5827] Bluetooth: hci1: command tx timeout
[ 88.326817][ T5827] Bluetooth: hci2: command tx timeout
[ 88.468495][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 88.602358][ T5828] veth0_vlan: entered promiscuous mode
[ 88.681990][ T5828] veth1_vlan: entered promiscuous mode
[ 88.700456][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 88.799926][ T5828] veth0_macvtap: entered promiscuous mode
[ 88.818684][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 88.829793][ T5828] veth1_macvtap: entered promiscuous mode
[ 88.846004][ T5823] veth0_vlan: entered promiscuous mode
[ 88.877365][ T5823] veth1_vlan: entered promiscuous mode
[ 88.900116][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 88.920804][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 88.946246][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 88.992117][ T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.013830][ T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.037785][ T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.055835][ T233] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.083481][ T5823] veth0_macvtap: entered promiscuous mode
[ 89.095981][ T5823] veth1_macvtap: entered promiscuous mode
[ 89.108545][ T5833] veth0_vlan: entered promiscuous mode
[ 89.128496][ T5836] veth0_vlan: entered promiscuous mode
[ 89.180744][ T5833] veth1_vlan: entered promiscuous mode
[ 89.213679][ T5836] veth1_vlan: entered promiscuous mode
[ 89.216791][ T1147] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 89.237630][ T1147] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 89.291392][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 89.303961][ T233] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 89.312404][ T233] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 89.329961][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 89.347534][ T5833] veth0_macvtap: entered promiscuous mode
[ 89.395753][ T5833] veth1_macvtap: entered promiscuous mode
[ 89.403536][ T1147] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.412728][ T1147] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.419038][ T5828] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 89.423539][ T1147] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.457150][ T5836] veth0_macvtap: entered promiscuous mode
[ 89.464687][ T1147] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.478766][ T5836] veth1_macvtap: entered promiscuous mode
[ 89.559227][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 89.582054][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 89.630307][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 89.662581][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 89.680617][ T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.690417][ T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.733441][ T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.744650][ T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.791471][ T148] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.823599][ T148] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.848028][ T148] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.867181][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 89.880066][ T148] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.889391][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 90.034392][ T148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 90.057082][ T148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 90.118236][ T148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 90.130618][ T148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 90.246946][ T5827] Bluetooth: hci0: command tx timeout
[ 90.294085][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 90.301955][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 90.324501][ T5827] Bluetooth: hci1: command tx timeout
[ 90.335271][ T5827] Bluetooth: hci3: command tx timeout
[ 90.385121][ T1116] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 90.392998][ T1116] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 90.407419][ T5827] Bluetooth: hci2: command tx timeout
[ 90.432154][ T1116] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 90.466382][ T1116] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 91.081401][ T5944] futex_wake_op: syz.2.15 tries to shift op by -2048; fix this program
[ 92.181061][ T796] cfg80211: failed to load regulatory.db
[ 92.324392][ T5827] Bluetooth: hci0: command tx timeout
[ 92.402147][ T29] audit: type=1800 audit(1773683716.059:2): pid=5994 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.38" name="features" dev="configfs" ino=8396 res=0 errno=0
[ 92.404825][ T5827] Bluetooth: hci3: command tx timeout
[ 92.423922][ T5145] Bluetooth: hci1: command tx timeout
[ 92.484208][ T5145] Bluetooth: hci2: command tx timeout
[ 92.672332][ T6001] Invalid ELF header magic: != ELF
[ 92.901822][ T6009] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 92.928689][ T6013] ptrace attach of "./syz-executor exec"[5823] was attempted by "./syz-executor exec"[6013]
[ 97.959660][ T6196] Process accounting resumed
[ 99.214461][ T6245] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 100.265186][ T6216] kexec: Could not allocate control_code_buffer
[ 101.050353][ T5145] Bluetooth: hci3: unexpected event 0x14 length: 16 > 6
[ 102.353134][ T6348] can: request_module (can-proto-5) failed.
[ 103.143072][ T6387] capability: warning: `syz.2.228' uses deprecated v2 capabilities in a way that may be insecure
[ 104.487887][ T6438] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[6438]
[ 104.760679][ T6450] Unable to find swap-space signature
[ 104.802338][ T6452] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 106.387422][ T5145] Bluetooth: hci1: unexpected event 0x32 length: 727 > 9
[ 108.006252][ T29] audit: type=1326 audit(1773683731.659:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6574 comm="syz.0.322" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2d1559c799 code=0x0
[ 108.590831][ T6602] nfs: Bad value for 'source'
[ 113.504426][ T6816] syz.1.439 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 115.646700][ T6917] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 121.614198][ T29] audit: type=1800 audit(1773683745.269:4): pid=7166 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.613" name="trace_pipe" dev="tracefs" ino=3655 res=0 errno=0
[ 121.694223][ T7171] syz.0.615(7171): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[ 122.219192][ T7194] random: crng reseeded on system resumption
[ 123.278092][ T29] audit: type=1800 audit(1773683746.939:5): pid=7242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.647" name="features" dev="configfs" ino=12367 res=0 errno=0
[ 125.488331][ T29] audit: type=1800 audit(1773683749.149:6): pid=7334 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.692" name="version" dev="configfs" ino=11815 res=0 errno=0
[ 127.585574][ T5145] Bluetooth: hci3: unknown advertising packet type: 0xea
[ 127.734113][ T29] audit: type=1800 audit(1773683751.389:7): pid=7410 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.732" name="lu_gp_id" dev="configfs" ino=12577 res=0 errno=0
[ 128.357972][ T7434] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 128.718390][ T7450] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 133.136640][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 133.144695][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 133.962767][ T7703] Unable to find swap-space signature
[ 134.283155][ T5145] Bluetooth: hci1: unexpected event 0x34 length: 11 > 6
[ 134.600949][ T7733] ima: policy update failed
[ 134.635599][ T29] audit: type=1802 audit(1773684781.286:8): pid=7733 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.890" res=0 errno=0
[ 135.458266][ T5145] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5
[ 137.068362][ T5145] Bluetooth: hci0: unexpected event 0x01 length: 124 > 1
[ 139.070551][ T5145] Bluetooth: hci2: unexpected event 0x33 length: 124 > 10
[ 142.766702][ T8137] mmap: syz.0.1091 (8137) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 144.426915][ T29] audit: type=1800 audit(1773684791.071:9): pid=8195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1121" name="dbroot" dev="configfs" ino=14199 res=0 errno=0
[ 144.598788][ T8134] kexec: Could not allocate control_code_buffer
[ 144.947754][ T8220] syz.0.1132 (8220): attempted to duplicate a private mapping with mremap. This is not supported.
[ 150.236452][ T8470] nvme_fcloop: unknown parameter or missing value '7=";�&L=j�"Yq'R"'
[ 150.677031][ T8493] vhci_hcd: not connected 4
[ 151.827694][ T8539] kAFS: Invalid Command on /proc/fs/afs/cells file
[ 152.254926][ T8560] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 152.347480][ T8564] Per memcg swappiness does not exist in cgroup v2. See memory.reclaim or memory.swap.max there
[ 152.347480][ T8564]
[ 152.466663][ T8570] ICMPv6: process `syz.2.1305' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[ 152.880138][ T8586] bond0: invalid ARP target specified
[ 153.776271][ T8625] random: crng reseeded on system resumption
[ 154.105321][ T5145] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[ 154.576772][ T8659] aoe: can't write to that file.
[ 154.963163][ T5145] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[ 155.729761][ T8701] bdi 43:192: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead.
[ 156.138346][ T5831] Bluetooth: hci0: command 0x2016 tx timeout
[ 157.012149][ T5831] Bluetooth: hci1: command 0x2016 tx timeout
[ 157.103662][ T29] audit: type=1800 audit(1843106578.214:10): pid=8758 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1395" name="discovery_nqn" dev="configfs" ino=16661 res=0 errno=0
[ 158.206896][ T5145] Bluetooth: hci0: command 0x2016 tx timeout
[ 158.915327][ T8836] binder: binder_mmap: 8835 0-1000 bad vm_flags failed -1
[ 159.084066][ T5827] Bluetooth: hci1: command 0x2016 tx timeout
[ 159.211767][ T5831] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[ 159.696866][ T5827] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[ 161.231190][ T8954] vhci_hcd vhci_hcd.2: invalid port number 16
[ 161.251147][ T8954] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[ 161.839077][ T8985] =======================================================
[ 161.839077][ T8985] WARNING: The mand mount option has been deprecated and
[ 161.839077][ T8985] and is ignored by this kernel. Remove the mand
[ 161.839077][ T8985] option from the mount to silence this warning.
[ 161.839077][ T8985] =======================================================
[ 165.140431][ T9117] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0
[ 168.349000][ T9228] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations!
[ 168.582544][ T9236] QAT: failed to copy from user.
[ 169.041466][ T9256]
[ 169.802587][ T9282] process 'syz.0.1651' launched '/dev/fd/3' with NULL argv: empty string added
[ 169.829107][ T29] audit: type=1800 audit(1843106590.994:11): pid=9287 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1653" name="discovery_nqn" dev="configfs" ino=17944 res=0 errno=0
[ 171.384864][ T9356] program syz.0.1686 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 171.405662][ T9356] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 171.557740][ T9365] warning: `syz.1.1690' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[ 172.950080][ T9430] QAT: failed to copy from user cfg_data.
[ 173.653972][ T9464] usb usb4: usbfs: process 9464 (syz.2.1739) did not claim interface 0 before use
[ 173.748651][ T9468] binder: 9465:9468 ioctl c0306201 200000000000 returned -14
[ 174.904462][ T9529] scsi_dev_info_list_add_str: bad dev info string '�' '' ''
[ 175.181213][ T9536] ACPI: \_SB_.LNKS: No IRQ available. Try pci=noacpi or acpi=off
[ 175.212801][ T9536] pci 0000:00:01.3: PCI INT A: no GSI
[ 176.192558][ T9590] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[ 176.219135][ T9590] CIFS mount error: No usable UNC path provided in device string!
[ 176.219135][ T9590]
[ 176.231746][ T9590] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 176.682299][ T9609] nvme_fcloop: unknown parameter or missing value '1'
[ 177.945401][ T9665] usb usb2: usbfs: process 9665 (syz.0.1837) did not claim interface 4 before use
[ 180.108595][ T9769] program syz.3.1887 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 181.564472][ T9828] cougar: G6 mapped to F18
[ 181.790445][ T9840] bond0: Unable to set down delay as MII monitoring is disabled
[ 181.964835][ T9848] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[9848]
[ 182.044295][ T29] audit: type=1800 audit(1843106603.272:12): pid=9852 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1929" name="dbroot" dev="configfs" ino=20497 res=0 errno=0
[ 182.092611][ T9852] db_root: cannot open: /dev/audio1
[ 182.102267][ T9852] db_root: not a directory: /dev/audio1
[ 183.504216][ T9916] block2mtd: error: cannot open device inX�±jFB�B>U;߸�Ilk
[ 186.233545][T10051] program syz.1.2025 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 186.732070][T10076] program syz.2.2035 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 191.106657][T10282] kAFS: Invalid Command on /proc/fs/afs/cells file
[ 191.502672][T10301] WARNING! power/level is deprecated; use power/control instead
[ 191.555798][T10304] nvme_fcloop: unknown parameter or missing value ''
[ 191.986727][T10325] QAT: Device 250 not found
[ 193.023884][ T29] audit: type=1800 audit(1843106614.303:13): pid=10377 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2176" name="dbroot" dev="configfs" ino=21837 res=0 errno=0
[ 193.471968][T10392] block2mtd: illegal erase size
[ 194.362535][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 194.369166][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 195.931405][T10498] usbcore.quirks: string doesn't fit in 127 chars.
[ 196.138149][T10509] synth uevent: /module/au0828: unknown uevent action string
[ 196.323370][T10521] usbcore.quirks: string doesn't fit in 127 chars.
[ 196.887858][T10545] usbcore.quirks: string doesn't fit in 127 chars.
[ 197.506986][T10575] kAFS: unparsable volume name
[ 198.339225][T10608] bond0: invalid ARP target specified
[ 198.627426][T10622] program syz.1.2299 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 198.680695][T10626] [U] 0="/�
[ 198.684898][T10626] [U] �
[ 198.696247][T10626] [U] EeQ@�
[ 198.746437][T10625] [U] �
[ 199.129630][T10645] kfence: disabled
[ 199.812291][T10679] usb usb3: usbfs: process 10679 (syz.0.2326) did not claim interface 0 before use
[ 200.681807][T10719] block2mtd: too many arguments
[ 200.876096][T10730] usb usb37: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 200.893946][T10730] vhci_hcd vhci_hcd.2: invalid port number 0
[ 201.121984][T10741] i8042 aux 00:02: in use; can't configure
[ 201.189000][T10746] synth uevent: /bus/hid/drivers/zeroplus: unknown uevent action string
[ 201.356748][T10754] delete_channel: no stack
[ 201.637058][T10766] __vm_enough_memory: pid: 10766, comm: syz.1.2368, bytes: 9223372036854775808 not enough memory for the allocation
[ 202.019170][ T29] audit: type=1400 audit(1843106623.335:14): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=10785 comm="syz.0.2379"
[ 202.188799][T10793] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[ 202.643112][T10814] bond0: option slaves: interface - does not exist!
[ 202.960484][ T29] audit: type=1804 audit(1843106624.290:15): pid=10829 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2399" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[ 203.788297][T10874] : Can't lookup blockdev
[ 206.147824][ T29] audit: type=1806 audit(1843106627.485:16): xattr="." res=0
[ 206.625152][T10909] Bluetooth: hci0: command 0x2016 tx timeout
[ 206.633346][T10909] Bluetooth: hci1: command 0x2016 tx timeout
[ 206.639472][T10909] Bluetooth: hci3: command 0x0406 tx timeout
[ 206.645560][T10909] Bluetooth: hci2: command 0x0406 tx timeout
[ 206.678527][T11012] syz.2.2488 (11012): drop_caches: 0
[ 206.773417][T11014] binder: 11013:11014 ioctl c0046209 ffffffffffffffff returned -22
[ 207.392336][T11046] QAT: failed to copy from user cfg_data.
