last executing test programs: 13.470486116s ago: executing program 3 (id=1340): mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) r0 = open(&(0x7f0000000000)='./file0\x00', 0xa61c2, 0x84) write$auto(0x3, 0x0, 0xfffffdef) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000000)=0x10000) r2 = socket(0xa, 0x1, 0x84) getsockopt$auto(r2, 0x0, 0x485, 0x0, &(0x7f0000000040)=0x3) write$auto(0x3, 0x0, 0xfffffdef) io_uring_setup$auto(0x7, &(0x7f00000001c0)={0x5, 0x6, 0x0, 0x9, 0xf, 0x10000, r0, [0x0, 0xf88, 0x5e78], {0x9, 0x8, 0x3, 0x7fffffff, 0x8, 0x3, 0x10000, 0xfffffffd, 0xc3c}, {0x6, 0x5, 0x3, 0x7f, 0x8, 0x7d17, 0x10909e00, 0x7fff80, 0x9b}}) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kallsyms\x00', 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000940), 0xffffffffffffffff) r3 = gettid() mmap$auto(0xfffefffffffffffe, 0x400008, 0xdf, 0x100000018, r1, 0x4) clone$auto(0x5c, 0x8, 0xffffffffffffffff, 0x0, 0xfffffffffffffffe) process_vm_writev$auto(r3, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x4, 0x0) r4 = gettid() process_vm_readv$auto(r4, &(0x7f0000000040)={0x0, 0x8}, 0x4, &(0x7f00000000c0)={0x0, 0x100000000000002}, 0x6, 0x0) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x8800, 0x0) r5 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/dev_snmp6/geneve0\x00', 0x100182, 0x0) ppoll$auto(&(0x7f00000000c0)={r5, 0xf7f, 0x81}, 0x10, 0x0, 0x0, 0x8) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0) read$auto_hwsim_fops_ps_(r6, &(0x7f0000000240)=""/111, 0x6f) ioctl$auto_KVM_CHECK_EXTENSION(r7, 0xae03, 0xea) getuid() r8 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip_mr_vif\x00', 0x100, 0x0) read$auto_proc_reg_file_ops_compat_inode(r8, &(0x7f0000000080)=""/169, 0xa9) 12.449513731s ago: executing program 3 (id=1342): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/exception_policy\x00', 0x40802, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) ioctl$auto(r2, 0x6, r2) write$auto_tomoyo_operations_securityfs_if(r1, &(0x7f00000001c0)="0a1b9a3ce8040000cd1aec49ec53c2efa0149258607deb6e163bb15497886d8ea5c2574c58e9867ecec3371cadb848770dc8f745b2c76eedba12b9bdbcf3401910e7733aca465c9bd40a", 0x4a) socket(0x11, 0x80003, 0x300) recvfrom$auto(0x3, &(0x7f0000000000), 0x942e, 0x20, 0x0, 0x0) r3 = socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x8) setresuid$auto(0x60, 0x1000, 0x8000) sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20044801}, 0x20004000) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) connect$auto(0x3, &(0x7f0000000000), 0x55) r4 = socket(0x10, 0x2, 0x0) r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r5, 0x300, 0x70bd2c, 0x25dfdbfd, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40608d1}, 0x4000) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='X'], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000380), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000003c0)={'pim6reg0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000400)={'veth1_virt_wifi\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000440)={'syzkaller0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000000580)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x480020}, 0xc, &(0x7f0000000540)={&(0x7f00000005c0)={0xb0, r6, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@ETHTOOL_A_PAUSE_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}]}, @ETHTOOL_A_PAUSE_HEADER={0x78, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xca}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xfffffffe}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x4000800}, 0x2) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0xa6ba, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x3}, 0x5}, 0x3, 0x0) 11.172217767s ago: executing program 3 (id=1345): socket(0x15, 0x5, 0x0) unshare$auto(0x40000080) r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) keyctl$auto(0x2000000000000017, 0x401, 0x0, 0x2, 0x3) r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_SESSION_GET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100290000001400080076657468315f746f5f7465616d00"/42], 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x107, 0x1, 0x8000000000000000, 0x0) sendmsg$auto_IEEE802154_LLSEC_LIST_KEY(0xffffffffffffffff, 0x0, 0x24000000) socket(0x11, 0xa, 0x300) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r2 = seccomp$auto(0xfffffff9, 0x0, &(0x7f0000000000)="5f1285f156785e693ba9f4d8fde5187de48669") ioctl$auto(0xffffffffffffffff, 0x100, r2) read$auto(0xffffffffffffffff, 0x0, 0x10000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/netfilter/nf_conntrack_buckets\x00', 0x101000, 0x0) bind$auto(0x3, 0x0, 0x6a) r4 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb73, 0x66a) r5 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000000c0), r2) sendmsg$auto_NFSD_CMD_POOL_MODE_SET(r3, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x40, r5, 0x10, 0x70bd28, 0x25dfdbfe, {}, [@NFSD_A_POOL_MODE_MODE={0x6, 0x1, ',\x00'}, @NFSD_A_POOL_MODE_MODE={0x6, 0x1, ']\x00'}, @NFSD_A_POOL_MODE_MODE={0x1c, 0x1, '/proc/self/smaps_rollup\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) read$auto_proc_pid_maps_operations_internal(r4, &(0x7f00000010c0)=""/4096, 0x1000) 9.430852098s ago: executing program 3 (id=1353): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) mmap$auto(0x0, 0x2020009, 0x3, 0x19d0, 0xfffffffffffffffa, 0x8000) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 32) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async, rerun: 32) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) (async) socket(0x840000000002, 0x3, 0xff) (async) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async) shutdown$auto(0x200000003, 0x2) connect$auto(0x3, &(0x7f0000000000)=@hci={0x1f, 0x1, 0x4}, 0x81) (async) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000001d40)={0x0, 0x0, &(0x7f0000001d00)={&(0x7f00000002c0)={0x14, 0x0, 0x1, 0x70bd2b, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x80000) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) (async) r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) epoll_ctl$auto(r2, 0x4, r0, &(0x7f0000000100)={0x2, 0x4}) (async) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="01002bbd7000fddbdf25040000000b002e0000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x4044820) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x9, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd) (async, rerun: 64) fcntl$auto(0xff80000000000000, 0x4, 0xfffffffffffffffc) (async, rerun: 64) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) (async, rerun: 32) clone$auto(0x440f, 0x6, &(0x7f00000000c0)=0x10001, &(0x7f0000000180)=0x9, 0x8) (async, rerun: 32) io_uring_setup$auto(0x40005, &(0x7f0000000000)={0x6, 0x1, 0x400, 0x7, 0x1005, 0x6, 0x7, [0x4, 0x2e9, 0x8], {0x0, 0x1, 0x8, 0x7, 0x5, 0x100005, 0x1, 0x0, 0x7}, {0x4, 0xfff, 0xffff7fff, 0x2, 0x8, 0x200, 0x3, 0x0, 0x3}}) (async) madvise$auto(0x108000, 0x800034, 0x9) times$auto(&(0x7f00000001c0)={0x7fffffff, 0x4, 0x9, 0x4}) (async, rerun: 64) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (rerun: 64) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) 6.702517911s ago: executing program 1 (id=1364): io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x590, 0x5, 0x10001, 0x6fb3, 0x8a, 0xfffffff7, 0xffffffffffffffff, [0x100, 0x5c, 0x7c], {0x2, 0x7, 0x3034, 0xe, 0xf, 0x5, 0x5, 0xfffffff9, 0xf08a2b6}, {0x4000, 0xfc, 0x9, 0x0, 0x0, 0xb89, 0xd5, 0x837, 0x2d6}}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:01.3/vendor\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8) mount$auto(&(0x7f0000000000)='pimreg\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd057, 0x0) mount$auto(0x0, &(0x7f0000000040)=':,\x00', 0x0, 0xaa9, 0x0) mmap$auto(0x0, 0x4000a, 0xdb, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) setitimer$auto(0x4, &(0x7f0000000000)={{0x1ff, 0x10001}, {0x200000000004, 0x6}}, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) bpf$auto(0x12, &(0x7f0000000000)=@info={0x2800, 0x1ff, 0x2}, 0xcf) r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/block/nbd3/sched/async_depth\x00', 0x0, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r0, &(0x7f00000000c0)=""/73, 0x49) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) shmctl$auto(0x0, 0x1, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x3) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd5/queue/iosched/front_merges\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)=""/189, 0xbd) timer_create$auto(0x2, 0x0, 0x0) timer_create$auto(0x3, 0x0, 0x0) timer_delete$auto(0x4) ioctl$auto(0xc8, 0x400454d9, 0x5c8d) 5.702076312s ago: executing program 3 (id=1366): sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x400c810}, 0x20000041) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000140), 0x28000, 0x0) syslog$auto(0x4, &(0x7f0000000040)='..