last executing test programs:

1.185672118s ago: executing program 0 (id=8776):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)={0x28, r1, 0x82652360e804c8d3, 0x9, 0x25dfdbfe, {}, [@OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_BANDS={0x4}, @OVS_METER_ATTR_ID={0x8, 0x1, 0xfffffff8}, @OVS_METER_ATTR_CLEAR={0x4}]}, 0x28}}, 0x8080)

1.174822886s ago: executing program 3 (id=8777):
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
r0 = socket(0x2b, 0x1, 0x0)
getsockopt$auto(r0, 0x0, 0x60, 0x0, &(0x7f00000000c0)=0x44)

1.035577716s ago: executing program 0 (id=8780):
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r0 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r0, 0x84, 0x11, 0x0, 0x0)

924.319458ms ago: executing program 3 (id=8783):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
sched_setaffinity$auto(0x1, 0x1, 0x0)

885.376772ms ago: executing program 0 (id=8784):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x5, 0x8000)
r0 = socket(0x2, 0xa, 0x300)
recvmmsg$auto(r0, 0x0, 0x9, 0x22, 0x0)

805.43368ms ago: executing program 2 (id=8786):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000140)={0x28, r1, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x10}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0xfffffffe}]}, 0x28}, 0x1, 0x0, 0x0, 0x51}, 0x0)

790.88178ms ago: executing program 3 (id=8787):
r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x38, r0, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x20, 0x1, 0x0, 0x1, [@typed={0x8, 0xf, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x14, 0xf, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x40010}, 0x448c0)

733.721645ms ago: executing program 1 (id=8788):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000000c0), r0)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x70bd2d, 0x25dfdbf9, {}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

700.416382ms ago: executing program 2 (id=8789):
r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001240)={0x2c, r0, 0x1, 0x70bd25, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x14, 0x1, 0x0, 0x1, [@nested={0x10, 0x10, 0x0, 0x1, [@typed={0xc, 0xb, 0x0, 0x0, @u64=0x8}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x200400f0}, 0x4)

656.6436ms ago: executing program 3 (id=8790):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x100000000000037, 0x0)
fsopen$auto(0x0, 0x1)

599.909281ms ago: executing program 1 (id=8791):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x100000001, 0x3, 0xe, 0x940, 0x1ffde, 0x3, 0x7, 0x2, 0x8, 0x5, 0x1, 0x7, 0xb3, 0xc, 0x2, 0x3, 0x5, 0x7, 0xfffffffe, 0x0, 0x0, 0x0, 0xb0b}, 0x1fe, 0x81)
r0 = openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
readv$auto(r0, &(0x7f0000000180)={&(0x7f0000000140), 0x9}, 0x4)

553.480069ms ago: executing program 0 (id=8792):
r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, r0, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x14, 0x0, 0x1, [@nested={0x4, 0x1d}]}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800)

493.866935ms ago: executing program 2 (id=8793):
r0 = fanotify_init$auto(0x5, 0x1)
setresuid$auto(0x0, 0xee01, 0xee01)
fanotify_mark$auto(r0, 0x1, 0x100002, 0x4, 0x0)

484.925092ms ago: executing program 3 (id=8794):
r0 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x40, r0, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @u32=0x4}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "89dd005b000020ff0300"}, @OVS_PACKET_ATTR_KEY={0x4}, @OVS_PACKET_ATTR_PROBE={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x44000884}, 0xc880)

440.276851ms ago: executing program 1 (id=8795):
socket(0xa, 0x2, 0x0)
socket(0xa, 0x801, 0x106)
sendmmsg$auto(0x3, 0x0, 0x0, 0x7)

371.743161ms ago: executing program 2 (id=8796):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
r0 = socket(0xa, 0x5, 0x84)
getsockopt$auto(r0, 0x0, 0x19, 0x0, 0x0)

354.88512ms ago: executing program 0 (id=8797):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)={0x40, r1, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0xc, 0x0, 0x1, [@nested={0x6, 0x9, 0x0, 0x1, [@generic="0100"]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x50}, 0x400c880)

329.85358ms ago: executing program 3 (id=8798):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0)
sendfile$auto(r0, r0, 0x0, 0x3)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x203f, 0x0)

314.503705ms ago: executing program 1 (id=8799):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
ioctl$auto(0x3, 0xc0585605, 0x38)

235.853942ms ago: executing program 2 (id=8800):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), r0)
sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)={0x14, r1, 0x701, 0x70bd29, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x10)

170.852001ms ago: executing program 1 (id=8801):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_VPORT_CMD_NEW(r0, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0x28, r1, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@OVS_VPORT_ATTR_OPTIONS={0x4}, @OVS_VPORT_ATTR_NAME={0x6, 0x3, '*\x00'}, @OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x4040010}, 0x800)

129.1536ms ago: executing program 0 (id=8802):
ioctl$auto_BTRFS_IOC_RM_DEV(0xffffffffffffffff, 0x5000940b, &(0x7f0000000840)={@inferred, "1e8026885c40f12d642bbe676fbec4293a292757128ca4b6576c9f62a73067d1b1372d81079c879cdbec839717d45b662396c77fb448d0b8695dea526907bd6f5810697cd862ead615300345640bcc5c9572d9978ea7786fa12b123013d26af98983f6dd34a450a40d783ec33008053ced310c2128a5dde58e56241a63f396acefae3af797ac92fda8e9a245aa447fa3210011fbad448f34aff75cac758d65caa90c506d1fe942cd5878b5d7051cf749fc0acdd8749245b9b2c8b405c491cd27110a0dfc0e77967f3c81fcc522f6374f1c29320d8dd758117e705c906337d700f1dad984fa59ea5a6664b8ca9d51294c1e7b0bb4f28adbfad9b8edafb7f0e94a9192fd027d7a799a975688752a0e31a751f7d1a46a7e944f36d08ee2f63c86817bdee0b2068172a0aaf5b7388c08102ea56faf87bfeb76daaa2b445a545dc3ca99193d69dfa040b2771434e03c199e55d58962366a1746102b78dfd58ae5a7ff61894c89c07ff2c987e4632121c336e114d576fe79d37ed7488fee1cb4df8813091b8f5c5de3221267a061c9c067a59b199527f6ee1a8a7a77d642548172599c958cde99e4d66483d662d2f7e09d3950b91b06ab96fee2224fc85db955903366aa7a2dd6b80c924733873c5efaddcc7a817576a9d47a6db1608935842bf72d8b6e7ec072705879b5c08ce09cc5ac715b44ace99f2e23bbcea3363bb45cca4bef2cc041c7a2db645684cc1d502e7c7a742eb53dbcbc9c3bc8cc1de144894e4a79e54741afd8307abcfe0a58a6aa93460ff644bfc87511903f04b1eb562f94b08892436d80131992279f7d4afff45e016a95e324b54c7218710916615dca1d3ebdd6fc11be775c44ab3ceae04f934f0fe12989e15e156436493526460b528894e81941567d9b00705ac3cb2606f10f46acaad19b43a52e9b8c7052f2cbd17dd7feab8312ff59d9f1a0ab7b1ba75f4eceee0f6e246d405d4606afe893e5c94a96c3d4aff83a50e7a2f09b8e8c8ec15acd2197b79b557b96f1219d58a19f519189bb28bc6c0e566778169a02cedfc9ab9b4f8c807a6eb7ff8d29ac1d39552a2a771b68941a098970f11447590d40d1531348f9fa98b659e794161f38d1e2e1fca38c7e3cb14b33521b784ac9e3043bc19e66a21755ce873142f92c5a9abcdd819337ead0c9ba21606bf6a4bd7c88a859e1cf039df7600aef136cdf8d2c02f0dda892fd92e5a12fc60cafc8918b8c6bfbc590b4a7a17b3d0bab7b7bcaccd68b1ad08ac0093be7e08804e03fed5fd31362b73a57c8c9166912db1b8507267b63b4dadfc5e73a7ae4e5e013a0a5332fe46fd3ac870eba7c17a0e91c198a50a58c074e2f785bf8e4ec3326cdea1209b4a9002baa994aae720ecebfeb8089aa416e4a6ed73c2613f9389ea959c1ff216107f72da3514fb35b28e0e2efecdc575052234730dc6b195e441b83638b7e1419f2647b30366e3fb1076c9340dda51263d104b9bdc226d051c2ec2fc89d5b96ccbfae762501f5e586c6a1037b01804e0ffb694d0ce4628ac52700e603850cf75f694edcd7e4d36ff7dddd2e0f2cdf71d852f4490e8f45649a3b6f459838fddd5b7e6b52d7473a4ea13d6b8fd9cdaad615dbb574abd8f55779acb8c7a985d4707769d229c6cf80d1b0f870c809922a448f68c4ea4a7ec548dc2ffb397a99d0071ad9641e6fc3e99d87ecfc57ea290102fd4d232daaa998cc31d95c4b2506f9dae4f49ce977b959b90e49227d5cf4311e5b3d3ee845ecefc84a727f2882b7a6909b50b5f619a8d86ab927d42a19acb4caf2dfdef6d827634f0d3419818d6a0784b79f2012569f00d85abb8a22324b1e64de63892750e02fa99098aa5c2ecf6a33d4be9f2651745d7c4ce8b40dcc203ffae85e496a9ee26e033cee3eb79e7dd06017bb97b8d98d5ed042c5b4299220be61228ae069446cffdcf868cef276683a1f432c653c430828fbbe82d08664d00adfbf5822f7d013f98682f458e4d9a3b1ae11d6791c17c32ec4deaaeeb1f40420904ef8fd0a1397993af31164666cc60eb3ece84a93eee7752553cc43671908c6d2f7f881f71b02a88acd4df9ac1f7bb58d6ef913b3e1514a140a3d84d7c7f0d3d065fec527a980f4409a964e02bc4a530532bef478400db506315c4d9bae8add22f3502b94bb00e3524f9f08e7cbbedfe4af62b38b7ee6e1e066ad1e369a17bbad10beed508ab198e5c48de2570d4555d30dde8f34c09b8ea1b85e5795dcb87aaba21e2d7662788856b4ea920ecfcb42a102e08bedbbee95ca2c1dd02ea47bd521b23b02c89544a7bd155d4917b51135d754860610a0b3acb0e365fc0fd01b7b9ef147e523fe69d87abeaab19824c067d79f6dce47f9c6f9804d23f8d3e659f1c1aa7a2386007a4ef4ebdf91f13600fc7ff99cd5d5efe7069018d14073934b38e705e1325823344c1060c211dba017e52251624a593e56514ac839dcd27ac951ca68246ebe8cd7a9c3c0c2052e5c9b614a3a38288cf62a52a5390a5e5794e78ee26ef7a93ef6055692362d96c8347e91f8fb586e9a58a59e6b3f4cf6f211ccc1dc32d28f5d3417b313b9c2f9433d94f2a0a2aca76409e46ba62ee60a3e4c3e64b0104bc7d420b063d9143787da4d834816fc5714461f3ae3427e8915abba84963581e0d763141f3ea2fe459e5d99acff8cc0d24d5867961d01799f807c63d475143bddad56f0cf5d3c498ec12ade3a4f4f5c906d36975ce5246372b77db963bb5035e8d76d2968c9356e8bdb9651b6b9097c4133fd135e4a90b99f092412f5621e0ada061a42eec3fff9e7c3b6dcce6b7b136a1d75604c2f0a92314876acaaf6a47a735a1b6c37dcd43f201db6752c7763a0e2408581ba9c886eaf73f9327c2caf4338423b238f6445b69d71cb1da39a7bcbb88b97266c2aaa5e7995b0d0fb5189f07c4f8a9d01306bb938f9166dc65a2fd6458671af7e2bbe503e9ac0341064589e68d350e4fe24053d7de9c7899f44966f05c307e2d6b6953561d335652aa53c6627ecd047038d32e18670e06a9a684598346b564af600a4501c7c3975545a0f4aad23d70aff7be18f5bf78dc1b9a783f3ca116ef17f71159ba1239ee259e6f26e8907d0af20b29a0ff5818649fc05bd31c0d5935cbf32f5523eba801126d86c447e09c842ba1c5fed03b7be3548ccb7a410eaa6ceef9fa764f5f694d2586d5dc2f88d1cdf39c6eeb444c96c361381961149bb54e166b82af737f4031066ed22ddc46840ffcfae8867ffa0aafa2efc264c190d32232a207c16f7100516558aa05cfe10aecc737c8b6c705535c7b61da2ec3ad58de1ee4bf8a5950b73dfbf90c353440312495942ec81556cf65c955b9f90c6f4ca7a36a45d109cd47eaf1782b28d1844ba0c3869ecc2cc2a08b4f722a094d5c24476e56fcc7fd77882ad2b779a182792a06dfd09b9674a60b9cd67f5fcbcf1112dbc76a6aac8999a43cb256ab8ceba9e321e5558854d227b71222a6fe24983d0270b9262302324a03c0bdf31869d0824eab39a62313bf19b532c10b2983e91d7715f5fbc95ff6e7f1b92ab5c08945267db762b2be8352620d5ce22a7c9ed302f2578c55d2a606cc283d0f164b77ee9b7e5bcaa9b26b5d3ce46baca70696411c17b9f4a5f68287024b39f5c4d060052335020e62a1a64daadedd482d09d0b7a7371fbfb7e0fbcb5e602e0be5a9716475642c5bec38b18c24c809f572231a593c985cde6e1b19bf44f9e7389449ed7d302185adf7c5bfb8167f2214a934e6b18b06b2737e2c866577cfb030580131de4605f45a651280578ede648075b4ddf9f99421f99bc5af7020b95c932bf93649042f62be07be327b26123e310bcd9bd92c18008d5ea8ee72057e09bc867d50a3654172b99c544b794050bd67325c9bb095e6fe0b33fb24eb72a11a88720fd466269e271da404bf0f6fb41d43a2e4fd2a6c1595ae840c78959c5022eb5141653f501df462b5f6d1fe2f30b7fd5ae9578547d13a4efa0ee647053e06c9236b4e86dd90336bba94d6bdf2f5afb6c13f117ebf9013fbf8e8e105a6f804541df9396989652aac1e9325386221c1662546ce0d19b37a87de8bac20dc65de78c79fff60dd4c9547b6e48b13c9f49cd6faf90b7e50525437b5c93520c867e47aceaf04c7bc77cdea3c34f38bc8d44b120a86d4ef372414e919ff6be10ebcda5d9cbaf91e3b2e39b61853db063f9672a24d1505a595bbd2dcf3e8b7ffc30113b66c24af1024dceb972c2ac5a11280bd8be69fbabcc7bcafc9a66441b2f16b2374d0e3df14da9cb6cea6ca7fcae70f7789d83ddee578f2558178509e58b3ac7673ef2fd0971d8e0aeb26e8de905cae82d9e985e99241c0d71a85b8392c01efeebb15c4c9d9c3e30ad0620dbdf00c380f11f2b7546c0df3863f250a8bbeafbc1055774a8447ec6702d6ba8c4b530303ea2ed0acdc4c6be0e1708eb4a9f1509f30d7a19d25698b658e244a49e8e9153802757f6dd10b7897413b4e396b8d5f03fa61a76b0e3eb35260c6d96c06e00f95a00184af56ac0edc2785cb37f051ebe6d020cb8beb4a43637ff111cb7b90a918b25c70a70425b687fc97c132132ff026cf16fc3a8235d72b69daa2a3a0de6ee525bcfb52d63a16d74069c3a2804d70c2b1158d287df0b2cc0714ec26bbc09165fba929aeedc8b90c964294564a908443a2a3831e86e314eba06d4faadbb46af1dd72317b090cbf2e1b5984155ad41e666b09474a295ed3b48a636ec131897cbf472107b1755fc0b1fe3edb96e9309116b07111c71d7afa35013a43e419fb62cd0fc34a7474e05d721596d32311d7b325ff3b7045ec2c6a5043a77760b2c922188c8bb0f9126d3ab5a478333080ee271bf135e0cdf4beabbc02fbd024f76e72febacb90c8d9cdded74e69afca61bdd803f9ce0ace08e01129784628f0706273bd4cf5778999050dbdfb5e7ccdfc47f6779189fc7007e1724bdfb37c4c45ed148cfdca1ff7b8d2983b532f93d7c46936536ff46bf01a92a1d4c18c9ec72e5911bbe4cbac6207a524d7a521045817ca8d7bb3885412cd18e6e2b2aea66f5c8a2706e5efb888b42caef7c8a455f7aa9ec58ea849a6e08b2dd9aab5377459b67d64dbe2519901f6f10b838e20c7b08432e490241804e6d65ffc878094f94b51d03018a098bef0bc967d5fc6899ad23cdd97e930eef31b1b827e586d4c7fb1c36e86360fd8b169d82dfd316ad96fa08cb4b910c3a2508ad2e65035961675e1209d16263df3ed352a02b231fb38066be3a71a935432062510c634d1be08e5fb1d64b1b232da6ad70a64d102aa070ac2f1c0f1a494fe82acf3146a8be2459855a7117ff8fd10f7dd8b8088b3771dfcd7d9a4e10eeea5352e367c3508f22c8baab7d40ee654e493c2ac196ed95a9cb48f191a3fe1eca04797ac4b18a4c8c6ec8fe8b0d33fc8343f68487390e37a83e0c98f5ca0f61dd21a4ace8b4808c26b47f6c61983fb3b939c7d1aa2051a0488da0497374015f16f7a0702b9bd02986a5773712598e0495dc6e2bf8f5c82da24fb43ebe613d2bc23a745e3d1821dbd06347696a7cf755b7269fc27daa089b1f151da95d1d4f13f4712eab8bbe27794d9aa9129f963f031db53d5da93a84e7461ad5f21c1b3d6a74fcb0ab02437c37c3f1c205756641a669ea67b156e384a78813c07c2d09aa0edb32056f364c524aa1167bd9c13e98e3055e7a51a3dca1f0415762943de2d712edddeec8c374c9bbf4742e4365c93abca8f7e0eec15438362a1e6ed588fd808a45"})
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef)

