last executing test programs: 1.917369015s ago: executing program 3 (id=58): r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x18, 0x0, 0x0) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000740)='bridge0\x00', 0x10) connect$inet(r0, &(0x7f0000000140)={0x2, 0xc000, @multicast1}, 0x10) 1.812042521s ago: executing program 0 (id=60): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x21, &(0x7f0000000180)=0x6, 0x4) 1.682539041s ago: executing program 2 (id=61): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_CAP_DISABLE_QUIRKS2(r1, 0x4068aea3, &(0x7f0000000200)={0xd5, 0x0, 0x10}) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000001c0)=[@textreal={0x8, 0x0}], 0x1, 0x19, &(0x7f0000000100)=[@cr4={0x1, 0x40240}], 0x100000000000033e) 1.589287206s ago: executing program 0 (id=62): r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000003c0)={0x1, 0x0, [{0x40000021, 0x0, 0xff}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_RUN(r3, 0xae80, 0x0) 1.536253094s ago: executing program 0 (id=63): r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f000000d000/0x18000)=nil, &(0x7f0000000480)=[@text32={0x20, 0x0}], 0xaaaaaaaaaaaab34, 0x55, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000003c0)={0x1, 0x0, [{0x40000021, 0x0, 0xff}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.36620769s ago: executing program 0 (id=65): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x41, 0x2000000, 0x0, 0x2004cb, 0x0, 0xa1d, 0x68ff, 0x5, 0x0, 0x3, 0x2], 0x10000, 0x202}) ioctl$KVM_RUN(r2, 0xae80, 0x0) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r3 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r3, 0x84, 0x1a, 0x0, &(0x7f0000000000)) 1.356604542s ago: executing program 2 (id=66): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x3, 0x2, 0x3000, 0x1000, &(0x7f0000feb000/0x1000)=nil}) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.137629928s ago: executing program 1 (id=68): openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000bfd000/0x400000)=nil) r1 = syz_kvm_add_vcpu$x86(r0, &(0x7f0000000080)={0x0, &(0x7f0000000f40)=[@wrmsr={0x65, 0x20, {0x40000023, 0x7}}], 0x20}) ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000000)={0x1, 0x0, [{0x40000001, 0x4, 0x2, 0x31237648, 0x6, 0x2, 0x80}]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 1.137347015s ago: executing program 0 (id=69): prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x7, 0x7fc00002}]}) getpid() timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000003c0)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000000100)={r2, 0x0, r0, 0x0, 0x80000}) unshare(0x6020400) 1.076549645s ago: executing program 2 (id=70): creat(&(0x7f00000003c0)='./file1\x00', 0x192) futex(&(0x7f000000cffc), 0x3, 0x802, 0x0, &(0x7f0000000280)=0xfffffffd, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0xb2fa00, 0x0) syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000000780)="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", 0x2000, 0x0) r0 = socket$inet_sctp(0x2, 0x5, 0x84) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) pipe2(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) splice(r1, 0x0, r3, 0x0, 0x6, 0x0) fcntl$setpipe(r2, 0x407, 0xffffffffc0000000) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) 1.028603779s ago: executing program 1 (id=71): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_RUN(r3, 0xae80, 0x0) 913.058317ms ago: executing program 3 (id=72): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, 0x0) 810.896802ms ago: executing program 2 (id=73): r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f000000d000/0x18000)=nil, &(0x7f0000000480)=[@text32={0x20, 0x0}], 0xaaaaaaaaaaaab34, 0x55, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000003c0)={0x1, 0x0, [{0x40000021, 0x0, 0xff}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 809.131369ms ago: executing program 1 (id=74): mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/diskstats\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000004100)={0x2020}, 0x2020) 653.384931ms ago: executing program 1 (id=75): r0 = open(&(0x7f00000001c0)='./bus\x00', 0x4c27e, 0x2) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x13, r0, 0x0) pwritev(r0, &(0x7f0000000140)=[{0x0}], 0x1, 0x7, 0x1c00000) 653.109964ms ago: executing program 2 (id=76): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r0, &(0x7f0000000580)=[{{&(0x7f0000000000)={0xa, 0x4e1f, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xc8000000}, 0x1c, &(0x7f0000001780)=[{&(0x7f0000000080)="a4", 0x1}], 0x1}}], 0x1, 0x0) shutdown(r0, 0x1) setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) 