\x00', 0x7) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000100)='ns/time\x00') getdents64$auto(r1, 0x0, 0x489) ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r0, 0x7af, 0x0) bpf$auto(0xfffff001, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x3ff, 0x7, 0x3, 0x5, 0x8, 0x28b, 0x3ff, 0x200, 0x0, 0x401, 0x3, 0x4, 0x0, 0x3ff}, 0xa3) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x2, 0x0) socket(0xa, 0x2, 0x3a) mmap$auto(0xfffffffffffffffd, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) getsockopt$auto(0x6, 0x40000000029, 0x17, 0xfffffffffffffffe, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto(0xffffffffffffffff, 0x84, 0x0, 0x0, &(0x7f00000000c0)=0x10000) writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x7e) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/thermal/cooling_device0/cur_state\x00', 0x20880, 0x0) read$auto(0x3, 0x0, 0x80) socket$nl_generic(0x10, 0x3, 0x10) 4.579949158s ago: executing program 1 (id=1369): ioperm$auto(0x2, 0x3, 0x1) clone$auto(0x1ff, 0x3, 0x0, 0xfffffffffffffffd, 0xffffffff00000000) ioperm$auto(0x2, 0x8000, 0x2b325536) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) r0 = socket(0x11, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8955, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x8, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x7, 0x9}, 0x4}, 0x7, 0x2) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0xffb8, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) write$auto(0x3, 0x0, 0xffd8) 3.728446111s ago: executing program 1 (id=1372): r0 = openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000000), 0x288002, 0x0) read$auto(r0, 0x0, 0x647f) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r1 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) get_mempolicy$auto(&(0x7f0000000000)=0x9, &(0x7f00000000c0)=0x80000001, 0xfffffffffffffff5, 0x5, 0x8) r2 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg$auto(r2, &(0x7f0000000300)={{0x0, 0x6, &(0x7f0000000280)={0x0, 0x40009}, 0xc, &(0x7f00000002c0), 0x4, 0x8}, 0x5a55}, 0xd, 0x3, 0x0) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r1) sendmsg$auto_NL80211_CMD_DEL_PMKSA(r2, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x90, r3, 0x4, 0x70bd2d, 0x25dfdbfe, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_BSSID={0x2e, 0xf5, "1b2864f243c6088961d57856dd1e0e6752e2fdb8550e2be2d6577e08bce7a11b0b21e0500f10cf29cde4"}, @NL80211_ATTR_SAE_PASSWORD={0x30, 0x115, "77744d367b894c80aee6312e3fc45d7d21c60a5e85a2ecc682898b5c4679d10bbcf5c04ed19a710742eb0aec"}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5, 0x113, 0x5}, @NL80211_ATTR_SSID={0x4}, @NL80211_ATTR_MLO_SUPPORT={0x4}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x5}]}, 0x90}, 0x1, 0x0, 0x0, 0x40084}, 0x8000) connect$auto(0x3, &(0x7f0000000080)=@isdn={0x22, 0x8d, 0x80, 0x6, 0xfa}, 0x54) mmap$auto(0x0, 0x8, 0x1, 0x9b72, 0x2, 0x3) setsockopt$auto(0x3, 0x10000000084, 0xa, 0x0, 0x20) 3.364082315s ago: executing program 0 (id=1373): mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = open(0x0, 0x22240, 0x155) r2 = socket(0x2, 0x80802, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'pim6reg1\x00', 0x0}) connect$auto(0x3, &(0x7f0000000140), 0x55) sendmmsg$auto(0x3, 0x0, 0xfff, 0xff00) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r2) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="251a0000000c00018008000100"/22, @ANYRES32=r3, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x20008080}, 0x20048000) 3.348699866s ago: executing program 2 (id=1374): mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0x0, 0x8000) r0 = openat$auto_minstrel_ht_stat_fops_rc80211_minstrel_ht_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy5/netdev:wlan0/stations/08:02:11:00:00:01/rc_stats\x00', 0x200402, 0x0) close_range$auto(r0, r0, 0xfffffff8) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0x2, 0x3, 0xa) (async) setsockopt$auto(0x3, 0x0, 0x23, 0x0, 0x4) (async) io_uring_setup$auto(0x6, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000dc0), r2) sendmsg$auto_IPVS_CMD_GET_DEST(r2, &(0x7f0000003a40)={0x0, 0x0, &(0x7f0000003a00)={&(0x7f0000000e80)={0x1c, r3, 0xc0dce8a66cb0a7ff, 0x70bd27, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x5, 0x2, 0x0, 0x1, [@generic="f1"]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4040011}, 0x40010) sendmsg$auto_IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000001a00)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000180)={0x1864, r3, 0x4, 0x70bd2d, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_DAEMON={0x1360, 0x3, 0x0, 0x1, [@nested={0xad, 0xea, 0x0, 0x1, [@nested={0x4, 0x31}, @typed={0x13, 0x70, 0x0, 0x0, @str='((g+!][.(*$.\\{\x00'}, @typed={0x8, 0xa6, 0x0, 0x0, @fd}, @typed={0x8, 0xce, 0x0, 0x0, @fd=r1}, @generic="4999a62325c3492c0cbbdfee1b20bb0c2326f575e373d6b1a25ee860ac9be0984388a531a2bb4d7af5623b41e221921545d2081441b993b12a39756759bca9a8b453848f7acb089be4ae6916ad5b926be6e552a2b88f11bd0856f096ad7c1e47fd3834f57a889252a47b992da8", @nested={0x4, 0x104}, @nested={0x4, 0xf6}, @typed={0x8, 0x116, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @nested={0x4, 0xab}]}, @nested={0x28, 0x66, 0x0, 0x1, [@nested={0x4, 0x95}, @nested={0x4, 0x5b}, @typed={0x5, 0x3e, 0x0, 0x0, @str='\x00'}, @generic="349a3916c50a385fff1b21f5", @nested={0x4, 0x144}, @typed={0x4, 0x104}]}, @nested={0x1208, 0x7, 0x0, 0x1, [@generic="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", @typed={0xbc, 0x13f, 0x0, 0x0, @binary="90e6061b2f2fb2b37dc8e3998ace3e8472d579a0e69ce81ae81fad34989dd6791903f57a068625e901f3693b48d41c4cc8b5d01147302d6e020a17d55b397c276bf06b509e2fe2b9ff18f0b1e601be4ad07956fb071dd0628f8b81d0d97783ef33984a9a50615eb2e1231c2d41d32c2a89ae294cd0e5ec4b53df05582ecabf56698bd1a1d264c97425e32b6f757676e680d7e00be52ffd4845f4faa6ea6b39642d8bdf4afc0937fadb48f027377064187789d64767585aca"}, @generic="a9342ee6a0fbfd2dced8396fabc530fb628bde002630f903a836ec783a7d494ec9a19f96c9d1e52a5c47327c66dff370a9685d6d5cb300600423bf", @typed={0x5, 0x1e, 0x0, 0x0, @str='\x00'}, @nested={0x4, 0x8c}, @generic="9962b569cb4c5695d40752b3baf5f7c8632d16d25a43cfc9b90abfbb08557e98edb3b100f913201f6dc485db2229de9e252a995ad0a3a02f88ee71b5573348c2cc0bba665862a2135050c15837ca94292e05e283956c82726973991be1f7bc881a0deb04dc87e8e499ff", @nested={0x4, 0x80}, @generic="7e9964528f478cd9414578dd26ca041c4b096c734a6bccf6b9f9180337b461fbf368a6582e96c5ca9b4556661088960782f44d0327cbe8a1386937df5b1eda3ce63b4b06c4d09dada2a9490f0908cb409f41af5dddce85f35e25fb2a629ea355d941c20b95b1591b01090318faf16ef391ff3cad883b36374901a2c597f23c5d027b2e2d302eae8e23138a82a205026ed828e0"]}, @typed={0x7a, 0x123, 0x0, 0x0, @binary="54fc0b1f640f434aa8ece67aadfba55f693e3f6a8fdd32f77534d5806af1b09aaf32ea541e92185a25dcf9f723d3b5c060a6019b5d4e77f17ebf382e3bfb2de28ed5332db06a7ac5161fcaa242a01b1040edb31fd771c30e40f7edf746c331b8b54cfe7daaeff574fa6154bf7b63eeb7158cbd80b3dd"}]}, @IPVS_CMD_ATTR_DAEMON={0x150, 0x3, 0x0, 0x1, [@generic="b643c3c2c7fed6c97b93c23532d46beb958bc7e15f1afca4084733a4c3495520788cd6f534721d5682323a24326ab1fba26f50a23f800673be35ed343bb615b896ddb4af91d98d23437057994a3f457b27382091a4180b40fdf343e1962a0264542411117e9ea15b6ce093773f483d24635c17ceaa8b50e262bc11b1c79ed48a6b171110f46c040e622ab93408b1e43ff59ca2e836f56ea7f01f63e08dee1508d19bacc743de92fc99f392dcbcb66f9f54b918c0549a624de4a6712918593a61bef01edac8e8daa7", @generic="85d0cf3435428f282579cea8dce9790e720b5925cffbf5099d705f76bf41f101186530f53e906e285b4815200e5431f85faaecdd28cae4f0c875a9832b8d8a3ee2ce06530e20ee0e57ebf603b94d11ff45a89b480506778384697a28e8a8e5cf1c885c498ce8526a843800656f0ae6c1cea2cccf038ae9fc29e384f8e39a883a0a7f4522"]}, @IPVS_CMD_ATTR_SERVICE={0x19a, 0x1, 0x0, 0x1, [@generic="905af7d2528db2e59da9bdfdeb2ce96e715186894a648a78058c200db34ae7d680b78bbad05e7a9444e933f9c47054d560ec6b875250094e3168399d056f19672f7101cd0e0e4a74f0d5a7f6beea3ff886a1e28d56728d2bc3900dd2e310448058938c30f0de37e59dd08267a6e36724e4efeaa9df0241397272a8b591db2e1418e8e115ec1b4723314161f43868c47795c3632709176bc2630e6685e7d067d4ab95c15cf3c900e02829e58dbb74a23afd084c54cb146b4d832a65413f4066284263bcc53a0fb19528414e9f79d2b10d2283f0539f61b8db35b9254ff44878ba20d6a02c924d4111958a65fc5a7aadfac6c4", @typed={0xa4, 0x67, 0x0, 0x0, @binary="54ac2ac0d942f00ccc0dd9cdc6c371a93f546e241d2d0427f89d7b29719e5d06298e77b9842b4d94baabf09263154125683e58b3f2afed3b0f7636b339d5394477c79396d99fc30866c1e40f1de82edffc3caba0c89a184e53c59b28f6389ad6f580f67ae5c4248174f17fe8a21f5182b1a0ed3826036f391c5c48f9e7511231334987a0019b717ed6cba58a84b9a9fde03d7642a1151d9e008719cde34a2a2d"}]}, @IPVS_CMD_ATTR_DEST={0x1f2, 0x2, 0x0, 0x1, [@generic="ffbb2dc8c662636e9f289d18a9399f34e141a5e155d6f01fa379766d254ecd0c74483f0a271a0e10cde841960944e6d7b8697318477a8df69c92635ff88687d72bc2c3bf53be38fc11d7b991c24380a204b3c1446f9bbb4ff8bc280c119b82ac40b1d31283247f39b4ffbc11f65fda2dc8db1daf68adf8a27f2363d59f6ffea4f3acf508d72e12365d88a0b3a9dd469442fde84e", @generic="483f74c051b90a130120af63b9be3c5b611bd0e41f082befc4e5b9c851b9d18d97a2721b27ca34f16f5926e165844567d17d032f28affa7a7da0f555693958325778f2f662eacd60467bf3abc266069436f22854ec7acc0833de278928c36410af7710b0236713f05cc0c3a1346a265d0d4a427db64224f105a2d19e3d0d46baf6facf197c508ed66fb749e788497abbdf094c5978ae5fc13fb429da1b393b33f6f2e2d55ddd2d752739ada2dcddbe0f515ac49c7acbbbe9963db0aa9327286acdbd6dcb8292a26ba987916e36e7aa98c39c4d883d775f1e", @generic="f11379ab67e3f67a39cbc28b871b7b6754f06075cf7b92d3c2c48e7ba5b7c942a13e80914ee9d7891aeef5bb72d1f93f5762fb3d519c12a0997eab9b67d40bbd89040d6a671b3b5ec0f0ec1505bc8aa92b72900d40b2b4cf77422067b01ae0f883e78f12bc2056a850c3e35aea0ce0b6377ad277b1e54928e0317260031480512cf0"]}]}, 0x1864}, 0x1, 0x0, 0x0, 0x80}, 0x20008091) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) (async) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) (async) socketpair$auto(0x1e, 0x3, 0x8, 0x0) (async) io_uring_enter$auto(0x3, 0x5, 0xffffffff, 0x3, 0x0, 0x2) ioperm$auto(0x7, 0x5ad2, 0x8) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) mbind$auto(0x8000, 0xfa9d, 0x5, &(0x7f0000000280)=0x20000000000000fb, 0x400, 0x1) (async) set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0) move_pages$auto(0x0, 0x454, 0x0, 0x0, 0x0, 0x0) (async) select$auto(0x7, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x0, 0xfffffffffffffff6, 0x7, 0xfffffffffffdffff, 0xdffffffffffffff8, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x1, 0x9]}, 0x0, 0x0) 3.283505831s ago: executing program 1 (id=1375): capget$auto(&(0x7f0000000000), 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) capset$auto(&(0x7f0000000000)={0x5}, &(0x7f0000000040)={0x80000001, 0x1, 