[ 208.590306][T11104] syz.3.2533 uses obsolete (PF_INET,SOCK_PACKET)
[ 210.319666][T11179] usb usb13: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 212.972361][T11293] bond0: option packets_per_slave: invalid value (�Xnp�)
[ 212.986614][T11293] bond0: option packets_per_slave: allowed values 0 - 65535
[ 215.969234][T11410] udc dummy_udc.0: soft-connect without a gadget driver
[ 216.291500][T11423] ubi9: attaching mtd0
[ 216.300911][T11423] ubi9 error: ubi_attach_mtd_dev: bad VID header (5559) or data offsets (5623)
[ 218.525988][T11520] bonding: no command found in bonding_masters - use +ifname or -ifname
[ 221.035614][T11634] nfsd: Unknown parameter 'ԣ'
[ 221.614855][T11660] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 222.495723][T11704] EXT4-fs error (device sda1): trigger_test_error:130: comm syz.0.2830: 7
[ 222.546327][T10907] Bluetooth: hci1: unexpected event 0x3e length: 0 < 1
[ 223.737451][T11760] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 223.882018][T11767] Format for unlinking a device is "netnsfd:ifidx" (int uint).
[ 224.044581][T11773] usb usb37: usbfs: process 11773 (syz.1.2863) did not claim interface 0 before use
[ 226.909314][T11894] rnbd_client L202: map_device: Unknown parameter or missing value '7'
[ 227.364153][T10907] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[ 227.364195][T10907] Bluetooth: hci0: unexpected subevent 0x0e length: 725 > 15
[ 227.379583][T10907] Bluetooth: hci0: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[ 227.456063][T11921] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd
[ 227.689512][T11934] block2mtd: error: cannot open device inX�±jFB�B>U;߸�Ilk
[ 229.061625][T12006] i2c i2c-0: new_device: Missing parameters
[ 231.761024][T12140] cougar: G6 mapped to space
[ 234.145180][T12268] vhci_hcd vhci_hcd.2: SetHubDepth req not supported for USB 2.0 roothub
[ 234.777694][T12304] bond0: no command found in slaves file - use +ifname or -ifname
[ 235.278819][T12327] random: crng reseeded on system resumption
[ 235.678413][T12354] i2c i2c-0: delete_device: Can't parse I2C address
[ 236.074253][T12376] ecryptfs_miscdev_write: Error while inspecting packet size
[ 237.320149][T10907] Bluetooth: hci3: unexpected event 0x31 length: 19 > 6
[ 239.497695][T12532] synth uevent: /devices/virtual/tty/ttyz1: unknown uevent action string
[ 239.513281][T12532] tty ttyz1: uevent: failed to send synthetic uevent: -22
[ 240.124090][T10907] Bluetooth: hci1: Unexpected cc 0x7c89 with no status
[ 240.923973][T12622] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15
[ 241.900491][T10907] Bluetooth: hci0: Unexpected cc 0x7c89 with no status
[ 243.636240][T12795] vhci_hcd vhci_hcd.2: invalid port number 135
[ 243.642491][T12795] vhci_hcd vhci_hcd.2: invalid port number 135
[ 243.993512][T12813] ecryptfs_parse_packet_length: Five-byte packet length not supported
[ 244.001887][T12813] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[ 247.534100][T12995] rcu: RCU calculated value of scheduler-enlistment delay is 10 jiffies.
[ 248.436326][T13041] cifs: Unknown parameter '�) �U�p̢{�V��]762']Ψ!gʮ7�9fM<*ysEh�'
[ 248.781425][T10907] Bluetooth: hci3: Unexpected cc 0x7c89 with no status
[ 249.893478][T13125] block loop4: the capability attribute has been deprecated.
[ 251.601811][T10907] Bluetooth: hci2: Unexpected cc 0x7c89 with no status
[ 253.050995][T13299] vhci_hcd vhci_hcd.0: ClearPortFeature: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[ 253.712510][T13333] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26)
[ 253.718167][T13332] ima: policy update failed
[ 253.744876][ T29] audit: type=1802 audit(1843106675.299:17): pid=13332 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.3522" res=0 errno=0
[ 254.629887][T13383] block2mtd: Using custom MTD label '' for dev
[ 254.640386][T13383] block2mtd: error: cannot open device
[ 255.355913][T10907] Bluetooth: hci3: Unexpected cc 0x7c89 with no status
[ 255.526976][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 255.535851][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 255.897564][ T29] audit: type=1800 audit(1843106677.469:18): pid=13464 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3576" name="lu_gp_id" dev="configfs" ino=31009 res=0 errno=0
[ 256.514295][T13497] bond0: no command found in slaves file - use +ifname or -ifname
[ 260.510654][T13731] ptp ptp0: only physical clock in use now
[ 260.681051][T13738] rnbd_client L213: map_device: Parameters missing
[ 261.129926][T13763] Format for deleting device is "id" (uint).
[ 262.058409][T13809] zram: Added device: zram1
[ 263.241883][T13896] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 263.652368][ C0] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff81b10f9a (__mcheck_cpu_init_prepare_banks+0x18a/0x380)
[ 263.668019][ C0] Call Trace:
[ 263.671325][ C0]
[ 263.674196][ C0] ? __pfx___mcheck_cpu_init_prepare_banks+0x10/0x10
[ 263.680909][ C0] ? sched_clock_cpu+0x6c/0x570
[ 263.686013][ C0] ? lock_acquire+0x1cf/0x380
[ 263.690714][ C0] ? __pfx_mce_cpu_restart+0x10/0x10
[ 263.696020][ C0] mce_cpu_restart+0xd5/0x1f0
[ 263.700719][ C0] __flush_smp_call_function_queue+0x281/0x960
[ 263.706892][ C0] __sysvec_call_function_single+0x81/0x470
[ 263.712800][ C0] sysvec_call_function_single+0x51/0xc0
[ 263.718456][ C0] asm_sysvec_call_function_single+0x1a/0x20
[ 263.724456][ C0] RIP: 0010:unwind_next_frame+0x6f5/0x1ea0
[ 263.730285][ C0] Code: 5b 0c 00 0f 84 78 fc ff ff 80 3d 65 fc 5b 12 00 0f 85 6b fc ff ff 4c 89 ef c6 05 55 fc 5b 12 01 e8 30 f6 ff ff e9 57 fc ff ff 56 04 35 00 84 c0 0f 85 dd f9 ff ff e8 29 a9 d5 09 85 c0 0f 84
[ 263.750099][ C0] RSP: 0018:ffffc90000007a30 EFLAGS: 00000202
[ 263.756192][ C0] RAX: 0000000000000001 RBX: 0000000000000002 RCX: 0000000000000005
[ 263.764169][ C0] RDX: ffffffff81b7affd RSI: ffffffff8de59622 RDI: ffffffff8c1b06a0
[ 263.772150][ C0] RBP: ffffc90000007b38 R08: 0000000016277d5e R09: 0000000000000007
[ 263.780137][ C0] R10: 0000000000000200 R11: 0000000000000000 R12: fffff52000000f60
[ 263.788114][ C0] R13: ffffc90000007af0 R14: ffffc90000007af0 R15: ffffc90000007af8
[ 263.796188][ C0] ? unwind_next_frame+0xbd/0x1ea0
[ 263.801324][ C0] ? arch_stack_walk+0x73/0xf0
[ 263.806110][ C0] __unwind_start+0x3d1/0x7f0
[ 263.810799][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 263.816965][ C0] arch_stack_walk+0x73/0xf0
[ 263.821568][ C0] ? arch_stack_walk+0x73/0xf0
[ 263.826363][ C0] stack_trace_save+0x8e/0xc0
[ 263.831052][ C0] ? __pfx_stack_trace_save+0x10/0x10
[ 263.836440][ C0] ? __lock_acquire+0x4a5/0x2630
[ 263.841402][ C0] ? __lock_acquire+0x4a5/0x2630
[ 263.846360][ C0] save_stack+0x162/0x1e0
[ 263.850713][ C0] ? __pfx_save_stack+0x10/0x10
[ 263.855612][ C0] ? page_ext_put+0x3e/0xd0
[ 263.860140][ C0] __reset_page_owner+0x84/0x190
[ 263.865089][ C0] __free_frozen_pages+0x7e1/0x10d0
[ 263.870311][ C0] tlb_remove_table_rcu+0x2cf/0x380
[ 263.875530][ C0] ? rcu_core+0x59d/0x10d0
[ 263.879962][ C0] rcu_core+0x5a2/0x10d0
[ 263.884223][ C0] ? try_to_wake_up+0x160/0x1a80
[ 263.889176][ C0] ? __pfx_rcu_core+0x10/0x10
[ 263.893865][ C0] ? __pfx_try_to_wake_up+0x10/0x10
[ 263.899076][ C0] ? mark_held_locks+0x40/0x70
[ 263.903861][ C0] handle_softirqs+0x1eb/0x9e0
[ 263.908732][ C0] ? __pfx_handle_softirqs+0x10/0x10
[ 263.914033][ C0] ? __alloc_skb+0x5b7/0x710
[ 263.918816][ C0] do_softirq+0xac/0xe0
[ 263.922987][ C0]
[ 263.925921][ C0]
[ 263.928866][ C0] __local_bh_enable_ip+0xf8/0x120
[ 263.934009][ C0] __alloc_skb+0x5db/0x710
[ 263.938439][ C0] ? __alloc_skb+0x5b7/0x710
[ 263.943042][ C0] ? __pfx___alloc_skb+0x10/0x10
[ 263.947998][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 263.953398][ C0] ? do_raw_spin_unlock+0x145/0x1e0
[ 263.958624][ C0] nsim_dev_trap_report_work+0x2af/0xd10
[ 263.964291][ C0] process_one_work+0xa23/0x19a0
[ 263.969265][ C0] ? __pfx_process_one_work+0x10/0x10
[ 263.974664][ C0] ? __pfx_nsim_dev_trap_report_work+0x10/0x10
[ 263.980837][ C0] worker_thread+0x5ef/0xe50
[ 263.985629][ C0] ? __pfx_worker_thread+0x10/0x10
[ 263.990776][ C0] ? kthread+0x13a/0x450
[ 263.995031][ C0] ? __pfx_worker_thread+0x10/0x10
[ 264.000156][ C0] kthread+0x370/0x450
[ 264.004242][ C0] ? __pfx_kthread+0x10/0x10
[ 264.008848][ C0] ret_from_fork+0x754/0xd80
[ 264.013459][ C0] ? __pfx_ret_from_fork+0x10/0x10
[ 264.018592][ C0] ? __switch_to+0x7b4/0x1120
[ 264.023284][ C0] ? __pfx_kthread+0x10/0x10
[ 264.027903][ C0] ret_from_fork_asm+0x1a/0x30
[ 264.032699][ C0]
[ 265.257685][T13974] Debayer A: ================= START STATUS =================
[ 265.275908][T13974] Debayer A: Debayer Mean Window Size: 3
[ 265.286994][T13974] Debayer A: ================== END STATUS ==================
[ 265.293064][T13980] sd 0:0:1:0: PR command failed: 1026
[ 265.300243][T13980] sd 0:0:1:0: Sense Key : Illegal Request [current]
[ 265.320845][T13980] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 266.606124][T14041] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12)
[ 268.064450][T14119] deleting an unspecified loop device is not supported.
