last executing test programs: 56.457271157s ago: executing program 1 (id=699): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xab5, r0, 0x8000) ioctl$auto(0x3, 0x80045530, 0x38) r1 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto(0x3, 0xc10c5541, 0xb551) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), r1) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000100)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002abd7000fcdbdfcfbab72514000000180001801400020077673200000000500000000000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r3) r5 = getpgrp(0x0) sendmsg$auto_TASKSTATS_CMD_GET(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x1c, r4, 0xa01, 0x70bd2b, 0x25dfdbfb, {}, [@TASKSTATS_CMD_ATTR_TGID={0x8, 0x2, r5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000000) r6 = openat$auto_userfaultfd_dev_fops_userfaultfd(0xffffffffffffff9c, &(0x7f0000000040), 0x280080, 0x0) r7 = getpgid(0xffffffffffffffff) sendmsg$auto_IPVS_CMD_GET_DEST(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="98000000", @ANYRES16=0x0, @ANYBLOB="000426bd7000fddbdf25080000007c0001802800428008001400", @ANYRES32=r5, @ANYBLOB="0400198008004100", @ANYRES32=0xee01, @ANYBLOB="b0423f30b4ef27e14a00000000000000f93d0e47735f6fdc0acae1bb57fc2ceacb9a087082773c9b8a73000000000000000322d60972376523429507eaf95ed5bb780ee3832ab64ca3d7aa7484bfb81a28ab2f4acd0ddf868a5b98ac56671fa73327", @ANYRES32=r6, @ANYBLOB="08a41800", @ANYRES32=r7, @ANYBLOB="4f003c8004000c802d41271b2ffaaf0c0f553e58fb1f0759491efc77f55a15fc9d414d80e582c0511ff09db7b4aa64eb9eb2c58a53bf8bb290a3babdec1949fb429f8edcf1b82b96dc9e83d46edd43000800050009000000"], 0x98}, 0x1, 0x0, 0x0, 0x4040840}, 0x804) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r8 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/sg/version\x00', 0x8080, 0x0) lseek$auto(r8, 0x5, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) setrlimit$auto(0x1000000007, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mlockall$auto(0x7) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffe) 50.731083609s ago: executing program 1 (id=717): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/mtd/mtd0/mtdblock0/capability\x00', 0x103400, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001c00)=""/4111, 0x100f) bind$auto(r0, &(0x7f0000000000)=@vsock={0x28, 0x0, 0x0, @local}, 0x8) socket(0x11, 0x3, 0x2) getsockopt$auto(r0, 0x107, 0x9, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) prctl$auto(0x41, 0x1, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) recvmmsg$auto(0x4, 0x0, 0xffffffff, 0x0, 0x0) sendmsg$auto_NETDEV_CMD_NAPI_GET(r1, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000340)=ANY=[@ANYRES16=0x0, @ANYBLOB="01002dbd7000fba400000000f2ff0000021f4de56a4703000000d6f3110aa45aeb6b5e9bd8abc396aa49249256bdf3aa705dd10c661480cb20a3c8f0eca3d46ee322e8719e1239716cd1307d8553a60d7af3b758fd1e98676fd4359291"], 0x1c}}, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x24, r3, 0x1, 0x70bd27, 0x25dfdbf9, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0) openat$auto_rfcomm_dlc_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x2682, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r6, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000013c0)={&(0x7f0000001380)={0x18, r7, 0x1, 0x70bd2e, 0x25dfdbfc, {}, [@HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff) getpid() msgctl$auto(0xa, 0x0, &(0x7f00000003c0)={{0x9, 0x0, 0xee00, 0x6, 0x4, 0x101, 0x2}, &(0x7f00000001c0)=0x6, &(0x7f0000000240)=0x2, 0x91, 0x7, 0x0, 0x0, 0x38, 0x8000, 0x4, 0x4, @inferred=0xffffffffffffffff, @raw=0x8}) r8 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r8) 39.877854086s ago: executing program 1 (id=754): fadvise64$auto(0xffffffffffffffff, 0x31, 0x9, 0x3ff) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x403, 0x0) rseq$auto(0xfffffffffffffffd, 0x80000001, 0x0, 0x0) r1 = openat$auto_proc_coredump_filter_operations_base(0xffffffffffffff9c, &(0x7f0000000140), 0x141002, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0x1ff) write$auto(0x3, 0x0, 0x101) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000040)=0x80000005) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x9, 0x3ff57696, 0x20019, r1, 0x8000000000008000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x1020006, 0x7fffffff, 0x11, 0x5, 0x8000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0xfffffffffffffffd, 0x400008, 0x7, 0x9b72, r0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0xa, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0xa, 0x0) rseq$auto(&(0x7f00000001c0)={0x4, 0xfffffff8, 0x6, 0x1, 0x4, 0x800, "7ad14c3fc3b214f42b951374f94c183f5274ac0c6cbe4872c39a045a0518f663f9ca917d85bd58e8bfcca7a5394cfb2307a47e9a0a5ac2c66af2efc704ababa845deeba3cfedf876c2e88790afcaf63517c20a971ef96d1ea1259ed3f4992d7873cf8ad1ace162acd6956a846f6b220b89dd07a7e947955c54cabc23b19dd4faaab901b6d3c190abaa629e0629da695d20a3cfdc1e39153f"}, 0x7, 0x9, 0x6) open(0x0, 0x161342, 0x100) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/ad_aggregator\x00', 0x80500, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000000)=""/14, 0xe) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000c00), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'batadv0\x00'}) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) open(0x0, 0x0, 0x20) madvise$auto(0x0, 0xffffffffffff0001, 0x15) 35.330436104s ago: executing program 1 (id=766): gettid() r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) select$auto(0xb, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x5, 0x3, 0xff, 0x2000000000000002, 0x9, 0x8, 0xffffffffffffffff, 0xa, 0x4, 0x400, 0x6, 0x4006]}, 0x0, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24048804}, 0x800) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0x400008, 0x4000000df, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x1, 0x0) bind$auto(r0, &(0x7f0000000040)=@ethernet={0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x8000006a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttya0\x00', 0x10000, 0x0) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0x100000000b) close_range$auto(0x2, 0x8, 0x0) stat$auto(0x0, 0x0) r2 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x3, 0x940, 0x1ffde, 0x3, 0x7, 0x2, 0x9, 0x8, 0x1ff, 0x4, 0xb0, 0x9, 0x2, 0x3, 0x5, 0x10, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000001, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff]}, 0x1fe, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000) newfstatat$auto(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x0, 0x10) timer_create$auto(0x3, 0x0, 0x0) timer_settime$auto(0x0, 0xffff8000, 0x0, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x115) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000380), 0x200000, 0x0) 28.854930408s ago: executing program 1 (id=770): unshare$auto(0x40000080) r0 = socket(0x2, 0x1, 0x0) getsockopt$auto(r0, 0x0, 0x4, 0x0, &(0x7f0000000140)=0x49) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r1, 0x0, 0x5, 0x20000000) socket(0x18, 0x5, 0x2) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) io_uring_setup$auto(0xfffffffb, 0x0) r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="41004bbd7000fbdbdf250a000000080001"], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) open(&(0x7f0000000000)='./file0\x00', 0xa61c2, 0x84) bind$auto(0x3, 0x0, 0x6b) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) mmap$auto(0x6, 0x20008, 0x6, 0x1a, 0x401, 0x7ffa) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010029bd7000ffdbdf25020000000800070004000000110010006f"], 0x30}, 0x1, 0x0, 0x0, 0x20040c04}, 0xc0804) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='$[\x00\x00', @ANYRES16=0x0, @ANYBLOB="20002cbd7000fbdbdf250200000008000300800040000800030009"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="10002cbd7000fddbdf250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a"], 0x1ac}}, 0x40004) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) write$auto(r2, 0x0, 0x62f) 23.690476289s ago: executing program 1 (id=793): mmap$auto(0x9, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008001) r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/pagemap\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x39b8) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x249002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto(0x3, 0x0, 0x1f40) write$auto(0x3, 0x0, 0xfdef) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x80282, 0x0) ioctl$auto_v4l2_fops_v4l2_dev(r2, 0x80085617, 0x0) sysfs$auto(0x2, 0x10000000000048, 0x0) r3 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$auto_RTC_SET_TIME(r3, 0x4024700a, &(0x7f0000000280)={0x1, 0x7, 0x0, 0x5, 0x2, 0x80, 0xce, 0x6c35, 0xe}) r4 = fsopen$auto(0x0, 0x1) close_range$auto(r1, 0x8, 0x0) msgctl$auto(0x7, 0x0, &(0x7f00000000c0)={{0x3, 0x0, 0xffffffffffffffff, 0x10, 0x8001, 0x8, 0x40}, &(0x7f0000000040)=0x3, &(0x7f0000000080)=0x2d, 0xffffffffffffffff, 0xe, 0xffffffffffff48c3, 0x9, 0x2, 0x6, 0x6, 0x400, @raw=0x8, @inferred=0xffffffffffffffff}) setgid$auto(r5) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) gettid() unshare$auto(0x40000080) r7 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ieee80211/phy0/reset\x00', 0x81, 0x0) write$auto(r7, 0x0, 0x4) ioctl$auto(0x3, 0x4018aebd, r4) 8.62053579s ago: executing program 32 (id=793): mmap$auto(0x9, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008001) r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/pagemap\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x39b8) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x249002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto(0x3, 0x0, 0x1f40) write$auto(0x3, 0x0, 0xfdef) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x80282, 0x0) ioctl$auto_v4l2_fops_v4l2_dev(r2, 0x80085617, 0x0) sysfs$auto(0x2, 0x10000000000048, 0x0) r3 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$auto_RTC_SET_TIME(r3, 0x4024700a, &(0x7f0000000280)={0x1, 0x7, 0x0, 0x5, 0x2, 0x80, 0xce, 0x6c35, 0xe}) r4 = fsopen$auto(0x0, 0x1) close_range$auto(r1, 0x8, 0x0) msgctl$auto(0x7, 0x0, &(0x7f00000000c0)={{0x3, 0x0, 0xffffffffffffffff, 0x10, 0x8001, 0x8, 0x40}, &(0x7f0000000040)=0x3, &(0x7f0000000080)=0x2d, 0xffffffffffffffff, 0xe, 0xffffffffffff48c3, 0x9, 0x2, 0x6, 0x6, 0x400, @raw=0x8, @inferred=0xffffffffffffffff}) setgid$auto(r5) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) gettid() unshare$auto(0x40000080) r7 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ieee80211/phy0/reset\x00', 0x81, 0x0) write$auto(r7, 0x0, 0x4) ioctl$auto(0x3, 0x4018aebd, r4) 8.531405351s ago: executing program 0 (id=825): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/dm_bufio/parameters/retain_bytes\x00', 0x121902, 0x0) write$auto(r0, &(0x7f00000001c0)='0x\xfb]$|\xcb1j\xeb0B|d\x1e\xec\x99\xb9\xfd\xd3\x89O\x9f\xac+\xf6\xd7/\xc9\xe9x\xd4\xf3\xc8\xf5\x7fW\xd3\xa6\x96\xd3^\xb8\xb4gq%H\xcc\x88r\xeaO\x8e\x10\t\xc7 P\xcf\xa7H\b\x04\x87\x98\x16`\xa3S\xd46\x10Wf\xc9<7\xcf\xc9\xf1\b\x9b\x8c\x9fu;\xc48(u\xf9Bx\n\xafW%/bBT\xa9\a\xed\xd2H4\x96\xa3U\xca\xf1\xef\x14dU\x15\x16\xa7\xdd\x01\x0e\xda\xc8\xd3\x00\xc5\b\x1a\xb0mN\x01\xb1\xc8B.U\xd1\x02\'\x9a\'\xf1;\xedJ\xf6@\xac\a\xf5\xf5 |\x1ex\xb7@=\xad\xe7\xff\xd6\xc1\xcf\x11\x0f\x99+v\x873\xc4\x17]\x17!]ct\xff\t\xb2A\x0f\x91\x02\xca&\x910xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000500), {0xa}, &(0x7f0000000540)=""/4096, 0x1000, &(0x7f0000001540)=""/9, &(0x7f0000001580)=[0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0], 0xa}, 0x58) process_mrelease$auto(r4, 0x7) (async) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001680), r1) (async) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000016c0)={'pimreg0\x00', 0x0}) (async) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001700)={'vlan0\x00', 0x0}) (async, rerun: 32) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000001740)={'dvmrp0\x00', 0x0}) (rerun: 32) sendmsg$auto_ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f0000001880)={&(0x7f0000001640), 0xc, &(0x7f0000001840)={&(0x7f0000001780)={0x90, r5, 0x8, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_PAUSE_STATS_SRC={0x8, 0x6, 0x5}, @ETHTOOL_A_PAUSE_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xad}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1181}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}]}, @ETHTOOL_A_PAUSE_STATS_SRC={0x8, 0x6, 0x24}]}, 0x90}, 0x1, 0x0, 0x0, 0x8004}, 0x40000) (async) r9 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f00000018c0), 0x20001, 0x0) io_uring_register$auto(r9, 0x0, &(0x7f0000001900)="8a7809315c75998e0f91416f7de25c4b1b0a640072c82146c566d7b8fee5dfd00e144d3f09b38e7d2420ba4bb541f466c032ed6537b34ef0c4b89cdf9efbb838195950d5cd5e3f2bf715bfd5fc27dab30ebdfc", 0x6) (async) r10 = signalfd$auto(r1, &(0x7f0000001980)={0x101}, 0x46e4102a) write$auto_safesetid_gid_file_fops_securityfs(r10, &(0x7f00000019c0)="04e1b0f61126bbe8958d12bc289fea52d435fc4deaf77789063717d758bdfeaff9d9fee9917c9f6b8c1e85ba508848c1b3ff83a9988dd6f4acc3a1148fc7339bc1f1460f4734d39dade143dfb93f99f5cc8ed02f3216ed1cd9c5d69e5200a827047d5de39bffd0726ffa65a521a5a8b429f73e40f7a7eb79daf73b9c4ba74dbdb9470defe2581bbad30544e510652a9b9d89937f184fb905090fa5ea76f6a07823e60489afb1a56788ba8202eb8e32c3fdf03e1b3d8e6f7af1874bce8da227d3327c0424d01e5e66fcd03e573fd8a14337a9194d36d28a78ff944ae3baf937934bee7452e315064cdb5d", 0xea) read$auto_proc_projid_map_operations_base(r10, &(0x7f0000001ac0)=""/146, 