0xbffffffb}) r0 = socket(0x2c, 0x80003, 0x0) r1 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000000), 0x68) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'team0\x00', 0x0}) connect$auto(r0, &(0x7f0000000000)=@can={0x1d, r2}, 0x55) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x4f1, 0x2, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) setsockopt$auto(0x3, 0x6, 0x19, 0x0, 0xfb3) 3.118462297s ago: executing program 2 (id=1376): r0 = socket(0x15, 0x5, 0x0) r1 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/block/sda/sched/dispatch2\x00', 0x0, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r1, &(0x7f0000000040)=""/124, 0x7c) chown$auto(0x0, 0x0, 0x0) read$auto(0x3, 0x0, 0x80) read$auto(0x3, 0x0, 0x80) r2 = openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/media16\x00', 0x480, 0x0) recvmsg$auto(r2, &(0x7f0000000340)={&(0x7f0000000200), 0x4, &(0x7f00000002c0)={&(0x7f0000000280), 0xf363}, 0x9, 0x0, 0x2, 0xd}, 0xe) ioctl$auto_FUSE_DEV_IOC_BACKING_OPEN(r2, 0x4010e501, &(0x7f00000003c0)={r2}) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mtdblock0\x00', 0xa4300, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000) epoll_ctl$auto(r0, 0x9, r0, &(0x7f0000000000)={0x1, 0x18000000}) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram10\x00', 0x100, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) read$auto(0x3, 0x0, 0x80) read$auto(r4, 0x0, 0xbc6d) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) stat$auto(&(0x7f0000000100)='./file0\x00', &(0x7f0000000400)={0x200000000, 0x7, 0x5, 0x7fffffff, 0xee00, 0xffffffffffffffff, 0x0, 0x1, 0x3, 0x0, 0x6, 0x8, 0xfffffffffffffff7, 0x101, 0x3, 0xd1, 0x100000001}) newfstatat$auto(r3, &(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)={0x1, 0x10001, 0xa, 0xfffffffe, r5, r6, 0x0, 0x4, 0x9, 0x8, 0x4, 0x8, 0x9, 0xfffffffffffffffb, 0xd, 0x1, 0x359}, 0x6b18b87f) r8 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000580)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/inject\x00', 0x450c42, 0x0) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0) write$auto(0x3, 0x0, 0x81) fstat$auto(r8, &(0x7f00000002c0)={0x3fb, 0x10001, 0x7, 0x8f97, 0xffffffffffffffff, r7, 0x0, 0x1, 0xe, 0x7, 0x9, 0x7, 0xe0bd480000000000, 0xd2, 0x39, 0x7, 0xff}) r10 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000036c0)='/proc/sys/net/ipv6/conf/xfrm0/stable_secret\x00', 0x2000, 0x0) read$auto_proc_sys_file_operations_proc_sysctl(r10, 0x0, 0x0) quotactl$auto(0x1, &(0x7f0000000080)='/proc/thread-self/pagemap\x00', r9, &(0x7f00000001c0)="f48d742d1fe485b17842fd25640071ec78503f01bab14d181e6c8b19d2f116d48776ea87c13968f4d3858fcc96b73004a28e749fded660f18b347c353dfad5f1fc830c5d81928078eb1f43d763b90cbbe9654ee8498d8164f58c329f366ae7b4568c4c865581de4f518f769c21dee67367b9e998bdef51bdcde03bb49ec7204e4efd8547f917966a77fdece5229832d9bd23cd84dd8999f40bc919a96b264b24bf9934f73924294b1b39cd3adf07cc279c4e3f4349e86f678b3439228179201fd9552fa18fb13b1589a980386bca6779e0c8d71f") 3.088125731s ago: executing program 0 (id=1377): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0x9, 0x8, 0x10007, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84, [0x3, 0x2, 0x0, 0x2, 0x0, 0x2000, 0x0, 0xe, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x8, 0x0, 0x6, 0x0, 0xfffffffffffbfffd, 0x2000000000000004, 0x10000000000001, 0x10000000000, 0xffffffffffffffff, 0x4, 0xfffffffffffffe00, 0x0, 0x0, 0x5, 0x400000000005b8, 0xffff, 0x0, 0x100, 0x0, 0x6, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x8, 0xa38, 0x0, 0x3, 0xfffffffffffffffc, 0x2, 0x1, 0x7, 0xc567]}, 0x1fe, 0xd) r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto(r0, 0x1000, r0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) r4 = openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x1, 0x0) r5 = syz_clone3(&(0x7f0000000340)={0x40400, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x20}, &(0x7f0000000180)=""/233, 0xe9, &(0x7f0000000280)=""/96, &(0x7f0000000300)=[0xffffffffffffffff], 0x1}, 0x58) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000000)={0x14, 0x0, 0x100, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x240480d1}, 0x8104) ioctl$auto_def_blk_fops_fs(r6, 0x1, &(0x7f0000000000)) r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0x11b, 0x7ff}, 0xc, &(0x7f00000000c0)={0x3, 0x7f}, 0x0, 0x8) ioctl$auto_SNDCTL_DSP_GETISPACE(r9, 0x8010500d, &(0x7f0000000040)={0x7, 0x40, 0x8, 0x7}) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r7, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0) r10 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r2, &(0x7f0000000700)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000006c0)={&(0x7f00000003c0)={0x2b4, r3, 0x2a5a69aacb25fc0d, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_COORDINATOR={0x297, 0x1e, 0x0, 0x1, [@generic="ef17d01ffb05bfa5ab89035f9d73dbdce02139f3bcd3467ba85276b134806aae9a8206ca45ad329a51d962ec5549d36aa51edfcc669ff48ca11a861f0d85515bfe19c8438151e4cdf5ec6ccfe9dac8ec52f77eafc65c358a1cc6ae6e18fa2b7c18520241d3a651865cb74ca4b9cc89c2f521ef4c02492a3af92464638585eb3b1ee0101dde97401a1af48ece13f40e4703f61bdf86378a409478b71c3dc58fbbee5bed256ea1e393c1e7314b4244e0573dd5b9124724a866b369986d89e3cbb312d7b560969ef0c8555e2b1edee1f3a5e530114457c9b705ae85a355a133fad8", @generic="f1b14831b9e49436c67810a1657bc85118ccabcbf3c776f19c61c6c6283f98bd1ab90f8e57cc352e0acd5b85d6aa86c157097aef3cc6d9e61b507dbec89e4f206bed52075c68f3f5e52f457ddad40adc03451baf30bc051e63c8a665b39ff9f1167851ffdb363e9c5787639c9005f3f800647f29af1b131b8048b7fddecc79e43a8ad246a75c968f68df9891a1805afc0886badffcb6802db31b66c9d56e068109466790a1c721d577a3a74176", @generic="ae7eb0ce6af63c736a0d4d117edf447d0a2c585cd28bf3393f50b7526fe9bb74580240c05dda9d6cee4237c74c60b40f49f2625fe4b150c8220781b55074b764b2bd80461d1d127d5a6d68c2134e92414a393f467a84820bf45c4930277cb79436f4d1d4e0826f98ff6f22684ac2dd501e3e", @typed={0x8, 0xe6, 0x0, 0x0, @fd=r4}, @typed={0x8, 0xf3, 0x0, 0x0, @pid=r5}, @nested={0x74, 0xd7, 0x0, 0x1, [@typed={0x8, 0xea, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x3b}}, @nested={0x4, 0x144}, @generic, @typed={0x8, 0x123, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @typed={0x8, 0x8b, 0x0, 0x0, @u32=0x4}, @nested={0x4, 0xbb}, @typed={0x4d, 0x126, 0x0, 0x0, @binary="b9eb041e826add03d8d86596c8b3bbdb43507aa6207cf09843e7b7b49fd182f6acf21b5790097340dca5b86cbbe57771f223b7a077737c22ff11d0dfaad2176b6e287e8cdc7dfdd11f"}]}, @typed={0x8, 0xfb, 0x0, 0x0, @fd=r8}, @typed={0x8, 0xd2, 0x0, 0x0, @fd=r10}]}, @NL802154_ATTR_MIN_BE={0x5, 0x11, 0x9}]}, 0x2b4}, 0x1, 0x0, 0x0, 0x48011}, 0x24000054) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x78, r3, 0x2, 0x70bd2c, 0x25dfdbfd, {}, [@NL802154_ATTR_SCAN_DONE_REASON={0x5, 0x25, 0xff}, @NL802154_ATTR_WPAN_PHY_NAME={0x44, 0x2, '/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00'}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x6}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0xf29}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x7}]}, 0x78}, 0x1, 0x0, 0x0, 0x810}, 0x4040011) openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000) ioctl$auto__ctl_fops_dm_ioctl(r0, 0xffffffffffeffd0f, &(0x7f00000001c0)) 2.071671634s ago: executing program 2 (id=1378): r0 = socket(0x11, 0x3, 0x9) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYRES16, @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdb"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x7, 0x4a}) sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000140)="276cf9ba6fc4ffe27c70cb7862dbf7d7174ffbda903a865da5c67d35b5e6c290d0a6352733", 0x58a, &(0x7f0000000100)={&(0x7f0000000280)="1dffbe582927b3d4acc9ea70d6bd8e959138705a40edc1b9a658e689ef37898627b9a956b561621b3328a5b1bc43d239fbbf70db9e2a37f03526e688e8fe6bfc8d94f75a50eea7567018ad47bdac1aa11227be5e17a1fce8c0c12d676f98f2d5f1f9a786a1c9e053cdf432e75863e2", 0x4b}, 0x5, &(0x7f0000000300)="b242d7172168040f10d53f06b5d682040000000000000098df2273bb65cc4e2ebd79df6879031167976cd5b319bd63e6eeb4ccdfd262c132dc9c3adb7d1f6e3811e38b36e9e1", 0x5, 0x1000}, 0x5}, 0xffffffff, 0x100) close_range$auto(0x2, 0x8, 0x0) socket(0x1d, 0x80804, 0x0) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_WG_CMD_SET_DEVICE(r1, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000000)={0x30, r2, 0x21, 0x70bd26, 0x25dfdbfe, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e20}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x80) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) ioctl$auto_VHOST_GET_FEATURES(0xffffffffffffffff, 0x8008af00, &(0x7f00000000c0)=0x3979781e) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0xa, 0x0, 0x20) 2.067180137s ago: executing program 1 (id=1386): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioperm$auto(0x7, 0x6, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) ioperm$auto(0xfb, 0x5, 0xe) mmap$auto(0x0, 0x20007, 0x80000000000000de, 0x12, 0x0, 0x8000) map_shadow_stack$auto(0x40, 0x7, 0x1ff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r0, 0x1, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0) mmap$auto(0x0, 0xfffffffffffffffe, 0xdf, 0x7fffffffffffffff, r1, 0x8) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0_to_hsr\x00'}) socket$nl_generic(0x10, 0x3, 0x10) getrandom$auto(0x0, 0x6000000, 0x3) r3 = socket(0x840000000002, 0x3, 0xff) setsockopt$auto(r3, 0x0, 0x4, 0x0, 0xcc) setxattr$auto(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='+\x00', &(0x7f0000000100)="043b0579ffaa59d992b43287b3ad6604c38c68bbc76477d72649e47b06b28781604e25b03b7f0c4f2e6229055e83ec6fec0080f7a072f8602c475c8ac968890e0706b565de1e6f78fa87044afb9585440c6539b805791c04d0b6516d557b93d9ddef4bf1", 0x8, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) init_module$auto(0x0, 0x10001, 0xfffffffffffffffe) 1.981467981s