[ 269.488197][T14185] hub 3-0:1.0: USB hub found
[ 269.511539][T14185] hub 3-0:1.0: 1 port detected
[ 269.556244][T14185] usb usb3: authorized to connect
[ 270.007874][T14216] sysfs_service_op_store: Client not running :-5:
[ 270.070973][T14219] i2c i2c-0: new_device: Can't parse I2C address
[ 270.807148][T14250] Setting dangerous option i915.mitigations - tainting kernel
[ 271.055063][T14263] wlan1: mtu less than device minimum
[ 271.707684][ T5869] Process accounting resumed
[ 273.156684][T14373] random: crng reseeded on system resumption
[ 273.252038][T14378] synth uevent: /devices/platform/dummy_hcd.3/usb4/ep_00: unknown uevent action string
[ 273.295493][T14378] ep_00: uevent: failed to send synthetic uevent: -22
[ 273.345692][T14381] usb usb15: usbfs: process 14381 (syz.3.4000) did not claim interface 0 before use
[ 273.387304][T14383] bcache: register_bcache() error : Not a bcache superblock (bad offset)
[ 274.110445][T14423] block2mtd: illegal erase size
[ 274.918246][T14484] overlayfs: "check_copy_up" module option is obsolete
[ 275.632126][T14533] smpboot: CPU 1 is now offline
[ 276.288361][T14568] : Can't lookup blockdev
[ 277.095708][T14610] kafs: addr_prefs: Invalid Command
[ 279.011189][T14698] nvme_fcloop: unknown parameter or missing value '7'
[ 279.160307][T14702] TCP: TCP_TX_DELAY enabled
[ 282.497873][ T29] audit: type=1326 audit(1843106704.194:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14847 comm="syz.1.4205" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6b9079c799 code=0x0
[ 283.126069][T14878] vhci_hcd vhci_hcd.2: invalid port number 253
[ 283.152535][T14878] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[ 284.395524][T14927] program syz.1.4244 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 284.451603][T14927] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 285.265001][T10907] Bluetooth: hci2: unexpected event 0x14 length: 16 > 6
[ 286.373795][T15018] scsi_strcpy_devinfo: vendor string '/&c~n] �|�
[ 286.373795][T15018] M�' is too long
[ 286.447524][T15018] scsi_strcpy_devinfo: model string 'Dd5�K��2b
[ 286.447524][T15018] W�� ' is too long
[ 286.579401][T15027] block2mtd: illegal erase size
[ 288.886842][T15130] usbip-vudc usbip-vudc.0: gadget not bound
[ 291.664344][T15259] vhci_hcd vhci_hcd.1: invalid port number 16
[ 291.688460][T15259] vhci_hcd vhci_hcd.1: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[ 293.349650][T15346] ecryptfs_parse_packet_length: Error parsing packet length
[ 293.373108][T15346] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[ 294.915251][T15424] : Can't lookup blockdev
[ 295.264251][T15442] random: crng reseeded on system resumption
[ 295.947073][T15471] Invalid input. Must be >= 4608
[ 296.303377][T15485] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 296.513423][T15493] cifs: Unknown parameter 'no�+ 1�`r�sFn)��aHāh`9k�A}�1\D@�.ZC�g^��'
[ 297.371828][T15523] Malformed UNC in devname
[ 297.371828][T15523]
[ 297.392461][T15523] CIFS: VFS: Malformed UNC in devname
[ 298.724266][T15586] ceph: Failed to parse sending metrics switch value 'P^'
[ 299.273767][T10907] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[ 299.282193][T10907] Bluetooth: hci1: Invalid handle: 0x3a4a > 0x0eff
[ 301.317503][T15726] zram0: detected capacity change from 0 to 16
[ 301.607094][T15742] ecryptfs_miscdev_write: memdup_user returned error [-14]
[ 302.404278][T10219] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[ 302.412414][T10219] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff
[ 302.778235][T15816] ima: policy update failed
[ 302.788461][ T29] audit: type=1802 audit(1843106724.579:20): pid=15816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.4645" res=0 errno=0
[ 302.857333][T15821] binder: 15818:15821 ioctl 4018620d 9 returned -22
[ 302.981708][T15824] program syz.1.4648 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 303.036055][T15827] random: crng reseeded on system resumption
[ 305.688476][T15950] ICMPv6: process `syz.3.4710' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead
[ 306.772821][T15988] zswap: compressor - not available
[ 307.146949][T16016] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes
[ 308.653361][T16089] CIFS mount error: No usable UNC path provided in device string!
[ 308.653361][T16089]
[ 308.705409][T16089] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 309.657350][T16138] syz.3.4796: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 309.732785][T16138] CPU: 0 UID: 0 PID: 16138 Comm: syz.3.4796 Tainted: G U syzkaller #0 PREEMPT(full)
[ 309.732816][T16138] Tainted: [U]=USER
[ 309.732822][T16138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 309.732831][T16138] Call Trace:
[ 309.732838][T16138]
[ 309.732846][T16138] dump_stack_lvl+0x100/0x190
[ 309.732877][T16138] warn_alloc.cold+0x95/0x1c1
[ 309.732907][T16138] ? __pfx_warn_alloc+0x10/0x10
[ 309.732935][T16138] ? __lock_acquire+0x4a5/0x2630
[ 309.732977][T16138] __vmalloc_node_range_noprof+0x1252/0x1530
[ 309.733002][T16138] ? rcu_is_watching+0x12/0xc0
[ 309.733029][T16138] ? trace_contention_end+0x140/0x180
[ 309.733054][T16138] ? dvb_dvr_do_ioctl+0x15d/0x270
[ 309.733072][T16138] ? dvb_dvr_do_ioctl+0x7e/0x270
[ 309.733087][T16138] ? tomoyo_path_number_perm+0x28f/0x580
[ 309.733106][T16138] ? tomoyo_path_number_perm+0x28f/0x580
[ 309.733127][T16138] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 309.733149][T16138] ? __pfx___mutex_lock+0x10/0x10
[ 309.733178][T16138] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 309.733197][T16138] ? futex_wait+0x125/0x380
[ 309.733227][T16138] ? dvb_dvr_do_ioctl+0x15d/0x270
[ 309.733243][T16138] __vmalloc_node_noprof+0xad/0xf0
[ 309.733265][T16138] ? dvb_dvr_do_ioctl+0x15d/0x270
[ 309.733283][T16138] dvb_dvr_do_ioctl+0x15d/0x270
[ 309.733303][T16138] dvb_usercopy+0x167/0x340
[ 309.733331][T16138] ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[ 309.733349][T16138] ? __pfx_dvb_usercopy+0x10/0x10
[ 309.733387][T16138] ? __fget_files+0x21f/0x3d0
[ 309.733408][T16138] dvb_dvr_ioctl+0x29/0x40
[ 309.733423][T16138] ? __pfx_dvb_dvr_ioctl+0x10/0x10
[ 309.733439][T16138] __x64_sys_ioctl+0x18e/0x210
[ 309.733467][T16138] do_syscall_64+0x106/0xf80
[ 309.733490][T16138] ? clear_bhb_loop+0x40/0x90
[ 309.733512][T16138] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 309.733531][T16138] RIP: 0033:0x7f2a7459c799
[ 309.733546][T16138] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 309.733562][T16138] RSP: 002b:00007f2a7543c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 309.733579][T16138] RAX: ffffffffffffffda RBX: 00007f2a74815fa0 RCX: 00007f2a7459c799
[ 309.733590][T16138] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000003
[ 309.733600][T16138] RBP: 00007f2a74632c99 R08: 0000000000000000 R09: 0000000000000000
[ 309.733610][T16138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 309.733620][T16138] R13: 00007f2a74816038 R14: 00007f2a74815fa0 R15: 00007ffefe3a0398
[ 309.733642][T16138]
[ 309.733649][T16138] Mem-Info:
[ 310.080889][T16144] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000
[ 310.107296][T16144] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[ 310.137641][T16144] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000
[ 310.162107][T16144] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[ 310.171530][T16144] page dumped because: unmovable page
[ 310.177054][T16144] page_owner info is not present (never set?)
[ 310.632616][T10907] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[ 310.632645][T10907] Bluetooth: hci0: unexpected subevent 0x06 length: 725 > 10
[ 310.772959][T16138] active_anon:6441 inactive_anon:0 isolated_anon:0
[ 310.772959][T16138] active_file:12823 inactive_file:45815 isolated_file:0
[ 310.772959][T16138] unevictable:768 dirty:82 writeback:6
[ 310.772959][T16138] slab_reclaimable:11500 slab_unreclaimable:90601
[ 310.772959][T16138] mapped:24210 shmem:1356 pagetables:1020
[ 310.772959][T16138] sec_pagetables:0 bounce:0
[ 310.772959][T16138] kernel_misc_reclaimable:0
[ 310.772959][T16138] free:1336412 free_pcp:871 free_cma:0
[ 310.943722][T16138] Node 0 active_anon:25464kB inactive_anon:0kB active_file:51292kB inactive_file:183124kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:96576kB dirty:376kB writeback:24kB shmem:3888kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:6144kB kernel_stack:11008kB pagetables:3844kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 311.057114][T16138] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:188kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:56kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:132kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 311.159894][T16138] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 311.263023][T16138] lowmem_reserve[]: 0 2477 2478 2478 2478
[ 311.281026][T16138] Node 0 DMA32 free:1385248kB boost:0kB min:34304kB low:42880kB high:51456kB reserved_highatomic:0KB free_highatomic:0KB active_anon:25488kB inactive_anon:0kB active_file:51292kB inactive_file:183124kB unevictable:1536kB writepending:452kB zspages:0kB present:3129332kB managed:2537384kB mlocked:0kB bounce:0kB free_pcp:3736kB local_pcp:3736kB free_cma:0kB
[ 311.394401][T16138] lowmem_reserve[]: 0 0 1 1 1
[ 311.409996][T16138] Node 0 Normal free:4kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1060kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[ 311.515214][T16138] lowmem_reserve[]: 0 0 0 0 0
[ 311.534644][T16138] Node 1 Normal free:3945164kB boost:0kB min:55580kB low:69472kB high:83364kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:188kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:384kB local_pcp:384kB free_cma:0kB
[ 311.687214][T16138] lowmem_reserve[]: 0 0 0 0 0
[ 311.730462][T16138] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 311.774895][T16138] Node 0 DMA32: 4028*4kB (UME) 2840*8kB (UME) 1657*16kB (UME) 620*32kB (UME) 280*64kB (UME) 255*128kB (UME) 218*256kB (UME) 181*512kB (UM) 89*1024kB (UME) 1*2048kB (U) 246*4096kB (UM) = 1385024kB
[ 311.856332][T16138] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[ 311.917760][T16138] Node 1 Normal: 7*4kB (UM) 8*8kB (UM) 9*16kB (UM) 11*32kB (UM) 4*64kB (U) 7*128kB (UM) 4*256kB (UM) 2*512kB (UM) 1*1024kB (M) 0*2048kB 962*4096kB (UM) = 3945164kB
[ 311.983638][T16138] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 311.983676][T16138] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 311.983690][T16138] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 311.983713][T16138] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 311.983727][T16138] 60003 total pagecache pages
[ 311.983734][T16138] 0 pages in swap cache
[ 311.983741][T16138] Free swap = 124996kB
[ 311.983747][T16138] Total swap = 124996kB
[ 311.983755][T16138] 2097051 pages RAM
[ 311.983761][T16138] 0 pages HighMem/MovableOnly
[ 311.983768][T16138] 430825 pages reserved
[ 311.983774][T16138] 0 pages cma reserved
[ 312.249983][T16217] usb usb13: check_ctrlrecip: process 16217 (syz.0.4834) requesting ep 01 but needs 81
[ 312.250013][T16217] usb usb13: usbfs: process 16217 (syz.0.4834) did not claim interface 0 before use
[ 312.462434][ T29] audit: type=1800 audit(1843106734.305:21): pid=16224 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4838" name="dbroot" dev="configfs" ino=39425 res=0 errno=0
[ 312.680446][T10907] Bluetooth: hci0: command 0x2016 tx timeout
[ 313.488744][T16266] bcache: register_bcache() error : failed to open device
[ 314.333842][ T29] audit: type=1800 audit(1843106736.183:22): pid=16312 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.4880" name="sr0" dev="devtmpfs" ino=2865 res=0 errno=0
[ 315.391519][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 315.400897][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 316.363633][T16404] vmstat_refresh: nr_hugetlb -2048
[ 317.806246][T16471] usb usb24: usbfs: process 16471 (syz.2.4955) did not claim interface 0 before use
[ 318.294574][T16488] batman_adv: Routing algorithm '7' is not supported
[ 321.266779][T16606] ubi0: attaching mtd0
[ 321.335158][T16606] ubi0: scanning is finished
[ 321.368989][T16606] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[ 321.751370][T16606] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 326.047484][T16804] i2c i2c-0: new_device: Invalid device name
[ 326.641892][T16825] delete_channel: no stack
[ 327.184460][T16851] : Can't lookup blockdev
[ 327.680303][T16878] mmap: syz.0.5156 (16878): VmData 45879296 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data.