630.781665ms ago: executing program 3 (id=77): openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff}) r1 = syz_open_procfs(0x0, &(0x7f0000000200)='fd/3\x00') splice(r0, 0x0, r1, 0x0, 0x402000784853bb, 0x0) 505.953116ms ago: executing program 2 (id=78): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x3ef4, 0x81, r0}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x5) timer_settime(0x0, 0x1, &(0x7f0000000040), 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0) mkdir(0x0, 0xae) 422.276847ms ago: executing program 3 (id=79): openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000bfd000/0x400000)=nil) r1 = syz_kvm_add_vcpu$x86(r0, &(0x7f0000000080)={0x0, &(0x7f0000000f40)=[@wrmsr={0x65, 0x20, {0x40000023, 0x7}}], 0x20}) ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000000)={0x1, 0x0, [{0x40000001, 0x4, 0x2, 0x31237648, 0x6, 0x2, 0x80}]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 422.070841ms ago: executing program 1 (id=80): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000300)={0x80, 0x19, 0x9, 0x7, 0x7, 0x0, 0x2, 0x8, 0x2, 0x29, 0x7, 0xb5, 0xc, 0x81}, 0xe) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000000c0)=[@in={0x2, 0x4e20, @remote}]}, &(0x7f0000000180)=0x10) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) r2 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f00000001c0)=0x8) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000040)=@assoc_value={r3, 0x68}, 0x8) 203.086069ms ago: executing program 1 (id=81): r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x18, 0x0, 0x0) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000740)='bridge0\x00', 0x10) connect$inet(r0, &(0x7f0000000140)={0x2, 0xc000, @multicast1}, 0x10) 194.71069ms ago: executing program 3 (id=82): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000380)={0x2, 0x4e22, @multicast1}, 0x10) setsockopt$sock_int(r0, 0x1, 0x800000000f, &(0x7f0000000080)=0x7, 0x4) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4) bind$inet6(r1, &(0x7f0000000240)={0xa, 0x4e22, 0x7e, @empty, 0x1}, 0x1c) listen(r0, 0x0) 29.880371ms ago: executing program 0 (id=83): r0 = socket$inet_tcp(0x2, 0x1, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x8) splice(r1, 0x0, r0, 0x0, 0x2, 0x4) splice(r1, 0x0, r3, 0x0, 0x80, 0x1) write$binfmt_misc(r2, &(0x7f0000000100)='F', 0x1) close_range(r0, 0xffffffffffffffff, 0x2) 0s ago: executing program 3 (id=84): r0 = mq_open(&(0x7f0000000080)='$@\x00', 0x370e082a94541ad5, 0xb4, 0x0) fcntl$setlease(r0, 0x400, 0x0) mq_unlink(&(0x7f0000000000)='$@\x00') kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.117' (ED25519) to the list of known hosts. [ 86.755104][ T5813] cgroup: Unknown subsys name 'net' [ 86.902684][ T5813] cgroup: Unknown subsys name 'cpuset' [ 86.911747][ T5813] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 88.702775][ T5813] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 92.087136][ T5837] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 92.100208][ T5841] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 92.103821][ T5838] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 92.108883][ T5841] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 92.116039][ T5837] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 92.127204][ T5841] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 92.130668][ T5838] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 92.138970][ T5841] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 92.152992][ T5841] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 92.153038][ T5838] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 92.161088][ T5841] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 92.175121][ T5837] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 92.176575][ T5841] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 92.190649][ T5840] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 92.198492][ T5840] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 92.199048][ T5837] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 92.207178][ T5841] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 92.215787][ T5838] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 92.228441][ T5837] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 92.236245][ T5838] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 92.797906][ T5824] chnl_net:caif_netlink_parms(): no params data found [ 92.921680][ T5826] chnl_net:caif_netlink_parms(): no params data found [ 93.076673][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.086213][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.094008][ T5824] bridge_slave_0: entered allmulticast mode [ 93.102439][ T5824] bridge_slave_0: entered promiscuous mode [ 93.116233][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.123719][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.131322][ T5824] bridge_slave_1: entered allmulticast mode [ 93.138873][ T5824] bridge_slave_1: entered promiscuous mode [ 93.162816][ T5827] chnl_net:caif_netlink_parms(): no params data found [ 93.189364][ T5825] chnl_net:caif_netlink_parms(): no params data found [ 93.278866][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.286145][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.293690][ T5826] bridge_slave_0: entered allmulticast mode [ 93.301523][ T5826] bridge_slave_0: entered promiscuous mode [ 93.312630][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 93.350802][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.358401][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.365839][ T5826] bridge_slave_1: entered allmulticast mode [ 93.373285][ T5826] bridge_slave_1: entered promiscuous mode [ 93.382533][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 93.492523][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 93.505122][ T5824] team0: Port device team_slave_0 added [ 93.539311][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 93.550847][ T5824] team0: Port device team_slave_1 added [ 93.568947][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.576215][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.583836][ T5827] bridge_slave_0: entered allmulticast mode [ 93.591226][ T5827] bridge_slave_0: entered promiscuous mode [ 93.626146][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.633570][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.641302][ T5825] bridge_slave_0: entered allmulticast mode [ 93.649171][ T5825] bridge_slave_0: entered promiscuous mode [ 93.657277][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.664945][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.672471][ T5827] bridge_slave_1: entered allmulticast mode [ 93.679868][ T5827] bridge_slave_1: entered promiscuous mode [ 93.713090][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.720477][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.727831][ T5825] bridge_slave_1: entered allmulticast mode [ 93.735825][ T5825] bridge_slave_1: entered promiscuous mode [ 93.762375][ T5826] team0: Port device team_slave_0 added [ 93.769474][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 93.776442][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 93.802585][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 93.841812][ T5826] team0: Port device team_slave_1 added [ 93.848488][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 93.855469][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 93.881698][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.912416][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 93.945232][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 93.957510][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 93.983298][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 93.990388][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 94.016507][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 94.031530][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 94.055582][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 94.062944][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 94.089727][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 94.162768][ T5827] team0: Port device team_slave_0 added [ 94.189872][ T5824] hsr_slave_0: entered promiscuous mode [ 94.196900][ T5824] hsr_slave_1: entered promiscuous mode [ 94.206361][ T5825] team0: Port device team_slave_0 added [ 94.214670][ T5827] team0: Port device team_slave_1 added [ 94.224120][ T5825] team0: Port device team_slave_1 added [ 94.299075][ T5836] Bluetooth: hci2: command tx timeout [ 94.299627][ T5146] Bluetooth: hci1: command tx timeout [ 94.310653][ T5837] Bluetooth: hci3: command tx timeout [ 94.316428][ T5838] Bluetooth: hci0: command tx timeout [ 94.336695][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 94.344165][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 94.371794][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 94.389797][ T5826] hsr_slave_0: entered promiscuous mode [ 94.396963][ T5826] hsr_slave_1: entered promiscuous mode [ 94.403486][ T5826] debugfs: 'hsr0' already exists in 'hsr' [ 94.409643][ T5826] Cannot create hsr debugfs directory [ 94.422993][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 94.430272][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 