0x92) (async) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000001d00)={&(0x7f0000001b80)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001cc0)={&(0x7f0000001bc0)={0xc8, r0, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_FILS_DISCOVERY={0x88, 0x126, 0x0, 0x1, [@NL80211_FILS_DISCOVERY_ATTR_INT_MIN={0x8, 0x1, 0x10000}, @NL80211_FILS_DISCOVERY_ATTR_INT_MAX={0x8, 0x2, 0x9}, @NL80211_FILS_DISCOVERY_ATTR_INT_MAX={0x8, 0x2, 0x6d8}, @NL80211_FILS_DISCOVERY_ATTR_TMPL={0x59, 0x3, "7c18cd2accc91abd2a465429c5ff2ade0832945eee59071bc9eda16e281a3d5336a51c36e60ec7d0f307d993b9c9c77edfb22ec27533f927e0741e42d5541d5a00969bafc0fd8be9f398b67144b474ba6cd84bc6a5"}, @NL80211_FILS_DISCOVERY_ATTR_INT_MAX={0x8, 0x2, 0xa261}, @NL80211_FILS_DISCOVERY_ATTR_INT_MIN={0x8, 0x1, 0x9f06}]}, @NL80211_ATTR_CONTROL_PORT_NO_PREAUTH={0x4}, @NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x1}, @NL80211_ATTR_MESH_ID={0xd, 0x18, "91e2b8e2d39fac43a8"}, @NL80211_ATTR_MLO_LINK_ID={0x5, 0x139, 0x8}, @NL80211_ATTR_USE_MFP={0x8, 0x42, 0x8}]}, 0xc8}, 0x1, 0x0, 0x0, 0x4000}, 0x50) (async) r11 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001d40)='/proc/asound/devices\x00', 0x40, 0x0) (async) r12 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000001d80), 0x442, 0x0) close_range$auto(r12, r3, 0x1) (async) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000001dc0), r10) r13 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001e40), r3) sendmsg$auto_NL80211_CMD_TDLS_OPER(r3, &(0x7f0000001f00)={&(0x7f0000001e00)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001ec0)={&(0x7f0000001e80)={0x2c, r13, 0x8, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_FILS_KEK={0x10, 0xf2, "5e5018b4bad81663625554d4"}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async) sendmmsg$auto(r11, &(0x7f0000002180)={{&(0x7f0000001f40)="4273e68aa889b2119d43c9cf5dbd1bae024756df7d2cddf78e646a1e52329cee278355470d23ee4e5720c19c72f8a8c418be77d67b731097346b7ff70d547f5c322c5bf715", 0x0, &(0x7f0000002080)={&(0x7f0000001fc0)="1d0a9dbe6dbdb17579cec3296bdcb3ae8991137c24781fa8d4a2352e9a066e02be4a0677f6780a81156b6f77150b1967f5602599d4a0acb763a8bc406aa304664d2864370a08837c1a6b049a8afb51734bc10e6d732cf83c041dca9c51a61032c39f8111ea10a6526dc963434f1fe2992bd48bfb7560711657199b3c10ae919875", 0x10001}, 0x9, &(0x7f00000020c0)="d818938a87bb53265db713e2c58098d4af4b5f4f2ebcd616f346ae4d6b5ef8c477391d7bc93a186afbc810460e5de111d7122a446d52eebc3ce7a06ba45e93bcff2c43c9409b8d849962c30656355d252bc556b7ef0234f93ce663815047a110903a7e193618776c1723d195bf55738fc3c6c410a6e7c8cf6193c3806981fea2cfe3e6d8ea4b78dbbada35c3466ca6ded39df1e731362638cf3a2c4a96596889837ad153c86731330bfa0884fd512ff7deb91438088260e999a29955", 0x101, 0x81}, 0x5}, 0xdaf, 0x9) 2.583618523s ago: executing program 3 (id=840): set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x56) poll$auto(&(0x7f0000000040)={0xffffffffffffffff, 0x8, 0xea85}, 0x100, 0x8) mprotect$auto(0x400, 0x1000000000001b, 0xd) r0 = socket(0xa, 0x1, 0x84) r1 = getsockopt$auto(r0, 0x84, 0x14, 0x0, &(0x7f0000000040)=0x3) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0xac, r2, 0x62b, 0x70bd2b, 0x25dfdbfd, {}, [@NL80211_ATTR_FILS_CACHE_ID={0x78, 0xfd, "fc0b36b0e587fe7d3aa4804a58a8e4aea4ad6dd262c46b8685fa030e89f8c4cd436a442e31814b12d3d3a60b6fc056ec4d63cc84ecb62886788d6063bc734db3d050c3bb5d9efa58f0044bf12ac92355525be3a8b982408d72bd64b141af9e26386f09da1c80dddb6aedbc4213f3f0afa212a277"}, @NL80211_ATTR_SUPPORT_MESH_AUTH={0x4}, @NL80211_ATTR_FILS_ERP_USERNAME={0xc, 0xf9, "c83694a73e85abb3"}, @NL80211_ATTR_SSID={0x5, 0x34, '['}, @NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x100}]}, 0xac}, 0x1, 0x0, 0x0, 0x4000}, 0x20000051) unshare$auto(0x40000080) get_mempolicy$auto(0x0, 0x0, 0x8, 0x0, 0x0) 1.929955895s ago: executing program 2 (id=841): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/dm_bufio/parameters/retain_bytes\x00', 0x121902, 0x0) write$auto(r0, &(0x7f00000001c0)='0x\xfb]$|\xcb1j\xeb0B|d\x1e\xec\x99\xb9\xfd\xd3\x89O\x9f\xac+\xf6\xd7/\xc9\xe9x\xd4\xf3\xc8\xf5\x7fW\xd3\xa6\x96\xd3^\xb8\xb4gq%H\xcc\x88r\xeaO\x8e\x10\t\xc7 P\xcf\xa7H\b\x04\x87\x98\x16`\xa3S\xd46\x10Wf\xc9<7\xcf\xc9\xf1\b\x9b\x8c\x9fu;\xc48(u\xf9Bx\n\xafW%/bBT\xa9\a\xed\xd2H4\x96\xa3U\xca\xf1\xef\x14dU\x15\x16\xa7\xdd\x01\x0e\xda\xc8\xd3\x00\xc5\b\x1a\xb0mN\x01\xb1\xc8B.U\xd1\x02\'\x9a\'\xf1;\xedJ\xf6@\xac\a\xf5\xf5 |\x1ex\xb7@=\xad\xe7\xff\xd6\xc1\xcf\x11\x0f\x99+v\x873\xc4\x17]\x17!]ct\xff\t\xb2A\x0f\x91\x02\xca&\x910xee00, 0xffffffffffffffff, 0x0, 0x7, 0x7, 0x8001, 0x8000000000000001, 0x2f, 0x4, 0x1, 0x56, 0x3, 0x1}, 0x9) (async) statx$auto(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x7ff, 0x7fff, &(0x7f0000000180)={0xfff, 0x3, 0x100, 0x1, 0xee00, 0xffffffffffffffff, 0xfff2, 0x3, 0x10, 0x8, 0x9, 0xffffffffffffffff, {0x3, 0x7}, {0xffffffffffffffff, 0x5}, {0x7, 0xffffffff}, {0x3, 0xb}, 0x160f29b1, 0x4, 0x3, 0x5, 0x7, 0x6, 0x9, 0x401, 0xb2b, 0x5, 0x44, 0x80000000, [0x6, 0xb45f, 0x101, 0xa, 0x8000000000000001, 0xffffffff, 0xfffffffffffffffe, 0x91, 0x9]}) r2 = syz_clone(0xc0008000, &(0x7f0000000680)="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", 0x1000, &(0x7f0000000300), &(0x7f0000000340), &(0x7f0000000380)="019cf4e74b4766972b9f416e618247d6c127f7d9c63a123362d701dad422a86f547253a90f2a7fda1fdaa405cb493a558cd7c3de99034c6ecbb594591662393b124c159174d43cbb705e2f95b881") msgctl$auto(0x401, 0xffffffff, &(0x7f0000000400)={{0xba93, r0, r1, 0x401, 0x180, 0x7, 0x1}, &(0x7f0000000280)=0x5, &(0x7f00000002c0), 0x8000000000000000, 0x6, 0xb366, 0x9, 0x7, 0xef4, 0x0, 0xadc, @raw=0x3, @inferred=r2}) mmap$auto(0x0, 0x4020009, 0x7, 0xeb1, 0x400, 0x8000) (async, rerun: 32) r3 = socket(0x2b, 0x1, 0x1) (rerun: 32) r4 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000005c0), r3) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f00000016c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001680)={&(0x7f0000000600)={0x5c, r4, 0x800, 0x70bd28, 0x25dfdbff, {}, [@L2TP_ATTR_DEBUG={0x8, 0x11, 0x6}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, 0x7}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, 0x75fd}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x4}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, 0xb}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x3}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x5}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x4}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x5}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000085}, 0x40040) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) setsockopt$auto(r3, 0x29, 0x20, 0x0, 0x20) timer_create$auto(0xfffffff7, &(0x7f0000000040)={@sival_int=0x9, @raw=0x2, 0x0, @_tid=r2}, &(0x7f0000000080)=0x173) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) socket(0xa, 0x5, 0x0) (async, rerun: 64) inotify_init1$auto(0x3000000000000) inotify_add_watch$auto(0x4, 0x0, 0xe6e) (async) adjtimex$auto(&(0x7f0000000480)={0x5, 0x0, 0x3, 0x3, 0xfffffffffffffffa, 0x5, 0x1, 0x0, 0x5eb, 0x401, 0x8, {0x9, 0x80000001}, 0x8, 0x0, 0x7f, 0x9, 0x0, 0x8000000000000000, 0xa, 0x9, 0x4, 0xff8000}) (async, rerun: 64) open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x0) (async, rerun: 64) close_range$auto(0x2, 0x8000, 0x0) (async, rerun: 64) madvise$auto(0x2, 0x4, 0x180) (rerun: 64) 702.553998ms ago: executing program 0 (id=846): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto(0x3, 0xc10c5541, 0xb551) 537.833667ms ago: executing program 0 (id=847): r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x20) close_range$auto(0x0, 0xfffffffffffff001, 0x2) r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x40001, 0x0) ioctl$auto_VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000100)=0x2) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) mmap$auto(0x0, 0x2020009, 0x3, 0xe31, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0) pread64$auto(r2, 0x0, 0x8, 0x5) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/uts\x00') socket(0x2, 0x1, 0x0) socket(0x1e, 0x5, 0x0) socket(0x2a, 0x3, 0xfffffffd) memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4) mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000) mmap$auto(0x8000000, 0x8, 0x1000000016, 0x13, 0x3, 0x180000000) socket(0x1e, 0x1, 0x0) mmap$auto(0x8000000, 0x8, 0x1000000016, 0x13, 0x3, 0x180000000) execveat$auto(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyy1\x00', 0x121882, 0x0) ioctl$auto(r3, 0x5406, 0x82003e) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r4 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, 0x0) io_getevents$auto(0x3, 0x7fff, 0x3ff, 0xfffffffffffffffe, 0xfffffffffffffffd) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/module/usb_storage/parameters/delay_use\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0)=""/40, 0x28) dup2$auto(0x0, 0x3) close_range$auto(r3, 0x8, 0xfffffffd) 350.781253ms ago: executing program 0 (id=848): r0 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f00000000c0), 0x220001, 0x0) readv$auto(r0, &(0x7f0000000200)={&(0x7f0000000100), 0x6}, 0x7) r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x300, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) shutdown$auto(r1, 0x7) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f00000003c0), r2) sendmsg$auto_SMC_PNETID_DEL(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x14, r3, 0x1, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x4894) madvise$auto(0x0, 0xffffffffffff0001, 0x15) set_mempolicy_home_node$auto(0x8000, 0x10001, 0x0, 0x0) 0s ago: executing program 0 (id=849): mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041) r0 = socket(0x2a, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) (async) bind$auto(0x3, &(0x7f0000000080), 0x6b) connect$auto(0x3, &(0x7f00000000c0), 0x55) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40) openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000000), 0x8202, 0x0) (async) openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000000), 0x8202, 0x0) writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8) write$auto(0x3, 0x0, 0xfffffdef) setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) (async) setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x10000000000002d, 0x0) syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r0) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) r1 = gettid() connect$auto(0xffffffffffffffff, 0x0, 0x55) mmap$auto(0x0, 0x5, 0x3, 0x16, 0x3, 0x8000) (async) mmap$auto(0x0, 0x5, 0x3, 0x16, 0x3, 0x8000) sendfile$auto(0x6, 0xffffffffffffffff, 0x0, 0x8000) unshare$auto(0x40000080) (async) unshare$auto(0x40000080) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) madvise$auto(0x0, 0x20200, 0x15) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) fchdir$auto(0xffffffffffffffff) (async) fchdir$auto(0xffffffffffffffff) rmdir$auto(&(0x7f0000000340)='MAC80211_HWSIM\x00') process_vm_readv$auto(r1, &(0x7f0000000040)={0x0, 0x8}, 0x4, &(0x7f00000000c0)={0x0, 0x100000000000002}, 0x6, 0x0) move_pages$auto(r1, 0x4, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x3, 0x0, 0x0) (async) move_pages$auto(r1, 0x4, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x3, 0x0, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.29' (ED25519) to the list of known hosts. [ 64.753136][ T5818] cgroup: Unknown subsys name 'net' [ 64.926321][ T5818] cgroup: Unknown subsys name 'cpuset' [ 64.934515][ T5818] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 66.313047][ T5818] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 68.015506][ T5829] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 68.031793][ T5829] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 68.064469][ T5832] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 68.073493][ T5832] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 68.081482][ T5832] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 68.104673][ T5832] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 68.107082][ T5839] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 68.121485][ T5839] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 68.123272][ T5832] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 68.133654][ T5839] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 68.144140][ T5832] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 68.152410][ T5832] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 68.153466][ T5839] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 68.160646][ T5832] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 68.173788][ T5840] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 68.185186][ T5840] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 68.192501][ T5842] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 68.192955][ T5840] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 68.200188][ T5842] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 68.208757][ T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 68.214118][ T5842] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 68.228855][ T5840] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 68.240099][ T5840] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 68.247554][ T5840] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 68.627856][ T5827] chnl_net:caif_netlink_parms(): no params data found [ 68.642055][ T5831] chnl_net:caif_netlink_parms(): no params data found [ 68.686237][ T5830] chnl_net:caif_netlink_parms(): no params data found [ 68.776964][ T5834] chnl_net:caif_netlink_parms(): no params data found [ 68.839865][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.847724][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.855618][ T5827] bridge_slave_0: entered allmulticast mode [ 68.862341][ T5827] bridge_slave_0: entered promiscuous mode [ 68.873518][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.880616][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.888523][ T5831] bridge_slave_0: entered allmulticast mode [ 68.895420][ T5831] bridge_slave_0: entered promiscuous mode [ 68.919213][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.926529][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.934146][ T5827] bridge_slave_1: entered allmulticast mode [ 68.940700][ T5827] bridge_slave_1: entered promiscuous mode [ 68.954532][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.961631][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.971570][ T5831] bridge_slave_1: entered allmulticast mode [ 68.978294][ T5831] bridge_slave_1: entered promiscuous mode [ 69.017570][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 69.044689][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 69.054787][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.061904][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.069834][ T5830] bridge_slave_0: entered allmulticast mode [ 69.076477][ T5830] bridge_slave_0: entered promiscuous mode [ 69.085717][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 69.104266][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 69.113876][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.120972][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.128420][ T5830] bridge_slave_1: entered allmulticast mode [ 69.135346][ T5830] bridge_slave_1: entered promiscuous mode [ 69.150209][ T5834] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.157368][ T5834] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.167281][ T5834] bridge_slave_0: entered allmulticast mode [ 69.174660][ T5834] bridge_slave_0: entered promiscuous mode [ 69.202590][ T5834] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.210336][ T5834] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.217707][ T5834] bridge_slave_1: entered allmulticast mode [ 69.224914][ T5834] bridge_slave_1: entered promiscuous mode [ 69.250568][ T5831] team0: Port device team_slave_0 added [ 69.268487][ T5827] team0: Port device team_slave_0 added [ 69.277510][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 69.287885][ T5831] team0: Port device team_slave_1 added [ 69.311166][ T5827] team0: Port device team_slave_1 added [ 69.325739][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 69.346110][ T5834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 69.358874][ T5834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 69.385540][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 69.392489][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.418650][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 69.439167][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 69.446175][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.472441][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 69.491931][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 69.499050][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.525010][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 69.544178][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 69.551160][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.577260][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 69.591182][ T5830] team0: Port device team_slave_0 added [ 69.615994][ T5834] team0: Port device team_slave_0 added [ 69.626696][ T5830] team0: Port device team_slave_1 added [ 69.634511][ T5834] team0: Port device team_slave_1 added [ 69.661379][ T5831] hsr_slave_0: entered promiscuous mode [ 69.670079][ T5831] hsr_slave_1: entered promiscuous mode [ 69.727899][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 69.735486][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.763241][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 69.775146][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 69.782114][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.811784][ T5834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 69.824913][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 69.831887][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.857952][ T5834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 69.871485][ T5827] hsr_slave_0: entered promiscuous mode [ 69.878224][ T5827] hsr_slave_1: entered promiscuous mode [ 69.884850][ T5827] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 69.892649][ T5827] Cannot create hsr debugfs directory [ 69.905712][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 69.912687][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.939062][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.030548][ T5834] hsr_slave_0: entered promiscuous mode [ 70.037020][ T5834] hsr_slave_1: entered promiscuous mode [ 70.044064][ T5834] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 70.051679][ T5834] Cannot create hsr debugfs directory [ 70.081875][ T5830] hsr_slave_0: entered promiscuous mode [ 70.088797][ T5830] hsr_slave_1: entered promiscuous mode [ 70.095498][ T5830] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 70.103693][ T5830] Cannot create hsr debugfs directory [ 70.264231][ T5829] Bluetooth: hci2: command tx timeout [ 70.270220][ T5840] Bluetooth: hci0: command tx timeout [ 70.276376][ T5829] Bluetooth: hci1: command tx timeout [ 70.276395][ T54] Bluetooth: hci3: command tx timeout [ 70.338705][ T5831] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 70.358273][ T5831] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 70.374486][ T5831] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 70.385246][ T5831] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 70.426443][ T5827] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 70.439921][ T5827] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 70.458335][ T5827] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 70.477113][ T5827] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 70.521909][ T5834] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 70.536911][ T5834] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 70.547798][ T5834] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 70.572012][ T5834] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 70.625246][ T5830] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 70.650744][ T5830] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 70.672770][ T5830] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 70.682698][ T5830] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 70.704936][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.772687][ T5831] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.791914][ T3678] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.799316][ T3678] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.811253][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.836529][ T67] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.843690][ T67] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.868602][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.896419][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.932124][ T5834] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.955555][ T67] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.962679][ T67] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.986977][ T67] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.994137][ T67] bridge0: port 2(bridge_slave_1) entered forwarding state [ 71.014842][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 71.025228][ T67] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.032374][ T67] bridge0: port 1(bridge_slave_0) entered forwarding state [ 71.048971][ T666] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.056287][ T666] bridge0: port 2(bridge_slave_1) entered forwarding state [ 71.096675][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 71.157212][ T3678] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.164401][ T3678] bridge0: port 1(bridge_slave_0) entered forwarding state [ 71.194734][ T5827] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 71.237857][ T3678] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.245024][ T3678] bridge0: port 2(bridge_slave_1) entered forwarding state [ 71.381840][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 71.468629][ T5831] veth0_vlan: entered promiscuous mode [ 71.496290][ T5831] veth1_vlan: entered promiscuous mode [ 71.569045][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 71.595658][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 71.608439][ T5831] veth0_macvtap: entered promiscuous mode [ 71.624289][ T5831] veth1_macvtap: entered promiscuous mode [ 71.669015][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 71.692120][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.705897][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.715187][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.724481][ T5834] veth0_vlan: entered promiscuous mode [ 71.741596][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.753319][ T5834] veth1_vlan: entered promiscuous mode [ 71.779373][ T5831] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.789027][ T5831] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.801070][ T5831] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.811526][ T5831] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.836068][ T5827] veth0_vlan: entered promiscuous mode [ 71.891936][ T5830] veth0_vlan: entered promiscuous mode [ 71.900483][ T5827] veth1_vlan: entered promiscuous mode [ 71.908921][ T5834] veth0_macvtap: entered promiscuous mode [ 71.930158][ T5830] veth1_vlan: entered promiscuous mode [ 71.947344][ T5834] veth1_macvtap: entered promiscuous mode [ 72.017870][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.031440][ T666] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.035503][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.051513][ T666] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.054049][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.076736][ T5830] veth0_macvtap: entered promiscuous mode [ 72.093800][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.108290][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.121383][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 72.134231][ T5827] veth0_macvtap: entered promiscuous mode [ 72.151310][ T5830] veth1_macvtap: entered promiscuous mode [ 72.160322][ T5834] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.163968][ T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.174501][ T5834] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.177105][ T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.197623][ T5834] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.206898][ T5834] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.218604][ T5827] veth1_macvtap: entered promiscuous mode [ 72.271448][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.287394][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.298476][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.309451][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.327525][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.338883][ T5831] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 72.342693][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.364860][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.374242][ T5840] Bluetooth: hci1: command tx timeout [ 72.374763][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.380040][ T5840] Bluetooth: hci0: command tx timeout [ 72.390506][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.391608][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 72.396095][ T5829] Bluetooth: hci3: command tx timeout [ 72.415184][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.418764][ T5840] Bluetooth: hci2: command tx timeout [ 72.441685][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.451871][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.462664][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.472516][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.483037][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.494013][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.509198][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.519883][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.531214][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.543416][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.556856][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.567929][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.585138][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 72.640001][ T5827] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.661052][ T5827] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.670417][ T5827] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.679310][ T5827] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.721831][ T5830] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.721859][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.721878][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.731043][ T5830] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.758882][ T5830] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.773395][ T5830] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.839513][ T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.856388][ T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.958247][ T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.989892][ T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.014360][ T3678] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.023650][ T3678] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.065370][ T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.087588][ T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.097279][ T3678] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.108834][ T3678] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.356363][ T5896] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 73.466571][ T5901] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4'. [ 73.466624][ T5901] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 73.466664][ T5901] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 73.470371][ T5901] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 73.470404][ T5901] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 74.454029][ T5918] ======================================================= [ 74.454029][ T5918] WARNING: The mand mount option has been deprecated and [ 74.454029][ T5918] and is ignored by this kernel. Remove the mand [ 74.454029][ T5918] option from the mount to silence this warning. [ 74.454029][ T5918] ======================================================= [ 74.536578][ T54] Bluetooth: hci2: command tx timeout [ 74.542115][ T54] Bluetooth: hci3: command tx timeout [ 74.549709][ T54] Bluetooth: hci0: command tx timeout [ 74.559018][ T54] Bluetooth: hci1: command tx timeout [ 75.054474][ T5933] Process accounting resumed [ 76.585457][ T5840] Bluetooth: hci1: command tx timeout [ 76.591422][ T54] Bluetooth: hci0: command tx timeout [ 76.597142][ T54] Bluetooth: hci3: command tx timeout [ 76.602619][ T5840] Bluetooth: hci2: command tx timeout [ 76.816333][ T5949] netlink: 28 bytes leftover after parsing attributes in process `syz.3.17'. [ 77.312199][ T5949] team0: Port device team_slave_0 removed [ 77.632712][ T5959] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 78.088442][ T5968] netlink: 28 bytes leftover after parsing attributes in process `syz.0.19'. [ 78.118612][ T5968] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 78.145617][ T5968] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 78.196113][ T5968] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 78.220032][ T5968] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 81.240113][ T6008] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 81.751210][ T6022] netlink: 28 bytes leftover after parsing attributes in process `syz.2.35'. [ 81.781229][ T6022] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 81.799963][ T6022] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 81.853281][ T6022] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 81.967912][ T25] cfg80211: failed to load regulatory.db [ 81.973000][ T6022] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 83.062050][ T6043] Zero length message leads to an empty skb [ 83.102681][ T6021] Invalid ELF header magic: != ELF [ 83.771519][ T6057] netlink: zone id is out of range [ 83.792942][ T6057] netlink: del zone limit has 4 unknown bytes [ 84.164840][ T3678] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.285474][ T3678] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.426165][ T3678] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.545975][ T3678] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.796506][ T3678] bridge_slave_1: left allmulticast mode [ 84.802540][ T3678] bridge_slave_1: left promiscuous mode [ 84.812123][ T3678] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.872064][ T3678] bridge_slave_0: left allmulticast mode [ 84.878182][ T3678] bridge_slave_0: left promiscuous mode [ 84.886089][ T3678] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.673880][ T3678] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 85.688728][ T3678] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 85.705103][ T3678] bond0 (unregistering): Released all slaves [ 86.384285][ T3678] hsr_slave_0: left promiscuous mode [ 86.393699][ T3678] hsr_slave_1: left promiscuous mode [ 86.449004][ T3678] veth1_macvtap: left promiscuous mode [ 86.474816][ T3678] veth0_macvtap: left promiscuous mode [ 86.480609][ T3678] veth1_vlan: left promiscuous mode [ 86.499247][ T3678] veth0_vlan: left promiscuous mode [ 87.078381][ T3678] team0 (unregistering): Port device team_slave_1 removed [ 87.125029][ T3678] team0 (unregistering): Port device team_slave_0 removed [ 87.945044][ T5840] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 87.955482][ T5840] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 87.963689][ T5840] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 87.971724][ T5840] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 87.980181][ T5840] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 87.987701][ T5840] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 88.151314][ T6109] netlink: 28 bytes leftover after parsing attributes in process `syz.1.48'. [ 88.265201][ T6109] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 88.274497][ T6109] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 88.287527][ T6109] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 88.303672][ T6109] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 88.572741][ T6094] chnl_net:caif_netlink_parms(): no params data found [ 88.719305][ T6094] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.733095][ T6094] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.748863][ T6094] bridge_slave_0: entered allmulticast mode [ 88.764393][ T6094] bridge_slave_0: entered promiscuous mode [ 88.782571][ T6094] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.790655][ T6094] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.799440][ T6094] bridge_slave_1: entered allmulticast mode [ 88.818146][ T6094] bridge_slave_1: entered promiscuous mode [ 88.906342][ T3678] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 88.947688][ T6094] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.990452][ T6094] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.077555][ T3678] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 89.266593][ T3678] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 89.284299][ T5829] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 89.295398][ T5829] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 89.303405][ T5829] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 89.312067][ T5829] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 89.319855][ T5829] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 89.327527][ T6094] team0: Port device team_slave_0 added [ 89.327775][ T5829] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 89.347731][ T6133] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 89.358856][ T6094] team0: Port device team_slave_1 added [ 89.418480][ T3678] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 89.478497][ T6094] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.492508][ T6094] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.528497][ T6094] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.562051][ T6094] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.569902][ T6094] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.596206][ T6094] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.702296][ T6094] hsr_slave_0: entered promiscuous mode [ 89.715181][ T6094] hsr_slave_1: entered promiscuous mode [ 89.967704][ T3678] bridge_slave_1: left allmulticast mode [ 89.973919][ T3678] bridge_slave_1: left promiscuous mode [ 89.980983][ T3678] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.023181][ T5840] Bluetooth: hci2: command tx timeout [ 90.030034][ T3678] bridge_slave_0: left allmulticast mode [ 90.042962][ T3678] bridge_slave_0: left promiscuous mode [ 90.051211][ T3678] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.735992][ T3678] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 90.749675][ T3678] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 90.761328][ T3678] bond0 (unregistering): Released all slaves [ 90.888877][ T6188] UHID_CREATE from different security context by process 68 (syz.1.68), this is not allowed. [ 91.046833][ T6143] chnl_net:caif_netlink_parms(): no params data found [ 91.388084][ T5840] Bluetooth: hci3: command tx timeout [ 91.646691][ T3678] hsr_slave_0: left promiscuous mode [ 91.655047][ T3678] hsr_slave_1: left promiscuous mode [ 91.697586][ T3678] veth1_macvtap: left promiscuous mode [ 91.715500][ T3678] veth0_macvtap: left promiscuous mode [ 91.721285][ T3678] veth1_vlan: left promiscuous mode [ 91.736323][ T3678] veth0_vlan: left promiscuous mode [ 92.107182][ T5840] Bluetooth: hci2: command tx timeout [ 92.259779][ T3678] team0 (unregistering): Port device team_slave_1 removed [ 92.294211][ T3678] team0 (unregistering): Port device team_slave_0 removed [ 92.831097][ T6143] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.840920][ T6143] bridge0: port 1(bridge_slave_0) entered disabled state [ 92.848475][ T6143] bridge_slave_0: entered allmulticast mode [ 92.858309][ T6143] bridge_slave_0: entered promiscuous mode [ 92.867098][ T6143] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.883878][ T6143] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.892761][ T6143] bridge_slave_1: entered allmulticast mode [ 92.902705][ T6143] bridge_slave_1: entered promiscuous mode [ 92.994864][ T6143] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 93.015971][ T6143] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 93.138565][ T6143] team0: Port device team_slave_0 added [ 93.165030][ T6143] team0: Port device team_slave_1 added [ 93.222200][ T6094] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 93.245682][ T6094] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 93.282894][ T6094] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 93.303967][ T6094] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 93.326519][ T6143] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 93.344052][ T6143] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.395269][ T6143] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 93.420795][ T6143] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 93.439540][ T6143] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.463283][ T5840] Bluetooth: hci3: command tx timeout [ 93.470482][ T6143] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.618771][ T6143] hsr_slave_0: entered promiscuous mode [ 93.664010][ T6143] hsr_slave_1: entered promiscuous mode [ 93.686417][ T6143] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 93.702454][ T6143] Cannot create hsr debugfs directory [ 94.009464][ T6094] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.049352][ T6094] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.091684][ T666] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.098994][ T666] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.134782][ T666] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.142678][ T666] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.183060][ T5840] Bluetooth: hci2: command tx timeout [ 94.303886][ T6094] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 94.321837][ T6094] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 94.549211][ T6143] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 94.594442][ T6143] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 94.606328][ T6143] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 94.627985][ T6143] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 94.727877][ T6094] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 94.884113][ T6143] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.893480][ T6094] veth0_vlan: entered promiscuous mode [ 94.906193][ T6094] veth1_vlan: entered promiscuous mode [ 94.929699][ T6094] veth0_macvtap: entered promiscuous mode [ 94.941634][ T6094] veth1_macvtap: entered promiscuous mode [ 94.956646][ T6094] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 94.967847][ T6094] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 94.978559][ T6094] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.987573][ T6094] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.996400][ T6094] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.005190][ T6094] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.137189][ T6143] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.205309][ T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.224722][ T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.293376][ T3678] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.301245][ T3678] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.348387][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.355582][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.436148][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.443382][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.543079][ T5840] Bluetooth: hci3: command tx timeout [ 96.036451][ T6143] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.225600][ T6143] veth0_vlan: entered promiscuous mode [ 96.240147][ T6295] Invalid ELF header magic: != ELF [ 96.260665][ T6143] veth1_vlan: entered promiscuous mode [ 96.266507][ T5840] Bluetooth: hci2: command tx timeout [ 96.385348][ T6143] veth0_macvtap: entered promiscuous mode [ 96.406808][ T6143] veth1_macvtap: entered promiscuous mode [ 96.464355][ T6143] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 96.498956][ T6143] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.538616][ T6143] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.569635][ T6143] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 96.590778][ T6143] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.612663][ T6143] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.629991][ T6143] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.645241][ T6143] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.678435][ T6143] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.687809][ T6143] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.902532][ T3678] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.922766][ T3678] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.978504][ T3678] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.003665][ T3678] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.620395][ T6341] netlink: zone id is out of range [ 97.626736][ T5840] Bluetooth: hci3: command tx timeout [ 97.643137][ T6341] netlink: del zone limit has 4 unknown bytes [ 98.973451][ T6405] netlink: 32 bytes leftover after parsing attributes in process `syz.2.96'. [ 99.473115][ T6431] mmap: syz.2.99 (6431) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 99.517217][ T6433] netlink: 5995 bytes leftover after parsing attributes in process `syz.3.100'. [ 99.521538][ T6428] kexec: Could not allocate control_code_buffer [ 99.870233][ T6429] netlink: zone id is out of range [ 99.881532][ T6429] netlink: del zone limit has 4 unknown bytes [ 101.190892][ T6499] netlink: zone id is out of range [ 101.197984][ T6499] netlink: del zone limit has 4 unknown bytes [ 102.226575][ T6538] openvswitch: netlink: IP tunnel dst address not specified [ 102.244343][ T6538] openvswitch: netlink: IP tunnel dst address not specified [ 102.457407][ T6546] netlink: 28 bytes leftover after parsing attributes in process `syz.0.128'. [ 103.244056][ T6575] FAULT_INJECTION: forcing a failure. [ 103.244056][ T6575] name failslab, interval 1, probability 0, space 0, times 1 [ 103.274713][ T6575] CPU: 1 UID: 0 PID: 6575 Comm: syz.3.138 Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 103.285373][ T6575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 103.295569][ T6575] Call Trace: [ 103.298878][ T6575] [ 103.301835][ T6575] dump_stack_lvl+0x16c/0x1f0 [ 103.306574][ T6575] should_fail_ex+0x497/0x5b0 [ 103.311311][ T6575] ? fs_reclaim_acquire+0xae/0x150 [ 103.316478][ T6575] should_failslab+0xc2/0x120 [ 103.321203][ T6575] __kmalloc_noprof+0xce/0x4f0 [ 103.326017][ T6575] ? rcu_is_watching+0x12/0xc0 [ 103.330824][ T6575] ? kernfs_fop_write_iter+0x223/0x500 [ 103.336328][ T6575] kernfs_fop_write_iter+0x223/0x500 [ 103.341646][ T6575] vfs_write+0x5ae/0x1150 [ 103.345995][ T6575] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 103.351823][ T6575] ? __pfx___mutex_lock+0x10/0x10 [ 103.356875][ T6575] ? __pfx_vfs_write+0x10/0x10 [ 103.361678][ T6575] ksys_write+0x12b/0x250 [ 103.366021][ T6575] ? __pfx_ksys_write+0x10/0x10 [ 103.370890][ T6575] do_syscall_64+0xcd/0x250 [ 103.375409][ T6575] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 103.381317][ T6575] RIP: 0033:0x7fefeb585d29 [ 103.385740][ T6575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 103.405358][ T6575] RSP: 002b:00007fefec320038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 103.413884][ T6575] RAX: ffffffffffffffda RBX: 00007fefeb775fa0 RCX: 00007fefeb585d29 [ 103.421881][ T6575] RDX: 0000000000000002 RSI: 00000000200001c0 RDI: 0000000000000003 [ 103.429865][ T6575] RBP: 00007fefec320090 R08: 0000000000000000 R09: 0000000000000000 [ 103.437844][ T6575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 103.446343][ T6575] R13: 0000000000000000 R14: 00007fefeb775fa0 R15: 00007ffce9969c48 [ 103.454340][ T6575] [ 103.857692][ T6596] FAULT_INJECTION: forcing a failure. [ 103.857692][ T6596] name failslab, interval 1, probability 0, space 0, times 0 [ 103.863455][ T6594] netlink: 338 bytes leftover after parsing attributes in process `syz.2.142'. [ 103.876955][ T6596] CPU: 1 UID: 0 PID: 6596 Comm: syz.3.143 Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 103.890078][ T6596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 103.900163][ T6596] Call Trace: [ 103.903414][ T6594] netlink: 338 bytes leftover after parsing attributes in process `syz.2.142'. [ 103.903447][ T6596] [ 103.903460][ T6596] dump_stack_lvl+0x16c/0x1f0 [ 103.920013][ T6596] should_fail_ex+0x497/0x5b0 [ 103.924727][ T6596] ? fs_reclaim_acquire+0xae/0x150 [ 103.929882][ T6596] should_failslab+0xc2/0x120 [ 103.934609][ T6596] __kmalloc_cache_noprof+0x68/0x420 [ 103.939940][ T6596] ? __pfx_vga_arb_read+0x10/0x10 [ 103.945004][ T6596] vga_arb_read+0x7a/0x5c0 [ 103.949458][ T6596] ? rw_verify_area+0xd0/0x700 [ 103.954257][ T6596] ? __pfx_vga_arb_read+0x10/0x10 [ 103.959354][ T6596] vfs_read+0x1df/0xbe0 [ 103.963543][ T6596] ? __fget_files+0x1fc/0x3a0 [ 103.968275][ T6596] ? __pfx_lock_release+0x10/0x10 [ 103.973337][ T6596] ? __pfx_vfs_read+0x10/0x10 [ 103.978050][ T6596] ? lock_acquire+0x2f/0xb0 [ 103.982577][ T6596] ? __fget_files+0x40/0x3a0 [ 103.987386][ T6596] ? __fget_files+0x206/0x3a0 [ 103.992193][ T6596] ksys_read+0x12b/0x250 [ 103.996475][ T6596] ? __pfx_ksys_read+0x10/0x10 [ 104.001283][ T6596] do_syscall_64+0xcd/0x250 [ 104.005827][ T6596] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 104.011758][ T6596] RIP: 0033:0x7fefeb585d29 [ 104.016199][ T6596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 104.035966][ T6596] RSP: 002b:00007fefec320038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 104.044417][ T6596] RAX: ffffffffffffffda RBX: 00007fefeb775fa0 RCX: 00007fefeb585d29 [ 104.052428][ T6596] RDX: 0000000000000f34 RSI: 0000000000000000 RDI: 0000000000000003 [ 104.060549][ T6596] RBP: 00007fefec320090 R08: 0000000000000000 R09: 0000000000000000 [ 104.068992][ T6596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 104.076996][ T6596] R13: 0000000000000000 R14: 00007fefeb775fa0 R15: 00007ffce9969c48 [ 104.085021][ T6596] [ 104.801038][ T6624] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ekx' [ 104.814320][ T6625] FAULT_INJECTION: forcing a failure. [ 104.814320][ T6625] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 104.827605][ C0] vkms_vblank_simulate: vblank timer overrun [ 104.872900][ T6625] CPU: 1 UID: 0 PID: 6625 Comm: syz.1.151 Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 104.883555][ T6625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 104.893631][ T6625] Call Trace: [ 104.896915][ T6625] [ 104.899859][ T6625] dump_stack_lvl+0x16c/0x1f0 [ 104.904556][ T6625] should_fail_ex+0x497/0x5b0 [ 104.909252][ T6625] _copy_from_iter+0x29b/0x1400 [ 104.914118][ T6625] ? trace_lock_acquire+0x14e/0x1f0 [ 104.919338][ T6625] ? __pfx__copy_from_iter+0x10/0x10 [ 104.924634][ T6625] ? __virt_addr_valid+0x1a4/0x590 [ 104.929760][ T6625] ? __virt_addr_valid+0x5e/0x590 [ 104.934794][ T6625] ? __phys_addr_symbol+0x30/0x80 [ 104.939863][ T6625] ? __check_object_size+0x488/0x710 [ 104.945167][ T6625] kernfs_fop_write_iter+0x19d/0x500 [ 104.950648][ T6625] vfs_write+0x5ae/0x1150 [ 104.954990][ T6625] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 104.960810][ T6625] ? __pfx___mutex_lock+0x10/0x10 [ 104.965848][ T6625] ? __pfx_vfs_write+0x10/0x10 [ 104.970638][ T6625] ksys_write+0x12b/0x250 [ 104.975063][ T6625] ? __pfx_ksys_write+0x10/0x10 [ 104.979929][ T6625] do_syscall_64+0xcd/0x250 [ 104.984453][ T6625] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 104.990393][ T6625] RIP: 0033:0x7fa248985d29 [ 104.994825][ T6625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 105.014448][ T6625] RSP: 002b:00007fa24981e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 105.022869][ T6625] RAX: ffffffffffffffda RBX: 00007fa248b75fa0 RCX: 00007fa248985d29 [ 105.030845][ T6625] RDX: 0000000000000002 RSI: 00000000200001c0 RDI: 0000000000000003 [ 105.038824][ T6625] RBP: 00007fa24981e090 R08: 0000000000000000 R09: 0000000000000000 [ 105.046797][ T6625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 105.055032][ T6625] R13: 0000000000000000 R14: 00007fa248b75fa0 R15: 00007fffb2683238 [ 105.063021][ T6625] [ 105.439679][ T6618] netlink: 32 bytes leftover after parsing attributes in process `syz.0.149'. [ 106.140529][ T6643] FAULT_INJECTION: forcing a failure. [ 106.140529][ T6643] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 106.183085][ T6643] CPU: 1 UID: 0 PID: 6643 Comm: syz.0.157 Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 106.193747][ T6643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 106.203920][ T6643] Call Trace: [ 106.207230][ T6643] [ 106.210192][ T6643] dump_stack_lvl+0x16c/0x1f0 [ 106.214914][ T6643] should_fail_ex+0x497/0x5b0 [ 106.219640][ T6643] _copy_to_user+0x32/0xd0 [ 106.224111][ T6643] vga_arb_read+0x3ef/0x5c0 [ 106.228657][ T6643] ? __pfx_vga_arb_read+0x10/0x10 [ 106.233720][ T6643] vfs_read+0x1df/0xbe0 [ 106.237911][ T6643] ? __fget_files+0x1fc/0x3a0 [ 106.242621][ T6643] ? __pfx_lock_release+0x10/0x10 [ 106.247676][ T6643] ? __pfx_vfs_read+0x10/0x10 [ 106.252393][ T6643] ? lock_acquire+0x2f/0xb0 [ 106.256925][ T6643] ? __fget_files+0x40/0x3a0 [ 106.261556][ T6643] ? __fget_files+0x206/0x3a0 [ 106.266282][ T6643] ksys_read+0x12b/0x250 [ 106.270557][ T6643] ? __pfx_ksys_read+0x10/0x10 [ 106.275367][ T6643] do_syscall_64+0xcd/0x250 [ 106.279920][ T6643] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.285859][ T6643] RIP: 0033:0x7fa5e3185d29 [ 106.290307][ T6643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 106.310041][ T6643] RSP: 002b:00007fa5e3ef7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 106.318501][ T6643] RAX: ffffffffffffffda RBX: 00007fa5e3375fa0 RCX: 00007fa5e3185d29 [ 106.326486][ T6643] RDX: 0000000000000f34 RSI: 0000000000000000 RDI: 0000000000000003 [ 106.334462][ T6643] RBP: 00007fa5e3ef7090 R08: 0000000000000000 R09: 0000000000000000 [ 106.342439][ T6643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 106.350419][ T6643] R13: 0000000000000000 R14: 00007fa5e3375fa0 R15: 00007ffe6238b288 [ 106.358409][ T6643] [ 106.368678][ T6632] netlink: 342 bytes leftover after parsing attributes in process `syz.1.154'. [ 107.761930][ T6670] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ekx' [ 109.225936][ T6682] FAULT_INJECTION: forcing a failure. [ 109.225936][ T6682] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 109.239532][ T6682] CPU: 0 UID: 0 PID: 6682 Comm: syz.1.168 Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 109.250168][ T6682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 109.260257][ T6682] Call Trace: [ 109.263569][ T6682] [ 109.266522][ T6682] dump_stack_lvl+0x16c/0x1f0 [ 109.271241][ T6682] should_fail_ex+0x497/0x5b0 [ 109.275970][ T6682] _copy_to_user+0x32/0xd0 [ 109.280440][ T6682] simple_read_from_buffer+0xd0/0x160 [ 109.285866][ T6682] proc_fail_nth_read+0x198/0x270 [ 109.290945][ T6682] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 109.296546][ T6682] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 109.302129][ T6682] vfs_read+0x1df/0xbe0 [ 109.306315][ T6682] ? __fget_files+0x1fc/0x3a0 [ 109.311012][ T6682] ? __pfx___mutex_lock+0x10/0x10 [ 109.316056][ T6682] ? __pfx_vfs_read+0x10/0x10 [ 109.320750][ T6682] ? __fget_files+0x206/0x3a0 [ 109.325453][ T6682] ksys_read+0x12b/0x250 [ 109.329704][ T6682] ? __pfx_ksys_read+0x10/0x10 [ 109.334481][ T6682] do_syscall_64+0xcd/0x250 [ 109.339001][ T6682] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.344912][ T6682] RIP: 0033:0x7fa24898473c [ 109.349332][ T6682] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 109.368946][ T6682] RSP: 002b:00007fa24981e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 109.377363][ T6682] RAX: ffffffffffffffda RBX: 00007fa248b75fa0 RCX: 00007fa24898473c [ 109.385334][ T6682] RDX: 000000000000000f RSI: 00007fa24981e0a0 RDI: 0000000000000004 [ 109.393303][ T6682] RBP: 00007fa24981e090 R08: 0000000000000000 R09: 0000000000000000 [ 109.401273][ T6682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 109.409245][ T6682] R13: 0000000000000000 R14: 00007fa248b75fa0 R15: 00007fffb2683238 [ 109.417236][ T6682] [ 109.703931][ T6689] netlink: 330 bytes leftover after parsing attributes in process `syz.2.180'. [ 109.757835][ T6697] FAULT_INJECTION: forcing a failure. [ 109.757835][ T6697] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 109.802506][ T6697] CPU: 1 UID: 0 PID: 6697 Comm: syz.0.173 Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 109.813165][ T6697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 109.823258][ T6697] Call Trace: [ 109.826566][ T6697] [ 109.829524][ T6697] dump_stack_lvl+0x16c/0x1f0 [ 109.834249][ T6697] should_fail_ex+0x497/0x5b0 [ 109.838974][ T6697] _copy_to_user+0x32/0xd0 [ 109.843452][ T6697] simple_read_from_buffer+0xd0/0x160 [ 109.848861][ T6697] proc_fail_nth_read+0x198/0x270 [ 109.853933][ T6697] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 109.859537][ T6697] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 109.865134][ T6697] vfs_read+0x1df/0xbe0 [ 109.869331][ T6697] ? __fget_files+0x1fc/0x3a0 [ 109.874057][ T6697] ? __pfx___mutex_lock+0x10/0x10 [ 109.879129][ T6697] ? __pfx_vfs_read+0x10/0x10 [ 109.883856][ T6697] ? __fget_files+0x206/0x3a0 [ 109.888580][ T6697] ksys_read+0x12b/0x250 [ 109.892861][ T6697] ? __pfx_ksys_read+0x10/0x10 [ 109.897681][ T6697] do_syscall_64+0xcd/0x250 [ 109.902223][ T6697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.908163][ T6697] RIP: 0033:0x7fa5e318473c [ 109.912607][ T6697] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 109.932254][ T6697] RSP: 002b:00007fa5e3ef7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 109.940719][ T6697] RAX: ffffffffffffffda RBX: 00007fa5e3375fa0 RCX: 00007fa5e318473c [ 109.948730][ T6697] RDX: 000000000000000f RSI: 00007fa5e3ef70a0 RDI: 0000000000000004 [ 109.956744][ T6697] RBP: 00007fa5e3ef7090 R08: 0000000000000000 R09: 0000000000000000 [ 109.964750][ T6697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 109.972763][ T6697] R13: 0000000000000000 R14: 00007fa5e3375fa0 R15: 00007ffe6238b288 [ 109.980783][ T6697] [ 110.554300][ T6715] ima: policy update failed [ 110.571616][ T29] audit: type=1802 audit(1735461018.138:2): pid=6715 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.182" res=0 errno=0 [ 110.809301][ T6725] netlink: 4 bytes leftover after parsing attributes in process `syz.0.183'. [ 111.405543][ T6737] [U] [ 111.408460][ T6737] [U] [ 111.411189][ T6737] [U] [ 111.413912][ T6737] [U] [ 111.443706][ T6737] [U] [ 111.446474][ T6737] [U] [ 111.449197][ T6737] [U] [ 111.451955][ T6737] [U] [ 111.583906][ T6737] [U] [ 111.586661][ T6737] [U] [ 111.589379][ T6737] [U] [ 111.592095][ T6737] [U] [ 111.598409][ T6737] [U] [ 111.601154][ T6737] [U] [ 111.603874][ T6737] [U] [ 111.606590][ T6737] [U] [ 111.619060][ T6737] [U] [ 111.621908][ T6737] [U] [ 111.624632][ T6737] [U] [ 111.627350][ T6737] [U] [ 111.640776][ T6737] [U] [ 111.643531][ T6737] [U] [ 111.646294][ T6737] [U] [ 111.649031][ T6737] [U] [ 111.670189][ T6737] [U] [ 111.672952][ T6737] [U] [ 111.675675][ T6737] [U] [ 111.678395][ T6737] [U] [ 111.687357][ T6737] [U] [ 111.690109][ T6737] [U] [ 111.692817][ T6737] [U] [ 111.695548][ T6737] [U] [ 111.708098][ T6737] [U] [ 111.710856][ T6737] [U] [ 111.713583][ T6737] [U] [ 111.716301][ T6737] [U] [ 111.729043][ T6737] [U] [ 111.731819][ T6737] [U] [ 111.734568][ T6737] [U] [ 111.737309][ T6737] [U] [ 111.755219][ T6737] [U] [ 111.757975][ T6737] [U] [ 111.760709][ T6737] [U] [ 111.763431][ T6737] [U] [ 111.780247][ T6737] [U] [ 111.783006][ T6737] [U] [ 111.785727][ T6737] [U] [ 111.788448][ T6737] [U] [ 111.803319][ T6737] [U] [ 111.806079][ T6737] [U] [ 111.808797][ T6737] [U] [ 111.811516][ T6737] [U] [ 111.825014][ T6737] [U] [ 111.827772][ T6737] [U] [ 111.830489][ T6737] [U] [ 111.833212][ T6737] [U] [ 111.862591][ T6737] [U] [ 111.865348][ T6737] [U] [ 111.868066][ T6737] [U] [ 111.870778][ T6737] [U] [ 111.915837][ T6737] [U] [ 111.918597][ T6737] [U] [ 111.921336][ T6737] [U] [ 111.924062][ T6737] [U] [ 111.956072][ T6737] [U] [ 111.958833][ T6737] [U] [ 111.961565][ T6737] [U] [ 111.964289][ T6737] [U] [ 111.996985][ T6737] [U] [ 111.999748][ T6737] [U] [ 112.002464][ T6737] [U] [ 112.005181][ T6737] [U] [ 112.043889][ T6737] [U] [ 112.046656][ T6737] [U] [ 112.049377][ T6737] [U] [ 112.052104][ T6737] [U] [ 112.073007][ T6737] [U] [ 112.075780][ T6737] [U] [ 112.078504][ T6737] [U] [ 112.081230][ T6737] [U] [ 112.153160][ T6737] [U] [ 112.155924][ T6737] [U] [ 112.158655][ T6737] [U] [ 112.161373][ T6737] [U] [ 112.274777][ T6737] [U] [ 112.277553][ T6737] [U] [ 112.280271][ T6737] [U] [ 112.282990][ T6737] [U] [ 112.350584][ T6737] [U] [ 112.350651][ T6737] [U] [ 112.350691][ T6737] [U] [ 112.350730][ T6737] [U] [ 112.350915][ T6737] [U] [ 112.350952][ T6737] [U] [ 112.350990][ T6737] [U] [ 112.351029][ T6737] [U] [ 112.351307][ T6737] [U] [ 112.351347][ T6737] [U] [ 112.351387][ T6737] [U] [ 112.351426][ T6737] [U] [ 112.351622][ T6737] [U] [ 112.351662][ T6737] [U] [ 112.351701][ T6737] [U] [ 112.351740][ T6737] [U] [ 112.352015][ T6737] [U] [ 112.352055][ T6737] [U] [ 112.352094][ T6737] [U] [ 112.352133][ T6737] [U] [ 112.352323][ T6737] [U] [ 112.352361][ T6737] [U] [ 112.352400][ T6737] [U] [ 112.352439][ T6737] [U] [ 112.352723][ T6737] [U] [ 112.352763][ T6737] [U] [ 112.352798][ T6737] [U] [ 112.352830][ T6737] [U] [ 112.366907][ T6737] [U] [ 112.366954][ T6737] [U] [ 112.366994][ T6737] [U] [ 112.367033][ T6737] [U] [ 112.367140][ T6737] [U] [ 112.420867][ T6749] netlink: 300 bytes leftover after parsing attributes in process `syz.1.192'. [ 112.948536][ T6758] Invalid ELF header magic: != ELF [ 113.514117][ T6758] netlink: 28 bytes leftover after parsing attributes in process `syz.0.194'. [ 113.846697][ T6758] geneve1: entered allmulticast mode [ 114.824162][ T6806] syz.0.207 uses obsolete (PF_INET,SOCK_PACKET) unting resumed [ 117.930183][ T6908] ima: policy update failed [ 117.950460][ T29] audit: type=1802 audit(1735461025.518:3): pid=6908 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.233" res=0 errno=0 [ 118.355100][ T6925] netlink: 338 bytes leftover after parsing attributes in process `syz.1.239'. [ 118.509985][ T6931] netlink: 2 bytes leftover after parsing attributes in process `syz.1.240'. [ 118.890371][ T6944] KVM: debugfs: duplicate directory 6944-3 [ 118.915249][ T6945] RDS: rds_bind could not find a transport for ::ffff:172.30.0.1, load rds_tcp or rds_rdma? [ 119.023581][ T6961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.247'. [ 119.156495][ T6965] netlink: 8 bytes leftover after parsing attributes in process `syz.2.249'. [ 119.223367][ T6965] netlink: 14 bytes leftover after parsing attributes in process `syz.2.249'. [ 119.783094][ T6977] netlink: 8 bytes leftover after parsing attributes in process `syz.1.253'. [ 120.153298][ T6986] process 'syz.2.255' launched ':,' with NULL argv: empty string added [ 121.311810][ T7007] netlink: 330 bytes leftover after parsing attributes in process `syz.3.258'. [ 122.116143][ T7022] netlink: 28 bytes leftover after parsing attributes in process `syz.1.262'. [ 122.521734][ T7038] netlink: 28 bytes leftover after parsing attributes in process `syz.0.266'. [ 122.584528][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 126.237036][ T7082] : entered promiscuous mode [ 126.432409][ T7084] Process accounting resumed [ 133.004888][ T7189] netlink: 8 bytes leftover after parsing attributes in process `syz.0.304'. [ 133.153220][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.160657][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.485279][ T7196] tipc: Can't bind to reserved service type 1 [ 135.429944][ T7246] netlink: 28 bytes leftover after parsing attributes in process `syz.0.317'. [ 135.440629][ T7246] veth1_macvtap: left promiscuous mode syzkaller syzkaller login: [ 140.684339][ T7362] netlink: 8 bytes leftover after parsing attributes in process `syz.2.349'. [ 143.803286][ T7439] netlink: 28 bytes leftover after parsing attributes in process `syz.1.369'. [ 144.616865][ T7468] netlink: 16 bytes leftover after parsing attributes in process `syz.0.377'. [ 144.791346][ T7444] kexec: Could not allocate control_code_buffer [ 145.201706][ T7491] netlink: 8 bytes leftover after parsing attributes in process `syz.0.383'. [ 146.122903][ T7524] can0: slcan on pty191. [ 146.824393][ T7519] can0 (unregistered): slcan off pty191. [ 146.898716][ T7531] Invalid ELF header len 3 [ 147.536572][ T7571] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 147.579127][ T7571] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 147.650191][ T7571] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 147.675165][ T7581] lo: entered allmulticast mode [ 147.688077][ T7571] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 147.723218][ T7571] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 147.740327][ T7571] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 147.760719][ T7571] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 147.774224][ T7571] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 147.795540][ T7571] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 147.845205][ T7571] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 147.864566][ T7571] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 147.893272][ T7571] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 147.953999][ T7575] lo: left allmulticast mode [ 149.093456][ T7612] [U] fȏ9H߰O(BhLg*)J%6 [ 149.112915][ T7612] [U] L [ 149.543592][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 149.754350][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 149.783593][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout [ 149.863139][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 151.623201][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 151.710175][ T7653] scsi_dev_info_list_add_str: bad dev info string '2dFiX<&' '' '' [ 151.783191][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 151.866164][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout [ 151.942968][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 153.042659][ T7683] netlink: 4 bytes leftover after parsing attributes in process `syz.2.427'. [ 153.077366][ T7683] netlink: 4 bytes leftover after parsing attributes in process `syz.2.427'. [ 153.703513][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 153.863225][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 153.946557][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout [ 154.022903][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 157.560475][ T7747] raw_sendmsg: syz.2.444 forgot to set AF_INET. Fix it! [ 159.278381][ T7788] vivid-007: ================= START STATUS ================= [ 159.353996][ T7788] vivid-007: Generate PTS: true [ 159.359253][ T7788] vivid-007: Generate SCR: true [ 159.440405][ T7788] tpg source WxH: 640x360 (Y'CbCr) [ 159.446420][ T7788] tpg field: 1 [ 159.449833][ T7788] tpg crop: 640x360@0x0 [ 159.454554][ T7788] tpg compose: 640x360@0x0 [ 159.459177][ T7788] tpg colorspace: 8 [ 159.463473][ T7788] tpg transfer function: 0/0 [ 159.468133][ T7788] tpg Y'CbCr encoding: 0/0 [ 159.502982][ T7788] tpg quantization: 0/0 [ 159.545322][ T7788] tpg RGB range: 0/2 [ 159.621442][ T7788] vivid-007: ================== END STATUS ================== [ 162.512934][ T29] audit: type=1800 audit(1735461070.058:4): pid=7808 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.461" name="lu_gp_id" dev="configfs" ino=16777 res=0 errno=0 [ 165.215139][ T7900] ip6_vti0: entered allmulticast mode [ 166.111371][ T29] audit: type=1800 audit(1735461073.678:5): pid=7931 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.487" name="dbroot" dev="configfs" ino=16985 res=0 errno=0 [ 166.683985][ T7940] sctp: [Deprecated]: syz.1.490 (pid 7940) Use of struct sctp_assoc_value in delayed_ack socket option. [ 166.683985][ T7940] Use struct sctp_sack_info instead [ 168.131157][ T29] audit: type=1800 audit(1735461075.698:6): pid=7979 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.499" name="dbroot" dev="configfs" ino=17108 res=0 errno=0 [ 168.814541][ T7990] vivid-013: ================= START STATUS ================= [ 168.822244][ T7990] vivid-013: Generate PTS: true [ 168.841834][ T7990] vivid-013: Generate SCR: true [ 168.851962][ T7990] tpg source WxH: 640x360 (Y'CbCr) [ 168.862090][ T7990] tpg field: 1 [ 168.871605][ T7990] tpg crop: 640x360@0x0 [ 168.884273][ T7990] tpg compose: 640x360@0x0 [ 168.888749][ T7990] tpg colorspace: 8 [ 168.892577][ T7990] tpg transfer function: 0/0 [ 168.919433][ T7990] tpg Y'CbCr encoding: 0/0 [ 168.928068][ T7990] tpg quantization: 0/0 [ 168.932276][ T7990] tpg RGB range: 0/2 [ 168.962963][ T7990] vivid-013: ================== END STATUS ================== [ 169.912937][ T8001] sctp: [Deprecated]: syz.3.503 (pid 8001) Use of struct sctp_assoc_value in delayed_ack socket option. [ 169.912937][ T8001] Use struct sctp_sack_info instead [ 169.954745][ T8006] erspan0: entered allmulticast mode [ 170.501124][ T8022] FAULT_INJECTION: forcing a failure. [ 170.501124][ T8022] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 170.550470][ T8022] CPU: 0 UID: 0 PID: 8022 Comm: syz.1.507 Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 170.561131][ T8022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 170.571219][ T8022] Call Trace: [ 170.574527][ T8022] [ 170.577487][ T8022] dump_stack_lvl+0x16c/0x1f0 [ 170.582218][ T8022] should_fail_ex+0x497/0x5b0 [ 170.586942][ T8022] _copy_from_user+0x2e/0xd0 [ 170.591576][ T8022] core_sys_select+0x306/0xa10 [ 170.596384][ T8022] ? __pfx_core_sys_select+0x10/0x10 [ 170.601713][ T8022] ? find_held_lock+0x2d/0x110 [ 170.606544][ T8022] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 170.612572][ T8022] kern_select+0x15e/0x1e0 [ 170.617029][ T8022] ? __pfx_kern_select+0x10/0x10 [ 170.622020][ T8022] ? __pfx_ksys_write+0x10/0x10 [ 170.626933][ T8022] __x64_sys_select+0xbd/0x160 [ 170.631741][ T8022] ? do_syscall_64+0x91/0x250 [ 170.636455][ T8022] ? lockdep_hardirqs_on+0x7c/0x110 [ 170.641688][ T8022] do_syscall_64+0xcd/0x250 [ 170.646234][ T8022] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.652166][ T8022] RIP: 0033:0x7fa248985d29 [ 170.656611][ T8022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.676252][ T8022] RSP: 002b:00007fa24981e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 170.684708][ T8022] RAX: ffffffffffffffda RBX: 00007fa248b75fa0 RCX: 00007fa248985d29 [ 170.692711][ T8022] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 000000000000000a [ 170.700712][ T8022] RBP: 00007fa24981e090 R08: 0000000000000000 R09: 0000000000000000 [ 170.708718][ T8022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 170.716721][ T8022] R13: 0000000000000000 R14: 00007fa248b75fa0 R15: 00007fffb2683238 [ 170.724737][ T8022] [ 172.885131][ T8072] FAULT_INJECTION: forcing a failure. [ 172.885131][ T8072] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 172.962940][ T8072] CPU: 0 UID: 0 PID: 8072 Comm: syz.3.522 Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 172.973605][ T8072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 172.983778][ T8072] Call Trace: [ 172.987073][ T8072] [ 172.990023][ T8072] dump_stack_lvl+0x16c/0x1f0 [ 172.994749][ T8072] should_fail_ex+0x497/0x5b0 [ 172.999466][ T8072] core_sys_select+0x886/0xa10 [ 173.004269][ T8072] ? __pfx_core_sys_select+0x10/0x10 [ 173.009596][ T8072] ? find_held_lock+0x2d/0x110 [ 173.014422][ T8072] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 173.020449][ T8072] kern_select+0x15e/0x1e0 [ 173.025017][ T8072] ? __pfx_kern_select+0x10/0x10 [ 173.029994][ T8072] ? __pfx_ksys_write+0x10/0x10 [ 173.034886][ T8072] __x64_sys_select+0xbd/0x160 [ 173.039696][ T8072] ? do_syscall_64+0x91/0x250 [ 173.044412][ T8072] ? lockdep_hardirqs_on+0x7c/0x110 [ 173.049645][ T8072] do_syscall_64+0xcd/0x250 [ 173.054202][ T8072] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.060136][ T8072] RIP: 0033:0x7fefeb585d29 [ 173.064578][ T8072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 173.084220][ T8072] RSP: 002b:00007fefec320038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 173.092669][ T8072] RAX: ffffffffffffffda RBX: 00007fefeb775fa0 RCX: 00007fefeb585d29 [ 173.100678][ T8072] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 000000000000000a [ 173.108686][ T8072] RBP: 00007fefec320090 R08: 0000000000000000 R09: 0000000000000000 [ 173.116689][ T8072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 173.124699][ T8072] R13: 0000000000000000 R14: 00007fefeb775fa0 R15: 00007ffce9969c48 [ 173.132722][ T8072] [ 174.173488][ T8090] netlink: 'syz.2.527': attribute type 21 has an invalid length. [ 174.228449][ T8090] netlink: 334 bytes leftover after parsing attributes in process `syz.2.527'. [ 174.788434][ T8101] netlink: 8 bytes leftover after parsing attributes in process `syz.1.531'. [ 175.366903][ T8119] FAULT_INJECTION: forcing a failure. [ 175.366903][ T8119] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 175.412866][ T8119] CPU: 1 UID: 0 PID: 8119 Comm: syz.1.534 Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 175.423523][ T8119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 175.433613][ T8119] Call Trace: [ 175.436911][ T8119] [ 175.439863][ T8119] dump_stack_lvl+0x16c/0x1f0 [ 175.444578][ T8119] should_fail_ex+0x497/0x5b0 [ 175.449299][ T8119] _copy_to_user+0x32/0xd0 [ 175.453772][ T8119] simple_read_from_buffer+0xd0/0x160 [ 175.459184][ T8119] proc_fail_nth_read+0x198/0x270 [ 175.464259][ T8119] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 175.469875][ T8119] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 175.475481][ T8119] vfs_read+0x1df/0xbe0 [ 175.479673][ T8119] ? __fget_files+0x1fc/0x3a0 [ 175.484398][ T8119] ? __pfx___mutex_lock+0x10/0x10 [ 175.489462][ T8119] ? __pfx_vfs_read+0x10/0x10 [ 175.494186][ T8119] ? __fget_files+0x206/0x3a0 [ 175.498912][ T8119] ksys_read+0x12b/0x250 [ 175.503196][ T8119] ? __pfx_ksys_read+0x10/0x10 [ 175.508010][ T8119] do_syscall_64+0xcd/0x250 [ 175.512557][ T8119] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.518487][ T8119] RIP: 0033:0x7fa24898473c [ 175.522928][ T8119] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 175.542568][ T8119] RSP: 002b:00007fa24981e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 175.551018][ T8119] RAX: ffffffffffffffda RBX: 00007fa248b75fa0 RCX: 00007fa24898473c [ 175.559040][ T8119] RDX: 000000000000000f RSI: 00007fa24981e0a0 RDI: 0000000000000004 [ 175.567045][ T8119] RBP: 00007fa24981e090 R08: 0000000000000000 R09: 0000000000000000 [ 175.575043][ T8119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 175.583049][ T8119] R13: 0000000000000000 R14: 00007fa248b75fa0 R15: 00007fffb2683238 [ 175.591067][ T8119] [ 177.643541][ T8161] block nbd0: not configured, cannot reconfigure [ 178.698173][ T8182] misc userio: The device must be registered before sending interrupts [ 179.428784][ T8196] Process accounting resumed [ 180.310518][ T8227] mkiss: ax0: crc mode is auto. [ 180.772673][ T8235] netlink: 28 bytes leftover after parsing attributes in process `syz.3.560'. [ 180.849283][ T8235] bond0: (slave bond_slave_0): Releasing backup interface [ 180.913023][ T8238] netlink: 20 bytes leftover after parsing attributes in process `syz.3.560'. [ 182.961240][ T8268] HfR: entered promiscuous mode [ 183.102532][ T8268] netlink: 12 bytes leftover after parsing attributes in process `syz.0.567'. [ 183.137273][ T8268] HfR: left promiscuous mode [ 183.695566][ T8285] netlink: 28 bytes leftover after parsing attributes in process `syz.1.572'. [ 183.784365][ T8285] bond0: (slave bond_slave_0): Releasing backup interface [ 183.846421][ T8293] netlink: 20 bytes leftover after parsing attributes in process `syz.1.572'. [ 184.278185][ T8298] netlink: 338 bytes leftover after parsing attributes in process `syz.1.575'. [ 184.302405][ T8298] netlink: 338 bytes leftover after parsing attributes in process `syz.1.575'. [ 184.874492][ T8307] Process accounting resumed [ 186.197652][ T8317] HfR: entered promiscuous mode [ 186.327725][ T8321] netlink: 12 bytes leftover after parsing attributes in process `syz.3.582'. [ 186.378571][ T8321] HfR: left promiscuous mode [ 187.141436][ T8327] delete_channel: no stack [ 187.469099][ T8352] Process accounting resumed [ 187.988980][ T8386] Invalid ELF header magic: != ELF [ 188.854869][ T8405] HfR: entered promiscuous mode [ 188.963493][ T8408] netlink: 12 bytes leftover after parsing attributes in process `syz.2.599'. [ 189.054470][ T8408] HfR: left promiscuous mode [ 189.771133][ T8423] random: crng reseeded on system resumption [ 190.054398][ T8434] netlink: 326 bytes leftover after parsing attributes in process `syz.0.606'. [ 190.231089][ T8437] Invalid ELF header magic: != ELF [ 190.597664][ T8443] netlink: 28 bytes leftover after parsing attributes in process `syz.3.607'. [ 190.719891][ T8443] geneve1: entered allmulticast mode [ 191.009942][ T8451] can: request_module (can-proto-0) failed. [ 193.949689][ T8526] kexec: Could not allocate control_code_buffer [ 194.596842][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.604502][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.674653][ T8544] bridge0: port 3(veth1_to_hsr) entered blocking state [ 194.703662][ T8544] bridge0: port 3(veth1_to_hsr) entered disabled state [ 194.711059][ T8544] veth1_to_hsr: entered allmulticast mode [ 194.734395][ T8544] veth1_to_hsr: entered promiscuous mode [ 194.751097][ T8544] bridge0: port 3(veth1_to_hsr) entered blocking state [ 194.758476][ T8544] bridge0: port 3(veth1_to_hsr) entered forwarding state [ 194.770984][ T8548] netlink: 40 bytes leftover after parsing attributes in process `syz.2.629'. [ 194.821384][ T8549] netlink: 338 bytes leftover after parsing attributes in process `syz.2.629'. [ 194.875371][ T8550] netlink: 338 bytes leftover after parsing attributes in process `syz.2.629'. [ 195.028220][ T8555] Invalid ELF header magic: != ELF [ 196.705922][ T8599] netlink: 342 bytes leftover after parsing attributes in process `syz.2.639'. [ 197.723673][ T8622] futex_wake_op: syz.0.645 tries to shift op by 64; fix this program [ 198.105884][ T8637] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 200.488989][ T8680] futex_wake_op: syz.1.659 tries to shift op by 64; fix this program [ 202.596880][ T8709] netlink: 330 bytes leftover after parsing attributes in process `syz.3.667'. [ 202.743334][ T8716] netlink: 146 bytes leftover after parsing attributes in process `syz.1.668'. [ 203.123306][ T8723] netlink: 28 bytes leftover after parsing attributes in process `syz.0.664'. [ 203.415564][ T8723] bond0: (slave bond_slave_1): Releasing backup interface [ 206.659448][ T8752] futex_wake_op: syz.3.673 tries to shift op by 64; fix this program [ 207.310517][ T8764] devtmpfs: Unknown parameter ':' [ 207.838742][ T8766] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock [ 208.568749][ T8789] cgroup: fork rejected by pids controller in /syz1 [ 209.210998][ T8858] netlink: 28 bytes leftover after parsing attributes in process `syz.3.689'. [ 210.605604][ T8882] netlink: 4 bytes leftover after parsing attributes in process `syz.2.694'. [ 211.683726][ T29] audit: type=1804 audit(8277292058.410:7): pid=8903 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.700" name="#)-\&[}" dev="mqueue" ino=22377 res=1 errno=0 [ 211.730397][ T8903] kernel read not supported for file /#)-\&[} (pid: 8903 comm: syz.2.700) [ 211.758416][ T29] audit: type=1800 audit(8277292058.480:8): pid=8903 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.700" name="#)-\&[}" dev="mqueue" ino=22377 res=0 errno=0 [ 211.854602][ T8909] block mtdblock0: the capability attribute has been deprecated. [ 212.826755][ T29] audit: type=1800 audit(8277292059.560:9): pid=8927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.699" name="SYSV00000014" dev="hugetlbfs" ino=0 res=0 errno=0 [ 214.652024][ T8962] syz.2.714 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 214.823505][ T8962] can: request_module (can-proto-0) failed. [ 215.428061][ T8961] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 215.443542][ T8961] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 215.451523][ T8961] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 215.460259][ T8961] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 216.824105][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 217.462881][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout [ 217.468957][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 217.477761][ T5829] Bluetooth: hci3: command 0x0c1a tx timeout [ 218.307183][ T8987] Process accounting paused [ 218.363214][ T9007] bridge0: port 3(syz_tun) entered blocking state [ 218.370003][ T9007] bridge0: port 3(syz_tun) entered disabled state [ 218.394397][ T9007] syz_tun: entered allmulticast mode [ 218.400820][ T9007] syz_tun: entered promiscuous mode [ 218.411497][ T9007] bridge0: port 3(syz_tun) entered blocking state [ 218.418088][ T9007] bridge0: port 3(syz_tun) entered forwarding state [ 218.431984][ T9010] netlink: 8 bytes leftover after parsing attributes in process `syz.3.728'. [ 218.507312][ T9014] netlink: 334 bytes leftover after parsing attributes in process `syz.3.728'. [ 218.560329][ T9013] netlink: 334 bytes leftover after parsing attributes in process `syz.3.728'. [ 218.595469][ T9017] netlink: 334 bytes leftover after parsing attributes in process `syz.3.728'. [ 219.271101][ T9036] netlink: 342 bytes leftover after parsing attributes in process `syz.3.731'. [ 219.313560][ T9036] netlink: 342 bytes leftover after parsing attributes in process `syz.3.731'. [ 219.765098][ T9041] capability: warning: `syz.2.732' uses 32-bit capabilities (legacy support in use) [ 219.841361][ T9049] netlink: 330 bytes leftover after parsing attributes in process `syz.3.735'. [ 219.914328][ T9049] : renamed from hsr0 (while UP) [ 225.505160][ T29] audit: type=1800 audit(8277292072.230:10): pid=9104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.748" name="version" dev="configfs" ino=23769 res=0 errno=0 [ 226.756224][ T9118] netlink: 28 bytes leftover after parsing attributes in process `syz.0.753'. [ 237.108918][ T9198] syz.1.766 (9198) used greatest stack depth: 21456 bytes left [ 237.186152][ T9201] openvswitch: netlink: IP tunnel dst address not specified [ 237.229034][ T9201] openvswitch: netlink: IP tunnel dst address not specified [ 240.381752][ T9217] syz.2.774 (9217) used greatest stack depth: 19456 bytes left [ 245.973862][ T9260] openvswitch: netlink: IP tunnel dst address not specified [ 245.995719][ T9260] openvswitch: netlink: IP tunnel dst address not specified [ 246.320554][ T9264] netlink: 28 bytes leftover after parsing attributes in process `syz.3.796'. [ 246.501000][ T9275] blktrace: Concurrent blktraces are not allowed on sg0 [ 248.309177][ T9290] Process accounting resumed [ 248.925766][ T9308] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 248.973309][ T9311] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 249.406777][ T9308] Process accounting resumed [ 250.267492][ T9323] netlink: 28 bytes leftover after parsing attributes in process `syz.2.801'. [ 251.581448][ T9336] netlink: 28 bytes leftover after parsing attributes in process `syz.3.805'. [ 254.325755][ T9323] vcan0: entered promiscuous mode [ 255.812325][ T9372] netlink: 28 bytes leftover after parsing attributes in process `syz.2.816'. [ 256.025453][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.031920][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 257.383975][ T9398] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137 [ 257.390515][ T9402] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 257.414031][ T9398] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138 [ 257.616919][ T9404] netlink: 8 bytes leftover after parsing attributes in process `syz.3.822'. [ 257.696116][ T9411] FAULT_INJECTION: forcing a failure. [ 257.696116][ T9411] name failslab, interval 1, probability 0, space 0, times 0 [ 257.724527][ T5840] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 257.737336][ T9411] CPU: 1 UID: 