[ 330.451368][T16998] zram: Can't change algorithm for initialized device
[ 330.727866][T17010]
[ 331.152152][T17029] ima: policy update failed
[ 331.198628][ T29] audit: type=1802 audit(4294967313.746:23): pid=17029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.5223" res=0 errno=0
[ 334.186289][T17164] kafs: addr_prefs: Invalid Command
[ 334.437252][T17175] i2c i2c-0: delete_device: Extra parameters
[ 334.587707][T17183] futex_wake_op: syz.3.5290 tries to shift op by -2048; fix this program
[ 334.617387][T17183] futex_wake_op: syz.3.5290 tries to shift op by -2048; fix this program
[ 336.453828][T17264] vivid-007: ================= START STATUS =================
[ 336.502743][T17264] vivid-007: Enable Output Cropping: true
[ 336.528279][T17264] vivid-007: Enable Output Composing: true
[ 336.550612][T17264] vivid-007: Enable Output Scaler: true
[ 336.580852][T17264] vivid-007: Tx RGB Quantization Range: Automatic
[ 336.603680][T17264] vivid-007: Transmit Mode: HDMI
[ 336.637359][T17264] vivid-007: Hotplug Present: 0x00000000
[ 336.657619][T17264] vivid-007: RxSense Present: 0x00000000
[ 336.689739][T17264] vivid-007: EDID Present: 0x00000000
[ 336.711941][T17264] vivid-007: ================== END STATUS ==================
[ 338.759408][T17336] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 340.108171][T17425] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78408
[ 340.146984][T17425] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 340.181072][T17425] memcg:ffff888078408811
[ 340.197499][T17425] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 340.240740][T17425] page_type: f5(slab)
[ 340.260938][T17425] raw: 00fff00000000040 ffff88813fe543c0 dead000000000100 dead000000000122
[ 340.301017][T17425] raw: 0000000000000000 0000100000080008 00000000f5000000 ffff888078408811
[ 340.339969][T17425] head: 00fff00000000040 ffff88813fe543c0 dead000000000100 dead000000000122
[ 340.400005][T17425] head: 0000000000000000 0000100000080008 00000000f5000000 ffff888078408811
[ 340.428544][T17425] head: 00fff00000000003 ffffea0001e10201 00000000ffffffff 00000000ffffffff
[ 340.474508][T17425] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 340.507678][T17425] page dumped because: unmovable page
[ 340.535312][T17425] page_owner tracks the page as allocated
[ 340.565557][T17425] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5836, tgid 5836 (syz-executor), ts 233347590835, free_ts 232532464682
[ 340.658267][T17425] post_alloc_hook+0x153/0x170
[ 340.681496][T17425] get_page_from_freelist+0x111d/0x3140
[ 340.718689][T17425] __alloc_frozen_pages_noprof+0x27c/0x2ba0
[ 340.730463][T17425] new_slab+0xa6/0x6b0
[ 340.758361][T17425] refill_objects+0x26b/0x400
[ 340.780735][T17425] __pcs_replace_empty_main+0x1ab/0x660
[ 340.809204][T17425] __kvmalloc_node_noprof+0x7da/0xa00
[ 340.827965][T17425] xt_alloc_table_info+0x44/0xa0
[ 340.848117][T17425] do_ip6t_set_ctl+0x488/0xb00
[ 340.868676][T17425] nf_setsockopt+0x8d/0xf0
[ 340.926119][T17425] ipv6_setsockopt+0x135/0x170
[ 340.947338][T17425] tcp_setsockopt+0xa7/0x100
[ 340.983731][T17425] do_sock_setsockopt+0xf3/0x1d0
[ 341.030952][T17425] __sys_setsockopt+0x119/0x190
[ 341.053473][T17425] __x64_sys_setsockopt+0xbd/0x160
[ 341.068854][T17425] do_syscall_64+0x106/0xf80
[ 341.073505][T17425] page last free pid 12181 tgid 12181 stack trace:
[ 341.128568][T17425] __free_frozen_pages+0x7e1/0x10d0
[ 341.150237][T17425] qlist_free_all+0x47/0xe0
[ 341.154811][T17425] kasan_quarantine_reduce+0x1a0/0x1f0
[ 341.196214][T17425] __kasan_slab_alloc+0x69/0x90
[ 341.201110][T17425] kmem_cache_alloc_noprof+0x241/0x6e0
[ 341.242716][T17425] __anon_vma_prepare+0x344/0x5e0
[ 341.263076][T17425] __vmf_anon_prepare+0x11f/0x250
[ 341.277603][T10907] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[ 341.321715][T17425] do_anonymous_page+0x552/0x1fb0
[ 341.345769][T17425] __handle_mm_fault+0x1d42/0x2b60
[ 341.350926][T17425] handle_mm_fault+0x36d/0xa20
[ 341.395278][T17425] do_user_addr_fault+0x5a3/0x12f0
[ 341.400469][T17425] exc_page_fault+0x6f/0xd0
[ 341.404982][T17425] asm_exc_page_fault+0x26/0x30
[ 342.702762][T17536] Setting dangerous option i915.mitigations - tainting kernel
[ 342.738174][T17536] Bad "i915.mitigations=�Cm�âUQ��F\� ", '�Cm�âUQ��F\�' is unknown
[ 343.337153][T10219] Bluetooth: hci0: command 0x2016 tx timeout
[ 343.377556][T10907] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[ 343.717134][T17584] program syz.1.5487 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 343.734579][ T796] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[ 343.741587][T10906] Bluetooth: hci2: command 0x0406 tx timeout
[ 344.414671][T17617] vhci_hcd vhci_hcd.2: invalid port number 194
[ 344.451372][T17617] vhci_hcd vhci_hcd.2: invalid port number 194
[ 344.642947][T17630] : Can't lookup blockdev
[ 345.408014][T10906] Bluetooth: hci0: command 0x2016 tx timeout
[ 345.768601][T17683] sd 0:0:1:0: PR command failed: 1026
[ 345.792397][T17683] sd 0:0:1:0: Sense Key : Illegal Request [current]
[ 345.804663][T10219] Bluetooth: hci2: command 0x0406 tx timeout
[ 345.810766][ T796] Bluetooth: hci2: Opcode 0x0406 failed: -110
[ 345.837293][T17683] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 346.958110][T17736] <
[ 347.954569][T10219] Bluetooth: hci2: command 0x0406 tx timeout
[ 347.963761][ T796] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[ 349.666796][T17859] Scaler: ================= START STATUS =================
[ 349.699458][T17859] Scaler: ================== END STATUS ==================
[ 352.835794][T18010] ubi31: attaching mtd0
[ 352.864534][T18010] ubi31: scanning is finished
[ 352.869328][T18010] ubi31 error: ubi_read_volume_table: the layout volume was not found
[ 352.894647][T18013] queue_state_write: operation too long
[ 352.921613][T18013] queue_state_write: use 'run', 'start' or 'kick'
[ 353.051959][T18010] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 353.325091][T18030] nvme_fabrics: unknown parameter or missing value '@' in ctrl creation request
[ 353.405372][T18034] Invalid ELF header magic: != ELF
[ 354.394781][T18080] Line length is too long: Should be less than 4094
[ 355.853688][T18142] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 355.890902][T18142] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0
[ 357.351301][T18209] nvme_fcloop: unknown parameter or missing value '0'
[ 361.211871][T18392] sysfs_service_op_show: Client not running :-5:
[ 361.845195][T10219] Bluetooth: hci0: Unable to find connection for big 0xd2
[ 367.141543][T18680] ecryptfs_miscdev_response: (sizeof(*msg) + msg->data_len) = [1067213646]; data_size = [146]. Invalid packet.
[ 367.212615][T18680] ecryptfs_miscdev_write: Failed to deliver miscdev response to requesting operation; rc = [-22]
�[ 368.279718][T18727] ima: Unable to open file: /suritRy/integrity?iqa/policy (-2)
[ 368.286138][T18726] ima: policy update failed
[ 368.366946][ T29] audit: type=1802 audit(4294985695.087:24): pid=18726 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.6038" res=0 errno=0
[ 368.744930][ T29] audit: type=1800 audit(4294985695.479:25): pid=18748 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.6048" name="lu_gp_id" dev="configfs" ino=47193 res=0 errno=0
[ 368.778860][T18748] kstrtoul() returned -22 for lu_gp_id
[ 369.942896][ T29] audit: type=1400 audit(4294985696.684:26): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=18803 comm="syz.0.6075"
[ 370.857280][T18850] writes to the poll attribute are ignored.
[ 370.896738][T18850] please use driver specific parameters instead.
[ 372.036991][T18904] qrtr: Invalid version 0
[ 372.406431][T18921] blkio.reset_stats is deprecated
[ 372.547136][T18927] bond0: option slaves: interface -�]�=,Don?I|�a CB� does not exist!
[ 374.175902][T18998] vivid-007: ================= START STATUS =================
[ 374.208277][T18998] vivid-007: Generate PTS: true
[ 374.228288][T18998] vivid-007: Generate SCR: true
[ 374.248621][T18998] tpg source WxH: 320x240 (Y'CbCr)
[ 374.289932][T18998] tpg field: 1
[ 374.300780][T18998] tpg crop: (0,0)/320x240
[ 374.309910][T18998] tpg compose: (0,0)/320x240
[ 374.335227][T18998] tpg colorspace: 8
[ 374.355231][T18998] tpg transfer function: 0/0
[ 374.379046][T18998] tpg Y'CbCr encoding: 0/0
[ 374.389283][T18998] tpg quantization: 0/0
[ 374.421335][T18998] tpg RGB range: 0/2
[ 374.440043][T18998] vivid-007: ================== END STATUS ==================
[ 374.980761][T19035] block2mtd: device name too long
[ 375.978449][T19083] [U] ^Z
[ 376.325875][ T29] audit: type=1807 audit(4294985703.104:27): UNKNOWN=0"]$|1j0B|d�ӉO+/xWӦ^gq%ḦrO� res=0
[ 376.338841][T19101] ima: policy update failed
[ 376.400785][ T29] audit: type=1802 audit(4294985703.114:28): pid=19102 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.6222" res=0 errno=0
[ 376.488177][ T29] audit: type=1802 audit(4294985703.145:29): pid=19101 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.6222" res=0 errno=0
[ 377.818759][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 377.825848][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 378.419498][T19190] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 381.248227][T19320] kernel read not supported for file /\*)A (pid: 19320 comm: syz.1.6326)
[ 381.257203][ T29] audit: type=1800 audit(4294985708.048:30): pid=19320 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.6326" name="\*)A" dev="mqueue" ino=48968 res=0 errno=0
[ 382.542488][T19367] pci 0000:00:00.0: MSI/MSI-X allowed for future drivers
[ 383.695970][T19405] bond0: option mode: unable to set because the bond device is up
[ 383.910950][T19416] Setting dangerous option i915.mitigations - tainting kernel
[ 386.292820][T19512] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint
[ 386.909430][T19538] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed.
[ 388.817080][T19630] syz.3.6469 (19630): attempted to duplicate a private mapping with mremap. This is not supported.
[ 389.427051][T19650] usb usb36: usbfs: process 19650 (syz.2.6487) did not claim interface 0 before use
[ 390.196388][T19678] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 391.210492][T19705] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma?
[ 392.011658][T19724] zswap: compressor ��^`#ߗ(2NA�V�1`Wnf�\'J돆#�If&ͦ5����j)٥Kp$'�\�&9r��y��*paۄH,T{�Kf_SQAW not available
[ 392.693121][T19746] ICMPv6: process `syz.3.6535' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead
[ 393.228641][T19763] binder: 19762:19763 ioctl c0046209 9 returned -22
[ 393.272129][ T29] audit: type=1800 audit(4294985720.124:31): pid=19765 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.6543" name="SYSV00000014" dev="hugetlbfs" ino=0 res=0 errno=0
[ 393.842782][T19782] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 394.883948][T19815] scsi_dev_info_list_add_str: bad dev info string ')zD��5�fk+*X�#R84*�Vsn�dvq�QW}~�YrȀ�-8VGDƘ��LB�%v�v}�Ypq|�?O[,!�7xWDr%[}E$�3�?G�9Ff=lrGH;2L<�=|�8�-c���Fո�"[v9�q�4Mmvq�k[�(iNDСM�X�PSqqX4X`V!;r֍)y]W�zfI�H0,��v{q8שUܹ䑉m؛H��TwCz-nR�%2]x05oՕ|3>l�S*L/Cdgӑ�[C�=Cwem)l#' ''S.sHgi�-TY%ܹF*8�nF�TH?�i{' ''
[ 397.152336][T10219] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[ 397.152367][T10219] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15
[ 397.170391][T10219] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[ 399.286820][ T29] audit: type=1800 audit(4294985726.172:32): pid=19952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.6636" name="members" dev="configfs" ino=50988 res=0 errno=0
[ 399.454949][T19958] virtio-pci 0000:00:04.0: [Firmware Bug]: Overriding NUMA node to -1. Contact your vendor for updates.
[ 400.823764][T20018] aoe: invalid device specification
[ 401.041412][T20022] Setting dangerous option i915.mitigations - tainting kernel
[ 402.592575][T20081] random: crng reseeded on system resumption
[ 403.596703][T20127] Invalid ELF header magic: != ELF
[ 403.873096][T20142] random: crng reseeded on system resumption
[ 404.326807][T20160] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6736'.
[ 404.449136][T20166] netlink: 'syz.0.6739': attribute type 1 has an invalid length.
[ 404.457152][T20166] nbd: error processing sock list
[ 405.855973][T20222] openvswitch: netlink: Flow key attr not present in new flow.
[ 405.921593][T20225] netlink: 'syz.3.6766': attribute type 1 has an invalid length.
[ 405.950575][T20225] nbd: error processing sock list
[ 406.669414][T20259] delete_channel: no stack
[ 406.970904][T20275] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6788'.
[ 408.514298][T20368] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6812'.
[ 409.308846][T20400] netlink: del zone limit has 8 unknown bytes
[ 409.621783][T20414] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 409.808678][T10224] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 409.945218][T10224] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 410.055628][T10224] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 410.154959][T10224] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 410.205103][T20422] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 410.617316][T10224] bridge_slave_1: left allmulticast mode
[ 410.641870][T10906] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 410.652470][T10906] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 410.660805][T10906] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 410.671031][T10906] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 410.678589][T10906] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 410.740215][T10224] bridge_slave_1: left promiscuous mode
[ 410.748130][T10224] bridge0: port 2(bridge_slave_1) entered disabled state
[ 410.878405][T10224] bridge_slave_0: left allmulticast mode
[ 410.889708][T10224] bridge_slave_0: left promiscuous mode
[ 410.930413][T10224] bridge0: port 1(bridge_slave_0) entered disabled state
[ 411.323327][T20470] FAULT_INJECTION: forcing a failure.