77.851066ms ago: executing program 2 (id=8803):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x8002, 0x2)
mprotect$auto(0x0, 0x806121, 0x6)

0s ago: executing program 1 (id=8804):
socket(0x2, 0x1, 0x106)
shutdown$auto(0x200000003, 0x2)
poll$auto(&(0x7f0000000d40)={0x3, 0x1, 0xa}, 0x5, 0x400)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.10' (ED25519) to the list of known hosts.
[   76.228134][ T5813] cgroup: Unknown subsys name 'net'
[   76.384557][ T5813] cgroup: Unknown subsys name 'cpuset'
[   76.394800][ T5813] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   77.921616][ T5813] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   79.616696][ T5835] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   79.624888][ T5835] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   79.633550][ T5835] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   79.649460][ T5837] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   79.658439][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   79.658533][ T5836] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   79.666978][ T5839] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   79.676022][ T5836] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   79.682237][ T5839] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   79.688242][ T5837] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   79.696519][ T5839] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   79.709957][ T5837] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   79.711760][ T5839] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   79.726630][ T5837] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   79.735299][ T5836] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   79.741812][ T5837] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   79.744571][ T5836] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   79.755399][ T5839] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   79.759422][ T5836] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   79.765971][ T5834] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   80.265606][ T5826] chnl_net:caif_netlink_parms(): no params data found
[   80.409006][ T5825] chnl_net:caif_netlink_parms(): no params data found
[   80.450810][ T5827] chnl_net:caif_netlink_parms(): no params data found
[   80.564601][ T5824] chnl_net:caif_netlink_parms(): no params data found
[   80.627432][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.635201][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.643807][ T5826] bridge_slave_0: entered allmulticast mode
[   80.650874][ T5826] bridge_slave_0: entered promiscuous mode
[   80.675978][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.683371][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.690982][ T5826] bridge_slave_1: entered allmulticast mode
[   80.698082][ T5826] bridge_slave_1: entered promiscuous mode
[   80.786540][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.794196][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.801693][ T5827] bridge_slave_0: entered allmulticast mode
[   80.808920][ T5827] bridge_slave_0: entered promiscuous mode
[   80.817820][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.825049][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.832474][ T5825] bridge_slave_0: entered allmulticast mode
[   80.839522][ T5825] bridge_slave_0: entered promiscuous mode
[   80.860427][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.870313][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.877791][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.885715][ T5827] bridge_slave_1: entered allmulticast mode
[   80.893240][ T5827] bridge_slave_1: entered promiscuous mode
[   80.900104][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.908125][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.915338][ T5825] bridge_slave_1: entered allmulticast mode
[   80.922776][ T5825] bridge_slave_1: entered promiscuous mode
[   80.930079][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.937842][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.946465][ T5824] bridge_slave_0: entered allmulticast mode
[   80.953780][ T5824] bridge_slave_0: entered promiscuous mode
[   80.963882][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.004921][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.012623][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.020272][ T5824] bridge_slave_1: entered allmulticast mode
[   81.028167][ T5824] bridge_slave_1: entered promiscuous mode
[   81.091404][ T5826] team0: Port device team_slave_0 added
[   81.100089][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   81.113255][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   81.126101][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   81.139589][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.151273][ T5826] team0: Port device team_slave_1 added
[   81.170038][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.182944][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.245480][ T5824] team0: Port device team_slave_0 added
[   81.276838][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.283985][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.310533][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.324505][ T5824] team0: Port device team_slave_1 added
[   81.332029][ T5827] team0: Port device team_slave_0 added
[   81.340023][ T5825] team0: Port device team_slave_0 added
[   81.346631][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.353745][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.381140][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.412507][ T5827] team0: Port device team_slave_1 added
[   81.420297][ T5825] team0: Port device team_slave_1 added
[   81.469440][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.476773][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.504001][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.546700][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.554157][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.582129][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.595540][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.603337][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.636126][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.649142][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.656348][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.682459][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.695542][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.703613][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.729998][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.750262][ T5826] hsr_slave_0: entered promiscuous mode
[   81.757734][ T5826] hsr_slave_1: entered promiscuous mode
[   81.776858][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.784203][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.810669][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.852091][ T5834] Bluetooth: hci0: command tx timeout
[   81.852093][ T5839] Bluetooth: hci1: command tx timeout
[   81.852347][ T5839] Bluetooth: hci3: command tx timeout
[   81.857695][ T5834] Bluetooth: hci2: command tx timeout
[   82.009219][ T5824] hsr_slave_0: entered promiscuous mode
[   82.016504][ T5824] hsr_slave_1: entered promiscuous mode
[   82.024003][ T5824] debugfs: 'hsr0' already exists in 'hsr'
[   82.029865][ T5824] Cannot create hsr debugfs directory
[   82.066939][ T5827] hsr_slave_0: entered promiscuous mode
[   82.073581][ T5827] hsr_slave_1: entered promiscuous mode
[   82.079922][ T5827] debugfs: 'hsr0' already exists in 'hsr'
[   82.086239][ T5827] Cannot create hsr debugfs directory
[   82.099934][ T5825] hsr_slave_0: entered promiscuous mode
[   82.106823][ T5825] hsr_slave_1: entered promiscuous mode
[   82.114028][ T5825] debugfs: 'hsr0' already exists in 'hsr'
[   82.119792][ T5825] Cannot create hsr debugfs directory
[   82.583348][ T5826] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   82.608345][ T5826] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   82.627015][ T5826] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   82.646291][ T5826] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   82.698053][ T5824] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   82.711960][ T5824] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   82.740712][ T5824] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   82.768732][ T5824] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   82.799295][ T5827] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   82.823193][ T5827] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   82.847406][ T5827] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   82.860539][ T5827] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   82.946708][ T5825] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   82.962335][ T5825] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   82.985069][ T5825] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   83.014997][ T5825] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   83.141988][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.178044][ T5826] 8021q: adding VLAN 0 to HW filter on device team0
[   83.214636][  T180] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.222849][  T180] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.257351][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.264554][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.279883][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.315209][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.353536][ T5824] 8021q: adding VLAN 0 to HW filter on device team0
[   83.384383][ T3005] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.391827][ T3005] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.406918][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.419659][ T5827] 8021q: adding VLAN 0 to HW filter on device team0
[   83.429987][ T3005] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.437213][ T3005] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.470073][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.477336][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.498082][ T5826] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   83.525559][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.532798][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.556601][ T5825] 8021q: adding VLAN 0 to HW filter on device team0
[   83.616287][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.623860][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.685649][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.693328][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.887937][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.932205][ T5834] Bluetooth: hci3: command tx timeout
[   83.937652][ T5834] Bluetooth: hci0: command tx timeout
[   83.944188][   T51] Bluetooth: hci1: command tx timeout
[   83.944211][ T5839] Bluetooth: hci2: command tx timeout
[   84.037963][ T5826] veth0_vlan: entered promiscuous mode
[   84.066988][ T5826] veth1_vlan: entered promiscuous mode
[   84.148273][ T5826] veth0_macvtap: entered promiscuous mode
[   84.176768][ T5826] veth1_macvtap: entered promiscuous mode
[   84.227553][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[   84.269952][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[   84.312879][  T154] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.322706][  T154] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   84.343241][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0
[   84.354355][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0
[   84.373172][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.382665][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   84.413895][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0
[   84.487069][ T5825] veth0_vlan: entered promiscuous mode
[   84.541678][ T5825] veth1_vlan: entered promiscuous mode
[   84.584196][  T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.592853][ T5824] veth0_vlan: entered promiscuous mode
[   84.602372][  T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.637164][ T5827] veth0_vlan: entered promiscuous mode
[   84.656619][  T180] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.670801][  T180] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.672319][ T5827] veth1_vlan: entered promiscuous mode
[   84.688792][ T5824] veth1_vlan: entered promiscuous mode
[   84.738422][ T5825] veth0_macvtap: entered promiscuous mode
[   84.759682][ T5826] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   84.789324][ T5825] veth1_macvtap: entered promiscuous mode
[   84.844673][ T5824] veth0_macvtap: entered promiscuous mode
[   84.866006][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0
[   84.905920][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1
[   84.916863][ T5824] veth1_macvtap: entered promiscuous mode
[   84.933106][ T5827] veth0_macvtap: entered promiscuous mode
[   84.975405][ T5827] veth1_macvtap: entered promiscuous mode
[   84.989440][  T180] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.999679][  T180] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.019234][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.056755][  T180] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.070877][  T180] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.103120][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.132545][ T5834] Bluetooth: hci3: unknown advertising packet type: 0xea
[   85.159339][ T3005] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.185609][ T3005] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.207694][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.243289][ T3005] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.267146][ T3005] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.278468][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.317865][  T154] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.339355][  T154] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.428034][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.490227][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.511604][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.534675][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.548793][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.565145][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.634653][  T106] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.653036][  T106] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.712751][  T106] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.720725][  T106] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.809928][  T106] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.843774][  T106] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.909290][  T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.934096][  T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.013065][ T5834] Bluetooth: hci0: command tx timeout
[   86.019481][ T5834] Bluetooth: hci1: command tx timeout
[   86.025424][   T51] Bluetooth: hci2: command tx timeout
[   86.824429][   T24] cfg80211: failed to load regulatory.db
[   87.054050][ T5834] Bluetooth: hci3: command tx timeout
[   88.097501][ T5834] Bluetooth: hci0: command tx timeout
[   88.102154][   T51] Bluetooth: hci1: command tx timeout
[   88.103217][ T5834] Bluetooth: hci2: command tx timeout
[   88.439002][ T6031] random: crng reseeded on system resumption
[   88.546636][ T5834] Bluetooth: hci2: unexpected event 0x32 length: 727 > 9
[   88.887461][   T29] audit: type=1800 audit(1773456327.422:2): pid=6050 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.67" name="features" dev="configfs" ino=7913 res=0 errno=0
[   89.497362][ T6077] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[   90.194960][ T6115] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[   92.838164][ T6216] Process accounting resumed