ago: executing program 0 (id=1379): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/kfence/stats\x00', 0x100000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) open(0x0, 0x22240, 0x155) socket(0xa, 0x3, 0x3b) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) madvise$auto(0x0, 0xffffffffffff0001, 0x9) 1.905674137s ago: executing program 0 (id=1380): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB="00000000fde670d8f785571de0d04d1c7376d7b0704cc6f9a285636708d36f323009d0bdb6d32cf9dce6093a9e1badb99f26748c0b64711e6c794d8803e8d280b762c1a3f43ffc38a5fa", @ANYRES16, @ANYRESHEX=r0], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x2cb8}, 0x1, 0x0, 0x0, 0x40}, 0x2404c084) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x2, 0x0) r1 = socket(0xa, 0x3, 0xff) connect$auto(r1, &(0x7f00000018c0)=@generic={0xa}, 0x55) timer_create$auto(0x7, &(0x7f0000000000)={@sival_int=0x4, @inferred, 0x1}, 0x0) sendmmsg$auto(0x3, &(0x7f0000000400)={{0x0, 0x2, &(0x7f00000003c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804) r2 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/config/nullb/features\x00', 0x0, 0x0) poll$auto(&(0x7f0000000280)={r2, 0x7, 0x2}, 0x7, 0x2) lstat$auto(0x0, &(0x7f0000000180)={0x12, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000006, 0x7, 0x8, 0x5, 0x1000, 0x42, 0x6, 0x1, 0x60, 0x40000104}) clone$auto(0x36da, 0xe97, &(0x7f0000000100)=0x2, 0x0, 0x40) waitid$auto(0x3, 0x3, 0x0, 0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = open(&(0x7f0000000000)='./file0\x00', 0x1eb343, 0x100) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x40181, 0x0) ioctl$auto_PPPIOCSMRU(r4, 0xc004743e, 0x0) write$auto(r4, 0x0, 0xc86) copy_file_range$auto(r3, 0x0, r2, 0x0, 0x21c1, 0x0) 1.336342286s ago: executing program 2 (id=1381): socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x106) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kallsyms\x00', 0x101000, 0x0) pread64$auto(r1, 0x0, 0x100000000008, 0x8) ioctl$auto(0x3, 0xc0105512, 0x1) ioctl$auto(r0, 0xc0306201, 0x9) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_gen_netlink(0x0, 0xffffffffffffffff) pread64$auto(0xffffffffffffffff, 0x0, 0x100000001, 0x1) mmap$auto(0x9, 0x100, 0x7fff, 0x411, r1, 0x3) socket$nl_generic(0x10, 0x3, 0x10) semctl$auto(0x10000, 0x5, 0x0, 0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000600), r2) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000640)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100abbd7000fbdbdf250700000004000600060001004a000000"], 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x80) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto(r4, 0x8004552d, 0xea3) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) futex_waitv$auto(&(0x7f0000000000)={0x8, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) io_uring_setup$auto(0x40005, &(0x7f0000000000)={0x6, 0x0, 0x400, 0x7, 0x1005, 0x800006, 0x7, [0x4, 0x2e9, 0x8], {0x0, 0x1, 0x8, 0x7, 0x5, 0x100005, 0x1, 0x0, 0x7}, {0x4, 0xfff, 0xffff7fff, 0x2, 0x8, 0x200, 0x3, 0x0, 0x3}}) socket(0x2, 0x1, 0x0) 969.339791ms ago: executing program 0 (id=1382): r0 = openat$auto_dfs_dom_ops_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x3, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x12, r0, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/bus/usb/drivers/option/bind\x00', 0x680000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00') openat$auto_tracing_saved_cmdlines_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/saved_cmdlines\x00', 0x6c8500, 0x0) mount_setattr$auto(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000640)={0x10002c, 0x7f, 0x0, @inferred=r1}, 0x287) madvise$auto(0x0, 0x53, 0x9) 851.355017ms ago: executing program 2 (id=1383): mmap$auto(0x0, 0x420009, 0xfffffffffffffffa, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x18, 0x0, 0x1, 0x70bd26, 0x25dfdbff, {}, [@HWSIM_ATTR_PMSR_SUPPORT={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x894}, 0x4) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x181902, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/ptyq3\x00', 0x40001, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x4800, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) statmount$auto(0x0, &(0x7f0000000180)={0xb, 0x7, 0x9, 0x3, 0x7, 0x0, 0x9, 0x3, 0x2000000000010006, 0x0, 0x7, 0x9, 0x2, 0x7, 0xae, 0x5, 0x2, 0x3, 0x105, 0x7, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, [0x1b16, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8000000000000, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x73, 0x0, 0x0, 0x0, 0x4, 0x0, 0xc06f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4, 0x101, 0x0, 0x0, 0x0, 0x107, 0x7, 0x0, 0xfffffffffffffffe, 0x4, 0x0, 0x80000000000, 0x2]}, 0x1fe, 0x81) r1 = socket(0x11, 0x3, 0x6) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x47, 0x4a}) sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000380)={&(0x7f0000000180), 0x36}, 0x2e, &(0x7f0000000380), 0x7, 0x1083}, 0x5}, 0x2, 0x100) openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f00000005c0)={0x404100, 0xbed2cc35b1123915, 0x27}, 0x18) bpf$auto(0x5, &(0x7f0000000440)=@test={0x9, 0x1, 0xa93f, 0x9, 0x3, 0x3, 0x2, 0x0, 0xb4, 0x5, 0x140000000000, 0x0, 0x7fffffff, 0x9, 0x1}, 0x171) socket(0x10, 0x2, 0xb) close_range$auto(0x2, 0x8000, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000040), r2) ioperm$auto(0x1000, 0x40, 0x6) 740.638296ms ago: executing program 1 (id=1384): unshare$auto(0x40000080) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) removexattr$auto(0x0, 0x0) mmap$auto(0x4, 0x2020009, 0x8, 0xeb1, 0xffffffffffeffffa, 0x7ffd) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) madvise$auto(0x1, 0x3, 0x81) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/firmware/acpi/hotplug/pci_root/enabled\x00', 0x1a1842, 0x0) write$auto(0x3, 0x0, 0xfdef) getrandom$auto(0x0, 0x6000000, 0x3) memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5) close_range$auto(0x6, 0xeffff000, 0x6) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd14\x00', 0x8001, 0x0) ioctl$auto(0x3, 0x401070cd, 0x38) fallocate$auto(0x3, 0x0, 0xe, 0x8ec5) ioperm$auto(0x7, 0x6, 0x5) finit_module$auto(0x3, 0xfffffffffffffffe, 0x400000000004) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 693.040839ms ago: executing program 0 (id=1385): r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) (async) r1 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f00000018c0)='/dev/cpu/1/cpuid\x00', 0x2000, 0x0) (async) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, r0, 0x0) socket(0x2, 0x80002, 0x73) (async) socket(0xa, 0x1, 0x84) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) (async) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) (async) close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x5) (async) socket(0x2, 0x1, 0x106) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) (async) mmap$auto(0x2, 0x2020009, 0x3, 0x12, 0xfffffffffffffffa, 0x4000008000) socket(0x11, 0x2, 0x88) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x20008000) (async) r2 = socket(0x2, 0x801, 0x106) io_uring_setup$auto(0x7, &(0x7f0000000000)={0x10000, 0x80, 0xe, 0x8, 0x1fd, 0x4, r2, [0x7fffffff, 0x8, 0x6], {0x5, 0x800000a, 0x200, 0xffffffff, 0x81, 0x1ff, 0x7, 0x8, 0x200}, {0x1136400, 0x72, 0x1800000, 0x4, 0x8, 0x4, 0x3b72, 0x80, 0xffffffffffffffff}}) write$auto(0x3, 0x0, 0x3f00) read$auto(r1, 0x0, 0x0) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) (async) r3 = open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x2000, 0xb5d1af1605322c72) open_by_handle_at$auto(r3, &(0x7f0000000040)={0x8, 0x100fe, "9700000000000000"}, 0x2) (async) mmap$auto(0x0, 0x400008, 0x6, 0x9b72, 0x3, 0x8000) sysfs$auto(0x2, 0x49, 0x0) (async) fsopen$auto(0x0, 0x1) 187.881812ms ago: executing program 2 (id=1387): r0 = socket(0x15, 0x5, 0x0) r1 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/block/sda/sched/dispatch2\x00', 0x0, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r1, &(0x7f0000000040)=""/124, 0x7c) chown$auto(0x0, 0x0, 0x0) read$auto(0x3, 0x0, 0x80) read$auto(0x3, 0x0, 0x80) r2 = openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/media16\x00', 0x480, 0x0) recvmsg$auto(r2, &(0x7f0000000340)={&(0x7f0000000200), 0x4, &(0x7f00000002c0)={&(0x7f0000000280), 0xf363}, 0x9, 0x0, 0x2, 0xd}, 0xe) ioctl$auto_FUSE_DEV_IOC_BACKING_OPEN(r2, 0x4010e501, &(0x7f00000003c0)={r2}) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mtdblock0\x00', 0xa4300, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000) epoll_ctl$auto(r0, 0x9, r0, &(0x7f0000000000)={0x1, 0x18000000}) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram10\x00', 0x100, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) read$auto(0x3, 0x0, 0x80) read$auto(r4, 0x0, 0xbc6d) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) stat$auto(&(0x7f0000000100)='./file0\x00', &(0x7f0000000400)={0x200000000, 0x7, 0x5, 0x7fffffff, 0xee00, 0xffffffffffffffff, 0x0, 0x1, 0x3, 0x0, 0x6, 0x8, 0xfffffffffffffff7, 0x101, 0x3, 0xd1, 0x100000001}) newfstatat$auto(r3, &(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)={0x1, 0x10001, 0xa, 0xfffffffe, r5, r6, 0x0, 0x4, 0x9, 0x8, 0x4, 0x8, 0x9, 0xfffffffffffffffb, 0xd, 0x1, 0x359}, 0x6b18b87f) r8 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000580)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/inject\x00', 0x450c42, 0x0) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0) write$auto(0x3, 0x0, 0x81) fstat$auto(r8, &(0x7f00000002c0)={0x3fb, 0x10001, 0x7, 0x8f97, 0xffffffffffffffff, r7, 0x0, 0x1, 0xe, 0x7, 0x9, 0x7, 0xe0bd480000000000, 0xd2, 0x39, 0x7, 0xff}) r10 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000036c0)='/proc/sys/net/ipv6/conf/xfrm0/stable_secret\x00', 0x2000, 