[ 411.323327][T20470] name failslab, interval 1, probability 0, space 0, times 1
[ 411.379406][T20470] CPU: 0 UID: 0 PID: 20470 Comm: syz.3.6845 Tainted: G U I syzkaller #0 PREEMPT(full)
[ 411.379439][T20470] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 411.379446][T20470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 411.379458][T20470] Call Trace:
[ 411.379464][T20470]
[ 411.379472][T20470] dump_stack_lvl+0x100/0x190
[ 411.379558][T20470] should_fail_ex.cold+0x5/0xa
[ 411.379598][T20470] should_failslab+0xc2/0x120
[ 411.379620][T20470] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 411.379648][T20470] ? alloc_vfsmnt+0x23/0x6a0
[ 411.379685][T20470] alloc_vfsmnt+0x23/0x6a0
[ 411.379706][T20470] ? __pfx___might_resched+0x10/0x10
[ 411.379745][T20470] clone_mnt+0x4b/0x930
[ 411.379774][T20470] copy_tree+0xfc/0xbf0
[ 411.379790][T20470] ? __pfx_down_write+0x10/0x10
[ 411.379895][T20470] copy_mnt_ns+0x2bd/0xc30
[ 411.379916][T20470] ? create_new_namespaces+0x30/0xac0
[ 411.379934][T20470] ? rcu_is_watching+0x12/0xc0
[ 411.379971][T20470] create_new_namespaces+0xd3/0xac0
[ 411.379990][T20470] ? bpf_lsm_capable+0x9/0x10
[ 411.380010][T20470] ? security_capable+0x80/0x260
[ 411.380097][T20470] unshare_nsproxy_namespaces+0xc3/0x1f0
[ 411.380120][T20470] ksys_unshare+0x473/0xad0
[ 411.380155][T20470] ? __pfx_ksys_unshare+0x10/0x10
[ 411.380187][T20470] __x64_sys_unshare+0x31/0x40
[ 411.380209][T20470] do_syscall_64+0x106/0xf80
[ 411.380249][T20470] ? clear_bhb_loop+0x40/0x90
[ 411.380280][T20470] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 411.380298][T20470] RIP: 0033:0x7f2a7459c799
[ 411.380314][T20470] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 411.380330][T20470] RSP: 002b:00007f2a7543c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 411.380348][T20470] RAX: ffffffffffffffda RBX: 00007f2a74815fa0 RCX: 00007f2a7459c799
[ 411.380359][T20470] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000020000
[ 411.380369][T20470] RBP: 00007f2a74632c99 R08: 0000000000000000 R09: 0000000000000000
[ 411.380380][T20470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 411.380390][T20470] R13: 00007f2a74816038 R14: 00007f2a74815fa0 R15: 00007ffefe3a0398
[ 411.380413][T20470]
[ 411.517243][T10224] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 411.521434][T10224] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 411.522622][T10224] bond0 (unregistering): Released all slaves
[ 412.343699][T10224] hsr_slave_0: left promiscuous mode
[ 412.344252][T10224] hsr_slave_1: left promiscuous mode
[ 412.344802][T10224] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 412.344826][T10224] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 412.354134][T10224] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 412.354155][T10224] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 412.447536][T10224] veth1_macvtap: left promiscuous mode
[ 412.447599][T10224] veth0_macvtap: left promiscuous mode
[ 412.447663][T10224] veth1_vlan: left promiscuous mode
[ 412.447751][T10224] veth0_vlan: left promiscuous mode
[ 412.770887][T10219] Bluetooth: hci2: command tx timeout
[ 413.073279][T10224] team0 (unregistering): Port device team_slave_1 removed
[ 413.097265][T10224] team0 (unregistering): Port device team_slave_0 removed
[ 413.311869][T20543] mmap: syz.3.6861 (20543) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 413.916900][T20441] chnl_net:caif_netlink_parms(): no params data found
[ 414.423066][T20441] bridge0: port 1(bridge_slave_0) entered blocking state
[ 414.434564][T20441] bridge0: port 1(bridge_slave_0) entered disabled state
[ 414.472880][T20441] bridge_slave_0: entered allmulticast mode
[ 414.508036][T20441] bridge_slave_0: entered promiscuous mode
[ 414.584605][T20441] bridge0: port 2(bridge_slave_1) entered blocking state
[ 414.629162][T20441] bridge0: port 2(bridge_slave_1) entered disabled state
[ 414.668346][T20441] bridge_slave_1: entered allmulticast mode
[ 414.697216][T20441] bridge_slave_1: entered promiscuous mode
[ 414.840186][T10219] Bluetooth: hci2: command tx timeout
[ 414.888056][T20441] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 414.998226][T20441] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 415.218361][T20700] NFSD: Failed to start, no listeners configured.
[ 415.228571][T20441] team0: Port device team_slave_0 added
[ 415.313280][T20441] team0: Port device team_slave_1 added
[ 415.505354][T20441] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 415.553594][T20441] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 415.665168][T20441] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 415.726310][T20441] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 415.733300][T20441] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 415.802630][T20773] process 'syz.0.6885' launched '/dev/fd/3' with NULL argv: empty string added
[ 415.886018][T20441] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 416.249697][T20441] hsr_slave_0: entered promiscuous mode
[ 416.301932][T20441] hsr_slave_1: entered promiscuous mode
[ 416.343589][T20441] debugfs: 'hsr0' already exists in 'hsr'
[ 416.349434][T20441] Cannot create hsr debugfs directory
[ 416.766152][T20873] __vm_enough_memory: pid: 20873, comm: syz.0.6896, bytes: 4398046511104 not enough memory for the allocation
[ 416.910518][T10219] Bluetooth: hci2: command tx timeout
[ 417.179761][T20912] MTRR 1 not used
[ 418.120933][T20441] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 418.189775][T20441] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 418.224331][T20966] dlm: non-version read from control device 255
[ 418.257331][T20441] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 418.312590][T20441] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 418.984008][T20441] 8021q: adding VLAN 0 to HW filter on device bond0
[ 418.990880][T10219] Bluetooth: hci2: command tx timeout
[ 419.283801][T20441] 8021q: adding VLAN 0 to HW filter on device team0
[ 419.388293][T21038] bridge0: port 1(bridge_slave_0) entered blocking state
[ 419.395460][T21038] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 419.514967][T10218] bridge0: port 2(bridge_slave_1) entered blocking state
[ 419.522152][T10218] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 420.670594][T20441] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 420.866778][T20441] veth0_vlan: entered promiscuous mode
[ 420.929350][T20441] veth1_vlan: entered promiscuous mode
[ 421.038902][T20441] veth0_macvtap: entered promiscuous mode
[ 421.198896][T20441] veth1_macvtap: entered promiscuous mode
[ 421.300648][T20441] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 421.328444][T20441] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 421.363028][T10218] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 421.394890][T10218] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 421.419882][T10218] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 421.428619][T10218] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 421.576636][T14027] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 421.590767][T14027] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 421.667088][T10224] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 421.689991][T10224] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 421.734916][T20441] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 422.087255][T21136] NFSD: Failed to start, no listeners configured.
[ 422.970088][T21192] : entered promiscuous mode
[ 423.845273][T21236] FAULT_INJECTION: forcing a failure.
[ 423.845273][T21236] name fail_usercopy, interval 1, probability 0, space 0, times 1
[ 423.908420][T21236] CPU: 0 UID: 0 PID: 21236 Comm: syz.0.6965 Tainted: G U I syzkaller #0 PREEMPT(full)
[ 423.908454][T21236] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 423.908461][T21236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 423.908471][T21236] Call Trace:
[ 423.908478][T21236]
[ 423.908485][T21236] dump_stack_lvl+0x100/0x190
[ 423.908515][T21236] should_fail_ex.cold+0x5/0xa
[ 423.908536][T21236] core_sys_select+0x938/0xbb0
[ 423.908591][T21236] ? __pfx_core_sys_select+0x10/0x10
[ 423.908641][T21236] ? ktime_get_ts64+0x2d2/0x3f0
[ 423.908663][T21236] ? read_tsc+0x9/0x20
[ 423.908693][T21236] ? ktime_get_ts64+0x256/0x3f0
[ 423.908715][T21236] kern_select+0x20c/0x270
[ 423.908746][T21236] ? __pfx_kern_select+0x10/0x10
[ 423.908781][T21236] __x64_sys_select+0xbd/0x160
[ 423.908796][T21236] ? do_syscall_64+0x95/0xf80
[ 423.908822][T21236] ? lockdep_hardirqs_on+0x78/0x100
[ 423.908847][T21236] do_syscall_64+0x106/0xf80
[ 423.908871][T21236] ? clear_bhb_loop+0x40/0x90
[ 423.908892][T21236] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 423.908911][T21236] RIP: 0033:0x7f2d1559c799
[ 423.908926][T21236] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 423.908942][T21236] RSP: 002b:00007f2d137f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[ 423.908960][T21236] RAX: ffffffffffffffda RBX: 00007f2d15815fa0 RCX: 00007f2d1559c799
[ 423.908971][T21236] RDX: 00002000000000c0 RSI: 0000200000000040 RDI: 0000000000000001
[ 423.908981][T21236] RBP: 00007f2d15632c99 R08: 00002000000001c0 R09: 0000000000000000
[ 423.908992][T21236] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000
[ 423.909003][T21236] R13: 00007f2d15816038 R14: 00007f2d15815fa0 R15: 00007ffef9209be8
[ 423.909024][T21236]
[ 424.628594][T21282] binder: 21281:21282 ioctl 400c620e 2000000001c0 returned -22
[ 425.512841][T21316] NFSD: Failed to start, no listeners configured.
[ 425.571813][T21327] Zero length message leads to an empty skb
[ 425.845930][T21338] openvswitch: netlink: IP tunnel dst address not specified
[ 427.634215][T21405] binder: 21404:21405 ioctl c0306201 200000000000 returned -14
[ 428.128417][T21423] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7039'.
[ 428.197686][T21427] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 428.343124][T21430] nbd: couldn't find a device at index 35644
[ 429.011658][T21459] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7055'.
[ 429.048969][T21452] random: crng reseeded on system resumption
[ 429.171472][T21463] FAULT_INJECTION: forcing a failure.
[ 429.171472][T21463] name failslab, interval 1, probability 0, space 0, times 0
[ 429.235024][T21463] CPU: 0 UID: 0 PID: 21463 Comm: syz.1.7057 Tainted: G U I syzkaller #0 PREEMPT(full)
[ 429.235058][T21463] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 429.235065][T21463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 429.235075][T21463] Call Trace:
[ 429.235081][T21463]
[ 429.235088][T21463] dump_stack_lvl+0x100/0x190
[ 429.235120][T21463] should_fail_ex.cold+0x5/0xa
[ 429.235142][T21463] ? memcg_list_lru_alloc+0x4ec/0x740
[ 429.235170][T21463] should_failslab+0xc2/0x120
[ 429.235193][T21463] __kmalloc_noprof+0xe0/0x850
[ 429.235224][T21463] memcg_list_lru_alloc+0x4ec/0x740
[ 429.235256][T21463] ? __pfx_memcg_list_lru_alloc+0x10/0x10
[ 429.235293][T21463] ? rcu_read_unlock+0x17/0x60
[ 429.235321][T21463] ? get_mem_cgroup_from_objcg+0xd3/0x330
[ 429.235350][T21463] __memcg_slab_post_alloc_hook+0x130/0x990
[ 429.235375][T21463] ? kasan_save_track+0x14/0x30
[ 429.235405][T21463] kmem_cache_alloc_lru_noprof+0x592/0x6e0
[ 429.235433][T21463] ? __d_alloc+0x34/0xa80
[ 429.235458][T21463] __d_alloc+0x34/0xa80
[ 429.235477][T21463] ? security_inode_alloc+0xcf/0x2c0
[ 429.235543][T21463] d_alloc_pseudo+0x1c/0xc0
[ 429.235569][T21463] alloc_file_pseudo+0xcf/0x230
[ 429.235593][T21463] ? __pfx_alloc_file_pseudo+0x10/0x10
[ 429.235617][T21463] ? security_inode_init_security_anon+0x7b/0x230
[ 429.235640][T21463] __do_sys_memfd_secret+0x11d/0x3d0
[ 429.235667][T21463] do_syscall_64+0x106/0xf80
[ 429.235692][T21463] ? clear_bhb_loop+0x40/0x90
[ 429.235713][T21463] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 429.235731][T21463] RIP: 0033:0x7f6b9079c799
[ 429.235747][T21463] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 429.235763][T21463] RSP: 002b:00007f6b91644028 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[ 429.235781][T21463] RAX: ffffffffffffffda RBX: 00007f6b90a15fa0 RCX: 00007f6b9079c799
[ 429.235792][T21463] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 429.235802][T21463] RBP: 00007f6b90832c99 R08: 0000000000000000 R09: 0000000000000000
[ 429.235813][T21463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 429.235822][T21463] R13: 00007f6b90a16038 R14: 00007f6b90a15fa0 R15: 00007ffc8ce36e48
[ 429.235844][T21463]
[ 429.727621][T21477] FAULT_INJECTION: forcing a failure.
[ 429.727621][T21477] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[ 429.759994][T21477] CPU: 0 UID: 0 PID: 21477 Comm: syz.2.7066 Tainted: G U I syzkaller #0 PREEMPT(full)
[ 429.760028][T21477] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 429.760036][T21477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 429.760046][T21477] Call Trace:
[ 429.760052][T21477]
[ 429.760060][T21477] dump_stack_lvl+0x100/0x190
[ 429.760091][T21477] should_fail_ex.cold+0x5/0xa
[ 429.760108][T21477] ? prepare_alloc_pages+0x16d/0x5f0
[ 429.760131][T21477] should_fail_alloc_page+0xeb/0x140
[ 429.760152][T21477] prepare_alloc_pages+0x1f0/0x5f0
[ 429.760176][T21477] __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 429.760204][T21477] ? do_syscall_64+0x81/0xf80
[ 429.760240][T21477] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 429.760278][T21477] ? rcu_is_watching+0x12/0xc0
[ 429.760304][T21477] ? trace_kmalloc+0x101/0x130
[ 429.760322][T21477] ? __kasan_kmalloc+0xaa/0xb0
[ 429.760349][T21477] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 429.760380][T21477] ? policy_nodemask+0xed/0x4f0
[ 429.760400][T21477] alloc_pages_mpol+0x1fb/0x550
[ 429.760419][T21477] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 429.760437][T21477] ? __alloc_skb+0x5b7/0x710
[ 429.760524][T21477] ? __pfx___alloc_skb+0x10/0x10
[ 429.760547][T21477] ? finish_task_switch.isra.0+0x200/0xb80
[ 429.760570][T21477] alloc_pages_noprof+0x131/0x390
[ 429.760590][T21477] alloc_skb_with_frags+0x500/0x810
[ 429.760630][T21477] sock_alloc_send_pskb+0x801/0x980
[ 429.760675][T21477] ? __pfx_sock_alloc_send_pskb+0x10/0x10
[ 429.760708][T21477] tun_get_user+0x8f7/0x3e10
[ 429.760772][T21477] ? __pfx_tun_get_user+0x10/0x10
[ 429.760792][T21477] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 429.760860][T21477] ? find_held_lock+0x2b/0x80
[ 429.760878][T21477] ? tun_get+0x191/0x370
[ 429.760893][T21477] ? tun_get+0x191/0x370
[ 429.760913][T21477] tun_chr_write_iter+0xdc/0x200
[ 429.760933][T21477] vfs_write+0x6ac/0x1070
[ 429.760951][T21477] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 429.760972][T21477] ? __pfx_vfs_write+0x10/0x10
[ 429.760997][T21477] ? find_held_lock+0x2b/0x80
[ 429.761026][T21477] __x64_sys_pwrite64+0x1eb/0x250
[ 429.761044][T21477] ? __pfx___x64_sys_pwrite64+0x10/0x10
[ 429.761068][T21477] do_syscall_64+0x106/0xf80
[ 429.761092][T21477] ? clear_bhb_loop+0x40/0x90
[ 429.761113][T21477] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 429.761132][T21477] RIP: 0033:0x7f6241f9c799
[ 429.761147][T21477] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 429.761164][T21477] RSP: 002b:00007f6242e90028 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[ 429.761182][T21477] RAX: ffffffffffffffda RBX: 00007f6242215fa0 RCX: 00007f6241f9c799
[ 429.761193][T21477] RDX: 000000000000fdf0 RSI: 0000200000000140 RDI: 00000000000000c8
[ 429.761203][T21477] RBP: 00007f6242032c99 R08: 0000000000000000 R09: 0000000000000000
[ 429.761213][T21477] R10: 0000000000000039 R11: 0000000000000246 R12: 0000000000000000
[ 429.761223][T21477] R13: 00007f6242216038 R14: 00007f6242215fa0 R15: 00007ffedc066d18
[ 429.761244][T21477]
[ 430.253942][T21489] syz.1.7071 uses obsolete (PF_INET,SOCK_PACKET)
[ 430.784030][T21511] netlink: 'syz.2.7081': attribute type 1 has an invalid length.