0 PID: 9411 Comm: syz.0.825 Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 257.747982][ T9411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 257.758074][ T9411] Call Trace: [ 257.761373][ T9411] [ 257.764323][ T9411] dump_stack_lvl+0x16c/0x1f0 [ 257.769041][ T9411] should_fail_ex+0x497/0x5b0 [ 257.773757][ T9411] ? fs_reclaim_acquire+0xae/0x150 [ 257.778903][ T9411] should_failslab+0xc2/0x120 [ 257.783619][ T9411] __kmalloc_noprof+0xce/0x4f0 [ 257.788428][ T9411] ? rcu_is_watching+0x12/0xc0 [ 257.793224][ T9411] ? kernfs_fop_write_iter+0x223/0x500 [ 257.798728][ T9411] kernfs_fop_write_iter+0x223/0x500 [ 257.804062][ T9411] vfs_write+0x5ae/0x1150 [ 257.808423][ T9411] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 257.814260][ T9411] ? __pfx___mutex_lock+0x10/0x10 [ 257.819337][ T9411] ? __pfx_vfs_write+0x10/0x10 [ 257.824153][ T9411] ksys_write+0x12b/0x250 [ 257.828509][ T9411] ? __pfx_ksys_write+0x10/0x10 [ 257.833399][ T9411] do_syscall_64+0xcd/0x250 [ 257.837937][ T9411] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.843860][ T9411] RIP: 0033:0x7fa5e3185d29 [ 257.848299][ T9411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 257.867936][ T9411] RSP: 002b:00007fa5e3ef7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 257.876386][ T9411] RAX: ffffffffffffffda RBX: 00007fa5e3375fa0 RCX: 00007fa5e3185d29 [ 257.884389][ T9411] RDX: 0000000000000002 RSI: 00000000200001c0 RDI: 0000000000000003 [ 257.892394][ T9411] RBP: 00007fa5e3ef7090 R08: 0000000000000000 R09: 0000000000000000 [ 257.900395][ T9411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 257.908401][ T9411] R13: 0000000000000000 R14: 00007fa5e3375fa0 R15: 00007ffe6238b288 [ 257.916423][ T9411] [ 257.922560][ T5840] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 257.931574][ T9404] netlink: 20 bytes leftover after parsing attributes in process `syz.3.822'. [ 257.943108][ T5840] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 257.984720][ T5840] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 258.013049][ T5840] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 258.025140][ T5840] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 258.444961][ T8796] syz.1.685 (8796) used greatest stack depth: 19000 bytes left [ 258.490157][ T9406] chnl_net:caif_netlink_parms(): no params data found [ 258.808457][ T9406] bridge0: port 1(bridge_slave_0) entered blocking state [ 258.846613][ T9406] bridge0: port 1(bridge_slave_0) entered disabled state [ 258.863065][ T9406] bridge_slave_0: entered allmulticast mode [ 258.899781][ T9406] bridge_slave_0: entered promiscuous mode [ 258.920943][ T9406] bridge0: port 2(bridge_slave_1) entered blocking state [ 258.943007][ T9406] bridge0: port 2(bridge_slave_1) entered disabled state [ 258.956713][ T9406] bridge_slave_1: entered allmulticast mode [ 258.987859][ T9406] bridge_slave_1: entered promiscuous mode [ 259.139297][ T9406] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 259.185348][ T9406] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 259.843361][ T9406] team0: Port device team_slave_0 added [ 259.874975][ T9406] team0: Port device team_slave_1 added [ 260.103885][ T5829] Bluetooth: hci4: command tx timeout [ 260.564926][ T9406] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 260.582388][ T9406] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 260.608557][ C0] vkms_vblank_simulate: vblank timer overrun [ 260.652475][ T9406] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 260.684992][ T9406] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 260.692017][ T9406] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 260.778982][ T9406] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 261.725222][ T9447] Invalid ELF header magic: != ELF [ 261.819772][ T9406] hsr_slave_0: entered promiscuous mode [ 261.983116][ T9406] hsr_slave_1: entered promiscuous mode [ 262.141042][ T9406] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 262.174021][ T9406] Cannot create hsr debugfs directory [ 262.184941][ T5829] Bluetooth: hci4: command tx timeout [ 264.263974][ T5829] Bluetooth: hci4: command tx timeout [ 264.552263][ T9478] rnbd_client L202: map_device: Unknown parameter or missing value '' [ 264.578408][ T9478] rnbd_client L202: map_device: Unknown parameter or missing value '/sys/devices/virtual/rnbd-client/ctl/map_device' [ 264.842355][ T8807] syz.1.685 (8807) used greatest stack depth: 18864 bytes left [ 265.550894][ T8819] syz.1.685 (8819) used greatest stack depth: 18816 bytes left [ 265.579463][ T9406] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 266.045489][ T9406] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 266.233043][ T9495] ------------[ cut here ]------------ [ 266.238757][ T9495] WARNING: CPU: 1 PID: 9495 at mm/page_alloc.c:4729 __alloc_pages_noprof+0xeff/0x25b0 [ 266.248599][ T9495] Modules linked in: [ 266.252530][ T9495] CPU: 1 UID: 0 PID: 9495 Comm: syz.0.849 Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 266.263591][ T9495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 266.273788][ T9495] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 266.280163][ T9495] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 04 6e 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9 [ 266.300168][ T9495] RSP: 0018:ffffc900058e78e8 EFLAGS: 00010246 [ 266.302049][ T8812] syz.1.685 (8812) used greatest stack depth: 18224 bytes left [ 266.306497][ T9495] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 266.321966][ T9495] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 266.330059][ T9495] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000100 [ 266.338254][ T9495] R10: 0000000000000100 R11: ffffffff81fb8d74 R12: 0000000000000013 [ 266.346639][ T9495] R13: 0000000000040cc0 R14: 1ffff92000b1cf31 R15: 00000000ffffffff [ 266.349656][ T5829] Bluetooth: hci4: command tx timeout [ 266.354671][ T9495] FS: 00007fa5e3ef76c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 266.354700][ T9495] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 266.354719][ T9495] CR2: 0000000020007000 CR3: 0000000063180000 CR4: 00000000003526f0 [ 266.354735][ T9495] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 266.354750][ T9495] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 266.354767][ T9495] Call Trace: [ 266.354776][ T9495] [ 266.354787][ T9495] ? __warn+0xea/0x3c0 [ 266.411192][ T9495] ? __alloc_pages_noprof+0xeff/0x25b0 [ 266.416760][ T9495] ? report_bug+0x3c0/0x580 [ 266.421309][ T9495] ? handle_bug+0x54/0xa0 [ 266.425757][ T9495] ? exc_invalid_op+0x17/0x50 [ 266.430474][ T9495] ? asm_exc_invalid_op+0x1a/0x20 [ 266.435640][ T9495] ? kasan_save_track+0x14/0x30 [ 266.440548][ T9495] ? __alloc_pages_noprof+0xeff/0x25b0 [ 266.446096][ T9495] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 266.451943][ T9495] ? lockdep_hardirqs_on+0x7c/0x110 [ 266.457389][ T9495] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 266.463578][ T9495] ? stack_depot_save_flags+0x36d/0x9e0 [ 266.469196][ T9495] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 266.475005][ T9495] ? kasan_save_stack+0x33/0x60 [ 266.479912][ T9495] ? __kasan_kmalloc+0xaa/0xb0 [ 266.484998][ T9495] ? safesetid_gid_file_write+0x87/0xc0 [ 266.490595][ T9495] ? vfs_write+0x24c/0x1150 [ 266.495492][ T9495] ? ksys_write+0x12b/0x250 [ 266.500047][ T9495] ? do_syscall_64+0xcd/0x250 [ 266.504859][ T9495] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.511007][ T9495] ___kmalloc_large_node+0x84/0x1b0 [ 266.516294][ T9495] __kmalloc_large_node_noprof+0x1c/0x70 [ 266.521976][ T9495] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 266.528667][ T9495] ? handle_policy_update+0x188/0x11e0 [ 266.534243][ T9495] memdup_user_nul+0x2b/0x110 [ 266.538974][ T9495] handle_policy_update+0x188/0x11e0 [ 266.544399][ T9495] ? __pfx_handle_policy_update+0x10/0x10 [ 266.550163][ T9495] ? apparmor_capable+0x114/0x1d0 [ 266.555310][ T9495] ? bpf_lsm_capable+0x9/0x10 [ 266.560029][ T9495] ? security_capable+0x7e/0x260 [ 266.565113][ T9495] safesetid_gid_file_write+0x87/0xc0 [ 266.570576][ T9495] ? __pfx_safesetid_gid_file_write+0x10/0x10 [ 266.576718][ T9495] vfs_write+0x24c/0x1150 [ 266.581086][ T9495] ? __fget_files+0x1fc/0x3a0 [ 266.585867][ T9495] ? __pfx___mutex_lock+0x10/0x10 [ 266.591183][ T9495] ? __pfx_vfs_write+0x10/0x10 [ 266.596303][ T9495] ? __fget_files+0x206/0x3a0 [ 266.601052][ T9495] ksys_write+0x12b/0x250 [ 266.605505][ T9495] ? __pfx_ksys_write+0x10/0x10 [ 266.610414][ T9495] do_syscall_64+0xcd/0x250 [ 266.615010][ T9495] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.620948][ T9495] RIP: 0033:0x7fa5e3185d29 [ 266.625447][ T9495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 266.645186][ T9495] RSP: 002b:00007fa5e3ef7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 266.653706][ T9495] RAX: ffffffffffffffda RBX: 00007fa5e3375fa0 RCX: 00007fa5e3185d29 [ 266.661724][ T9495] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 266.669821][ T9495] RBP: 00007fa5e3201b08 R08: 0000000000000000 R09: 0000000000000000 [ 266.677872][ T9495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.685944][ T9495] R13: 0000000000000000 R14: 00007fa5e3375fa0 R15: 00007ffe6238b288 [ 266.694288][ T9495] [ 266.697336][ T9495] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 266.704641][ T9495] CPU: 1 UID: 0 PID: 9495 Comm: syz.0.849 Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 266.715261][ T9495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 266.725320][ T9495] Call Trace: [ 266.728598][ T9495] [ 266.731532][ T9495] dump_stack_lvl+0x3d/0x1f0 [ 266.736137][ T9495] panic+0x71d/0x800 [ 266.740041][ T9495] ? __pfx_panic+0x10/0x10 [ 266.744465][ T9495] ? show_trace_log_lvl+0x29d/0x3d0 [ 266.749679][ T9495] ? check_panic_on_warn+0x1f/0xb0 [ 266.754803][ T9495] ? __alloc_pages_noprof+0xeff/0x25b0 [ 266.760268][ T9495] check_panic_on_warn+0xab/0xb0 [ 266.765217][ T9495] __warn+0xf6/0x3c0 [ 266.769291][ T9495] ? __alloc_pages_noprof+0xeff/0x25b0 [ 266.774760][ T9495] report_bug+0x3c0/0x580 [ 266.779099][ T9495] handle_bug+0x54/0xa0 [ 266.783260][ T9495] exc_invalid_op+0x17/0x50 [ 266.787773][ T9495] asm_exc_invalid_op+0x1a/0x20 [ 266.792629][ T9495] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 266.798717][ T9495] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 04 6e 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9 [ 266.818331][ T9495] RSP: 0018:ffffc900058e78e8 EFLAGS: 00010246 [ 266.824404][ T9495] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 266.832372][ T9495] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 266.840342][ T9495] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000100 [ 266.848310][ T9495] R10: 0000000000000100 R11: ffffffff81fb8d74 R12: 0000000000000013 [ 266.856281][ T9495] R13: 0000000000040cc0 R14: 1ffff92000b1cf31 R15: 00000000ffffffff [ 266.864257][ T9495] ? kasan_save_track+0x14/0x30 [ 266.869130][ T9495] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 266.874940][ T9495] ? lockdep_hardirqs_on+0x7c/0x110 [ 266.880143][ T9495] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 266.885952][ T9495] ? stack_depot_save_flags+0x36d/0x9e0 [ 266.891519][ T9495] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 266.897247][ T9495] ? kasan_save_stack+0x33/0x60 [ 266.902105][ T9495] ? __kasan_kmalloc+0xaa/0xb0 [ 266.906884][ T9495] ? safesetid_gid_file_write+0x87/0xc0 [ 266.912434][ T9495] ? vfs_write+0x24c/0x1150 [ 266.916943][ T9495] ? ksys_write+0x12b/0x250 [ 266.921449][ T9495] ? do_syscall_64+0xcd/0x250 [ 266.926132][ T9495] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.932228][ T9495] ___kmalloc_large_node+0x84/0x1b0 [ 266.937435][ T9495] __kmalloc_large_node_noprof+0x1c/0x70 [ 266.943074][ T9495] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 266.949672][ T9495] ? handle_policy_update+0x188/0x11e0 [ 266.955136][ T9495] memdup_user_nul+0x2b/0x110 [ 266.959824][ T9495] handle_policy_update+0x188/0x11e0 [ 266.965118][ T9495] ? __pfx_handle_policy_update+0x10/0x10 [ 266.970838][ T9495] ? apparmor_capable+0x114/0x1d0 [ 266.975871][ T9495] ? bpf_lsm_capable+0x9/0x10 [ 266.980553][ T9495] ? security_capable+0x7e/0x260 [ 266.985504][ T9495] safesetid_gid_file_write+0x87/0xc0 [ 266.990885][ T9495] ? __pfx_safesetid_gid_file_write+0x10/0x10 [ 266.996955][ T9495] vfs_write+0x24c/0x1150 [ 267.001294][ T9495] ? __fget_files+0x1fc/0x3a0 [ 267.005982][ T9495] ? __pfx___mutex_lock+0x10/0x10 [ 267.011016][ T9495] ? __pfx_vfs_write+0x10/0x10 [ 267.015794][ T9495] ? __fget_files+0x206/0x3a0 [ 267.020492][ T9495] ksys_write+0x12b/0x250 [ 267.024836][ T9495] ? __pfx_ksys_write+0x10/0x10 [ 267.029697][ T9495] do_syscall_64+0xcd/0x250 [ 267.034212][ T9495] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.040112][ T9495] RIP: 0033:0x7fa5e3185d29 [ 267.044526][ T9495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 267.064137][ T9495] RSP: 002b:00007fa5e3ef7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 267.072561][ T9495] RAX: ffffffffffffffda RBX: 00007fa5e3375fa0 RCX: 00007fa5e3185d29 [ 267.080532][ T9495] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 267.088502][ T9495] RBP: 00007fa5e3201b08 R08: 0000000000000000 R09: 0000000000000000 [ 267.096473][ T9495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 267.104445][ T9495] R13: 0000000000000000 R14: 00007fa5e3375fa0 R15: 00007ffe6238b288 [ 267.112429][ T9495] [ 267.115593][ T9495] Kernel Offset: disabled [ 267.119972][ T9495] Rebooting in 86400 seconds..