94.456648][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 94.469109][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 94.476086][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 94.502233][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 94.527750][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 94.535070][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 94.562031][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 94.738764][ T5827] hsr_slave_0: entered promiscuous mode [ 94.745323][ T5827] hsr_slave_1: entered promiscuous mode [ 94.752304][ T5827] debugfs: 'hsr0' already exists in 'hsr' [ 94.758083][ T5827] Cannot create hsr debugfs directory [ 94.769732][ T5825] hsr_slave_0: entered promiscuous mode [ 94.776364][ T5825] hsr_slave_1: entered promiscuous mode [ 94.782939][ T5825] debugfs: 'hsr0' already exists in 'hsr' [ 94.789007][ T5825] Cannot create hsr debugfs directory [ 95.205560][ T5824] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 95.224426][ T5824] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 95.242989][ T5824] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 95.273525][ T5824] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 95.371041][ T5826] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 95.390524][ T5826] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 95.423229][ T5826] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 95.433921][ T5826] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 95.521108][ T5827] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 95.551258][ T5827] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 95.564490][ T5827] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 95.576228][ T5827] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 95.722706][ T5825] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 95.735320][ T5825] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 95.749210][ T5825] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 95.764070][ T5825] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 95.885716][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.933509][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.957602][ T5824] 8021q: adding VLAN 0 to HW filter on device team0 [ 96.006577][ T67] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.013935][ T67] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.037488][ T5826] 8021q: adding VLAN 0 to HW filter on device team0 [ 96.053289][ T67] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.060583][ T67] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.094538][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.101748][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.127901][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.135139][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.149177][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0 [ 96.176363][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 96.215935][ T5825] 8021q: adding VLAN 0 to HW filter on device team0 [ 96.243552][ T2097] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.250845][ T2097] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.293621][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.301088][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.321283][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 96.371577][ T2097] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.378956][ T2097] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.386642][ T5838] Bluetooth: hci1: command tx timeout [ 96.387262][ T5146] Bluetooth: hci2: command tx timeout [ 96.393072][ T5838] Bluetooth: hci0: command tx timeout [ 96.393111][ T5838] Bluetooth: hci3: command tx timeout [ 96.435818][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.443183][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.770863][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.886746][ T5824] veth0_vlan: entered promiscuous mode [ 96.954830][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.968105][ T5824] veth1_vlan: entered promiscuous mode [ 97.046403][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 97.063642][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 97.104262][ T5824] veth0_macvtap: entered promiscuous mode [ 97.124365][ T5824] veth1_macvtap: entered promiscuous mode [ 97.152906][ T5826] veth0_vlan: entered promiscuous mode [ 97.180061][ T24] cfg80211: failed to load regulatory.db [ 97.192415][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.206669][ T5826] veth1_vlan: entered promiscuous mode [ 