[ 431.317848][T21537] netlink: 'syz.2.7093': attribute type 2 has an invalid length.
[ 431.650212][T21551] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 431.977101][T21561] NFSD: Failed to start, no listeners configured.
[ 432.441829][T21594] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xeffffd12
[ 433.583303][T21631] openvswitch: netlink: Duplicate or invalid key (type 0).
[ 433.913037][T21645] usb usb26: usbfs: interface 0 claimed by hub while 'syz.2.7139' resets device
[ 437.045898][T21757] openvswitch: netlink: Key type 261 is out of range max 32
[ 437.239440][T21765] FAULT_INJECTION: forcing a failure.
[ 437.239440][T21765] name failslab, interval 1, probability 0, space 0, times 0
[ 437.299956][T21765] CPU: 0 UID: 0 PID: 21765 Comm: syz.3.7197 Tainted: G U I syzkaller #0 PREEMPT(full)
[ 437.299988][T21765] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 437.299995][T21765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 437.300005][T21765] Call Trace:
[ 437.300012][T21765]
[ 437.300019][T21765] dump_stack_lvl+0x100/0x190
[ 437.300051][T21765] should_fail_ex.cold+0x5/0xa
[ 437.300072][T21765] should_failslab+0xc2/0x120
[ 437.300092][T21765] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 437.300118][T21765] ? __anon_vma_prepare+0xae/0x5e0
[ 437.300147][T21765] __anon_vma_prepare+0xae/0x5e0
[ 437.300170][T21765] ? do_raw_spin_lock+0x128/0x260
[ 437.300206][T21765] __vmf_anon_prepare+0x11f/0x250
[ 437.300228][T21765] do_huge_pmd_anonymous_page+0x15c/0x1c40
[ 437.300257][T21765] ? __pmd_alloc+0x3fb/0x950
[ 437.300280][T21765] __handle_mm_fault+0x1e9e/0x2b60
[ 437.300307][T21765] ? mt_find+0x45e/0x8e0
[ 437.300401][T21765] ? __pfx___handle_mm_fault+0x10/0x10
[ 437.300425][T21765] ? __pfx_mt_find+0x10/0x10
[ 437.300469][T21765] handle_mm_fault+0x36d/0xa20
[ 437.300499][T21765] __get_user_pages+0xf9c/0x34d0
[ 437.300527][T21765] ? __pfx___get_user_pages+0x10/0x10
[ 437.300554][T21765] populate_vma_page_range+0x267/0x3f0
[ 437.300578][T21765] ? __pfx_populate_vma_page_range+0x10/0x10
[ 437.300599][T21765] ? __pfx_find_vma_intersection+0x10/0x10
[ 437.300619][T21765] ? do_mmap+0x93f/0x12f0
[ 437.300641][T21765] __mm_populate+0x107/0x3a0
[ 437.300663][T21765] ? __pfx___mm_populate+0x10/0x10
[ 437.300685][T21765] ? up_write+0x290/0x4f0
[ 437.300712][T21765] vm_mmap_pgoff+0x37f/0x470
[ 437.300735][T21765] ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 437.300756][T21765] ? do_futex+0x192/0x350
[ 437.300779][T21765] ? __pfx_do_futex+0x10/0x10
[ 437.300806][T21765] ksys_mmap_pgoff+0xe1/0x650
[ 437.300824][T21765] ? __x64_sys_futex+0x34f/0x4d0
[ 437.300846][T21765] ? __x64_sys_futex+0x358/0x4d0
[ 437.300869][T21765] ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 437.300888][T21765] ? xfd_validate_state+0x129/0x190
[ 437.300917][T21765] __x64_sys_mmap+0x125/0x190
[ 437.300945][T21765] do_syscall_64+0x106/0xf80
[ 437.300969][T21765] ? clear_bhb_loop+0x40/0x90
[ 437.300991][T21765] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 437.301009][T21765] RIP: 0033:0x7f2a7459c799
[ 437.301025][T21765] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 437.301041][T21765] RSP: 002b:00007f2a7543c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 437.301059][T21765] RAX: ffffffffffffffda RBX: 00007f2a74815fa0 RCX: 00007f2a7459c799
[ 437.301070][T21765] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 437.301080][T21765] RBP: 00007f2a74632c99 R08: 0000000000000002 R09: 0000000000008000
[ 437.301090][T21765] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 437.301100][T21765] R13: 00007f2a74816038 R14: 00007f2a74815fa0 R15: 00007ffefe3a0398
[ 437.301122][T21765]
[ 437.723206][T21774] sd 0:0:1:0: PR command failed: 1026
[ 437.728751][T21774] sd 0:0:1:0: Sense Key : Illegal Request [current]
[ 437.735510][T21774] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 438.742630][T21818] &#$@\]\-: entered promiscuous mode
[ 438.971629][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 438.978051][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 439.379956][T21841] FAULT_INJECTION: forcing a failure.
[ 439.379956][T21841] name failslab, interval 1, probability 0, space 0, times 0
[ 439.426082][T21841] CPU: 0 UID: 0 PID: 21841 Comm: syz.1.7231 Tainted: G U I syzkaller #0 PREEMPT(full)
[ 439.426114][T21841] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 439.426122][T21841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 439.426133][T21841] Call Trace:
[ 439.426139][T21841]
[ 439.426146][T21841] dump_stack_lvl+0x100/0x190
[ 439.426188][T21841] should_fail_ex.cold+0x5/0xa
[ 439.426210][T21841] should_failslab+0xc2/0x120
[ 439.426230][T21841] __kmalloc_cache_noprof+0x7a/0x6f0
[ 439.426253][T21841] ? sctp_endpoint_new+0xfc/0xb20
[ 439.426369][T21841] sctp_endpoint_new+0xfc/0xb20
[ 439.426398][T21841] ? __pfx_sctp_endpoint_new+0x10/0x10
[ 439.426424][T21841] ? lockdep_init_map_type+0x5c/0x250
[ 439.426448][T21841] ? lockdep_init_map_type+0x5c/0x250
[ 439.426471][T21841] ? lockdep_init_map_type+0x5c/0x250
[ 439.426494][T21841] ? lockdep_init_map_type+0x5c/0x250
[ 439.426520][T21841] sctp_init_sock+0xe2b/0x1300
[ 439.426573][T21841] ? __pfx_sctp_init_sock+0x10/0x10
[ 439.426598][T21841] inet_create+0x94c/0x1060
[ 439.426638][T21841] ? inet_create+0x94/0x1060
[ 439.426661][T21841] __sock_create+0x339/0x860
[ 439.426703][T21841] __sys_socket+0x14d/0x260
[ 439.426723][T21841] ? __pfx___sys_socket+0x10/0x10
[ 439.426749][T21841] __x64_sys_socket+0x72/0xb0
[ 439.426768][T21841] ? lockdep_hardirqs_on+0x78/0x100
[ 439.426794][T21841] do_syscall_64+0x106/0xf80
[ 439.426818][T21841] ? clear_bhb_loop+0x40/0x90
[ 439.426840][T21841] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 439.426859][T21841] RIP: 0033:0x7f6b9079c799
[ 439.426874][T21841] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 439.426891][T21841] RSP: 002b:00007f6b91644028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 439.426909][T21841] RAX: ffffffffffffffda RBX: 00007f6b90a15fa0 RCX: 00007f6b9079c799
[ 439.426920][T21841] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000002
[ 439.426929][T21841] RBP: 00007f6b90832c99 R08: 0000000000000000 R09: 0000000000000000
[ 439.426939][T21841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 439.426949][T21841] R13: 00007f6b90a16038 R14: 00007f6b90a15fa0 R15: 00007ffc8ce36e48
[ 439.426970][T21841]
[ 439.880367][T21855] binder: 21854:21855 ioctl c00c620f 200000000100 returned -22
[ 440.201664][T21858] syz.3.7240 (21858) used greatest stack depth: 19672 bytes left
[ 440.741087][T21889] netlink: 'syz.2.7254': attribute type 11 has an invalid length.
[ 440.771100][T21889] netlink: 'syz.2.7254': attribute type 11 has an invalid length.
[ 440.795841][T21889] netlink: 'syz.2.7254': attribute type 11 has an invalid length.
[ 443.312055][T21997] tc_dump_action: action bad kind
[ 443.580052][T22007] NFSD: Failed to start, no listeners configured.
[ 444.379433][T22052] netlink: 'syz.0.7324': attribute type 2 has an invalid length.
[ 445.516456][T22101] ucma_write: process 3775 (syz.3.7347) changed security contexts after opening file descriptor, this is not allowed.
[ 446.503922][T22146] program syz.0.7369 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 446.943509][T22162] netlink: 'syz.2.7377': attribute type 11 has an invalid length.
[ 447.048190][T22166] netlink: 'syz.0.7378': attribute type 1 has an invalid length.
[ 447.779382][ T29] audit: type=1326 audit(4294985774.890:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22196 comm="syz.3.7394" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2a7459c799 code=0x0
[ 447.805911][T22199] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0
[ 448.198131][T22216] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 448.480877][T22225] netlink: Failed to add � helper -22
[ 448.874046][T22247] FAULT_INJECTION: forcing a failure.
[ 448.874046][T22247] name failslab, interval 1, probability 0, space 0, times 0
[ 448.939811][T22247] CPU: 0 UID: 0 PID: 22247 Comm: syz.3.7419 Tainted: G U I syzkaller #0 PREEMPT(full)
[ 448.939846][T22247] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 448.939854][T22247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 448.939864][T22247] Call Trace:
[ 448.939870][T22247]
[ 448.939878][T22247] dump_stack_lvl+0x100/0x190
[ 448.939909][T22247] should_fail_ex.cold+0x5/0xa
[ 448.939930][T22247] should_failslab+0xc2/0x120
[ 448.939949][T22247] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 448.939977][T22247] ? __pmd_alloc+0xbf/0x950
[ 448.940001][T22247] __pmd_alloc+0xbf/0x950
[ 448.940024][T22247] move_page_tables+0x3224/0x4500
[ 448.940051][T22247] ? __pfx_copy_vma+0x10/0x10
[ 448.940085][T22247] ? __pfx_move_page_tables+0x10/0x10
[ 448.940122][T22247] ? finish_task_switch.isra.0+0x200/0xb80
[ 448.940144][T22247] copy_vma_and_data+0x25c/0x7c0
[ 448.940172][T22247] ? __pfx_copy_vma_and_data+0x10/0x10
[ 448.940208][T22247] ? __vma_start_write+0x17f/0x280
[ 448.940230][T22247] ? __pfx___vma_start_write+0x10/0x10
[ 448.940260][T22247] move_vma+0x51b/0x1890
[ 448.940289][T22247] ? __pfx_move_vma+0x10/0x10
[ 448.940317][T22247] ? mm_get_unmapped_area_vmflags+0xd7/0x130
[ 448.940337][T22247] ? cap_mmap_addr+0x4b/0x120
[ 448.940400][T22247] ? bpf_lsm_mmap_addr+0x9/0x30
[ 448.940416][T22247] ? security_mmap_addr+0x71/0x1e0
[ 448.940438][T22247] ? __get_unmapped_area+0x255/0x3e0
[ 448.940460][T22247] ? vrm_set_new_addr+0x204/0x290
[ 448.940488][T22247] mremap_to+0x1b7/0x450
[ 448.940515][T22247] do_mremap+0xb76/0x2130
[ 448.940550][T22247] ? __pfx_do_mremap+0x10/0x10
[ 448.940582][T22247] ? ksys_write+0x190/0x250
[ 448.940603][T22247] __do_sys_mremap+0x126/0x170
[ 448.940629][T22247] ? __pfx___do_sys_mremap+0x10/0x10
[ 448.940669][T22247] ? __x64_sys_futex+0x34f/0x4d0
[ 448.940705][T22247] do_syscall_64+0x106/0xf80
[ 448.940730][T22247] ? clear_bhb_loop+0x40/0x90
[ 448.940752][T22247] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 448.940796][T22247] RIP: 0033:0x7f2a7459c799
[ 448.940812][T22247] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 448.940828][T22247] RSP: 002b:00007f2a7543c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[ 448.940846][T22247] RAX: ffffffffffffffda RBX: 00007f2a74815fa0 RCX: 00007f2a7459c799
[ 448.940857][T22247] RDX: 0000000000000013 RSI: 0000000000000004 RDI: 0000200000000000
[ 448.940867][T22247] RBP: 00007f2a74632c99 R08: 0000000100000000 R09: 0000000000000000
[ 448.940878][T22247] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[ 448.940888][T22247] R13: 00007f2a74816038 R14: 00007f2a74815fa0 R15: 00007ffefe3a0398
[ 448.940911][T22247]
[ 450.337403][T22294] netlink: Conntrack attr has 16 unknown bytes
[ 450.956154][T22321] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8)
[ 451.244476][T10219] Bluetooth: hci0: ACL packet too small
[ 452.371345][ T29] audit: type=1800 audit(4294985779.492:34): pid=22375 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.7479" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[ 453.248612][T22410] capability: warning: `syz.3.7496' uses 32-bit capabilities (legacy support in use)
[ 453.979162][T22436] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7509'.