[   93.671448][ T6257] syz.1.167(6257): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[   94.096741][ T6278] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   95.274908][ T6310] syz.0.191 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   99.159044][ T6465] Unable to find swap-space signature
[   99.376152][ T5834] Bluetooth: hci2: unexpected event 0x34 length: 11 > 6
[  101.641475][ T5834] Bluetooth: hci2: unexpected event 0x01 length: 124 > 1
[  105.831151][   T29] audit: type=1800 audit(1773456344.352:3): pid=6760 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.406" name="members" dev="configfs" ino=10440 res=0 errno=0
[  107.952133][ T6849] syz.3.451 (6849): attempted to duplicate a private mapping with mremap.  This is not supported.
[  110.699872][ T6968] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  112.926289][   T29] audit: type=1326 audit(1773458399.497:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7070 comm="syz.3.559" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9f3759c799 code=0x0
[  113.037170][ T5834] Bluetooth: hci1: unexpected event 0x22 length: 726 > 260
[  113.037220][ T5834] Bluetooth: hci1: Malformed HCI Event: 0x22
[  113.259508][ T5834] Bluetooth: hci0: unexpected event 0x3e length: 720 > 260
[  113.607349][   T29] audit: type=1800 audit(1773458400.181:5): pid=7108 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.578" name="trace_pipe" dev="tracefs" ino=3835 res=0 errno=0
[  114.456109][   T29] audit: type=1800 audit(1773458401.035:6): pid=7151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.598" name="trace_pipe" dev="tracefs" ino=3790 res=0 errno=0
[  115.291570][ T7195] futex_wake_op: syz.1.620 tries to shift op by -1; fix this program
[  120.500715][ T7464] capability: warning: `syz.0.751' uses deprecated v2 capabilities in a way that may be insecure
[  121.352053][ T7510] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  122.790854][ T7574] Process accounting paused
[  122.794579][ T5834] Bluetooth: hci0: unexpected event 0x3c length: 254 > 7
[  124.722459][ T7671] =======================================================
[  124.722459][ T7671] WARNING: The mand mount option has been deprecated and
[  124.722459][ T7671]          and is ignored by this kernel. Remove the mand
[  124.722459][ T7671]          option from the mount to silence this warning.
[  124.722459][ T7671] =======================================================
[  127.240785][ T7800] mmap: syz.1.918 (7800) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  127.775463][ T5834] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5
[  128.159172][ T7849] Invalid ELF header magic: != ELF
[  128.240340][   T29] audit: type=1800 audit(4294967300.096:7): pid=7853 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.944" name="dbroot" dev="configfs" ino=13019 res=0 errno=0
[  130.784059][   T29] audit: type=1800 audit(4294967302.649:8): pid=7977 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1006" name="lu_gp_id" dev="configfs" ino=13227 res=0 errno=0
[  132.780072][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  132.788062][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  133.010230][ T8072] ptrace attach of "./syz-executor exec"[5824] was attempted by "./syz-executor exec"[8072]
[  133.698037][ T8025] kexec: Could not allocate control_code_buffer
[  134.103226][   T29] audit: type=1800 audit(4294967305.986:9): pid=8123 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1077" name="dummy_udc" dev="gadgetfs" ino=6515 res=0 errno=0
[  135.429697][ T8182] nfs: Bad value for 'source'
[  136.088449][ T8212] nfsd: Unknown parameter '��ԣ'
[  136.675995][ T8236] vhci_hcd vhci_hcd.2: SetHubDepth req not supported for USB 2.0 roothub
[  136.887942][ T8245] i2c i2c-0: delete_device: Extra parameters
[  140.368737][ T8394] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  141.408299][ T8440] usb usb2: usbfs: process 8440 (syz.3.1231) did not claim interface 4 before use
[  141.485974][ T8446] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec"[8446]
[  142.993797][ T5834] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  142.993837][ T5834] Bluetooth: hci1: unexpected subevent 0x06 length: 725 > 10
[  143.369272][ T8532] QAT: Device 250 not found
[  143.710929][ T8550] ptrace attach of "./syz-executor exec"[5824] was attempted by "./syz-executor exec"[8550]
[  144.103025][ T8573] ptrace attach of "./syz-executor exec"[5827] was attempted by "./syz-executor exec"[8573]
[  144.506585][ T8594] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed.
[  144.805929][ T8609] : Can't lookup blockdev
[  145.009475][ T5834] Bluetooth: hci1: command tx timeout
[  145.439053][ T8635] __vm_enough_memory: pid: 8635, comm: syz.1.1329, bytes: 9223372036854775808 not enough memory for the allocation
[  147.670348][ T8744] i2c i2c-0: delete_device: Can't find device in list
[  148.120445][ T8766] Setting dangerous option i915.mitigations - tainting kernel
[  149.556851][ T8834] wlan1: mtu less than device minimum
[  149.590289][ T8839] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  149.983797][   T29] audit: type=1800 audit(4294967321.949:10): pid=8861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1440" name="dbroot" dev="configfs" ino=17601 res=0 errno=0
[  152.680267][ T9010] Process accounting resumed
[  153.018627][   T29] audit: type=1800 audit(4294967325.004:11): pid=9035 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1524" name="members" dev="configfs" ino=16970 res=0 errno=0
[  154.267081][   T24] Process accounting resumed
[  156.437494][   T29] audit: type=1804 audit(4294967328.432:12): pid=9211 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1608" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  157.687254][ T9285] Kernel: The 'panic_print' parameter is now deprecated. Please use 'panic_sys_info' and 'panic_console_replay' instead.
[  160.105200][ T9417] Invalid ELF header magic: != ELF
[  161.087496][ T9471] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000
[  161.116405][ T9471] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  161.133753][ T9471] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000
[  161.159347][ T9471] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  161.184504][ T9471] page dumped because: unmovable page
[  161.191380][ T9471] page_owner info is not present (never set?)
[  162.538524][ T9559] i8042 aux 00:02: in use; can't configure
[  162.576141][ T9561] Scaler: =================  START STATUS  =================
[  162.586091][ T9561] Scaler: ==================  END STATUS  ==================
[  165.056120][ T9685] warning: `syz.3.1841' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  165.391079][   T29] audit: type=1806 audit(4294967337.439:13): xattr="." res=0
[  166.009488][ T9737] Line length is too long: Should be less than 4094
[  166.213698][ T9751] Format for deleting device is "id" (uint).
[  166.599884][ T9768] WARNING! power/level is deprecated; use power/control instead
[  166.627127][ T9771] vivid-003: =================  START STATUS  =================
[  166.627202][ T9771] vivid-003: Radio HW Seek Mode: Bounded
[  166.627258][ T9771] vivid-003: Radio Programmable HW Seek: false
[  166.627287][ T9771] vivid-003: RDS Rx I/O Mode: Block I/O
[  166.627339][ T9771] vivid-003: Generate RBDS Instead of RDS: false
[  166.627369][ T9771] vivid-003: RDS Reception: true
[  166.627396][ T9771] vivid-003: RDS Program Type: 0 inactive
[  166.627482][ T9771] vivid-003: RDS PS Name:  inactive
[  166.627517][ T9771] vivid-003: RDS Radio Text:  inactive
[  166.627547][ T9771] vivid-003: RDS Traffic Announcement: false inactive
[  166.627579][ T9771] vivid-003: RDS Traffic Program: false inactive
[  166.627613][ T9771] vivid-003: RDS Music: false inactive
[  166.627648][ T9771] vivid-003: ==================  END STATUS  ==================
[  168.209652][ T9844] cougar: G6 mapped to F18
[  168.773753][ T9876] vivid-003: =================  START STATUS  =================
[  168.797532][ T9876] vivid-003: Radio HW Seek Mode: Bounded
[  168.803574][ T9876] vivid-003: Radio Programmable HW Seek: false
[  168.823696][ T9876] vivid-003: RDS Rx I/O Mode: Block I/O
[  168.841979][ T9876] vivid-003: Generate RBDS Instead of RDS: false
[  168.855425][ T9876] vivid-003: RDS Reception: true
[  168.873339][ T9876] vivid-003: RDS Program Type: 0 inactive
[  168.885486][ T9876] vivid-003: RDS PS Name:  inactive
[  168.901356][ T9876] vivid-003: RDS Radio Text:  inactive
[  168.915097][ T9876] vivid-003: RDS Traffic Announcement: false inactive
[  168.945568][ T9876] vivid-003: RDS Traffic Program: false inactive
[  168.961079][ T9876] vivid-003: RDS Music: false inactive
[  168.971172][ T9876] vivid-003: ==================  END STATUS  ==================
[  169.411812][ T9908] ecryptfs_miscdev_write: memdup_user returned error [-14]
[  169.610138][ T9922] block2mtd: illegal erase size
[  169.974677][ T9941] sysfs_service_op_store: Client not running :-5:
[  171.590782][T10023] tipc: Can't bind to reserved service type 1
[  172.815795][T10084] ubi31: attaching mtd0
[  172.831866][T10084] ubi31: scanning is finished
[  172.839251][T10084] ubi31 error: ubi_read_volume_table: the layout volume was not found
[  173.021043][T10084] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  173.183162][T10102] scsi_strcpy_devinfo: vendor string '��/&c��~n]	�|
[  173.183162][T10102] M�' is too long
[  173.204152][T10102] scsi_strcpy_devinfo: model string '�Dd5��K�2b�
[  173.204152][T10102] ���W����� ��' is too long
[  173.378814][T10110] kAFS: Invalid Command on /proc/fs/afs/cells file
[  173.962444][T10139] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  175.226930][T10195] bdi 43:192: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead.
[  176.246211][T10244] ubi31: attaching mtd0
[  176.268971][T10244] ubi31: scanning is finished
[  176.274012][T10244] ubi31 error: ubi_read_volume_table: the layout volume was not found
[  176.438208][T10244] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  177.822156][T10315] deleting an unspecified loop device is not supported.
[  177.865566][T10317] ubi31: attaching mtd0
[  177.926794][T10317] ubi31: scanning is finished
[  177.972886][T10317] ubi31 error: ubi_read_volume_table: the layout volume was not found
[  178.756168][T10339] virtio-pci 0000:00:04.0: [Firmware Bug]: Overriding NUMA node to -1.  Contact your vendor for updates.
[  178.807458][T10317] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  179.113824][T10351] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10
[  179.897617][T10388] block2mtd: illegal erase size
[  180.476539][T10415] i2c i2c-0: new_device: Missing parameters
[  181.490956][T10465] sd 0:0:1:0: PR command failed: 1026
[  181.500271][T10465] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  181.516406][T10465] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  182.160090][T10499] smpboot: CPU 1 is now offline
[  182.855621][T10524] Process accounting paused
[  183.321394][T10555] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  186.188058][T10691] usb usb27: usbfs: interface 0 claimed by hub while 'syz.0.2331' sets config #131073
[  189.308254][T10834] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  190.513849][T10872] vhci_hcd vhci_hcd.2: invalid port number 16
[  190.554808][T10872] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[  192.459658][T10951] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  193.886064][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  193.892776][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  196.678641][T11113] ima: policy update failed
[  196.706923][   T29] audit: type=1802 audit(4294967368.922:14): pid=11113 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2537" res=0 errno=0
[  201.531037][T11369] 
[  201.677957][T11273] Bluetooth: hci0: command 0x0406 tx timeout
[  201.691199][T11273] Bluetooth: hci1: command 0x0406 tx timeout
[  201.698240][T11273] Bluetooth: hci2: command 0x0406 tx timeout
[  203.888597][T11492] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  204.297577][T11512] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  206.067418][T11582] Invalid input. Must be >= 4608
[  206.135183][ T8886] Bluetooth: hci3: command 0x0406 tx timeout
[  206.706698][T11267] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  206.870465][T11619] overlayfs: "check_copy_up" module option is obsolete
[  207.677061][T11649] bond0: option mode: unable to set because the bond device is up
[  208.455977][T11684] [U] ^\
[  208.758951][ T8886] Bluetooth: hci0: command 0x0406 tx timeout
[  209.739277][T11267] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  209.906223][T11753] i2c i2c-0: delete_device: Can't parse I2C address
[  210.829315][ T9243] Bluetooth: hci0: command 0x0406 tx timeout
[  211.091800][T11798] 
[  211.846651][T11833] ecryptfs_miscdev_response: (sizeof(*msg) + msg->data_len) = [1067213646]; data_size = [146]. Invalid packet.
[  211.920918][T11833] ecryptfs_miscdev_write: Failed to deliver miscdev response to requesting operation; rc = [-22]
[  212.087422][T11842] mmap: syz.2.2894 (11842): VmData 45879296 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data.
[  212.118715][T11845] usb usb13: check_ctrlrecip: process 11845 (syz.3.2895) requesting ep 01 but needs 81
[  212.157614][T11845] usb usb13: usbfs: process 11845 (syz.3.2895) did not claim interface 0 before use
[  212.459831][T11854] synth uevent: /module/au0828: unknown uevent action string
[  212.914802][T11873] Process accounting resumed
[  214.020158][T11934] random: crng reseeded on system resumption
[  214.381540][T11948] usb usb36: usbfs: process 11948 (syz.0.2946) did not claim interface 0 before use
[  214.513615][ T8886] Bluetooth: hci3: unexpected event 0x14 length: 16 > 6
[  214.793860][T11972] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  216.467914][   T29] audit: type=1400 audit(4294967388.774:15): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=12046 comm="syz.2.2996"
[  216.516359][T12050] futex_wake_op: syz.1.2997 tries to shift op by -1; fix this program
[  216.688333][ T8886] Bluetooth: hci1: unexpected subevent 0x0c length: 118 > 5
[  216.809583][   T29] audit: type=1800 audit(4294967389.116:16): pid=12062 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3003" name="lu_gp_id" dev="configfs" ino=28228 res=0 errno=0
[  217.919170][T12122] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26)
[  217.919649][T12120] ima: policy update failed
[  217.981089][   T29] audit: type=1802 audit(4294967390.292:17): pid=12120 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.3032" res=0 errno=0
[  219.715028][T12208] queue_state_write: operation too long
[  219.750769][T12208] queue_state_write: use 'run', 'start' or 'kick'
[  220.917237][T12269] kAFS: unparsable volume name
[  222.638189][T12343] cifs: Unknown parameter 'no+ 1����`��r�sFn)��a�H��ā��h`����9k�A}���1\D@��.��Z�Cg^�'
[  223.333373][T12381] : Can't lookup blockdev
[  223.601742][T12394] zswap: compressor �^`�#ߗ(2N�AV��1`W�n��f\'�J����돆#��If&��ͦ5�������j�)�٥Kp$�'�\�&�9����r���y��*�paۄH��,������T{�
�Kf_�SQAW not available
[  225.420022][T12482] bcache: register_bcache() error : Not a bcache superblock (bad offset)
[  225.678300][T12496] ecryptfs_parse_packet_length: Five-byte packet length not supported
[  225.727852][T12496] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[  228.929503][T12662] delete_channel: no stack
[  233.392938][T12899] syz.2.3413 uses obsolete (PF_INET,SOCK_PACKET)
[  235.517762][T13002] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint
[  235.745897][T13010] Per memcg swappiness does not exist in cgroup v2. See memory.reclaim or memory.swap.max there
[  235.745897][T13010]  
[  235.748925][T13012] cifs: Unknown parameter '�����)�	Up��̢{��V]7�62']�Ψ��!�g�ʮ�7�9��fM�<*y�sE�h�
�'
[  235.955698][T13018] kafs: addr_prefs: Invalid Command
[  239.895304][T13219] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  240.742257][T13262] nvme_fcloop: unknown parameter or missing value '7�="����;��&L�=j�"Yq'R"'
[  240.974154][T13274] Format for unlinking a device is "netnsfd:ifidx" (int uint).