97.233333][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.250842][ T2097] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.276495][ T2097] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.296454][ T2097] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.305716][ T2097] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.349297][ T5825] veth0_vlan: entered promiscuous mode [ 97.355874][ T5827] veth0_vlan: entered promiscuous mode [ 97.389372][ T5825] veth1_vlan: entered promiscuous mode [ 97.413461][ T5827] veth1_vlan: entered promiscuous mode [ 97.477363][ T3467] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.495049][ T3467] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.506395][ T5826] veth0_macvtap: entered promiscuous mode [ 97.545549][ T5826] veth1_macvtap: entered promiscuous mode [ 97.567587][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.576354][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.597878][ T5825] veth0_macvtap: entered promiscuous mode [ 97.616839][ T5827] veth0_macvtap: entered promiscuous mode [ 97.633576][ T5825] veth1_macvtap: entered promiscuous mode [ 97.650384][ T5827] veth1_macvtap: entered promiscuous mode [ 97.690995][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.714263][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.723907][ T5824] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 97.732194][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.755174][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.769895][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.790178][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.813116][ T3467] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.854732][ T3467] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.883643][ T3467] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.895782][ T5917] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 97.923221][ T3467] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.964212][ T3467] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.973821][ T3467] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.988458][ T3467] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.999262][ T3467] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.031211][ T3467] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.041399][ T3467] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.058082][ T3467] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.103158][ T3467] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.193179][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.231397][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.242821][ T2097] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.252512][ T2097] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.335834][ T2097] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.356164][ T2097] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.383231][ T3467] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.419182][ T3467] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.447747][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.460776][ T5146] Bluetooth: hci2: command tx timeout [ 98.460970][ T5838] Bluetooth: hci0: command tx timeout [ 98.466221][ T5836] Bluetooth: hci1: command tx timeout [ 98.472957][ T5837] Bluetooth: hci3: command tx timeout [ 98.483873][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.555631][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.571408][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.035387][ T30] audit: type=1326 audit(1764471633.436:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5932 comm="syz.1.2" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f808658f749 code=0x0 [ 100.539305][ T5837] Bluetooth: hci2: command tx timeout [ 100.540695][ T5146] Bluetooth: hci3: command tx timeout [ 100.544813][ T5838] Bluetooth: hci1: command tx timeout [ 100.551096][ T5836] Bluetooth: hci0: command tx timeout [ 101.518939][ T5978] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 101.804227][ T30] audit: type=1326 audit(1764471636.206:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5981 comm="syz.3.22" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa23ed8f749 code=0x0 [ 103.524991][ T6020] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 106.786258][ T30] audit: type=1800 audit(1764471641.186:4): pid=6124 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.75" name="bus" dev="tmpfs" ino=119 res=0 errno=0 [ 107.041238][ T6134] sctp: [Deprecated]: syz.1.80 (pid 6134) Use of struct sctp_assoc_value in delayed_ack socket option. [ 107.041238][ T6134] Use struct