[ 454.395465][T22454] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 455.662463][T22499] netlink: zone id is out of range
[ 455.856824][T22503] NFSD: Failed to start, no listeners configured.
[ 456.535600][T22542] FAULT_INJECTION: forcing a failure.
[ 456.535600][T22542] name failslab, interval 1, probability 0, space 0, times 0
[ 456.602745][T22542] CPU: 0 UID: 0 PID: 22542 Comm: syz.1.7558 Tainted: G U I syzkaller #0 PREEMPT(full)
[ 456.602777][T22542] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 456.602785][T22542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 456.602796][T22542] Call Trace:
[ 456.602802][T22542]
[ 456.602809][T22542] dump_stack_lvl+0x100/0x190
[ 456.602858][T22542] should_fail_ex.cold+0x5/0xa
[ 456.602879][T22542] should_failslab+0xc2/0x120
[ 456.602898][T22542] __kmalloc_node_noprof+0xe6/0x850
[ 456.602932][T22542] ? get_callchain_buffers+0x1e5/0x380
[ 456.602959][T22542] get_callchain_buffers+0x1e5/0x380
[ 456.602981][T22542] ? security_capable+0x80/0x260
[ 456.603011][T22542] stack_map_alloc+0x316/0x610
[ 456.603032][T22542] ? __pfx_stack_map_mem_usage+0x10/0x10
[ 456.603053][T22542] map_create+0x84e/0x2ba0
[ 456.603092][T22542] ? futex_unqueue+0x13d/0x2c0
[ 456.603117][T22542] ? __futex_wait+0x256/0x300
[ 456.603151][T22542] ? __pfx_map_create+0x10/0x10
[ 456.603168][T22542] ? __might_fault+0xc5/0x140
[ 456.603193][T22542] ? __might_fault+0xc5/0x140
[ 456.603228][T22542] __sys_bpf+0x2091/0x4b90
[ 456.603252][T22542] ? __pfx___sys_bpf+0x10/0x10
[ 456.603274][T22542] ? __pfx_futex_wait+0x10/0x10
[ 456.603307][T22542] ? ksys_write+0x190/0x250
[ 456.603329][T22542] ? do_futex+0x192/0x350
[ 456.603364][T22542] ? xfd_validate_state+0x129/0x190
[ 456.603396][T22542] __x64_sys_bpf+0x7b/0xc0
[ 456.603416][T22542] ? lockdep_hardirqs_on+0x78/0x100
[ 456.603442][T22542] do_syscall_64+0x106/0xf80
[ 456.603466][T22542] ? clear_bhb_loop+0x40/0x90
[ 456.603488][T22542] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 456.603507][T22542] RIP: 0033:0x7f6b9079c799
[ 456.603522][T22542] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 456.603539][T22542] RSP: 002b:00007f6b91644028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 456.603557][T22542] RAX: ffffffffffffffda RBX: 00007f6b90a15fa0 RCX: 00007f6b9079c799
[ 456.603569][T22542] RDX: 00000000000006f4 RSI: 0000200000000580 RDI: 0000000000000000
[ 456.603580][T22542] RBP: 00007f6b90832c99 R08: 0000000000000000 R09: 0000000000000000
[ 456.603592][T22542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 456.603602][T22542] R13: 00007f6b90a16038 R14: 00007f6b90a15fa0 R15: 00007ffc8ce36e48
[ 456.603625][T22542]
[ 456.953906][T22555] openvswitch: netlink: Tunnel attr 242 out of range max 16
[ 457.348594][T22569] openvswitch: netlink: IP tunnel TTL not specified.
[ 457.970330][T22590] netlink: set zone limit has 8 unknown bytes
[ 458.670586][T22616] netlink: 342 bytes leftover after parsing attributes in process `syz.2.7594'.
[ 459.750803][T22648] openvswitch: netlink: Duplicate or invalid key (type 0).
[ 460.187029][T22665] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7618'.
[ 460.664956][T22679] usb usb26: usbfs: interface 0 claimed by hub while 'syz.0.7622' resets device
[ 461.410477][T22704] netlink: ct_mark mask cannot be 0
[ 464.958371][T22843] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !P�jE�r҄y*"�l-�y�
[ 465.600011][T22877] sd 0:0:1:0: PR command failed: 1026
[ 465.628060][T22877] sd 0:0:1:0: Sense Key : Illegal Request [current]
[ 465.666537][T22877] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 466.472708][T22908] delete_channel: no stack
[ 466.707464][T22919] &#$@\]\-: entered promiscuous mode
[ 467.258890][T22947] openvswitch: netlink: IP tunnel dst address not specified
[ 468.170091][T22992] netlink: 'syz.1.7768': attribute type 1 has an invalid length.
[ 468.918442][T23023] netlink: 'syz.1.7783': attribute type 11 has an invalid length.
[ 469.823454][T23069] FAULT_INJECTION: forcing a failure.
[ 469.823454][T23069] name failslab, interval 1, probability 0, space 0, times 0
[ 469.886638][T23069] CPU: 0 UID: 0 PID: 23069 Comm: syz.0.7802 Tainted: G U I syzkaller #0 PREEMPT(full)
[ 469.886672][T23069] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 469.886680][T23069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 469.886689][T23069] Call Trace:
[ 469.886696][T23069]
[ 469.886703][T23069] dump_stack_lvl+0x100/0x190
[ 469.886734][T23069] should_fail_ex.cold+0x5/0xa
[ 469.886755][T23069] should_failslab+0xc2/0x120
[ 469.886774][T23069] __kmalloc_cache_noprof+0x7a/0x6f0
[ 469.886798][T23069] ? sctp_endpoint_new+0xfc/0xb20
[ 469.886829][T23069] sctp_endpoint_new+0xfc/0xb20
[ 469.886857][T23069] ? __pfx_sctp_endpoint_new+0x10/0x10
[ 469.886882][T23069] ? lockdep_init_map_type+0x5c/0x250
[ 469.886906][T23069] ? lockdep_init_map_type+0x5c/0x250
[ 469.886928][T23069] ? lockdep_init_map_type+0x5c/0x250
[ 469.886950][T23069] ? lockdep_init_map_type+0x5c/0x250
[ 469.886976][T23069] sctp_init_sock+0xe2b/0x1300
[ 469.887001][T23069] ? __pfx_sctp_init_sock+0x10/0x10
[ 469.887026][T23069] inet_create+0x94c/0x1060
[ 469.887046][T23069] ? inet_create+0x94/0x1060
[ 469.887068][T23069] __sock_create+0x339/0x860
[ 469.887091][T23069] __sys_socket+0x14d/0x260
[ 469.887111][T23069] ? __pfx___sys_socket+0x10/0x10
[ 469.887136][T23069] __x64_sys_socket+0x72/0xb0
[ 469.887155][T23069] ? lockdep_hardirqs_on+0x78/0x100
[ 469.887181][T23069] do_syscall_64+0x106/0xf80
[ 469.887204][T23069] ? clear_bhb_loop+0x40/0x90
[ 469.887226][T23069] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 469.887254][T23069] RIP: 0033:0x7f2d1559c799
[ 469.887270][T23069] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 469.887287][T23069] RSP: 002b:00007f2d137f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 469.887305][T23069] RAX: ffffffffffffffda RBX: 00007f2d15815fa0 RCX: 00007f2d1559c799
[ 469.887317][T23069] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000002
[ 469.887327][T23069] RBP: 00007f2d15632c99 R08: 0000000000000000 R09: 0000000000000000
[ 469.887337][T23069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 469.887348][T23069] R13: 00007f2d15816038 R14: 00007f2d15815fa0 R15: 00007ffef9209be8
[ 469.887371][T23069]
[ 471.669791][T23145] NFSD: Failed to start, no listeners configured.
[ 472.833885][T23197] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7855'.
[ 473.263815][T23216] tc_dump_action: action bad kind
[ 474.140223][T23257] openvswitch: netlink: IP tunnel dst address not specified
[ 476.082234][T23337] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7922'.
[ 476.111754][T23337] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7922'.
[ 476.137000][T10219] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[ 476.137030][T10219] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[ 476.153344][T10219] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[ 476.153385][T10219] Bluetooth: hci0: Malformed LE Event: 0x0d
[ 476.443342][T23352] FAULT_INJECTION: forcing a failure.
[ 476.443342][T23352] name failslab, interval 1, probability 0, space 0, times 0
[ 476.484680][T23352] CPU: 0 UID: 0 PID: 23352 Comm: syz.0.7931 Tainted: G U I syzkaller #0 PREEMPT(full)
[ 476.484712][T23352] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 476.484720][T23352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 476.484730][T23352] Call Trace:
[ 476.484737][T23352]
[ 476.484744][T23352] dump_stack_lvl+0x100/0x190
[ 476.484776][T23352] should_fail_ex.cold+0x5/0xa
[ 476.484797][T23352] should_failslab+0xc2/0x120
[ 476.484817][T23352] __kmalloc_cache_noprof+0x7a/0x6f0
[ 476.484841][T23352] ? key_user_lookup+0x1a3/0x5a0
[ 476.484922][T23352] key_user_lookup+0x1a3/0x5a0
[ 476.484945][T23352] ? __pfx_key_user_lookup+0x10/0x10
[ 476.484968][T23352] ? bpf_lsm_capable+0x9/0x10
[ 476.484987][T23352] ? security_capable+0x80/0x260
[ 476.485018][T23352] keyctl_chown_key+0x358/0x1010
[ 476.485048][T23352] ? __x64_sys_futex+0x34f/0x4d0
[ 476.485071][T23352] ? __x64_sys_futex+0x358/0x4d0
[ 476.485095][T23352] ? __pfx_keyctl_chown_key+0x10/0x10
[ 476.485129][T23352] ? xfd_validate_state+0x129/0x190
[ 476.485159][T23352] __do_sys_keyctl+0x1e8/0x5a0
[ 476.485178][T23352] do_syscall_64+0x106/0xf80
[ 476.485204][T23352] ? clear_bhb_loop+0x40/0x90
[ 476.485226][T23352] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 476.485244][T23352] RIP: 0033:0x7f2d1559c799
[ 476.485260][T23352] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 476.485277][T23352] RSP: 002b:00007f2d137f6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 476.485295][T23352] RAX: ffffffffffffffda RBX: 00007f2d15815fa0 RCX: 00007f2d1559c799
[ 476.485306][T23352] RDX: 0000000000000006 RSI: 00000000fffffffe RDI: 0000000000000004
[ 476.485316][T23352] RBP: 00007f2d15632c99 R08: 000000000000000e R09: 0000000000000000
[ 476.485327][T23352] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 476.485337][T23352] R13: 00007f2d15816038 R14: 00007f2d15815fa0 R15: 00007ffef9209be8
[ 476.485360][T23352]
[ 476.823639][T23360] netlink: 'syz.2.7935': attribute type 2 has an invalid length.
[ 477.132799][T23372] netlink: Unknown NAT attribute (type=262, max=9)
[ 478.854496][T23455] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[ 479.090595][T23465] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7983'.
[ 479.288983][T23471] program syz.3.7986 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 480.287713][T23520] netlink: 'syz.0.8013': attribute type 11 has an invalid length.
[ 481.361900][T23568] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 482.579515][T23618] netlink: Conntrack attr has 16 unknown bytes
[ 482.740089][ T29] audit: type=1326 audit(4294985810.015:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23623 comm="syz.2.8060" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6241f9c799 code=0x0
[ 482.910464][T23628] FAULT_INJECTION: forcing a failure.