[  241.077534][T13280] random: crng reseeded on system resumption
[  241.510899][T13302] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0
[  242.159281][ T8886] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  242.167678][ T8886] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff
[  242.916807][T13362] Process accounting paused
[  243.337560][T13392] i2c i2c-0: new_device: Invalid device name
[  243.828213][T13420] kafs: addr_prefs: Invalid Command
[  244.104116][T13431] batman_adv: Routing algorithm '7' is not supported
[  244.275957][T13439] bond0: no command found in slaves file - use +ifname or -ifname
[  244.602207][T13455] bond0: no command found in slaves file - use +ifname or -ifname
[  244.825403][T13470] misc userio: Invalid payload size
[  246.710762][T13561] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78002
[  246.749273][T13561] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  246.795591][T13561] memcg:ffff88802c743201
[  246.829943][T13561] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  246.872401][T13561] page_type: f5(slab)
[  246.893537][T13561] raw: 00fff00000000040 ffff8881404833c0 dead000000000100 dead000000000122
[  246.942750][T13561] raw: 0000000000000000 0000000800120012 00000000f5000000 ffff88802c743201
[  247.002069][T13561] head: 00fff00000000040 ffff8881404833c0 dead000000000100 dead000000000122
[  247.042339][T13561] head: 0000000000000000 0000000800120012 00000000f5000000 ffff88802c743201
[  247.080986][T13561] head: 00fff00000000001 ffffea0001e00081 00000000ffffffff 00000000ffffffff
[  247.128913][T13561] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  247.176285][T13561] page dumped because: unmovable page
[  247.197217][T13561] page_owner tracks the page as allocated
[  247.227386][T13561] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5193, tgid 5193 (udevd), ts 52904706310, free_ts 47134582559
[  247.332599][T13561]  post_alloc_hook+0x153/0x170
[  247.355303][T13561]  get_page_from_freelist+0x111d/0x3140
[  247.385612][T13561]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  247.440556][T13561]  new_slab+0xa6/0x6b0
[  247.452776][T13561]  refill_objects+0x26b/0x400
[  247.470768][T13561]  __pcs_replace_empty_main+0x1ab/0x660
[  247.493587][   T29] audit: type=1800 audit(4294967419.966:18): pid=13594 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3754" name="lu_gp_id" dev="configfs" ino=33102 res=0 errno=0
[  247.528205][T13594] kstrtoul() returned -22 for lu_gp_id
[  247.556108][T13561]  kmem_cache_alloc_noprof+0x480/0x6e0
[  247.561632][T13561]  alloc_empty_file+0x55/0x1c0
[  247.632940][T13561]  path_openat+0xe8/0x31a0
[  247.656456][T13561]  do_file_open+0x20e/0x430
[  247.675462][T13561]  do_sys_openat2+0x10d/0x1e0
[  247.707817][T13561]  __x64_sys_openat+0x12d/0x210
[  247.712725][T13561]  do_syscall_64+0x106/0xf80
[  247.738270][T13561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.744281][T13561] page last free pid 5199 tgid 5199 stack trace:
[  247.804223][T13561]  __free_frozen_pages+0x7e1/0x10d0
[  247.825094][T13561]  qlist_free_all+0x47/0xe0
[  247.829914][T13561]  kasan_quarantine_reduce+0x1a0/0x1f0
[  247.875385][T13561]  __kasan_slab_alloc+0x69/0x90
[  247.880362][T13561]  __kmalloc_noprof+0x2b9/0x850
[  247.896509][T13561]  tomoyo_realpath_from_path+0xb6/0x690
[  247.902319][T13561]  tomoyo_path2_perm+0x366/0x700
[  247.933029][T13561]  tomoyo_path_rename+0xfc/0x1a0
[  247.953232][T13561]  security_path_rename+0x18e/0x3c0
[  247.976237][T13561]  filename_renameat2+0x731/0xa60
[  247.981579][T13561]  __x64_sys_rename+0x81/0xb0
[  248.003841][T13561]  do_syscall_64+0x106/0xf80
[  248.020901][T13561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.975459][T13664] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[13664]
[  249.994845][T13713] rnbd_client L213: map_device: Parameters missing
[  250.323435][T13731] : Can't lookup blockdev
[  250.769132][T13749] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.184251][ T8886] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  251.195469][ T8886] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff
[  252.383096][T13819] program syz.2.3865 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  252.580126][T13826] vhci_hcd vhci_hcd.0: ClearPortFeature: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[  253.705012][ T8886] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  253.712703][ T8886] Bluetooth: hci2: Invalid handle: 0x3a4a > 0x0eff
[  255.000572][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  255.007829][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  255.319250][T13934] program syz.0.3918 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  255.615229][T13924] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78002
[  255.639922][T13944] zram: Added device: zram1
[  255.648129][T13924] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  255.674894][T13924] memcg:ffff88802c743201
[  255.691918][T13924] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  255.718066][T13924] page_type: f5(slab)
[  255.731448][T13924] raw: 00fff00000000040 ffff8881404833c0 dead000000000100 dead000000000122
[  255.763554][T13924] raw: 0000000000000000 0000000800120012 00000000f5000000 ffff88802c743201
[  255.805752][T13924] head: 00fff00000000040 ffff8881404833c0 dead000000000100 dead000000000122
[  255.833084][T13924] head: 0000000000000000 0000000800120012 00000000f5000000 ffff88802c743201
[  255.859338][T13924] head: 00fff00000000001 ffffea0001e00081 00000000ffffffff 00000000ffffffff
[  255.896406][T13924] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  255.945783][T13924] page dumped because: unmovable page
[  255.966601][T13924] page_owner tracks the page as allocated
[  255.986806][T13924] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5193, tgid 5193 (udevd), ts 52904706310, free_ts 47134582559
[  256.054095][T13924]  post_alloc_hook+0x153/0x170
[  256.064173][T13924]  get_page_from_freelist+0x111d/0x3140
[  256.069755][T13924]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  256.101787][T13924]  new_slab+0xa6/0x6b0
[  256.106066][T13924]  refill_objects+0x26b/0x400
[  256.112960][T13924]  __pcs_replace_empty_main+0x1ab/0x660
[  256.126117][T13924]  kmem_cache_alloc_noprof+0x480/0x6e0
[  256.138330][T13924]  alloc_empty_file+0x55/0x1c0
[  256.149082][T13924]  path_openat+0xe8/0x31a0
[  256.159862][T13924]  do_file_open+0x20e/0x430
[  256.169918][T13924]  do_sys_openat2+0x10d/0x1e0
[  256.180839][T13924]  __x64_sys_openat+0x12d/0x210
[  256.197213][T13924]  do_syscall_64+0x106/0xf80
[  256.207343][T13924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  256.221113][T13924] page last free pid 5199 tgid 5199 stack trace:
[  256.234823][T13924]  __free_frozen_pages+0x7e1/0x10d0
[  256.245806][T13924]  qlist_free_all+0x47/0xe0
[  256.256873][T13924]  kasan_quarantine_reduce+0x1a0/0x1f0
[  256.268414][T13924]  __kasan_slab_alloc+0x69/0x90
[  256.281696][T13924]  __kmalloc_noprof+0x2b9/0x850
[  256.296508][T13924]  tomoyo_realpath_from_path+0xb6/0x690
[  256.308771][T13924]  tomoyo_path2_perm+0x366/0x700
[  256.319663][T13924]  tomoyo_path_rename+0xfc/0x1a0
[  256.330450][T13924]  security_path_rename+0x18e/0x3c0
[  256.344443][T13924]  filename_renameat2+0x731/0xa60
[  256.356990][T13924]  __x64_sys_rename+0x81/0xb0
[  256.367031][T13924]  do_syscall_64+0x106/0xf80
[  256.377154][T13924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  256.416660][T13972] kAFS: No cell specified
[  257.358831][T13996] random: crng reseeded on system resumption
[  261.445032][T14166] random: crng reseeded on system resumption
[  262.764176][T14237] syz.0.4067 (14237): drop_caches: 0
[  263.323133][T14264] bond0: invalid ARP target specified
[  264.412533][T14309] syz.1.4102 (14309): attempted to duplicate a private mapping with mremap.  This is not supported.
[  266.548376][T14404] program syz.2.4150 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  267.969686][T14477] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  268.090223][T14477] CIFS mount error: No usable UNC path provided in device string!
[  268.090223][T14477] 
[  268.139297][T14477] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  268.234572][T14490] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes
[  269.185531][T14540] binder: binder_mmap: 14538 0-1000 bad vm_flags failed -1
[  269.928853][T14573] QAT: failed to copy from user.
[  270.677020][ T8886] Bluetooth: hci0: unexpected event 0x31 length: 19 > 6
[  271.090504][T14624] usbcore.quirks: string doesn't fit in 127 chars.
[  272.639457][T14697] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  272.840541][T14702] Process accounting resumed
[  273.036563][T14714] futex_wake_op: syz.2.4302 tries to shift op by -2048; fix this program
[  273.075543][T14714] futex_wake_op: syz.2.4302 tries to shift op by -2048; fix this program
[  275.404051][T14821] synth uevent: /devices/virtual/tty/ttyz1: unknown uevent action string
[  275.451419][T14821] tty ttyz1: uevent: failed to send synthetic uevent: -22
[  276.093671][T14854] process 'syz.0.4372' launched '/dev/fd/3' with NULL argv: empty string added
[  276.103590][T14853] usb usb13: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  276.969678][T14892] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff81b108da (__mcheck_cpu_init_prepare_banks+0x18a/0x380)
[  276.985410][T14892] Call Trace:
[  276.988740][T14892]  <TASK>
[  276.991659][T14892]  ? __pfx___mcheck_cpu_init_prepare_banks+0x10/0x10
[  276.998781][T14892]  ? __pfx_debug_object_deactivate+0x10/0x10
[  277.004867][T14892]  mce_cpu_restart+0xd5/0x1f0
[  277.009591][T14892]  ? __pfx_mce_cpu_restart+0x10/0x10
[  277.014874][T14892]  smp_call_function_many_cond+0x11fc/0x1500
[  277.020882][T14892]  ? __pfx_mce_cpu_restart+0x10/0x10
[  277.026178][T14892]  ? mark_held_locks+0x40/0x70
[  277.030981][T14892]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  277.036843][T14892]  ? lockdep_hardirqs_on+0x78/0x100
[  277.042082][T14892]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  277.047877][T14892]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  277.054207][T14892]  ? __pfx___try_to_del_timer_sync+0x10/0x10
[  277.060193][T14892]  ? __timer_delete_sync+0x151/0x1c0
[  277.065497][T14892]  ? __pfx_mce_cpu_restart+0x10/0x10
[  277.070806][T14892]  on_each_cpu_cond_mask+0x40/0x90
[  277.076357][T14892]  set_bank+0x240/0x3a0
[  277.080512][T14892]  ? __pfx_set_bank+0x10/0x10
[  277.085791][T14892]  ? find_held_lock+0x2b/0x80
[  277.090486][T14892]  ? sysfs_file_kobj+0xe4/0x290
[  277.095455][T14892]  ? sysfs_file_kobj+0xe4/0x290
[  277.100469][T14892]  ? __pfx_set_bank+0x10/0x10
[  277.105210][T14892]  dev_attr_store+0x58/0x80
[  277.109865][T14892]  ? __pfx_dev_attr_store+0x10/0x10
[  277.115059][T14892]  sysfs_kf_write+0xf2/0x150
[  277.119653][T14892]  kernfs_fop_write_iter+0x3e0/0x5f0
[  277.124946][T14892]  ? __pfx_sysfs_kf_write+0x10/0x10
[  277.130141][T14892]  vfs_write+0x6ac/0x1070
[  277.134492][T14892]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  277.140290][T14892]  ? __pfx_vfs_write+0x10/0x10
[  277.145181][T14892]  ksys_write+0x12a/0x250
[  277.149499][T14892]  ? __pfx_ksys_write+0x10/0x10
[  277.154337][T14892]  do_syscall_64+0x106/0xf80
[  277.158917][T14892]  ? clear_bhb_loop+0x40/0x90
[  277.163669][T14892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.169635][T14892] RIP: 0033:0x7f296f19c799
[  277.175033][T14892] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  277.194988][T14892] RSP: 002b:00007f2970136028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  277.203593][T14892] RAX: ffffffffffffffda RBX: 00007f296f415fa0 RCX: 00007f296f19c799
[  277.211585][T14892] RDX: 0000000000000003 RSI: 0000200000000240 RDI: 0000000000000003
[  277.219654][T14892] RBP: 00007f296f232c99 R08: 0000000000000000 R09: 0000000000000000
[  277.227615][T14892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  277.235568][T14892] R13: 00007f296f416038 R14: 00007f296f415fa0 R15: 00007fffaeef9258
[  277.243896][T14892]  </TASK>
[  277.474730][   T29] audit: type=1800 audit(4294967450.021:19): pid=14898 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4392" name="discovery_nqn" dev="configfs" ino=37265 res=0 errno=0
[  277.777172][T14916] scsi_dev_info_list_add_str: bad dev info string '' '' ''
[  280.074131][T15017] ceph: Failed to parse sending metrics switch value 'P^'
[  280.309297][T15029] bond0: option slaves: interface -��]���=,D�on?�I|�a �CB does not exist!
[  281.459989][T15086] Kernel: The 'panic_print' parameter is now deprecated. Please use 'panic_sys_info' and 'panic_console_replay' instead.
[  283.395806][T15186] vhci_hcd: not connected 4
[  283.923455][ T8886] Bluetooth: hci1: Unexpected cc 0x7c89 with no status
[  284.304019][T15225] block2mtd: too many arguments
[  286.398068][T15327] pci 0000:00:00.0: MSI/MSI-X allowed for future drivers
[  286.430230][T15330] syz.3.4566 uses obsolete (PF_INET,SOCK_PACKET)
[  286.597539][T15336] mmap: syz.0.4569 (15336) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  286.918658][T15354] synth uevent: /bus/mei: unknown uevent action string
[  287.282530][T15374] vhci_hcd vhci_hcd.2: invalid port number 194
[  287.334047][T15374] vhci_hcd vhci_hcd.2: invalid port number 194
[  288.116613][T15415] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma?
[  288.883280][T15450] vhci_hcd vhci_hcd.2: invalid port number 0
[  289.969758][T15505] ptp ptp0: only physical clock in use now
[  290.085161][T15511] vhci_hcd vhci_hcd.2: invalid port number 253
[  290.091362][T15511] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[  291.199890][T15566] block loop4: the capability attribute has been deprecated.
[  291.927192][T15600] ecryptfs_miscdev_write: Error while inspecting packet size
[  293.799284][T15689] ICMPv6: process `syz.0.4724' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead
[  294.084284][T15669] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  295.004135][T15739] vhci_hcd vhci_hcd.2: invalid port number 16
[  295.042661][T15739] vhci_hcd vhci_hcd.2: invalid port number 16
[  295.700749][T15766] block2mtd: parameter too long
[  297.228835][T15829] blkio.reset_stats is deprecated
[  297.951540][T15864] usb usb15: usbfs: process 15864 (syz.2.4810) did not claim interface 0 before use
[  298.172414][   T29] audit: type=1800 audit(4294967470.909:20): pid=15873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4815" name="sr0" dev="devtmpfs" ino=2846 res=0 errno=0
[  299.268411][   T29] audit: type=1800 audit(4294967472.015:21): pid=15924 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4840" name="members" dev="configfs" ino=40232 res=0 errno=0
[  299.332929][T15919] hub 1-0:1.0: USB hub found
[  299.359663][T15919] hub 1-0:1.0: 1 port detected
[  299.860449][T15948] zram0: detected capacity change from 0 to 16
[  300.860362][T15994] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  302.729528][T16062] Process accounting paused
[  303.608719][T16098] binder: 16096:16098 ioctl c0046209 9 returned -22
[  303.737591][T16103] ICMPv6: process `syz.0.4926' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  304.034291][T16112] ima: policy update failed
[  304.042466][   T29] audit: type=1802 audit(4294967476.810:22): pid=16112 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4932" res=0 errno=0
[  304.784071][T16140] kfence: disabled
[  305.623978][T16178] i2c i2c-0: new_device: Can't parse I2C address
[  305.865435][T16186] hub 3-0:1.0: USB hub found
[  305.894679][T16186] hub 3-0:1.0: 1 port detected
[  305.963585][T16186] usb usb3: authorized to connect
[  306.316297][ T8886] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  307.486972][T16247] program syz.3.4995 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  308.325101][ T9243] Bluetooth: hci0: command 0x0406 tx timeout
[  308.455374][T16289] db_root: cannot open: /dev/audio1
[  308.461955][   T29] audit: type=1800 audit(4294967481.243:23): pid=16289 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5014" name="dbroot" dev="configfs" ino=41435 res=0 errno=0
[  308.509210][T16289] db_root: not a directory: /dev/audio1