0x0) read$auto_proc_sys_file_operations_proc_sysctl(r10, 0x0, 0x0) quotactl$auto(0x1, &(0x7f0000000080)='/proc/thread-self/pagemap\x00', r9, &(0x7f00000001c0)="f48d742d1fe485b17842fd25640071ec78503f01bab14d181e6c8b19d2f116d48776ea87c13968f4d3858fcc96b73004a28e749fded660f18b347c353dfad5f1fc830c5d81928078eb1f43d763b90cbbe9654ee8498d8164f58c329f366ae7b4568c4c865581de4f518f769c21dee67367b9e998bdef51bdcde03bb49ec7204e4efd8547f917966a77fdece5229832d9bd23cd84dd8999f40bc919a96b264b24bf9934f73924294b1b39cd3adf07cc279c4e3f4349e86f678b3439228179201fd9552fa18fb13b1589a980386bca6779e0c8d71f") 0s ago: executing program 3 (id=1388): r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/maps\x00', 0x100, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x1, 0x4000000000df, 0x40eb2, 0xbd1, 0x300000000000) r1 = socket(0x27, 0x1, 0x8) openat$auto_ocfs2_control_fops_stack_user(0xffffffffffffff9c, &(0x7f0000000000), 0x60500, 0x0) socket(0xa, 0x2, 0x88) setsockopt$auto(0x3, 0x0, 0x19, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000580)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8002, 0x0) ioctl$auto_KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0xd0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0xffffffbfffffffff, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/nr8/flags\x00', 0x2, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0xfffffdef) r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0) ioctl$auto_evdev_fops_evdev(r2, 0x400445a0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r3 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x0) read$auto(r3, 0x0, 0x1) ppoll$auto(&(0x7f0000000040)={r1, 0x1, 0x9}, 0x3ff, &(0x7f00000000c0)={0x100, 0xffff}, &(0x7f0000000100)={0x5}, 0x8) write$auto(0x3, 0x0, 0xffd8) ioctl$auto_PROCMAP_QUERY(r0, 0xc0686611, &(0x7f0000000340)={0x68, 0x6, 0x4, 0x2000000000001, 0x20000000008, 0x1, 0x20, 0x6, 0x5, 0x200, 0xfffffffe, 0xc, 0x1000, 0x4, 0x9}) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.69' (ED25519) to the list of known hosts. [ 99.788179][ T5827] cgroup: Unknown subsys name 'net' [ 99.898701][ T5827] cgroup: Unknown subsys name 'cpuset' [ 99.908738][ T5827] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 101.701335][ T5827] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 103.951222][ T5849] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 103.960578][ T5849] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 103.969741][ T5849] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 103.977471][ T5852] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 103.981887][ T5852] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 103.994375][ T5852] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 103.995778][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 104.003509][ T5852] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 104.019483][ T5852] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 104.029029][ T5849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 104.029261][ T5852] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 104.046696][ T5852] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 104.053253][ T5853] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 104.065357][ T5849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 104.074436][ T5849] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 104.083383][ T5849] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 104.100522][ T5853] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 104.110390][ T5853] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 104.126042][ T5853] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 104.135096][ T5853] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 104.144495][ T5853] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 104.153238][ T5853] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 104.162171][ T5853] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 104.171552][ T5853] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 104.756663][ T5836] chnl_net:caif_netlink_parms(): no params data found [ 104.825302][ T5839] chnl_net:caif_netlink_parms(): no params data found [ 104.910427][ T5837] chnl_net:caif_netlink_parms(): no params data found [ 104.968893][ T5838] chnl_net:caif_netlink_parms(): no params data found [ 105.032366][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.043343][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.052130][ T5836] bridge_slave_0: entered allmulticast mode [ 105.060092][ T5836] bridge_slave_0: entered promiscuous mode [ 105.096979][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.104847][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.112456][ T5836] bridge_slave_1: entered allmulticast mode [ 105.120236][ T5836] bridge_slave_1: entered promiscuous mode [ 105.163945][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.173184][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.181378][ T5839] bridge_slave_0: entered allmulticast mode [ 105.189137][ T5839] bridge_slave_0: entered promiscuous mode [ 105.220081][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.230779][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.240596][ T5837] bridge_slave_0: entered allmulticast mode [ 105.248443][ T5837] bridge_slave_0: entered promiscuous mode [ 105.257449][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.265251][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.272708][ T5837] bridge_slave_1: entered allmulticast mode [ 105.281091][ T5837] bridge_slave_1: entered promiscuous mode [ 105.289199][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.297986][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.307027][ T5839] bridge_slave_1: entered allmulticast mode [ 105.315045][ T5839] bridge_slave_1: entered promiscuous mode [ 105.326436][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.384823][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.415707][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.428703][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.451013][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.460261][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.468657][ T5838] bridge_slave_0: entered allmulticast mode [ 105.476380][ T5838] bridge_slave_0: entered promiscuous mode [ 105.486978][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.498476][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.531019][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.539620][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.549549][ T5838] bridge_slave_1: entered allmulticast mode [ 105.557819][ T5838] bridge_slave_1: entered promiscuous mode [ 105.589715][ T5836] team0: Port device team_slave_0 added [ 105.629280][ T5839] team0: Port device team_slave_0 added [ 105.637840][ T5836] team0: Port device team_slave_1 added [ 105.657338][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.675018][ T5837] team0: Port device team_slave_0 added [ 105.685385][ T5839] team0: Port device team_slave_1 added [ 105.702564][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.716162][ T5837] team0: Port device team_slave_1 added [ 105.746247][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 105.754864][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 105.782657][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 105.797461][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 105.805913][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 105.834770][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 105.905835][ T5838] team0: Port device team_slave_0 added [ 105.923363][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 105.931650][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 105.960055][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 105.987322][ T5838] team0: Port device team_slave_1 added [ 106.003119][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.011238][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.039129][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.051752][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.059008][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.086507][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.100325][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.108104][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.136877][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.172428][ T5836] hsr_slave_0: entered promiscuous mode [ 106.179220][ T5853] Bluetooth: hci1: command tx timeout [ 106.184948][ T5848] Bluetooth: hci0: command tx timeout [ 106.191746][ T5836] hsr_slave_1: entered promiscuous mode [ 106.212912][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.220232][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.249700][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.255122][ T5848] Bluetooth: hci2: command tx timeout [ 106.267739][ T5853] Bluetooth: hci3: command tx timeout [ 106.307465][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.315661][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.344522][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.431039][ T5839] hsr_slave_0: entered promiscuous mode [ 106.438345][ T5839] hsr_slave_1: entered promiscuous mode [ 106.449186][ T5839] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 106.458954][ T5839] Cannot create hsr debugfs directory [ 106.482463][ T5837] hsr_slave_0: entered promiscuous mode [ 106.489769][ T5837] hsr_slave_1: entered promiscuous mode [ 106.496774][ T5837] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 106.505774][ T5837] Cannot create hsr debugfs directory [ 106.574871][ T5838] hsr_slave_0: entered promiscuous mode [ 106.581951][ T5838] hsr_slave_1: entered promiscuous mode [ 106.590201][ T5838] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 106.598775][ T5838] Cannot create hsr debugfs directory [ 106.790802][ T5836] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 106.836950][ T5836] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 106.873390][ T5836] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 106.902279][ T5836] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 106.997466][ T5839] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 107.013204][ T5839] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 107.041555][ T5839] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 107.067267][ T5839] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 107.112215][ T5837] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 107.138346][ T5837] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 107.159927][ T5837] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 107.173494][ T5837] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 107.263225][ T5838] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 107.286084][ T5838] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 107.300941][ T5838] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 107.311985][ T5838] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 107.409431][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.473536][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.507492][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.526462][ T5836] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.542576][ T5839] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.563257][ T2925] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.571887][ T2925] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.599914][ T5837] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.610983][ T2925] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.619291][ T2925] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.642697][ T62] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.650440][ T62] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.690839][ T3526] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.698316][ T3526] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.711620][ T3526] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.720232][ T3526] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.747852][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.783618][ T3526] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.791319][ T3526] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.840858][ T5836] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 107.862111][ T5838] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.913032][ T3576] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.920385][ T3576] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.946661][ T3576] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.954739][ T3576] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.254577][ T5853] Bluetooth: hci1: command tx timeout [ 108.260362][ T5853] Bluetooth: hci0: command tx timeout [ 108.327649][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.335894][ T5853] Bluetooth: hci3: command tx timeout [ 108.344637][ T5853] Bluetooth: hci2: command tx timeout [ 108.411934][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.512858][ T5836] veth0_vlan: entered promiscuous mode [ 108.531662][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.552048][ T5836] veth1_vlan: entered promiscuous mode [ 108.600271][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.615283][ T5839] veth0_vlan: entered promiscuous mode [ 108.648418][ T5839] veth1_vlan: entered promiscuous mode [ 108.681898][ T5837] veth0_vlan: entered promiscuous mode [ 108.712216][ T5836] veth0_macvtap: entered promiscuous mode [ 108.722327][ T5837] veth1_vlan: entered promiscuous mode [ 108.744757][ T5836] veth1_macvtap: entered promiscuous mode [ 108.777283][ T5839] veth0_macvtap: entered promiscuous mode [ 108.795049][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 108.825143][ T5838] veth0_vlan: entered promiscuous mode [ 108.841307][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 108.858006][ T5839] veth1_macvtap: entered promiscuous mode [ 108.873400][ T5836] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.889277][ T5836] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.902415][ T5836] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.913327][ T5836] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.927943][ T5837] veth0_macvtap: entered promiscuous mode [ 108.939737][ T5837] veth1_macvtap: entered promiscuous mode [ 108.972481][ T5838] veth1_vlan: entered promiscuous mode [ 109.003360][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 109.016093][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.028359][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.065044][ T25] cfg80211: failed to load regulatory.db [ 109.084671][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 109.096668][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.109231][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.126621][ T5839] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.142050][ T5839] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.154014][ T5839] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.163758][ T5839] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.175942][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 109.188369][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.199737][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 109.212177][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.229339][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.251386][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 109.264297][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.275482][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 109.288934][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.301355][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.355859][ T5837] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.366539][ T5837] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.377375][ T5837] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.387276][ T5837] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.407515][ T5838] veth0_macvtap: entered promiscuous mode [ 109.463765][ T5838] veth1_macvtap: entered promiscuous mode [ 109.497675][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 109.511066][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.523201][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 109.537541][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.549242][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 109.562641][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.576369][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.596275][ T3526] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.607789][ T3526] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.619367][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 109.637457][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.649194][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 109.662797][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.674191][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 109.685736][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.698929][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.723645][ T5838] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.734618][ T5838] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.744611][ T5838] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.754583][ T5838] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.840724][ T2925] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.866775][ T2925] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.887586][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.906937][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.950830][ T3576] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.966173][ T3576] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.993204][ T5836] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 110.013473][ T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.036107][ T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.090385][ T2925] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.107952][ T2925] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.211872][ T3576] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.226610][ T3576] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.274976][ T3526] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.289634][ T3526] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.351225][ T5853] Bluetooth: hci0: command tx timeout [ 110.351332][ T5848] Bluetooth: hci1: command tx timeout [ 110.444136][ T5848] Bluetooth: hci2: command tx timeout [ 110.449819][ T5848] Bluetooth: hci3: command tx timeout [ 111.860901][ T5919] Zero length message leads to an empty skb [ 112.065793][ T5941] mmap: syz.1.11 (5941) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 112.183332][ T5941] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 112.421446][ T5853] Bluetooth: hci1: command tx timeout [ 112.427826][ T5848] Bluetooth: hci0: command tx timeout [ 112.494928][ T5848] Bluetooth: hci3: command tx timeout [ 112.501352][ T5853] Bluetooth: hci2: command tx timeout [ 113.694705][ T5952] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12'. [ 114.759896][ T5969] syz.0.15 uses obsolete (PF_INET,SOCK_PACKET) [ 