[ 482.910464][T23628] name failslab, interval 1, probability 0, space 0, times 0
[ 482.959349][T23628] CPU: 0 UID: 0 PID: 23628 Comm: syz.0.8064 Tainted: G U I syzkaller #0 PREEMPT(full)
[ 482.959383][T23628] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 482.959391][T23628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 482.959401][T23628] Call Trace:
[ 482.959407][T23628]
[ 482.959414][T23628] dump_stack_lvl+0x100/0x190
[ 482.959446][T23628] should_fail_ex.cold+0x5/0xa
[ 482.959468][T23628] should_failslab+0xc2/0x120
[ 482.959487][T23628] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 482.959514][T23628] ? __pmd_alloc+0xbf/0x950
[ 482.959539][T23628] __pmd_alloc+0xbf/0x950
[ 482.959562][T23628] move_page_tables+0x3224/0x4500
[ 482.959589][T23628] ? __pfx_copy_vma+0x10/0x10
[ 482.959622][T23628] ? __pfx_move_page_tables+0x10/0x10
[ 482.959660][T23628] ? finish_task_switch.isra.0+0x200/0xb80
[ 482.959683][T23628] copy_vma_and_data+0x25c/0x7c0
[ 482.959722][T23628] ? __pfx_copy_vma_and_data+0x10/0x10
[ 482.959758][T23628] ? __vma_start_write+0x17f/0x280
[ 482.959781][T23628] ? __pfx___vma_start_write+0x10/0x10
[ 482.959810][T23628] move_vma+0x51b/0x1890
[ 482.959839][T23628] ? __pfx_move_vma+0x10/0x10
[ 482.959867][T23628] ? mm_get_unmapped_area_vmflags+0xd7/0x130
[ 482.959888][T23628] ? cap_mmap_addr+0x4b/0x120
[ 482.959914][T23628] ? bpf_lsm_mmap_addr+0x9/0x30
[ 482.959930][T23628] ? security_mmap_addr+0x71/0x1e0
[ 482.959951][T23628] ? __get_unmapped_area+0x255/0x3e0
[ 482.959974][T23628] ? vrm_set_new_addr+0x204/0x290
[ 482.960001][T23628] mremap_to+0x1b7/0x450
[ 482.960028][T23628] do_mremap+0xb76/0x2130
[ 482.960063][T23628] ? __pfx_do_mremap+0x10/0x10
[ 482.960094][T23628] ? ksys_write+0x190/0x250
[ 482.960115][T23628] __do_sys_mremap+0x126/0x170
[ 482.960142][T23628] ? __pfx___do_sys_mremap+0x10/0x10
[ 482.960174][T23628] ? __x64_sys_futex+0x34f/0x4d0
[ 482.960211][T23628] do_syscall_64+0x106/0xf80
[ 482.960236][T23628] ? clear_bhb_loop+0x40/0x90
[ 482.960257][T23628] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 482.960275][T23628] RIP: 0033:0x7f2d1559c799
[ 482.960291][T23628] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 482.960308][T23628] RSP: 002b:00007f2d137f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[ 482.960325][T23628] RAX: ffffffffffffffda RBX: 00007f2d15815fa0 RCX: 00007f2d1559c799
[ 482.960336][T23628] RDX: 0000000000000013 RSI: 0000000000000004 RDI: 0000200000000000
[ 482.960346][T23628] RBP: 00007f2d15632c99 R08: 0000000100000000 R09: 0000000000000000
[ 482.960356][T23628] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[ 482.960367][T23628] R13: 00007f2d15816038 R14: 00007f2d15815fa0 R15: 00007ffef9209be8
[ 482.960390][T23628]
[ 483.790330][T10219] Bluetooth: hci2: ACL packet too small
[ 483.935873][T23656] netlink: 'syz.1.8085': attribute type 11 has an invalid length.
[ 483.958684][T23656] netlink: 'syz.1.8085': attribute type 11 has an invalid length.
[ 483.978734][T23656] netlink: 'syz.1.8085': attribute type 11 has an invalid length.
[ 484.566792][T23686] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8)
[ 486.196193][ T29] audit: type=1800 audit(4294985813.481:36): pid=23755 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.8118" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[ 487.915145][T23826] netlink: 'syz.3.8154': attribute type 1 has an invalid length.
[ 488.001297][T23832] netlink: 44 bytes leftover after parsing attributes in process `syz.2.8156'.
[ 488.627195][T23856] NFSD: Failed to start, no listeners configured.
[ 490.349723][T23922] NFSD: Failed to start, no listeners configured.
[ 490.468036][T23933] tc_dump_action: action bad kind
[ 490.473591][T23934] openvswitch: netlink: Tunnel attr 242 out of range max 16
[ 491.026460][T23959] netlink: 'syz.2.8208': attribute type 1 has an invalid length.
[ 491.194676][T23961] NFSD: Failed to start, no listeners configured.
[ 491.493982][T23981] openvswitch: netlink: IP tunnel TTL not specified.
[ 491.923934][T23995] NFSD: Failed to start, no listeners configured.
[ 492.888565][T24035] NFSD: Failed to start, no listeners configured.
[ 493.043928][T24046] netlink: 342 bytes leftover after parsing attributes in process `syz.0.8243'.
[ 495.233776][T24131] delete_channel: no stack
[ 495.546685][T24147] openvswitch: netlink: IP tunnel dst address not specified
[ 496.068997][T24166] .^: entered promiscuous mode
[ 496.183498][T24172] netlink: ct_mark mask cannot be 0
[ 496.288172][T24176] netlink: zone id is out of range
[ 496.908230][T24204] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8318'.
[ 498.808985][T24282] openvswitch: netlink: IPv6 tunnel dst address is zero
[ 499.004674][T24294] netlink: 'syz.3.8360': attribute type 1 has an invalid length.
[ 500.122427][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 500.128796][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 500.554365][T24346] ==================================================================
[ 500.554380][T24346] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x19fb/0x1d60
[ 500.554497][T24346] Write of size 8 at addr ffffc90004349180 by task syz.0.8386/24346
[ 500.554512][T24346]
[ 500.554524][T24346] CPU: 0 UID: 0 PID: 24346 Comm: syz.0.8386 Tainted: G U I syzkaller #0 PREEMPT(full)
[ 500.554551][T24346] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 500.554559][T24346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 500.554570][T24346] Call Trace:
[ 500.554577][T24346]
[ 500.554585][T24346] dump_stack_lvl+0x100/0x190
[ 500.554611][T24346] print_report+0x156/0x4c9
[ 500.554642][T24346] ? _raw_spin_lock_irqsave+0x52/0x60
[ 500.554665][T24346] ? __virt_addr_valid+0x81/0x620
[ 500.554689][T24346] ? sys_imageblit+0x19fb/0x1d60
[ 500.554712][T24346] kasan_report+0xdf/0x1e0
[ 500.554730][T24346] ? sys_imageblit+0x19fb/0x1d60
[ 500.554756][T24346] sys_imageblit+0x19fb/0x1d60
[ 500.554783][T24346] ? __pfx_sys_imageblit+0x10/0x10
[ 500.554808][T24346] ? prb_read_valid+0x78/0xa0
[ 500.554831][T24346] ? __pfx_prb_read_valid+0x10/0x10
[ 500.554855][T24346] drm_fbdev_shmem_defio_imageblit+0x20/0x130
[ 500.554920][T24346] soft_cursor+0x524/0xa10
[ 500.554942][T24346] ? fb_get_color_depth+0x120/0x250
[ 500.554977][T24346] bit_cursor+0xe58/0x16f0
[ 500.554999][T24346] ? __pfx_bit_cursor+0x10/0x10
[ 500.555019][T24346] ? __lock_acquire+0x4a5/0x2630
[ 500.555043][T24346] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 500.555073][T24346] ? get_color+0x1da/0x450
[ 500.555104][T24346] ? __pfx_bit_cursor+0x10/0x10
[ 500.555123][T24346] fbcon_cursor+0x43c/0x5e0
[ 500.555140][T24346] ? add_softcursor+0x1c0/0x290
[ 500.555192][T24346] set_cursor+0x1db/0x250
[ 500.555213][T24346] con_write+0x89/0xb0
[ 500.555239][T24346] n_tty_write+0x44f/0x12d0
[ 500.555279][T24346] ? __pfx_n_tty_write+0x10/0x10
[ 500.555297][T24346] ? __pfx_woken_wake_function+0x10/0x10
[ 500.555324][T24346] ? __pfx___might_resched+0x10/0x10
[ 500.555350][T24346] ? __pfx_n_tty_write+0x10/0x10
[ 500.555367][T24346] file_tty_write.isra.0+0x4d2/0x890
[ 500.555394][T24346] redirected_tty_write+0xd4/0x120
[ 500.555420][T24346] vfs_write+0x6ac/0x1070
[ 500.555436][T24346] ? __pfx_redirected_tty_write+0x10/0x10
[ 500.555463][T24346] ? __pfx_vfs_write+0x10/0x10
[ 500.555488][T24346] ? find_held_lock+0x2b/0x80
[ 500.555509][T24346] ksys_write+0x12a/0x250
[ 500.555524][T24346] ? __pfx_ksys_write+0x10/0x10
[ 500.555541][T24346] do_syscall_64+0x106/0xf80
[ 500.555565][T24346] ? clear_bhb_loop+0x40/0x90
[ 500.555585][T24346] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 500.555603][T24346] RIP: 0033:0x7f2d1559c799
[ 500.555619][T24346] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 500.555635][T24346] RSP: 002b:00007f2d137f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 500.555653][T24346] RAX: ffffffffffffffda RBX: 00007f2d15815fa0 RCX: 00007f2d1559c799
[ 500.555664][T24346] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003
[ 500.555674][T24346] RBP: 00007f2d15632c99 R08: 0000000000000000 R09: 0000000000000000
[ 500.555685][T24346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 500.555695][T24346] R13: 00007f2d15816038 R14: 00007f2d15815fa0 R15: 00007ffef9209be8
[ 500.555711][T24346]
[ 500.555717][T24346]
[ 500.555723][T24346] The buggy address belongs to a vmalloc virtual mapping
[ 500.555736][T24346] Memory state around the buggy address:
[ 500.555745][T24346] ffffc90004349080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 500.555757][T24346] ffffc90004349100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 500.555770][T24346] >ffffc90004349180: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 500.555779][T24346] ^
[ 500.555789][T24346] ffffc90004349200: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 500.555800][T24346] ffffc90004349280: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 500.555811][T24346] ==================================================================
[ 500.555821][T24346] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 500.555836][T24346] CPU: 0 UID: 0 PID: 24346 Comm: syz.0.8386 Tainted: G U I syzkaller #0 PREEMPT(full)
[ 500.555864][T24346] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 500.555872][T24346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 500.555883][T24346] Call Trace:
[ 500.555889][T24346]
[ 500.555902][T24346] dump_stack_lvl+0x100/0x190
[ 500.555929][T24346] vpanic+0x552/0x970
[ 500.555946][T24346] ? __pfx_vpanic+0x10/0x10
[ 500.555963][T24346] ? __pfx_vprintk_emit+0x10/0x10
[ 500.555981][T24346] ? sys_imageblit+0x19fb/0x1d60
[ 500.556005][T24346] panic+0xd1/0xe0
[ 500.556020][T24346] ? __pfx_panic+0x10/0x10
[ 500.556039][T24346] ? sys_imageblit+0x19fb/0x1d60
[ 500.556064][T24346] check_panic_on_warn.cold+0x19/0x34
[ 500.556083][T24346] end_report.part.0+0x3a/0x90
[ 500.556107][T24346] kasan_report.cold+0xe/0x18
[ 500.556132][T24346] ? sys_imageblit+0x19fb/0x1d60
[ 500.556158][T24346] sys_imageblit+0x19fb/0x1d60
[ 500.556185][T24346] ? __pfx_sys_imageblit+0x10/0x10
[ 500.556210][T24346] ? prb_read_valid+0x78/0xa0
[ 500.556233][T24346] ? __pfx_prb_read_valid+0x10/0x10
[ 500.556257][T24346] drm_fbdev_shmem_defio_imageblit+0x20/0x130
[ 500.556287][T24346] soft_cursor+0x524/0xa10
[ 500.556309][T24346] ? fb_get_color_depth+0x120/0x250
[ 500.556328][T24346] bit_cursor+0xe58/0x16f0
[ 500.556350][T24346] ? __pfx_bit_cursor+0x10/0x10
[ 500.556369][T24346] ? __lock_acquire+0x4a5/0x2630
[ 500.556392][T24346] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 500.556422][T24346] ? get_color+0x1da/0x450
[ 500.556450][T24346] ? __pfx_bit_cursor+0x10/0x10
[ 500.556468][T24346] fbcon_cursor+0x43c/0x5e0
[ 500.556485][T24346] ? add_softcursor+0x1c0/0x290
[ 500.556509][T24346] set_cursor+0x1db/0x250
[ 500.556530][T24346] con_write+0x89/0xb0
[ 500.556555][T24346] n_tty_write+0x44f/0x12d0
[ 500.556577][T24346] ? __pfx_n_tty_write+0x10/0x10
[ 500.556595][T24346] ? __pfx_woken_wake_function+0x10/0x10
[ 500.556623][T24346] ? __pfx___might_resched+0x10/0x10
[ 500.556649][T24346] ? __pfx_n_tty_write+0x10/0x10
[ 500.556666][T24346] file_tty_write.isra.0+0x4d2/0x890
[ 500.556694][T24346] redirected_tty_write+0xd4/0x120
[ 500.556719][T24346] vfs_write+0x6ac/0x1070
[ 500.556734][T24346] ? __pfx_redirected_tty_write+0x10/0x10
[ 500.556761][T24346] ? __pfx_vfs_write+0x10/0x10
[ 500.556787][T24346] ? find_held_lock+0x2b/0x80
[ 500.556809][T24346] ksys_write+0x12a/0x250
[ 500.556823][T24346] ? __pfx_ksys_write+0x10/0x10
[ 500.556841][T24346] do_syscall_64+0x106/0xf80
[ 500.556865][T24346] ? clear_bhb_loop+0x40/0x90
[ 500.556885][T24346] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 500.556909][T24346] RIP: 0033:0x7f2d1559c799
[ 500.556923][T24346] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 500.556940][T24346] RSP: 002b:00007f2d137f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 500.556957][T24346] RAX: ffffffffffffffda RBX: 00007f2d15815fa0 RCX: 00007f2d1559c799
[ 500.556968][T24346] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003
[ 500.556979][T24346] RBP: 00007f2d15632c99 R08: 0000000000000000 R09: 0000000000000000
[ 500.556990][T24346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 500.557000][T24346] R13: 00007f2d15816038 R14: 00007f2d15815fa0 R15: 00007ffef9209be8
[ 500.557016][T24346]
[ 500.557085][T24346] Kernel Offset: disabled