[  309.016994][T16312] usbip-vudc usbip-vudc.0: gadget not bound
[  310.392291][ T8886] Bluetooth: hci0: command 0x0406 tx timeout
[  312.872177][T16479] synth uevent: /devices/platform/dummy_hcd.3/usb4/ep_00: unknown uevent action string
[  312.910374][T16479]  ep_00: uevent: failed to send synthetic uevent: -22
[  313.276294][   T29] audit: type=1807 audit(4294967486.088:24): UNKNOWN=0"�]$|�1j�0B|d���ӉO��+��/��x����WӦ��^��gq%Ḧr�O� res=0
[  313.293159][T16500] ima: policy update failed
[  313.365847][   T29] audit: type=1802 audit(4294967486.108:25): pid=16501 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.5116" res=0 errno=0
[  313.466472][   T29] audit: type=1802 audit(4294967486.148:26): pid=16500 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.5116" res=0 errno=0
[  314.112797][T16537] [U] ^Z
[  314.540765][ T9243] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  314.974522][T16574] CIFS mount error: No usable UNC path provided in device string!
[  314.974522][T16574] 
[  315.027209][T16574] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  315.732545][T16603] rtc_cmos 00:00: Alarms can be up to one day in the future
[  315.797447][T16607] writes to the poll attribute are ignored.
[  315.823227][T16607] please use driver specific parameters instead.
[  316.128260][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  316.134815][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  316.597351][ T8886] Bluetooth: hci2: command 0x0406 tx timeout
[  317.153826][T16643] usb usb37: usbfs: process 16643 (syz.0.5187) did not claim interface 0 before use
[  318.669239][ T9243] Bluetooth: hci2: command 0x0406 tx timeout
[  320.009493][T16719] kafs: addr_prefs: Too many elements in string
[  320.469320][T16726] rnbd_client L202: map_device: Unknown parameter or missing value '7'
[  321.521002][T16762] zram0: detected capacity change from 16 to 0
[  321.643999][T16768] Setting dangerous option i915.mitigations - tainting kernel
[  321.686414][T16768] Bad "i915.mitigations=���CmâUQ�F\��	", '���CmâUQ�F\��' is unknown
[  322.236519][ T8886] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  323.280850][T16838] rcu: RCU calculated value of scheduler-enlistment delay is 10 jiffies.
[  323.518036][T16846] EXT4-fs error (device sda1): trigger_test_error:130: comm syz.0.5287: 7
[  324.318024][ T9243] Bluetooth: hci1: command 0x0406 tx timeout
[  324.484334][T16892] usb usb24: usbfs: process 16892 (syz.0.5308) did not claim interface 0 before use
[  325.521224][T16926] kAFS: Invalid Command on /proc/fs/afs/cells file
[  326.177132][T16955] ACPI: Can not change Invalid GPE/Fixed Event status
[  326.388553][ T8886] Bluetooth: hci1: command 0x0406 tx timeout
[  327.360244][T17004] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations!
[  330.612591][T17141] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582)
[  331.597183][T17186] sysfs_service_op_show: Client not running :-5:
[  332.711929][T17251] Process accounting resumed
[  332.847345][T17260] udc dummy_udc.0: soft-connect without a gadget driver
[  337.177882][T17499] block2mtd: illegal erase size
[  344.549562][   T29] audit: type=1800 audit(4294967322.956:27): pid=17829 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.5704" name="features" dev="configfs" ino=45962 res=0 errno=0
[  346.345580][T17924] block2mtd: error: cannot open device �inX�����±��jFB�B>U�;߸�Ilk�
[  346.370577][T17927] vhci_hcd vhci_hcd.2: invalid port number 253
[  346.397400][T17927] vhci_hcd vhci_hcd.2: invalid port number 253
[  347.608353][T17994] ima: Unable to open file: /surit��R�y/integrity?iqa/policy (-2)
[  347.608720][T17992] ima: policy update failed
[  347.696318][   T29] audit: type=1802 audit(4294967326.123:28): pid=17992 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.5768" res=0 errno=0
[  347.875458][T18005] syz.3.5772 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  350.939315][T18182] QAT: failed to copy from user cfg_data.
[  352.632945][T18280] kAFS: Invalid Command on /proc/fs/afs/cells file
[  352.912128][T18293] block2mtd: Using custom MTD label '' for dev 
[  352.938190][T18293] block2mtd: error: cannot open device 
[  354.219650][   T29] audit: type=1800 audit(4294967332.687:29): pid=18353 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.5911" name="dbroot" dev="configfs" ino=47294 res=0 errno=0
[  355.754085][T18436] syz.0.5944: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  355.841921][T18436] CPU: 0 UID: 0 PID: 18436 Comm: syz.0.5944 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  355.841950][T18436] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  355.841957][T18436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  355.841966][T18436] Call Trace:
[  355.841978][T18436]  <TASK>
[  355.841983][T18436]  dump_stack_lvl+0x100/0x190
[  355.842052][T18436]  warn_alloc.cold+0x95/0x1c1
[  355.842080][T18436]  ? __pfx_warn_alloc+0x10/0x10
[  355.842103][T18436]  ? __lock_acquire+0x4a5/0x2630
[  355.842133][T18436]  __vmalloc_node_range_noprof+0x1252/0x1530
[  355.842153][T18436]  ? rcu_is_watching+0x12/0xc0
[  355.842179][T18436]  ? trace_contention_end+0x140/0x180
[  355.842199][T18436]  ? dvb_dvr_do_ioctl+0x15d/0x270
[  355.842286][T18436]  ? dvb_dvr_do_ioctl+0x7e/0x270
[  355.842299][T18436]  ? tomoyo_path_number_perm+0x28f/0x580
[  355.842319][T18436]  ? tomoyo_path_number_perm+0x28f/0x580
[  355.842336][T18436]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  355.842354][T18436]  ? __pfx___mutex_lock+0x10/0x10
[  355.842381][T18436]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  355.842396][T18436]  ? futex_wait+0x125/0x380
[  355.842420][T18436]  ? dvb_dvr_do_ioctl+0x15d/0x270
[  355.842434][T18436]  __vmalloc_node_noprof+0xad/0xf0
[  355.842452][T18436]  ? dvb_dvr_do_ioctl+0x15d/0x270
[  355.842468][T18436]  dvb_dvr_do_ioctl+0x15d/0x270
[  355.842489][T18436]  dvb_usercopy+0x167/0x340
[  355.842536][T18436]  ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[  355.842552][T18436]  ? __pfx_dvb_usercopy+0x10/0x10
[  355.842582][T18436]  ? __fget_files+0x21f/0x3d0
[  355.842612][T18436]  dvb_dvr_ioctl+0x29/0x40
[  355.842624][T18436]  ? __pfx_dvb_dvr_ioctl+0x10/0x10
[  355.842638][T18436]  __x64_sys_ioctl+0x18e/0x210
[  355.842661][T18436]  do_syscall_64+0x106/0xf80
[  355.842682][T18436]  ? clear_bhb_loop+0x40/0x90
[  355.842700][T18436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.842715][T18436] RIP: 0033:0x7f3c4679c799
[  355.842728][T18436] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  355.842742][T18436] RSP: 002b:00007f3c475ae028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  355.842756][T18436] RAX: ffffffffffffffda RBX: 00007f3c46a15fa0 RCX: 00007f3c4679c799
[  355.842766][T18436] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000003
[  355.842775][T18436] RBP: 00007f3c46832c99 R08: 0000000000000000 R09: 0000000000000000
[  355.842784][T18436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  355.842793][T18436] R13: 00007f3c46a16038 R14: 00007f3c46a15fa0 R15: 00007ffc043e4ee8
[  355.842813][T18436]  </TASK>
[  355.842820][T18436] Mem-Info:
[  356.378607][ T9243] Bluetooth: hci2: command 0x0406 tx timeout
[  356.387420][   T10] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  356.680610][T18436] active_anon:4115 inactive_anon:1128 isolated_anon:0
[  356.680610][T18436]  active_file:4445 inactive_file:46704 isolated_file:0
[  356.680610][T18436]  unevictable:768 dirty:0 writeback:0
[  356.680610][T18436]  slab_reclaimable:11200 slab_unreclaimable:91698
[  356.680610][T18436]  mapped:24469 shmem:1360 pagetables:1095
[  356.680610][T18436]  sec_pagetables:0 bounce:0
[  356.680610][T18436]  kernel_misc_reclaimable:0
[  356.680610][T18436]  free:1329892 free_pcp:11450 free_cma:0
[  357.013637][T18436] Node 0 active_anon:16460kB inactive_anon:4512kB active_file:17688kB inactive_file:186684kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:97872kB dirty:0kB writeback:0kB shmem:3904kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11040kB pagetables:4532kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  357.280640][T18436] Node 1 active_anon:0kB inactive_anon:0kB active_file:92kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:56kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:108kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  357.443674][T18436] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  357.605251][T18436] lowmem_reserve[]: 0 2477 2478 2478 2478
[  357.630681][T18436] Node 0 DMA32 free:1380108kB boost:0kB min:34304kB low:42880kB high:51456kB reserved_highatomic:0KB free_highatomic:0KB active_anon:16460kB inactive_anon:4824kB active_file:17688kB inactive_file:186684kB unevictable:1536kB writepending:0kB zspages:4kB present:3129332kB managed:2537384kB mlocked:0kB bounce:0kB free_pcp:45664kB local_pcp:45664kB free_cma:0kB
[  357.821980][T18436] lowmem_reserve[]: 0 0 1 1 1
[  357.849312][T18436] Node 0 Normal free:4kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1060kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[  358.008094][T18436] lowmem_reserve[]: 0 0 0 0 0
[  358.038288][T18436] Node 1 Normal free:3931968kB boost:0kB min:55580kB low:69472kB high:83364kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:92kB inactive_file:132kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:3916kB local_pcp:3916kB free_cma:0kB
[  358.117084][T18497] Debayer A: =================  START STATUS  =================
[  358.151500][T18497] Debayer A: Debayer Mean Window Size: 3
[  358.170413][T18497] Debayer A: ==================  END STATUS  ==================
[  358.188752][T18436] lowmem_reserve[]: 0 0 0 0 0
[  358.211013][T18436] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  358.290733][T18436] Node 0 DMA32: 5158*4kB (UME) 3389*8kB (UME) 1958*16kB (UME) 657*32kB (UME) 481*64kB (UME) 250*128kB (UM) 180*256kB (UME) 140*512kB (UM) 109*1024kB (UME) 24*2048kB (UM) 230*4096kB (UM) = 1383488kB
[  358.394766][T18436] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  358.459559][   T10] Bluetooth: hci2: Opcode 0x0406 failed: -110
[  358.476296][ T9243] Bluetooth: hci2: command 0x0406 tx timeout
[  358.497129][T18436] Node 1 Normal: 6*4kB (UM) 15*8kB (UM) 7*16kB (U) 4*32kB (U) 3*64kB (UM) 4*128kB (UM) 1*256kB (M) 1*512kB (M) 2*1024kB (UM) 0*2048kB 959*4096kB (UM) = 3931968kB
[  358.563451][T18513] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  358.595751][T18436] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  358.629193][T18436] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  358.665408][T18436] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  358.719043][T18436] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  358.762268][T18436] 52507 total pagecache pages
[  358.787081][T18436] 0 pages in swap cache
[  358.813474][T18436] Free swap  = 124992kB
[  358.831884][T18436] Total swap = 124996kB
[  358.864047][T18436] 2097051 pages RAM
[  358.879403][T18436] 0 pages HighMem/MovableOnly
[  358.911664][T18436] 430825 pages reserved
[  358.928576][T18436] 0 pages cma reserved
[  359.110744][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  359.117573][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  360.011434][T18587] vivid-007: =================  START STATUS  =================
[  360.048594][T18587] vivid-007: Enable Output Cropping: true
[  360.086182][T18587] vivid-007: Enable Output Composing: true
[  360.121325][T18587] vivid-007: Enable Output Scaler: true
[  360.147395][T18587] vivid-007: Tx RGB Quantization Range: Automatic
[  360.179170][T18587] vivid-007: Transmit Mode: HDMI
[  360.210984][T18587] vivid-007: Hotplug Present: 0x00000000
[  360.256756][T18587] vivid-007: RxSense Present: 0x00000000
[  360.284750][T18587] vivid-007: EDID Present: 0x00000000
[  360.319793][T18587] vivid-007: ==================  END STATUS  ==================
[  360.611784][T18615] random: crng reseeded on system resumption
[  362.997198][T18723] bonding: no command found in bonding_masters - use +ifname or -ifname
[  363.013358][T18700] Process accounting paused
[  363.850673][   T29] audit: type=1800 audit(4294967342.367:30): pid=18770 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.6081" name="discovery_nqn" dev="configfs" ino=48383 res=0 errno=0
[  364.049789][T18778] sd 0:0:1:0: PR command failed: 1026
[  364.087006][T18778] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  364.130857][T18778] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  364.250141][T18791] vivid-007: =================  START STATUS  =================
[  364.320786][T18791] vivid-007: Generate PTS: true
[  364.325801][T18791] vivid-007: Generate SCR: true
[  364.394861][T18791] tpg source WxH: 320x240 (Y'CbCr)
[  364.427962][T18791] tpg field: 1
[  364.451824][T18791] tpg crop: (0,0)/320x240
[  364.516826][T18791] tpg compose: (0,0)/320x240
[  364.555427][T18791] tpg colorspace: 8
[  364.578730][T18791] tpg transfer function: 0/0
[  364.599758][T18791] tpg Y'CbCr encoding: 0/0
[  364.635019][T18791] tpg quantization: 0/0
[  364.652540][T18791] tpg RGB range: 0/2
[  364.696418][T18791] vivid-007: ==================  END STATUS  ==================
[  368.897511][T19030] [U] 
[  369.092788][T19039] ACPI: \_SB_.LNKS: No IRQ available. Try pci=noacpi or acpi=off
[  369.132841][T19039] pci 0000:00:01.3: PCI INT A: no GSI
[  370.927708][ T9243] Bluetooth: hci2: unexpected event 0x3e length: 0 < 1
[  371.845812][T19187] kernel read not supported for file /\*)A (pid: 19187 comm: syz.0.6244)
[  371.882174][   T29] audit: type=1800 audit(4294967350.449:31): pid=19187 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.6244" name="\*)A" dev="mqueue" ino=49459 res=0 errno=0
[  372.817240][T19244] TCP: TCP_TX_DELAY enabled
[  375.107063][T19370] QAT: Invalid ioctl 21531
[  376.058412][T19425] binder: 19424:19425 ioctl 40046205 0 returned -22
[  376.492424][T19448] bcache: register_bcache() error : failed to open device
[  377.249213][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  377.255649][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  378.047976][T19534] usb usb4: usbfs: process 19534 (syz.3.6383) did not claim interface 0 before use
[  378.529823][T19561] Malformed UNC in devname
[  378.529823][T19561] 
[  378.557248][T19561] CIFS: VFS: Malformed UNC in devname
[  381.362754][T19724] vhci_hcd vhci_hcd.2: invalid port number 135
[  381.406445][T19724] vhci_hcd vhci_hcd.2: invalid port number 135
[  383.256081][T19827] ecryptfs_parse_packet_length: Error parsing packet length
[  383.302564][T19827] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[  388.781365][T20129] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd
[  389.771621][T20185] block2mtd: error: cannot open device �inX�����±��jFB�B>U�;߸�Ilk�
[  389.934278][T20195] kafs: addr_prefs: Invalid Command
[  390.476255][T20225] program syz.1.6655 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  390.512954][T20225] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  391.102130][T20248] could not allocate digest TFM handle 
[  391.645128][T20288] ptrace attach of "./syz-executor exec"[5824] was attempted by "./syz-executor exec"[20288]
[  392.910923][T20352] Process accounting resumed
[  393.593101][T20399] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12)
[  393.810564][T20409] phram: not enough arguments
[  394.728210][T20460] ICMPv6: process `syz.0.6747' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead
[  395.039573][T20477] warning: `syz.3.6754' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  396.152507][T20549] Setting dangerous option i915.mitigations - tainting kernel
[  396.621585][   T29] audit: type=1326 audit(4294967375.317:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20571 comm="syz.0.6783" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3c4679c799 code=0x0
[  397.105046][T20596] ecryptfs_miscdev_write: Invalid packet size [192]
[  397.562292][T20623] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  398.335433][T20673] synth uevent: /bus/hid/drivers/zeroplus: unknown uevent action string
[  398.645233][T20690] vhci_hcd vhci_hcd.1: invalid port number 16