sctp_sack_info instead [ 107.409490][ T6141] ================================================================== [ 107.418593][ T6141] BUG: KASAN: slab-use-after-free in locks_remove_posix+0x10f/0x630 [ 107.426620][ T6141] Read of size 8 at addr ffff88801ef563c0 by task syz.3.84/6141 [ 107.434863][ T6141] [ 107.437240][ T6141] CPU: 1 UID: 0 PID: 6141 Comm: syz.3.84 Not tainted syzkaller #0 PREEMPT(full) [ 107.437266][ T6141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 107.437289][ T6141] Call Trace: [ 107.437301][ T6141] [ 107.437311][ T6141] dump_stack_lvl+0x189/0x250 [ 107.437335][ T6141] ? __kasan_check_byte+0x12/0x40 [ 107.437370][ T6141] ? __pfx_dump_stack_lvl+0x10/0x10 [ 107.437390][ T6141] ? lock_release+0x4b/0x3b0 [ 107.437425][ T6141] ? __virt_addr_valid+0x4a5/0x5c0 [ 107.437450][ T6141] print_report+0xca/0x240 [ 107.437473][ T6141] ? locks_remove_posix+0x10f/0x630 [ 107.437494][ T6141] kasan_report+0x118/0x150 [ 107.437515][ T6141] ? locks_remove_posix+0x10f/0x630 [ 107.437541][ T6141] locks_remove_posix+0x10f/0x630 [ 107.437563][ T6141] ? __pfx_locks_remove_posix+0x10/0x10 [ 107.437598][ T6141] ? do_raw_spin_unlock+0x122/0x240 [ 107.437623][ T6141] ? dnotify_flush+0x1db/0x5e0 [ 107.437654][ T6141] ? mqueue_flush_file+0x21c/0x270 [ 107.437675][ T6141] ? filp_flush+0xae/0x190 [ 107.437701][ T6141] filp_flush+0x113/0x190 [ 107.437726][ T6141] filp_close+0x1d/0x40 [ 107.437750][ T6141] __se_sys_close_range+0x359/0x650 [ 107.437777][ T6141] ? __pfx___se_sys_close_range+0x10/0x10 [ 107.437802][ T6141] ? do_syscall_64+0xbe/0xf80 [ 107.437836][ T6141] do_syscall_64+0xfa/0xf80 [ 107.437869][ T6141] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.437892][ T6141] ? clear_bhb_loop+0x60/0xb0 [ 107.437916][ T6141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.437938][ T6141] RIP: 0033:0x7fa23ed8f749 [ 107.437963][ T6141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 107.437981][ T6141] RSP: 002b:00007ffcc268bd28 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 107.438011][ T6141] RAX: ffffffffffffffda RBX: 000000000001a34a RCX: 00007fa23ed8f749 [ 107.438027][ T6141] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 107.438041][ T6141] RBP: 00007fa23efe7da0 R08: 0000000000000001 R09: 00000003c268c01f [ 107.438055][ T6141] R10: 0000001b2fe20000 R11: 0000000000000246 R12: 00007fa23efe5fac [ 107.438070][ T6141] R13: 00007fa23efe5fa0 R14: ffffffffffffffff R15: 00007ffcc268be40 [ 107.438095][ T6141] [ 107.438103][ T6141] [ 107.664703][ T6141] Allocated by task 6142: [ 107.669135][ T6141] kasan_save_track+0x3e/0x80 [ 107.673836][ T6141] __kasan_slab_alloc+0x6c/0x80 [ 107.678707][ T6141] kmem_cache_alloc_noprof+0x37d/0x710 [ 107.684180][ T6141] locks_get_lock_context+0x134/0x3b0 [ 107.689613][ T6141] generic_setlease+0x528/0x1280 [ 107.694654][ T6141] do_fcntl_add_lease+0x34d/0x460 [ 107.699685][ T6141] fcntl_setlease+0x123/0x180 [ 107.704408][ T6141] do_fcntl+0x867/0x1a50 [ 107.708671][ T6141] __se_sys_fcntl+0xc8/0x150 [ 107.713291][ T6141] do_syscall_64+0xfa/0xf80 [ 107.717814][ T6141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.723805][ T6141] [ 107.726223][ T6141] Freed by task 6142: [ 107.730229][ T6141] kasan_save_track+0x3e/0x80 [ 107.735133][ T6141] kasan_save_free_info+0x46/0x50 [ 107.740189][ T6141] __kasan_slab_free+0x5c/0x80 [ 107.744971][ T6141] kmem_cache_free+0x197/0x620 [ 107.749843][ T6141] __destroy_inode+0x2ea/0x670 [ 107.754616][ T6141] evict+0x87d/0xae0 [ 107.758612][ T6141] __se_sys_mq_unlink+0x2c5/0x360 [ 107.763654][ T6141] do_syscall_64+0xfa/0xf80 [ 107.768282][ T6141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.774380][ T6141] [ 107.777180][ T6141] The buggy address belongs to the object at ffff88801ef56370 [ 107.777180][ T6141] which belongs to the cache file_lock_ctx of size 112 [ 107.792832][ T6141] The buggy address is located 80 bytes inside of [ 107.792832][ T6141] freed 112-byte region [ffff88801ef56370, ffff88801ef563e0) [ 107.807233][ T6141] [ 107.809663][ T6141] The buggy address belongs to the physical page: [ 107.816503][ T6141] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1ef56 [ 107.826071][ T6141] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 107.833286][ T6141] page_type: f5(slab) [ 107.837368][ T6141] raw: 00fff00000000000 ffff8881416cb140 dead000000000122 0000000000000000 [ 107.846046][ T6141] raw: 0000000000000000 0000000080170017 00000000f5000000 0000000000000000 [ 107.854847][ T6141] page dumped because: kasan: bad access detected [ 107.861291][ T6141] page_owner tracks the page as allocated [ 107.867042][ T6141] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5208, tgid 