114.934327][ T5983] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 114.949234][ T5983] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 115.003491][ T5986] random: crng reseeded on system resumption [ 116.625949][ T6004] sp0: Synchronizing with TNC [ 116.746059][ T6002] Process accounting resumed [ 116.933528][ T6014] random: crng reseeded on system resumption [ 117.167512][ T6018] netlink: 8 bytes leftover after parsing attributes in process `syz.0.29'. [ 118.141794][ T6017] delete_channel: no stack [ 118.464339][ T6039] process 'syz.0.33' launched '/dev/fd/3' with NULL argv: empty string added [ 119.239860][ T6048] Invalid ELF header magic: != ELF [ 119.534251][ T6053] netlink: 28 bytes leftover after parsing attributes in process `syz.1.36'. [ 120.114690][ T6064] rtc_cmos 00:00: Alarms can be up to one day in the future [ 120.274397][ T6051] netlink: 28 bytes leftover after parsing attributes in process `syz.3.35'. [ 120.452222][ T6051] geneve1: entered allmulticast mode [ 120.610289][ T6069] netlink: 36 bytes leftover after parsing attributes in process `syz.1.39'. [ 120.687808][ T6070] netlink: 330 bytes leftover after parsing attributes in process `syz.1.39'. [ 120.707384][ T6070] : renamed from gre0 (while UP) [ 120.800434][ T6070] netlink: 330 bytes leftover after parsing attributes in process `syz.1.39'. [ 122.383297][ T6086] netlink: 330 bytes leftover after parsing attributes in process `syz.3.43'. [ 122.466784][ T6086] netlink: 342 bytes leftover after parsing attributes in process `syz.3.43'. [ 122.536281][ T6086] netlink: 214 bytes leftover after parsing attributes in process `syz.3.43'. [ 122.596761][ T6086] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 122.604882][ T6086] IPv6: NLM_F_CREATE should be set when creating new route [ 122.612450][ T6086] IPv6: NLM_F_CREATE should be set when creating new route [ 122.620310][ T6086] IPv6: NLM_F_CREATE should be set when creating new route [ 122.750839][ T6086] syz.3.43 (6086) used greatest stack depth: 20944 bytes left [ 122.941353][ T6096] netlink: 28 bytes leftover after parsing attributes in process `syz.0.47'. [ 122.976314][ T6096] vcan0: entered promiscuous mode [ 122.996728][ T6098] netlink: 28 bytes leftover after parsing attributes in process `syz.2.46'. [ 123.074518][ T6098] vcan0: entered promiscuous mode [ 124.821920][ T29] audit: type=1806 audit(1735244236.313:2): xattr="security.apparm" res=0 [ 126.163321][ T29] audit: type=1806 audit(1735244237.663:3): xattr="security.apparm" res=-17 [ 126.650356][ T6140] netlink: 28 bytes leftover after parsing attributes in process `syz.1.57'. [ 126.780674][ T29] audit: type=1806 audit(1735244238.273:4): xattr="" res=-22 [ 127.412769][ T6154] netlink: 28 bytes leftover after parsing attributes in process `syz.2.61'. [ 128.782482][ T6158] can: request_module (can-proto-0) failed. [ 131.228371][ T6202] Invalid ELF header magic: != ELF [ 133.267330][ T6205] netlink: 28 bytes leftover after parsing attributes in process `syz.0.72'. [ 133.429781][ T6205] geneve1: entered allmulticast mode [ 133.714735][ T6221] netlink: 28 bytes leftover after parsing attributes in process `syz.1.76'. [ 134.472141][ T6230] sp0: Synchronizing with TNC [ 135.859146][ T6239] random: crng reseeded on system resumption [ 136.474776][ T6236] netlink: 28 bytes leftover after parsing attributes in process `syz.0.80'. [ 138.632320][ T6257] could not allocate digest TFM handle [ 138.970088][ T29] audit: type=1806 audit(1735244250.473:5): xattr="security.apparm" res=-17 [ 139.050840][ T6275] random: crng reseeded on system resumption [ 139.233454][ T6281] vivid-013: ================= START STATUS ================= [ 139.233530][ T6281] vivid-013: Generate PTS: true [ 139.233593][ T6281] vivid-013: Generate SCR: true [ 139.233631][ T6281] tpg source WxH: 640x360 (Y'CbCr) [ 139.233652][ T6281] tpg field: 1 [ 139.233670][ T6281] tpg crop: 640x360@0x0 [ 139.233693][ T6281] tpg compose: 640x360@0x0 [ 139.233716][ T6281] tpg colorspace: 8 [ 139.233729][ T6281] tpg transfer function: 0/0 [ 139.233747][ T6281] tpg Y'CbCr encoding: 0/0 [ 139.233764][ T6281] tpg quantization: 0/0 [ 139.233780][ T6281] tpg RGB range: 0/2 [ 139.236086][ T6281] vivid-013: ================== END STATUS ================== [ 140.494073][ T6309] netlink: 4 bytes leftover after parsing attributes in process `syz.3.94'. [ 140.804115][ T6304] netlink: 350 bytes leftover after parsing attributes in process `syz.2.93'. [ 143.025967][ T6342] syz_tun: tun_chr_ioctl cmd 1074025688 [ 144.138403][ T6359] random: crng reseeded on system resumption [ 144.682823][ T29] audit: type=1806 audit(1735244256.183:6): xattr="" res=-22 [ 144.914464][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 144.923667][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 146.684767][ T6392] FAULT_INJECTION: forcing a failure. [ 146.684767][ T6392] name failslab, interval 1, probability 0, space 0, times 1 [ 146.705509][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.1.117 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 146.719328][ T6392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 146.732784][ T6392] Call Trace: [ 146.737967][ T6392] [ 146.741835][ T6392] dump_stack_lvl+0x16c/0x1f0 [ 146.747227][ T6392] should_fail_ex+0x497/0x5b0 [ 146.752372][ T6392] ? fs_reclaim_acquire+0xae/0x150 [ 146.758283][ T6392] should_failslab+0xc2/0x120 [ 146.763934][ T6392] __kmalloc_node_noprof+0xd1/0x520 [ 146.770316][ T6392] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 146.776358][ T6392] __kvmalloc_node_noprof+0xad/0x1a0 [ 146.782714][ T6392] seq_read_iter+0x82a/0x12b0 [ 146.787576][ T6392] ? __mutex_trylock_common+0xea/0x250 [ 146.793510][ T6392] kernfs_fop_read_iter+0x414/0x580 [ 146.799969][ T6392] ? rw_verify_area+0xd0/0x700 [ 146.806225][ T6392] vfs_read+0x87f/0xbe0 [ 146.811610][ T6392] ? __pfx_vfs_read+0x10/0x10 [ 146.817106][ T6392] ksys_read+0x12b/0x250 [ 146.823002][ T6392] ? __pfx_ksys_read+0x10/0x10 [ 146.829716][ T6392] do_syscall_64+0xcd/0x250 [ 146.837506][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.845135][ T6392] RIP: 0033:0x7f5ee9185d29 [ 146.850557][ T6392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 146.872849][ T6392] RSP: 002b:00007f5ee9ff9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 146.882112][ T6392] RAX: ffffffffffffffda RBX: 00007f5ee9375fa0 RCX: 00007f5ee9185d29 [ 146.891290][ T6392] RDX: 0000000000001000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 146.900972][ T6392] RBP: 00007f5ee9ff9090 R08: 0000000000000000 R09: 0000000000000000 [ 146.910375][ T6392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 146.920166][ T6392] R13: 0000000000000000 R14: 00007f5ee9375fa0 R15: 00007ffe4ad60998 [ 146.933200][ T6392] [ 147.906733][ T6405] sp0: Synchronizing with TNC [ 148.327193][ T6414] netlink: 'syz.3.122': attribute type 1 has an invalid length. [ 148.655548][ T29] audit: type=1806 audit(1735244260.163:7): xattr="" res=-22 [ 148.828755][ T6426] FAULT_INJECTION: forcing a failure. [ 148.828755][ T6426] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 148.842718][ T6426] CPU: 0 UID: 0 PID: 6426 Comm: syz.2.127 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 148.854257][ T6426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 148.865363][ T6426] Call Trace: [ 148.870003][ T6426] [ 148.873112][ T6426] dump_stack_lvl+0x16c/0x1f0 [ 148.878172][ T6426] should_fail_ex+0x497/0x5b0 [ 148.884953][ T6426] _copy_to_iter+0x29b/0x1400 [ 148.889751][ T6426] ? trace_lock_acquire+0x14e/0x1f0 [ 148.895113][ T6426] ? __pfx_lock_release+0x10/0x10 [ 148.900223][ T6426] ? __pfx__copy_to_iter+0x10/0x10 [ 148.905506][ T6426] ? __virt_addr_valid+0x1a4/0x590 [ 148.911228][ T6426] ? __virt_addr_valid+0x5e/0x590 [ 148.916853][ T6426] ? __phys_addr_symbol+0x30/0x80 [ 148.922282][ T6426] ? __check_object_size+0x488/0x710 [ 148.929640][ T6426] seq_read_iter+0xd00/0x12b0 [ 148.935716][ T6426] kernfs_fop_read_iter+0x414/0x580 [ 148.942907][ T6426] ? rw_verify_area+0xd0/0x700 [ 148.949755][ T6426] vfs_read+0x87f/0xbe0 [ 148.956349][ T6426] ? __pfx_vfs_read+0x10/0x10 [ 148.961395][ T6426] ksys_read+0x12b/0x250 [ 148.966572][ T6426] ? __pfx_ksys_read+0x10/0x10 [ 148.972457][ T6426] do_syscall_64+0xcd/0x250 [ 148.977809][ T6426] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.983821][ T6426] RIP: 0033:0x7f2a36185d29 [ 148.988367][ T6426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.011272][ T6426] RSP: 002b:00007f2a3702d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 149.023399][ T6426] RAX: ffffffffffffffda RBX: 00007f2a36375fa0 RCX: 00007f2a36185d29 [ 149.033339][ T6426] RDX: 0000000000001000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 149.042061][ T6426] RBP: 00007f2a3702d090 R08: 0000000000000000 R09: 0000000000000000 [ 149.050511][ T6426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 149.059166][ T6426] R13: 0000000000000000 R14: 00007f2a36375fa0 R15: 00007ffc3d7a5988 [ 149.068266][ T6426] [ 150.538842][ T6448] Process accounting resumed [ 150.863324][ T6437] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 151.211266][ T29] audit: type=1806 audit(1735244262.703:8): xattr="" res=-22 [ 151.639749][ T6481] erspan0: entered allmulticast mode [ 152.365637][ T6497] sp0: Synchronizing with TNC [ 152.713146][ T6504] sp0: Synchronizing with TNC [ 153.189504][ T6510] netlink: 4 bytes leftover after parsing attributes in process `syz.0.146'. [ 153.640606][ T5848] Bluetooth: hci2: ACL packet too small [ 153.764182][ T6524] random: crng reseeded on system resumption [ 155.053364][ T6546] sp0: Synchronizing with TNC [ 155.094414][ T29] audit: type=1806 audit(1735244266.593:9): xattr="" res=-22 [ 155.169844][ T29] audit: type=1806 