[  398.703521][T20690] vhci_hcd vhci_hcd.1: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[  399.998776][T20750] program syz.3.6844 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  400.244045][ T9243] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  400.244071][ T9243] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15
[  400.261263][ T9243] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  400.452672][T20773] Setting dangerous option i915.mitigations - tainting kernel
[  400.589092][T20780] QAT: failed to copy from user cfg_data.
[  402.654304][T20890] vmstat_refresh: nr_hugetlb -2048
[  402.741755][T20897] bond0: Unable to set down delay as MII monitoring is disabled
[  405.167298][T21032] nvme_fcloop: unknown parameter or missing value '7'
[  406.167561][T21097] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  407.268699][T21153] netlink: zone id is out of range
[  407.412310][T21162] Zero length message leads to an empty skb
[  407.927606][T21180] openvswitch: netlink: Tunnel attr 242 out of range max 16
[  409.944498][T21278] openvswitch: netlink: VXLAN extension message has 16 unknown bytes.
[  413.502536][T21464] �: entered promiscuous mode
[  413.512065][T21466] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  413.734210][   T29] audit: type=1107 audit(4294967392.506:33): pid=21477 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  413.801751][   T29] audit: type=1107 audit(4294967392.536:34): pid=21477 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  414.504399][T21521] nfs: Unknown parameter '�m?���LH>�｢^�e���ko}*	 �'
[  415.323167][T21549] netlink: 'syz.1.7136': attribute type 1 has an invalid length.
[  416.331358][T21602] openvswitch: netlink: IP tunnel dst address not specified
[  417.076748][T21651] FAULT_INJECTION: forcing a failure.
[  417.076748][T21651] name failslab, interval 1, probability 0, space 0, times 1
[  417.153879][T21651] CPU: 0 UID: 0 PID: 21651 Comm: syz.3.7178 Tainted: G     U    I  L      syzkaller #0 PREEMPT(full) 
[  417.153910][T21651] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  417.153917][T21651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  417.153931][T21651] Call Trace:
[  417.153938][T21651]  <TASK>
[  417.153945][T21651]  dump_stack_lvl+0x100/0x190
[  417.153973][T21651]  should_fail_ex.cold+0x5/0xa
[  417.154002][T21651]  should_failslab+0xc2/0x120
[  417.154019][T21651]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  417.154042][T21651]  ? sock_alloc_inode+0x25/0x1c0
[  417.154097][T21651]  ? __pfx_sock_alloc_inode+0x10/0x10
[  417.154112][T21651]  sock_alloc_inode+0x25/0x1c0
[  417.154126][T21651]  alloc_inode+0x68/0x250
[  417.154147][T21651]  sock_alloc+0x44/0x280
[  417.154189][T21651]  ? security_socket_create+0x7f/0x250
[  417.154242][T21651]  __sock_create+0xc2/0x860
[  417.154259][T21651]  ? lockdep_init_map_type+0x5c/0x250
[  417.154282][T21651]  smc_create+0x163/0x290
[  417.154341][T21651]  __sock_create+0x339/0x860
[  417.154360][T21651]  __sys_socket+0x14d/0x260
[  417.154377][T21651]  ? __pfx___sys_socket+0x10/0x10
[  417.154399][T21651]  __x64_sys_socket+0x72/0xb0
[  417.154415][T21651]  ? lockdep_hardirqs_on+0x78/0x100
[  417.154435][T21651]  do_syscall_64+0x106/0xf80
[  417.154454][T21651]  ? clear_bhb_loop+0x40/0x90
[  417.154471][T21651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.154486][T21651] RIP: 0033:0x7f9f3759c799
[  417.154499][T21651] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  417.154512][T21651] RSP: 002b:00007f9f383c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  417.154531][T21651] RAX: ffffffffffffffda RBX: 00007f9f37815fa0 RCX: 00007f9f3759c799
[  417.154541][T21651] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000002b
[  417.154550][T21651] RBP: 00007f9f37632c99 R08: 0000000000000000 R09: 0000000000000000
[  417.154558][T21651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  417.154567][T21651] R13: 00007f9f37816038 R14: 00007f9f37815fa0 R15: 00007ffda3257c98
[  417.154586][T21651]  </TASK>
[  417.692910][T21674] openvswitch: netlink: ct_state flags aa1414ac unsupported
[  418.313215][T21651] socket: no more sockets
[  419.353395][T21749] netlink: 'syz.3.7219': attribute type 1 has an invalid length.
[  420.276786][T21793] FAULT_INJECTION: forcing a failure.
[  420.276786][T21793] name failslab, interval 1, probability 0, space 0, times 0
[  420.342698][T21793] CPU: 0 UID: 0 PID: 21793 Comm: syz.2.7237 Tainted: G     U    I  L      syzkaller #0 PREEMPT(full) 
[  420.342736][T21793] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  420.342742][T21793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  420.342752][T21793] Call Trace:
[  420.342758][T21793]  <TASK>
[  420.342764][T21793]  dump_stack_lvl+0x100/0x190
[  420.342792][T21793]  should_fail_ex.cold+0x5/0xa
[  420.342810][T21793]  should_failslab+0xc2/0x120
[  420.342827][T21793]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  420.342849][T21793]  ? sk_prot_alloc+0x60/0x2a0
[  420.342935][T21793]  sk_prot_alloc+0x60/0x2a0
[  420.342951][T21793]  sk_alloc+0x36/0xe80
[  420.342971][T21793]  smc_create+0x11a/0x290
[  420.342991][T21793]  __sock_create+0x339/0x860
[  420.343010][T21793]  __sys_socket+0x14d/0x260
[  420.343026][T21793]  ? __pfx___sys_socket+0x10/0x10
[  420.343047][T21793]  __x64_sys_socket+0x72/0xb0
[  420.343062][T21793]  ? lockdep_hardirqs_on+0x78/0x100
[  420.343083][T21793]  do_syscall_64+0x106/0xf80
[  420.343101][T21793]  ? clear_bhb_loop+0x40/0x90
[  420.343119][T21793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.343134][T21793] RIP: 0033:0x7f120879c799
[  420.343147][T21793] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  420.343161][T21793] RSP: 002b:00007f120968d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  420.343175][T21793] RAX: ffffffffffffffda RBX: 00007f1208a15fa0 RCX: 00007f120879c799
[  420.343185][T21793] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 000000000000002b
[  420.343194][T21793] RBP: 00007f1208832c99 R08: 0000000000000000 R09: 0000000000000000
[  420.343211][T21793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  420.343220][T21793] R13: 00007f1208a16038 R14: 00007f1208a15fa0 R15: 00007ffead11f8d8
[  420.343240][T21793]  </TASK>
[  421.637159][T21853] netlink: zone id is out of range
[  421.661978][T21853] netlink: zone id is out of range
[  421.716564][T21853] netlink: set zone limit has 8 unknown bytes
[  422.082511][T21875] FAULT_INJECTION: forcing a failure.
[  422.082511][T21875] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  422.116983][T21875] CPU: 0 UID: 0 PID: 21875 Comm: syz.0.7268 Tainted: G     U    I  L      syzkaller #0 PREEMPT(full) 
[  422.117013][T21875] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  422.117020][T21875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  422.117029][T21875] Call Trace:
[  422.117035][T21875]  <TASK>
[  422.117042][T21875]  dump_stack_lvl+0x100/0x190
[  422.117070][T21875]  should_fail_ex.cold+0x5/0xa
[  422.117092][T21875]  core_sys_select+0x9b9/0xbb0
[  422.117120][T21875]  ? __pfx_core_sys_select+0x10/0x10
[  422.117160][T21875]  ? ktime_get_ts64+0x2d2/0x3f0
[  422.117179][T21875]  ? read_tsc+0x9/0x20
[  422.117232][T21875]  ? ktime_get_ts64+0x256/0x3f0
[  422.117256][T21875]  kern_select+0x20c/0x270
[  422.117281][T21875]  ? __pfx_kern_select+0x10/0x10
[  422.117311][T21875]  __x64_sys_select+0xbd/0x160
[  422.117333][T21875]  ? do_syscall_64+0x95/0xf80
[  422.117353][T21875]  ? lockdep_hardirqs_on+0x78/0x100
[  422.117372][T21875]  do_syscall_64+0x106/0xf80
[  422.117390][T21875]  ? clear_bhb_loop+0x40/0x90
[  422.117407][T21875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  422.117422][T21875] RIP: 0033:0x7f3c4679c799
[  422.117436][T21875] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  422.117450][T21875] RSP: 002b:00007f3c475ae028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  422.117465][T21875] RAX: ffffffffffffffda RBX: 00007f3c46a15fa0 RCX: 00007f3c4679c799
[  422.117474][T21875] RDX: 00002000000000c0 RSI: 0000200000000040 RDI: 0000000000000001
[  422.117483][T21875] RBP: 00007f3c46832c99 R08: 00002000000001c0 R09: 0000000000000000
[  422.117491][T21875] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000
[  422.117500][T21875] R13: 00007f3c46a16038 R14: 00007f3c46a15fa0 R15: 00007ffc043e4ee8
[  422.117520][T21875]  </TASK>
[  423.226582][T21886] Process accounting paused
[  423.504969][T21938] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7289'.
[  423.537378][T21944] FAULT_INJECTION: forcing a failure.
[  423.537378][T21944] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  423.604688][T21944] CPU: 0 UID: 0 PID: 21944 Comm: syz.0.7292 Tainted: G     U    I  L      syzkaller #0 PREEMPT(full) 
[  423.604719][T21944] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  423.604726][T21944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  423.604736][T21944] Call Trace:
[  423.604741][T21944]  <TASK>
[  423.604748][T21944]  dump_stack_lvl+0x100/0x190
[  423.604783][T21944]  should_fail_ex.cold+0x5/0xa
[  423.604800][T21944]  ? prepare_alloc_pages+0x16d/0x5f0
[  423.604820][T21944]  should_fail_alloc_page+0xeb/0x140
[  423.604837][T21944]  prepare_alloc_pages+0x1f0/0x5f0
[  423.604856][T21944]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  423.604878][T21944]  ? do_syscall_64+0x81/0xf80
[  423.604910][T21944]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  423.604940][T21944]  ? rcu_is_watching+0x12/0xc0
[  423.604963][T21944]  ? trace_kmalloc+0x101/0x130
[  423.604978][T21944]  ? __kasan_kmalloc+0xaa/0xb0
[  423.604999][T21944]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  423.605024][T21944]  ? policy_nodemask+0xed/0x4f0
[  423.605040][T21944]  alloc_pages_mpol+0x1fb/0x550
[  423.605056][T21944]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  423.605071][T21944]  ? __alloc_skb+0x5b7/0x710
[  423.605091][T21944]  ? __pfx___alloc_skb+0x10/0x10
[  423.605117][T21944]  ? finish_task_switch.isra.0+0x200/0xb80
[  423.605137][T21944]  alloc_pages_noprof+0x131/0x390
[  423.605154][T21944]  alloc_skb_with_frags+0x500/0x810
[  423.605182][T21944]  sock_alloc_send_pskb+0x801/0x980
[  423.605210][T21944]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  423.605237][T21944]  tun_get_user+0x8f7/0x3e10
[  423.605352][T21944]  ? __pfx_tun_get_user+0x10/0x10
[  423.605369][T21944]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  423.605431][T21944]  ? find_held_lock+0x2b/0x80
[  423.605445][T21944]  ? tun_get+0x191/0x370
[  423.605488][T21944]  ? tun_get+0x191/0x370
[  423.605515][T21944]  tun_chr_write_iter+0xdc/0x200
[  423.605532][T21944]  vfs_write+0x6ac/0x1070
[  423.605556][T21944]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  423.605575][T21944]  ? __pfx_vfs_write+0x10/0x10
[  423.605595][T21944]  ? find_held_lock+0x2b/0x80
[  423.605619][T21944]  __x64_sys_pwrite64+0x1eb/0x250
[  423.605634][T21944]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  423.605654][T21944]  do_syscall_64+0x106/0xf80
[  423.605674][T21944]  ? clear_bhb_loop+0x40/0x90
[  423.605693][T21944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.605709][T21944] RIP: 0033:0x7f3c4679c799
[  423.605723][T21944] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  423.605737][T21944] RSP: 002b:00007f3c475ae028 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  423.605752][T21944] RAX: ffffffffffffffda RBX: 00007f3c46a15fa0 RCX: 00007f3c4679c799
[  423.605763][T21944] RDX: 000000000000fdf0 RSI: 0000200000000140 RDI: 00000000000000c8
[  423.605772][T21944] RBP: 00007f3c46832c99 R08: 0000000000000000 R09: 0000000000000000
[  423.605781][T21944] R10: 0000000000000039 R11: 0000000000000246 R12: 0000000000000000
[  423.605790][T21944] R13: 00007f3c46a16038 R14: 00007f3c46a15fa0 R15: 00007ffc043e4ee8
[  423.605810][T21944]  </TASK>
[  425.636213][T22018] [U] ^@
[  425.899222][T22035] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7326'.
[  426.174537][T22051] vivid-007: =================  START STATUS  =================
[  426.200695][T22051] vivid-007: Enable Output Cropping: true grabbed
[  426.237306][T22051] vivid-007: Enable Output Composing: true grabbed
[  426.265149][T22051] vivid-007: Enable Output Scaler: true grabbed
[  426.293291][T22051] vivid-007: Tx RGB Quantization Range: Automatic grabbed
[  426.301919][T22055] netlink: 'syz.2.7335': attribute type 1 has an invalid length.
[  426.330089][T22051] vivid-007: Transmit Mode: HDMI grabbed
[  426.353151][T22051] vivid-007: Hotplug Present: 0x00000000
[  426.380801][T22051] vivid-007: RxSense Present: 0x00000000
[  426.409295][T22051] vivid-007: EDID Present: 0x00000000
[  426.439070][T22051] vivid-007: ==================  END STATUS  ==================
[  426.468121][T22059] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  426.752704][T22067] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  427.546937][T22103] NFSD: Failed to start, no listeners configured.
[  428.330630][T22143] Unable to find swap-space signature
[  429.010868][ T9243] Bluetooth: hci1: unexpected subevent 0x18 length: 123 > 19
[  429.019399][ T9243] Bluetooth: hci1: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00
[  429.078073][T22173] netlink: 'syz.1.7382': attribute type 1 has an invalid length.
[  429.679641][T22201] openvswitch: netlink: IP tunnel dst address not specified
[  429.823209][ T9243] Bluetooth: hci2: unexpected event 0x36 length: 123 > 7
[  430.763616][T22243] syz.0.7412 (22243) used greatest stack depth: 19672 bytes left
[  431.193951][T22278] block nbd2: not configured, cannot reconfigure
[  431.471661][T22287] Unable to find swap-space signature
[  433.097858][T13098] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  433.286941][T13098] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  433.483060][T22347] NFSD: Failed to start, no listeners configured.
[  433.553539][T13098] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  433.765252][ T8886] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  433.777275][ T8886] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  433.785883][ T8886] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  433.794179][ T8886] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  433.802540][ T8886] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  433.859694][T13098] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  434.243342][T22400] netlink: 'syz.2.7463': attribute type 1 has an invalid length.
[  434.255983][T22399] usb usb15: usbfs: interface 0 claimed by hub while 'syz.3.7464' sets config #0
[  434.300879][T22400] nbd: error processing sock list
[  434.499897][T13098] bridge_slave_1: left allmulticast mode
[  434.542262][T13098] bridge_slave_1: left promiscuous mode
[  434.577510][T13098] bridge0: port 2(bridge_slave_1) entered disabled state
[  434.674692][T13098] bridge_slave_0: left allmulticast mode
[  434.681117][T13098] bridge_slave_0: left promiscuous mode
[  434.753625][T13098] bridge0: port 1(bridge_slave_0) entered disabled state
[  434.955109][T22446] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7472'.
[  435.342273][T22461] usb usb15: usbfs: interface 0 claimed by hub while 'syz.2.7476' sets config #0
[  435.474297][T13098] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  435.539720][T13098] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  435.586154][T13098] bond0 (unregistering): Released all slaves
[  435.673969][T22469] openvswitch: netlink: VXLAN extension message has 1 unknown bytes.
[  435.821247][ T9243] Bluetooth: hci0: command tx timeout
[  435.965515][T22493] block nbd2: not configured, cannot reconfigure
[  436.035327][T22360] chnl_net:caif_netlink_parms(): no params data found
[  436.789231][T13098] hsr_slave_0: left promiscuous mode
[  436.861934][T13098] hsr_slave_1: left promiscuous mode
[  436.895775][T13098] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  436.935541][T13098] batman_adv: batadv0: Removing interface: batadv_slave_0
[  436.998764][T13098] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  437.038819][T13098] batman_adv: batadv0: Removing interface: batadv_slave_1