5208 (udevd), ts 54622368638, free_ts 54621406355 [ 107.886438][ T6141] post_alloc_hook+0x234/0x290 [ 107.891250][ T6141] get_page_from_freelist+0x2365/0x2440 [ 107.896929][ T6141] __alloc_frozen_pages_noprof+0x181/0x370 [ 107.902967][ T6141] alloc_pages_mpol+0x232/0x4a0 [ 107.908716][ T6141] allocate_slab+0x86/0x3b0 [ 107.913277][ T6141] ___slab_alloc+0xf2b/0x1960 [ 107.918171][ T6141] __slab_alloc+0x65/0x100 [ 107.922874][ T6141] kmem_cache_alloc_noprof+0x40f/0x710 [ 107.928454][ T6141] locks_get_lock_context+0x134/0x3b0 [ 107.934401][ T6141] flock_lock_inode+0xf2/0x1410 [ 107.939359][ T6141] locks_lock_inode_wait+0x107/0x410 [ 107.944826][ T6141] __se_sys_flock+0x467/0x5b0 [ 107.949513][ T6141] do_syscall_64+0xfa/0xf80 [ 107.954033][ T6141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.959937][ T6141] page last free pid 15 tgid 15 stack trace: [ 107.965924][ T6141] __free_frozen_pages+0xbc8/0xd30 [ 107.971187][ T6141] rcu_core+0xd70/0x1870 [ 107.976197][ T6141] handle_softirqs+0x27d/0x850 [ 107.981676][ T6141] run_ksoftirqd+0x9b/0x100 [ 107.986307][ T6141] smpboot_thread_fn+0x542/0xa60 [ 107.991347][ T6141] kthread+0x711/0x8a0 [ 107.995603][ T6141] ret_from_fork+0x599/0xb30 [ 108.000298][ T6141] ret_from_fork_asm+0x1a/0x30 [ 108.005700][ T6141] [ 108.008562][ T6141] Memory state around the buggy address: [ 108.014469][ T6141] ffff88801ef56280: fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00 [ 108.022735][ T6141] ffff88801ef56300: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fa fb [ 108.031353][ T6141] >ffff88801ef56380: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 108.039670][ T6141] ^ [ 108.045836][ T6141] ffff88801ef56400: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 108.054532][ T6141] ffff88801ef56480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 108.064299][ T6141] ================================================================== [ 108.108088][ T6141] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 108.115451][ T6141] CPU: 1 UID: 0 PID: 6141 Comm: syz.3.84 Not tainted syzkaller #0 PREEMPT(full) [ 108.125110][ T6141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 108.136268][ T6141] Call Trace: [ 108.139767][ T6141] [ 108.142741][ T6141] dump_stack_lvl+0x99/0x250 [ 108.148256][ T6141] ? __asan_memcpy+0x40/0x70 [ 108.153169][ T6141] ? __pfx_dump_stack_lvl+0x10/0x10 [ 108.159209][ T6141] ? __pfx__printk+0x10/0x10 [ 108.164239][ T6141] vpanic+0x237/0x6d0 [ 108.168911][ T6141] ? __pfx_vpanic+0x10/0x10 [ 108.173574][ T6141] ? preempt_schedule+0xae/0xc0 [ 108.178824][ T6141] ? __pfx_preempt_schedule+0x10/0x10 [ 108.184636][ T6141] panic+0xb9/0xc0 [ 108.188661][ T6141] ? __pfx_panic+0x10/0x10 [ 108.194438][ T6141] ? _raw_spin_unlock_irqrestore+0xfd/0x110 [ 108.200468][ T6141] ? locks_remove_posix+0x10f/0x630 [ 108.205797][ T6141] check_panic_on_warn+0x89/0xb0 [ 108.211029][ T6141] ? locks_remove_posix+0x10f/0x630 [ 108.216345][ T6141] end_report+0x6f/0x140 [ 108.220610][ T6141] kasan_report+0x129/0x150 [ 108.225390][ T6141] ? locks_remove_posix+0x10f/0x630 [ 108.230610][ T6141] locks_remove_posix+0x10f/0x630 [ 108.235677][ T6141] ? __pfx_locks_remove_posix+0x10/0x10 [ 108.242056][ T6141] ? do_raw_spin_unlock+0x122/0x240 [ 108.247674][ T6141] ? dnotify_flush+0x1db/0x5e0 [ 108.252838][ T6141] ? mqueue_flush_file+0x21c/0x270 [ 108.258369][ T6141] ? filp_flush+0xae/0x190 [ 108.262921][ T6141] filp_flush+0x113/0x190 [ 108.267363][ T6141] filp_close+0x1d/0x40 [ 108.271885][ T6141] __se_sys_close_range+0x359/0x650 [ 108.277362][ T6141] ? __pfx___se_sys_close_range+0x10/0x10 [ 108.283189][ T6141] ? do_syscall_64+0xbe/0xf80 [ 108.287897][ T6141] do_syscall_64+0xfa/0xf80 [ 108.292741][ T6141] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 108.299359][ T6141] ? clear_bhb_loop+0x60/0xb0 [ 108.304685][ T6141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 108.310684][ T6141] RIP: 0033:0x7fa23ed8f749 [ 108.316087][ T6141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 108.336073][ T6141] RSP: 002b:00007ffcc268bd28 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 108.345233][ T6141] RAX: ffffffffffffffda RBX: 000000000001a34a RCX: 00007fa23ed8f749 [ 108.354093][ T6141] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 108.362362][ T6141] RBP: 00007fa23efe7da0 R08: 0000000000000001 R09: 00000003c268c01f [ 108.371171][ T6141] R10: 0000001b2fe20000 R11: 0000000000000246 R12: 00007fa23efe5fac [ 108.380261][ T6141] R13: 00007fa23efe5fa0 R14: ffffffffffffffff R15: 00007ffcc268be40 [ 108.388363][ T6141] [ 108.392115][ T6141] Kernel Offset: disabled [ 108.396854][ T6141] Rebooting in 86400 seconds..