[  437.163934][T13098] veth1_macvtap: left promiscuous mode
[  437.188100][T13098] veth0_macvtap: left promiscuous mode
[  437.215309][T13098] veth1_vlan: left promiscuous mode
[  437.231568][T22607] netlink: 'syz.2.7499': attribute type 11 has an invalid length.
[  437.246125][T13098] veth0_vlan: left promiscuous mode
[  437.264749][T22607] netlink: 'syz.2.7499': attribute type 11 has an invalid length.
[  437.303019][T22607] netlink: 'syz.2.7499': attribute type 11 has an invalid length.
[  437.811559][T13098] team0 (unregistering): Port device team_slave_1 removed
[  437.861503][T13098] team0 (unregistering): Port device team_slave_0 removed
[  437.889840][ T9243] Bluetooth: hci0: command tx timeout
[  438.058435][T22360] bridge0: port 1(bridge_slave_0) entered blocking state
[  438.074541][T22360] bridge0: port 1(bridge_slave_0) entered disabled state
[  438.093263][T22360] bridge_slave_0: entered allmulticast mode
[  438.116665][T22360] bridge_slave_0: entered promiscuous mode
[  438.159082][T22360] bridge0: port 2(bridge_slave_1) entered blocking state
[  438.210718][T22360] bridge0: port 2(bridge_slave_1) entered disabled state
[  438.245111][T22360] bridge_slave_1: entered allmulticast mode
[  438.264245][T22360] bridge_slave_1: entered promiscuous mode
[  438.370840][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  438.382128][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  438.481714][T22360] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  438.563683][T22360] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  438.886396][T22360] team0: Port device team_slave_0 added
[  438.936480][T22360] team0: Port device team_slave_1 added
[  439.118221][T22360] batman_adv: batadv0: Adding interface: batadv_slave_0
[  439.141901][T22360] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  439.220045][T22740] openvswitch: netlink: Message has 20 unknown bytes.
[  439.277321][T22360] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  439.339711][T22360] batman_adv: batadv0: Adding interface: batadv_slave_1
[  439.373057][T22360] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  439.490674][T22360] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  439.696873][T22360] hsr_slave_0: entered promiscuous mode
[  439.770548][T22360] hsr_slave_1: entered promiscuous mode
[  439.807401][T22360] debugfs: 'hsr0' already exists in 'hsr'
[  439.813153][T22360] Cannot create hsr debugfs directory
[  439.955716][ T9243] Bluetooth: hci0: command tx timeout
[  441.840877][T22360] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  441.922983][T22360] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  442.024923][ T9243] Bluetooth: hci0: command tx timeout
[  442.081786][T22360] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  442.160020][T22360] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  442.555617][T22360] 8021q: adding VLAN 0 to HW filter on device bond0
[  442.653889][T22360] 8021q: adding VLAN 0 to HW filter on device team0
[  442.726471][ T8882] bridge0: port 1(bridge_slave_0) entered blocking state
[  442.733683][ T8882] bridge0: port 1(bridge_slave_0) entered forwarding state
[  442.844504][ T8897] bridge0: port 2(bridge_slave_1) entered blocking state
[  442.851889][ T8897] bridge0: port 2(bridge_slave_1) entered forwarding state
[  443.655255][T22360] 8021q: adding VLAN 0 to HW filter on device batadv0
[  443.867294][T22360] veth0_vlan: entered promiscuous mode
[  443.918262][T22360] veth1_vlan: entered promiscuous mode
[  444.056219][T22360] veth0_macvtap: entered promiscuous mode
[  444.103684][T22360] veth1_macvtap: entered promiscuous mode
[  444.197312][T22360] batman_adv: batadv0: Interface activated: batadv_slave_0
[  444.256387][T22360] batman_adv: batadv0: Interface activated: batadv_slave_1
[  444.323130][ T8897] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  444.332040][ T8897] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  444.383911][T23046] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  444.473899][ T8888] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  444.525822][ T8888] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  444.873246][ T8897] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  444.921789][ T8897] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  445.088513][ T8897] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  445.147838][ T8897] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  445.313074][T22360] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  445.445248][T23087] nbd: illegal input index 37139
[  447.182505][T23152] netlink: 'syz.1.7598': attribute type 11 has an invalid length.
[  447.228000][T23152] netlink: 'syz.1.7598': attribute type 11 has an invalid length.
[  447.235875][T23152] netlink: 'syz.1.7598': attribute type 11 has an invalid length.
[  449.120548][T23229] smc: net device dummy0 applied user defined pnetid DUMMY0
[  449.697364][T23249] tc_dump_action: action bad kind
[  450.837975][T23306] __vm_enough_memory: pid: 23306, comm: syz.1.7654, bytes: 4398046511104 not enough memory for the allocation
[  451.314935][T23320] openvswitch: netlink: IP tunnel dst address not specified
[  451.687239][T23338] netlink: 'syz.0.7668': attribute type 23 has an invalid length.
[  452.034394][T23350] netlink: 'syz.3.7673': attribute type 1 has an invalid length.
[  453.205777][T23403] Process accounting resumed
[  453.596962][T23421] nbd: must specify an index to disconnect
[  454.753293][T23481] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7731'.
[  455.032982][ T9243] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  455.033008][ T9243] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  455.050962][ T9243] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  455.050983][ T9243] Bluetooth: hci1: adv larger than maximum supported
[  455.058279][ T9243] Bluetooth: hci1: adv larger than maximum supported
[  455.064944][ T9243] Bluetooth: hci1: Unknown advertising packet type: 0x5f
[  455.073539][ T9243] Bluetooth: hci1: Malformed LE Event: 0x0d
[  455.194717][ T9243] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  456.298740][T23560] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7754'.
[  456.355850][T23560] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7754'.
[  457.686169][T23627] netlink: 'syz.1.7780': attribute type 2 has an invalid length.
[  458.983682][T23679] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  459.832520][T23723] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7820'.
[  460.025214][ T8886] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  460.025238][ T8886] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  460.046307][ T8886] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  460.046352][ T8886] Bluetooth: hci0: adv larger than maximum supported
[  460.055523][ T8886] Bluetooth: hci0: adv larger than maximum supported
[  460.067027][ T8886] Bluetooth: hci0: Malformed LE Event: 0x0d
[  461.535986][ T8886] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  461.536011][ T8886] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260
[  461.551536][ T8886] Bluetooth: hci3: Unknown advertising packet type: 0x7f
[  461.551555][ T8886] Bluetooth: hci3: adv larger than maximum supported
[  461.560018][ T8886] Bluetooth: hci3: Unknown advertising packet type: 0x7d
[  461.567757][ T8886] Bluetooth: hci3: adv larger than maximum supported
[  461.580070][ T8886] Bluetooth: hci3: Unknown advertising packet type: 0x59
[  461.588180][ T8886] Bluetooth: hci3: Malformed LE Event: 0x0d
[  462.739034][T23837] binder: 23836:23837 ioctl c018620c 0 returned -14
[  462.786250][T23838] netlink: 148 bytes leftover after parsing attributes in process `syz.0.7868'.
[  463.005994][T23850] netlink: zone id is out of range
[  464.553585][ T8886] Bluetooth: hci2: unexpected event 0x3e length: 508 > 260
[  464.553612][ T8886] Bluetooth: hci2: unexpected subevent 0x02 length: 507 > 260
[  464.571146][ T8886] Bluetooth: hci2: Dropping invalid advertising data
[  464.579420][ T8886] Bluetooth: hci2: unknown advertising packet type: 0xe9
[  464.579443][ T8886] Bluetooth: hci2: Dropping invalid advertising data
[  464.594130][ T8886] Bluetooth: hci2: Malformed LE Event: 0x02
[  465.026404][T23958] binder: 23957:23958 ioctl c00c620f 200000000100 returned -22
[  465.093384][T23959] MTRR 1 not used
[  465.211402][T23963] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  465.536143][T23976] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7915'.
[  467.678056][T24068] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  467.684900][T24068] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  468.566484][T24104] netlink: 338 bytes leftover after parsing attributes in process `syz.2.7960'.
[  468.608434][T24104] netlink: 338 bytes leftover after parsing attributes in process `syz.2.7960'.
[  469.341946][T24124] netlink: 'syz.3.7970': attribute type 4 has an invalid length.
[  469.378337][T24124] netlink: 'syz.3.7970': attribute type 1 has an invalid length.
[  469.861283][T24144] dlm: non-version read from control device 255
[  470.225742][T24155] vhci_hcd vhci_hcd.1: invalid port number 19
[  470.254332][T24155] vhci_hcd vhci_hcd.1: default hub control req: c902 v76bf i0013 l46
[  470.582558][T24168] random: crng reseeded on system resumption
[  470.866698][T24181] netlink: 'syz.1.7993': attribute type 2 has an invalid length.
[  472.813287][T24255] netlink: NAT attribute has 18 unknown bytes
[  474.492863][T24321] mmap: syz.1.8043 (24321): VmData 45879296 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  476.558605][T24407] tc_dump_action: action bad kind
[  476.849386][ T8886] Bluetooth: hci0: SCO packet too small
[  478.118652][T24462] netlink: 'syz.3.8101': attribute type 1 has an invalid length.
[  479.570932][T24537] netlink: 'syz.3.8120': attribute type 11 has an invalid length.
[  480.338514][T24571] netlink: set zone limit has 8 unknown bytes
[  481.160270][T24599] netlink: 'syz.0.8137': attribute type 8 has an invalid length.
[  481.865529][T24634] FAULT_INJECTION: forcing a failure.
[  481.865529][T24634] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  481.887801][T24631] netlink: 'syz.2.8148': attribute type 11 has an invalid length.
[  481.913098][T24634] CPU: 0 UID: 0 PID: 24634 Comm: syz.1.8151 Tainted: G     U    I  L      syzkaller #0 PREEMPT(full) 
[  481.913128][T24634] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  481.913135][T24634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  481.913145][T24634] Call Trace:
[  481.913151][T24634]  <TASK>
[  481.913156][T24634]  dump_stack_lvl+0x100/0x190
[  481.913184][T24634]  should_fail_ex.cold+0x5/0xa
[  481.913203][T24634]  core_sys_select+0x5d1/0xbb0
[  481.913231][T24634]  ? __pfx_core_sys_select+0x10/0x10
[  481.913271][T24634]  ? ktime_get_ts64+0x2d2/0x3f0
[  481.913288][T24634]  ? read_tsc+0x9/0x20
[  481.913303][T24634]  ? ktime_get_ts64+0x256/0x3f0
[  481.913320][T24634]  kern_select+0x20c/0x270
[  481.913343][T24634]  ? __pfx_kern_select+0x10/0x10
[  481.913371][T24634]  __x64_sys_select+0xbd/0x160
[  481.913392][T24634]  ? do_syscall_64+0x95/0xf80
[  481.913423][T24634]  ? lockdep_hardirqs_on+0x78/0x100
[  481.913443][T24634]  do_syscall_64+0x106/0xf80
[  481.913462][T24634]  ? clear_bhb_loop+0x40/0x90
[  481.913481][T24634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.913495][T24634] RIP: 0033:0x7f109119c799
[  481.913508][T24634] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  481.913521][T24634] RSP: 002b:00007f10920be028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  481.913535][T24634] RAX: ffffffffffffffda RBX: 00007f1091415fa0 RCX: 00007f109119c799
[  481.913545][T24634] RDX: 0000200000000180 RSI: 0000000000000000 RDI: 0000000000000003
[  481.913553][T24634] RBP: 00007f1091232c99 R08: 00002000000000c0 R09: 0000000000000000
[  481.913562][T24634] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000000
[  481.913570][T24634] R13: 00007f1091416038 R14: 00007f1091415fa0 R15: 00007ffc07958c68
[  481.913589][T24634]  </TASK>
[  482.710880][T24649] bond0: option arp_validate: invalid value ()
[  482.849013][T24655] zram: Removed device: zram0
[  483.337132][T24665] Process accounting paused
[  483.456392][T24679] netlink: 'syz.0.8172': attribute type 11 has an invalid length.
[  483.527317][T24680] bond0: option arp_validate: invalid value ()
[  483.826412][T24690] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  483.832874][T24690] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  484.365118][T24709] tipc: Started in network mode
[  484.393968][T24709] tipc: Node identity ee00, cluster identity 4711
[  484.406264][T24709] tipc: Node number set to 60928
[  487.495079][T24834] netlink: 'syz.3.8236': attribute type 11 has an invalid length.
[  487.519504][T24836] FAULT_INJECTION: forcing a failure.
[  487.519504][T24836] name failslab, interval 1, probability 0, space 0, times 0
[  487.553051][T24834] netlink: 'syz.3.8236': attribute type 11 has an invalid length.
[  487.589911][T24834] netlink: 'syz.3.8236': attribute type 11 has an invalid length.
[  487.602923][T24836] CPU: 0 UID: 0 PID: 24836 Comm: syz.0.8234 Tainted: G     U    I  L      syzkaller #0 PREEMPT(full) 
[  487.602952][T24836] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  487.602959][T24836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  487.602969][T24836] Call Trace:
[  487.602975][T24836]  <TASK>
[  487.602980][T24836]  dump_stack_lvl+0x100/0x190
[  487.603007][T24836]  should_fail_ex.cold+0x5/0xa
[  487.603026][T24836]  should_failslab+0xc2/0x120
[  487.603041][T24836]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  487.603063][T24836]  ? prepare_creds+0x2c/0x950
[  487.603088][T24836]  prepare_creds+0x2c/0x950
[  487.603109][T24836]  join_session_keyring+0x17/0x350
[  487.603218][T24836]  lookup_user_key+0xbf9/0x1300
[  487.603236][T24836]  ? __pfx_lookup_user_key+0x10/0x10
[  487.603252][T24836]  ? __pfx_do_futex+0x10/0x10
[  487.603276][T24836]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  487.603296][T24836]  ? xfd_validate_state+0x129/0x190
[  487.603319][T24836]  keyctl_keyring_link+0x57/0xe0
[  487.603341][T24836]  __do_sys_keyctl+0x1bf/0x5a0
[  487.603357][T24836]  do_syscall_64+0x106/0xf80
[  487.603379][T24836]  ? clear_bhb_loop+0x40/0x90
[  487.603397][T24836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  487.603413][T24836] RIP: 0033:0x7f3c4679c799
[  487.603427][T24836] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  487.603440][T24836] RSP: 002b:00007f3c475ae028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  487.603454][T24836] RAX: ffffffffffffffda RBX: 00007f3c46a15fa0 RCX: 00007f3c4679c799
[  487.603464][T24836] RDX: ffffffffffffffff RSI: fffffffffffffffd RDI: 0000000000000008
[  487.603473][T24836] RBP: 00007f3c46832c99 R08: 0000000000000002 R09: 0000000000000000
[  487.603481][T24836] R10: 0000000000005092 R11: 0000000000000246 R12: 0000000000000000
[  487.603489][T24836] R13: 00007f3c46a16038 R14: 00007f3c46a15fa0 R15: 00007ffc043e4ee8
[  487.603508][T24836]  </TASK>
[  488.662077][T24867] futex_wake_op: syz.1.8248 tries to shift op by -1; fix this program
[  489.003199][T24879] netlink: 'syz.3.8254': attribute type 1 has an invalid length.
[  491.184237][T24976] tc_dump_action: action bad kind
[  494.337679][T25100] usb usb26: usbfs: interface 0 claimed by hub while 'syz.1.8337' resets device
[  494.811352][T24399] syz.2.8073 (24399) used greatest stack depth: 16936 bytes left
[  495.155419][T25135] MTRR 1 not used
[  496.735309][T25200] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xeffffd12
[  497.111877][T25217] binder: 25216:25217 ioctl 400c620e 2000000001c0 returned -22
[  497.381507][T25234] FAULT_INJECTION: forcing a failure.
[  497.381507][T25234] name failslab, interval 1, probability 0, space 0, times 0
[  497.436988][T25234] CPU: 0 UID: 0 PID: 25234 Comm: syz.1.8398 Tainted: G     U    I  L      syzkaller #0 PREEMPT(full) 
[  497.437020][T25234] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  497.437026][T25234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  497.437035][T25234] Call Trace:
[  497.437041][T25234]  <TASK>
[  497.437046][T25234]  dump_stack_lvl+0x100/0x190
[  497.437074][T25234]  should_fail_ex.cold+0x5/0xa
[  497.437092][T25234]  ? memcg_list_lru_alloc+0x4ec/0x740
[  497.437114][T25234]  should_failslab+0xc2/0x120
[  497.437130][T25234]  __kmalloc_noprof+0xe0/0x850
[  497.437155][T25234]  memcg_list_lru_alloc+0x4ec/0x740
[  497.437180][T25234]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[  497.437200][T25234]  ? rcu_read_unlock+0x17/0x60
[  497.437220][T25234]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  497.437242][T25234]  __memcg_slab_post_alloc_hook+0x130/0x990
[  497.437262][T25234]  ? kasan_save_track+0x14/0x30
[  497.437288][T25234]  kmem_cache_alloc_lru_noprof+0x592/0x6e0
[  497.437309][T25234]  ? __d_alloc+0x34/0xa80
[  497.437328][T25234]  __d_alloc+0x34/0xa80
[  497.437342][T25234]  ? security_inode_alloc+0xcf/0x2c0
[  497.437360][T25234]  d_alloc_pseudo+0x1c/0xc0
[  497.437380][T25234]  alloc_file_pseudo+0xcf/0x230
[  497.437400][T25234]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  497.437418][T25234]  ? security_inode_init_security_anon+0x7b/0x230
[  497.437437][T25234]  __do_sys_memfd_secret+0x11d/0x3d0
[  497.437453][T25234]  do_syscall_64+0x106/0xf80
[  497.437473][T25234]  ? clear_bhb_loop+0x40/0x90
[  497.437490][T25234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  497.437505][T25234] RIP: 0033:0x7f109119c799
[  497.437518][T25234] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  497.437532][T25234] RSP: 002b:00007f10920be028 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[  497.437546][T25234] RAX: ffffffffffffffda RBX: 00007f1091415fa0 RCX: 00007f109119c799
[  497.437555][T25234] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  497.437563][T25234] RBP: 00007f1091232c99 R08: 0000000000000000 R09: 0000000000000000
[  497.437571][T25234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  497.437579][T25234] R13: 00007f1091416038 R14: 00007f1091415fa0 R15: 00007ffc07958c68
[  497.437598][T25234]  </TASK>
[  499.489570][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  499.496029][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  499.546056][T25312] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8433'.
[  499.720771][T25321] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  499.764488][T25323] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8438'.
[  500.061273][T25334] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8443'.
[  500.754574][T25367] netlink: 'syz.1.8457': attribute type 1 has an invalid length.
[  501.543438][T25406] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  502.069229][T25423] random: crng reseeded on system resumption
[  502.792679][T25443] &#$@\]\-: entered promiscuous mode
[  503.333434][T25462] dyndbg: expected <4096 bytes into control
[  503.886478][T25484] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  506.537955][T25596] openvswitch: netlink: Port -2134900732 exceeds max allowable 65535
[  507.114452][T25623] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8572'.
[  508.150803][T25673] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8592'.
[  508.227725][T25675] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  508.493187][T25683] netlink: 'syz.2.8597': attribute type 11 has an invalid length.
[  510.375115][T25754] IPVS: length: 131 != 8
[  511.047736][T25781] nbd: must specify a size in bytes for the device
[  511.393507][T25783] sd 0:0:1:0: PR command failed: 1026
[  511.439143][T25783] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  511.484954][T25783] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  511.513316][T25798] netlink: 'syz.0.8650': attribute type 2 has an invalid length.
[  512.143709][T25830] netlink: Unknown NAT attribute (type=262, max=9)
[  512.429353][T25840] netlink: 342 bytes leftover after parsing attributes in process `syz.0.8670'.
[  512.788526][T25855] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8676'.
[  513.038816][T25866] netlink: 'syz.0.8681': attribute type 2 has an invalid length.
[  513.245785][T25875] openvswitch: netlink: Flow actions attr not present in new flow.
[  513.342588][T25875] Process accounting resumed
[  513.873461][T25898] openvswitch: netlink: Multiple metadata blocks provided
[  513.937470][T25902] netlink: 'syz.2.8697': attribute type 1 has an invalid length.
[  514.918590][T25943] FAULT_INJECTION: forcing a failure.
[  514.918590][T25943] name failslab, interval 1, probability 0, space 0, times 0
[  514.950493][T25945] sd 0:0:1:0: PR command failed: 1026
[  514.971991][T25945] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  514.990473][T25943] CPU: 0 UID: 0 PID: 25943 Comm: syz.0.8716 Tainted: G     U    I  L      syzkaller #0 PREEMPT(full) 
[  514.990504][T25943] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  514.990510][T25943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  514.990519][T25943] Call Trace:
[  514.990524][T25943]  <TASK>
[  514.990530][T25943]  dump_stack_lvl+0x100/0x190
[  514.990557][T25943]  should_fail_ex.cold+0x5/0xa
[  514.990576][T25943]  should_failslab+0xc2/0x120
[  514.990592][T25943]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  514.990617][T25943]  ? kstrdup_const+0x63/0x80
[  514.990644][T25943]  kstrdup+0x51/0xe0
[  514.990666][T25943]  kstrdup_const+0x63/0x80
[  514.990688][T25943]  alloc_vfsmnt+0xe5/0x6a0
[  514.990713][T25943]  ? __pfx___might_resched+0x10/0x10
[  514.990737][T25943]  clone_mnt+0x4b/0x930
[  514.990760][T25943]  copy_tree+0xfc/0xbf0
[  514.990774][T25943]  ? __pfx_down_write+0x10/0x10
[  514.990801][T25943]  copy_mnt_ns+0x2bd/0xc30
[  514.990817][T25943]  ? create_new_namespaces+0x30/0xac0
[  514.990832][T25943]  ? rcu_is_watching+0x12/0xc0
[  514.990856][T25943]  create_new_namespaces+0xd3/0xac0
[  514.990870][T25943]  ? bpf_lsm_capable+0x9/0x10
[  514.990885][T25943]  ? security_capable+0x80/0x260
[  514.990909][T25943]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  514.990926][T25943]  ksys_unshare+0x473/0xad0
[  514.990945][T25943]  ? __pfx_ksys_unshare+0x10/0x10
[  514.990970][T25943]  __x64_sys_unshare+0x31/0x40
[  514.990987][T25943]  do_syscall_64+0x106/0xf80
[  514.991005][T25943]  ? clear_bhb_loop+0x40/0x90
[  514.991023][T25943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.991038][T25943] RIP: 0033:0x7f3c4679c799
[  514.991050][T25943] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  514.991064][T25943] RSP: 002b:00007f3c475ae028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  514.991078][T25943] RAX: ffffffffffffffda RBX: 00007f3c46a15fa0 RCX: 00007f3c4679c799
[  514.991088][T25943] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000020000
[  514.991096][T25943] RBP: 00007f3c46832c99 R08: 0000000000000000 R09: 0000000000000000
[  514.991105][T25943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  514.991114][T25943] R13: 00007f3c46a16038 R14: 00007f3c46a15fa0 R15: 00007ffc043e4ee8
[  514.991133][T25943]  </TASK>
[  514.992167][T25945] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  515.705675][T25971] nbd: couldn't find device at index 33904
[  515.958493][T25983] netlink: 2 bytes leftover after parsing attributes in process `syz.1.8734'.
[  516.302631][T25994] NFSD: Failed to start, no listeners configured.
[  516.807170][T26028] sd 0:0:1:0: PR command failed: 1026
[  516.840532][T26028] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  516.861647][T26028] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  517.071742][T26042] netlink: 'syz.0.8758': attribute type 11 has an invalid length.
[  517.107797][T26042] netlink: 'syz.0.8758': attribute type 11 has an invalid length.
[  517.164880][T26042] netlink: 'syz.0.8758': attribute type 11 has an invalid length.
[  517.205938][T26042] netlink: 'syz.0.8758': attribute type 11 has an invalid length.
[  518.473746][T26105] openvswitch: netlink: Duplicate key (type 15).
[  518.572560][T26109] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0
[  518.746112][T26115] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  518.941609][T26126] No such timeout policy "
"
[  518.971822][T26126] netlink: Failed to associated timeout policy '
'
[  519.131223][T26131] random: crng reseeded on system resumption
[  519.204510][T26138] ==================================================================
[  519.204526][T26138] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x19fb/0x1d60
[  519.204627][T26138] Write of size 8 at addr ffffc90004ac9000 by task syz.0.8802/26138
[  519.204640][T26138] 
[  519.204650][T26138] CPU: 0 UID: 0 PID: 26138 Comm: syz.0.8802 Tainted: G     U    I  L      syzkaller #0 PREEMPT(full) 
[  519.204674][T26138] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  519.204681][T26138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  519.204689][T26138] Call Trace:
[  519.204695][T26138]  <TASK>
[  519.204701][T26138]  dump_stack_lvl+0x100/0x190
[  519.204723][T26138]  print_report+0x156/0x4c9
[  519.204743][T26138]  ? _raw_spin_lock_irqsave+0x52/0x60
[  519.204762][T26138]  ? __virt_addr_valid+0x81/0x620
[  519.204782][T26138]  ? sys_imageblit+0x19fb/0x1d60
[  519.204801][T26138]  kasan_report+0xdf/0x1e0
[  519.204816][T26138]  ? sys_imageblit+0x19fb/0x1d60
[  519.204837][T26138]  sys_imageblit+0x19fb/0x1d60
[  519.204860][T26138]  ? __pfx_sys_imageblit+0x10/0x10
[  519.204879][T26138]  ? prb_read_valid+0x78/0xa0
[  519.204897][T26138]  ? __pfx_prb_read_valid+0x10/0x10
[  519.204916][T26138]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  519.204940][T26138]  soft_cursor+0x524/0xa10
[  519.204958][T26138]  ? fb_get_color_depth+0x120/0x250
[  519.205002][T26138]  bit_cursor+0xe58/0x16f0
[  519.205021][T26138]  ? __pfx_bit_cursor+0x10/0x10
[  519.205037][T26138]  ? __lock_acquire+0x4a5/0x2630
[  519.205057][T26138]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  519.205080][T26138]  ? get_color+0x1da/0x450
[  519.205101][T26138]  ? __pfx_bit_cursor+0x10/0x10
[  519.205116][T26138]  fbcon_cursor+0x43c/0x5e0
[  519.205129][T26138]  ? add_softcursor+0x200/0x290
[  519.205147][T26138]  set_cursor+0x1db/0x250
[  519.205163][T26138]  con_write+0x89/0xb0
[  519.205183][T26138]  do_output_char+0x63b/0x850
[  519.205230][T26138]  n_tty_write+0x528/0x12d0
[  519.205249][T26138]  ? __pfx_n_tty_write+0x10/0x10
[  519.205264][T26138]  ? __pfx_woken_wake_function+0x10/0x10
[  519.205286][T26138]  ? __pfx___might_resched+0x10/0x10
[  519.205307][T26138]  ? __pfx_n_tty_write+0x10/0x10
[  519.205321][T26138]  file_tty_write.isra.0+0x4d2/0x890
[  519.205343][T26138]  redirected_tty_write+0xd4/0x120
[  519.205362][T26138]  vfs_write+0x6ac/0x1070
[  519.205384][T26138]  ? __pfx_redirected_tty_write+0x10/0x10
[  519.205405][T26138]  ? __pfx_vfs_write+0x10/0x10
[  519.205424][T26138]  ? find_held_lock+0x2b/0x80
[  519.205442][T26138]  ksys_write+0x12a/0x250
[  519.205454][T26138]  ? __pfx_ksys_write+0x10/0x10
[  519.205469][T26138]  do_syscall_64+0x106/0xf80
[  519.205488][T26138]  ? clear_bhb_loop+0x40/0x90
[  519.205504][T26138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.205519][T26138] RIP: 0033:0x7f3c4679c799
[  519.205531][T26138] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  519.205545][T26138] RSP: 002b:00007f3c475ae028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  519.205560][T26138] RAX: ffffffffffffffda RBX: 00007f3c46a15fa0 RCX: 00007f3c4679c799
[  519.205570][T26138] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003
[  519.205580][T26138] RBP: 00007f3c46832c99 R08: 0000000000000000 R09: 0000000000000000
[  519.205589][T26138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  519.205605][T26138] R13: 00007f3c46a16038 R14: 00007f3c46a15fa0 R15: 00007ffc043e4ee8
[  519.205621][T26138]  </TASK>
[  519.205626][T26138] 
[  519.205631][T26138] The buggy address belongs to a 0-page vmalloc region starting at 0xffffc900047c9000 allocated at drm_gem_shmem_vmap_locked+0x54b/0x800
[  519.205665][T26138] Memory state around the buggy address:
[  519.205679][T26138]  ffffc90004ac8f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  519.205693][T26138]  ffffc90004ac8f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  519.205703][T26138] >ffffc90004ac9000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  519.205711][T26138]                    ^
[  519.205718][T26138]  ffffc90004ac9080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  519.205728][T26138]  ffffc90004ac9100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  519.205736][T26138] ==================================================================
[  519.205749][T26138] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  519.205761][T26138] CPU: 0 UID: 0 PID: 26138 Comm: syz.0.8802 Tainted: G     U    I  L      syzkaller #0 PREEMPT(full) 
[  519.205785][T26138] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  519.205792][T26138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  519.205801][T26138] Call Trace:
[  519.205806][T26138]  <TASK>
[  519.205811][T26138]  dump_stack_lvl+0x100/0x190
[  519.205832][T26138]  vpanic+0x552/0x970
[  519.205847][T26138]  ? __pfx_vpanic+0x10/0x10
[  519.205861][T26138]  ? __pfx_vprintk_emit+0x10/0x10
[  519.205876][T26138]  ? sys_imageblit+0x19fb/0x1d60
[  519.205895][T26138]  panic+0xd1/0xe0
[  519.205908][T26138]  ? __pfx_panic+0x10/0x10
[  519.205923][T26138]  ? sys_imageblit+0x19fb/0x1d60
[  519.205942][T26138]  check_panic_on_warn.cold+0x19/0x34
[  519.205957][T26138]  end_report.part.0+0x3a/0x90
[  519.205977][T26138]  kasan_report.cold+0xe/0x18
[  519.205996][T26138]  ? sys_imageblit+0x19fb/0x1d60
[  519.206017][T26138]  sys_imageblit+0x19fb/0x1d60
[  519.206038][T26138]  ? __pfx_sys_imageblit+0x10/0x10
[  519.206058][T26138]  ? prb_read_valid+0x78/0xa0
[  519.206076][T26138]  ? __pfx_prb_read_valid+0x10/0x10
[  519.206096][T26138]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  519.206119][T26138]  soft_cursor+0x524/0xa10
[  519.206136][T26138]  ? fb_get_color_depth+0x120/0x250
[  519.206152][T26138]  bit_cursor+0xe58/0x16f0
[  519.206170][T26138]  ? __pfx_bit_cursor+0x10/0x10
[  519.206186][T26138]  ? __lock_acquire+0x4a5/0x2630
[  519.206205][T26138]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  519.206228][T26138]  ? get_color+0x1da/0x450
[  519.206250][T26138]  ? __pfx_bit_cursor+0x10/0x10
[  519.206264][T26138]  fbcon_cursor+0x43c/0x5e0
[  519.206278][T26138]  ? add_softcursor+0x200/0x290
[  519.206296][T26138]  set_cursor+0x1db/0x250
[  519.206312][T26138]  con_write+0x89/0xb0
[  519.206332][T26138]  do_output_char+0x63b/0x850
[  519.206358][T26138]  n_tty_write+0x528/0x12d0
[  519.206376][T26138]  ? __pfx_n_tty_write+0x10/0x10
[  519.206391][T26138]  ? __pfx_woken_wake_function+0x10/0x10
[  519.206412][T26138]  ? __pfx___might_resched+0x10/0x10
[  519.206433][T26138]  ? __pfx_n_tty_write+0x10/0x10
[  519.206447][T26138]  file_tty_write.isra.0+0x4d2/0x890
[  519.206469][T26138]  redirected_tty_write+0xd4/0x120
[  519.206489][T26138]  vfs_write+0x6ac/0x1070
[  519.206510][T26138]  ? __pfx_redirected_tty_write+0x10/0x10
[  519.206531][T26138]  ? __pfx_vfs_write+0x10/0x10
[  519.206551][T26138]  ? find_held_lock+0x2b/0x80
[  519.206596][T26138]  ksys_write+0x12a/0x250
[  519.206617][T26138]  ? __pfx_ksys_write+0x10/0x10
[  519.206632][T26138]  do_syscall_64+0x106/0xf80
[  519.206651][T26138]  ? clear_bhb_loop+0x40/0x90
[  519.206667][T26138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.206682][T26138] RIP: 0033:0x7f3c4679c799
[  519.206694][T26138] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  519.206708][T26138] RSP: 002b:00007f3c475ae028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  519.206723][T26138] RAX: ffffffffffffffda RBX: 00007f3c46a15fa0 RCX: 00007f3c4679c799
[  519.206733][T26138] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003
[  519.206742][T26138] RBP: 00007f3c46832c99 R08: 0000000000000000 R09: 0000000000000000
[  519.206751][T26138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  519.206760][T26138] R13: 00007f3c46a16038 R14: 00007f3c46a15fa0 R15: 00007ffc043e4ee8
[  519.206774][T26138]  </TASK>
[  519.206840][T26138] Kernel Offset: disabled