audit(1735244266.673:10): xattr="security.apparm" res=-17 [ 156.219553][ T6574] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 156.249421][ T6574] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 156.293676][ T6574] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 156.387456][ T6574] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 156.397149][ T6574] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 156.483124][ T6574] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 156.570961][ T6574] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 156.604688][ T6574] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 156.784969][ T6574] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 156.864335][ T6574] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 156.884149][ T6574] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 156.905797][ T6574] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 157.174099][ T29] audit: type=1806 audit(1735244268.623:11): xattr="security.apparm" res=-17 [ 157.467076][ T29] audit: type=1806 audit(1735244268.973:12): res=-14 [ 158.121635][ T6605] Process accounting resumed [ 158.254845][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout [ 158.340802][ T6613] sp0: Synchronizing with TNC [ 158.414346][ T5848] Bluetooth: hci1: command 0x0c1a tx timeout [ 158.654410][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout [ 158.894734][ T5848] Bluetooth: hci2: command 0x0c1a tx timeout [ 159.724936][ T29] audit: type=1806 audit(1735244271.233:13): res=-14 [ 159.943420][ T6641] random: crng reseeded on system resumption [ 160.333983][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout [ 160.500206][ T5848] Bluetooth: hci1: command 0x0c1a tx timeout [ 160.595078][ T6650] netlink: 8 bytes leftover after parsing attributes in process `syz.1.184'. [ 160.734419][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout [ 160.974376][ T5848] Bluetooth: hci2: command 0x0c1a tx timeout [ 161.801409][ T6660] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 162.003572][ T6676] random: crng reseeded on system resumption [ 162.230039][ T6678] netlink: 206 bytes leftover after parsing attributes in process `syz.0.189'. [ 162.413982][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout [ 162.574879][ T5848] Bluetooth: hci1: command 0x0c1a tx timeout [ 162.813946][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout [ 163.022589][ T6667] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 163.053957][ T5848] Bluetooth: hci2: command 0x0c1a tx timeout [ 165.114638][ T6715] netlink: 28 bytes leftover after parsing attributes in process `syz.3.200'. [ 165.834643][ T6731] random: crng reseeded on system resumption [ 167.337329][ T6716] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 169.680729][ T6757] random: crng reseeded on system resumption [ 170.734709][ T6769] netlink: 28 bytes leftover after parsing attributes in process `syz.1.213'. [ 170.761433][ T6772] netlink: 322 bytes leftover after parsing attributes in process `syz.0.214'. [ 172.390367][ T6798] netlink: 'syz.3.219': attribute type 21 has an invalid length. [ 172.472681][ T6798] netlink: 334 bytes leftover after parsing attributes in process `syz.3.219'. [ 172.659306][ T6799] netlink: 'syz.3.219': attribute type 21 has an invalid length. [ 172.693470][ T6799] netlink: 334 bytes leftover after parsing attributes in process `syz.3.219'. [ 173.570085][ T29] audit: type=1806 audit(1735244285.073:14): xattr="security.apparm" res=-17 [ 173.824688][ T6813] random: crng reseeded on system resumption [ 175.251315][ T6822] netlink: 40 bytes leftover after parsing attributes in process `syz.2.224'. [ 178.039742][ T6852] netlink: 28 bytes leftover after parsing attributes in process `syz.2.230'. [ 178.064184][ T6852] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 178.104123][ T6852] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 178.190554][ T6852] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 178.211263][ T6852] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 179.120056][ T6860] random: crng reseeded on system resumption [ 179.806892][ T6868] netlink: 40 bytes leftover after parsing attributes in process `syz.0.232'. [ 180.739067][ T6861] Process accounting paused [ 181.239305][ T6887] openvswitch: netlink: IP tunnel dst address not specified [ 181.960651][ T6899] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 182.197582][ T6908] Process accounting resumed [ 182.218206][ T6908] kstrtoul() returned -22 for lu_gp_id [ 182.495545][ T6918] Process accounting resumed [ 182.850197][ T6926] netlink: 28 bytes leftover after parsing attributes in process `syz.3.246'. [ 183.053415][ T6931] random: crng reseeded on system resumption [ 183.154421][ T6924] netlink: 28 bytes leftover after parsing attributes in process `syz.2.245'. [ 185.295730][ T6953] netlink: 28 bytes leftover after parsing attributes in process `syz.0.253'. [ 185.464717][ T6962] random: crng reseeded on system resumption [ 185.532502][ T6953] hsr_slave_1 (unregistering): left promiscuous mode [ 186.180490][ T6977] FAULT_INJECTION: forcing a failure. [ 186.180490][ T6977] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 186.206341][ T6977] CPU: 1 UID: 0 PID: 6977 Comm: syz.0.257 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 186.218707][ T6977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 186.229810][ T6977] Call Trace: [ 186.233268][ T6977] [ 186.236344][ T6977] dump_stack_lvl+0x16c/0x1f0 [ 186.241337][ T6977] should_fail_ex+0x497/0x5b0 [ 186.246324][ T6977] _copy_from_user+0x2e/0xd0 [ 186.251185][ T6977] copy_msghdr_from_user+0x99/0x160 [ 186.256571][ T6977] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 186.262634][ T6977] ___sys_sendmsg+0xff/0x1e0 [ 186.267455][ T6977] ? __pfx____sys_sendmsg+0x10/0x10 [ 186.272927][ T6977] ? __pfx_lock_release+0x10/0x10 [ 186.278012][ T6977] ? trace_lock_acquire+0x14e/0x1f0 [ 186.284462][ T6977] ? __fget_files+0x206/0x3a0 [ 186.289991][ T6977] __sys_sendmsg+0x16e/0x220 [ 186.294646][ T6977] ? __pfx___sys_sendmsg+0x10/0x10 [ 186.300299][ T6977] do_syscall_64+0xcd/0x250 [ 186.304860][ T6977] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.310913][ T6977] RIP: 0033:0x7f71a6785d29 [ 186.315579][ T6977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.338336][ T6977] RSP: 002b:00007f71a45f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 186.347510][ T6977] RAX: ffffffffffffffda RBX: 00007f71a6976160 RCX: 00007f71a6785d29 [ 186.356214][ T6977] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 186.364500][ T6977] RBP: 00007f71a45f6090 R08: 0000000000000000 R09: 0000000000000000 [ 186.372588][ T6977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 186.380616][ T6977] R13: 0000000000000000 R14: 00007f71a6976160 R15: 00007fff83f8aac8 [ 186.389704][ T6977] [ 186.393036][ C1] vkms_vblank_simulate: vblank timer overrun [ 187.057442][ T6960] kexec: Could not allocate control_code_buffer [ 187.304625][ T6994] random: crng reseeded on system resumption [ 187.749614][ T7000] netlink: 28 bytes leftover after parsing attributes in process `syz.0.260'. [ 188.649621][ T7019] FAULT_INJECTION: forcing a failure. [ 188.649621][ T7019] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 188.663996][ T7019] CPU: 1 UID: 0 PID: 7019 Comm: syz.1.268 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 188.674674][ T7019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 188.685850][ T7019] Call Trace: [ 188.689179][ T7019] [ 188.692159][ T7019] dump_stack_lvl+0x16c/0x1f0 [ 188.696915][ T7019] should_fail_ex+0x497/0x5b0 [ 188.701660][ T7019] _copy_from_user+0x2e/0xd0 [ 188.706324][ T7019] move_addr_to_kernel+0x68/0x160 [ 188.711446][ T7019] __copy_msghdr+0x386/0x470 [ 188.716120][ T7019] copy_msghdr_from_user+0xc2/0x160 [ 188.721407][ T7019] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 188.727318][ T7019] ___sys_sendmsg+0xff/0x1e0 [ 188.731992][ T7019] ? __pfx____sys_sendmsg+0x10/0x10 [ 188.737378][ T7019] ? __pfx_lock_release+0x10/0x10 [ 188.742470][ T7019] ? trace_lock_acquire+0x14e/0x1f0 [ 188.747768][ T7019] ? __fget_files+0x206/0x3a0 [ 188.752527][ T7019] __sys_sendmsg+0x16e/0x220 [ 188.757210][ T7019] ? __pfx___sys_sendmsg+0x10/0x10 [ 188.762459][ T7019] do_syscall_64+0xcd/0x250 [ 188.767060][ T7019] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.773044][ T7019] RIP: 0033:0x7f5ee9185d29 [ 188.777515][ T7019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 188.797199][ T7019] RSP: 002b:00007f5ee9fb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 188.805849][ T7019] RAX: ffffffffffffffda RBX: 00007f5ee9376160 RCX: 00007f5ee9185d29 [ 188.814322][ T7019] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 188.823862][ T7019] RBP: 00007f5ee9fb7090 R08: 0000000000000000 R09: 0000000000000000 [ 188.833314][ T7019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 188.842747][ T7019] R13: 0000000000000000 R14: 00007f5ee9376160 R15: 00007ffe4ad60998 [ 188.850979][ T7019] [ 188.854143][ C1] vkms_vblank_simulate: vblank timer overrun [ 189.287150][ T7028] netlink: 28 bytes leftover after parsing attributes in process `syz.0.270'. [ 189.304111][ T7028] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 189.311614][ T7028] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 189.328139][ T7028] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 189.354484][ T7028] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 189.894579][ T7034] netlink: 28 bytes leftover after parsing attributes in process `syz.3.272'. [ 192.505294][ T7086] netlink: 40 bytes leftover after parsing attributes in process `syz.1.281'. [ 193.225279][ T7101] FAULT_INJECTION: forcing a failure. [ 193.225279][ T7101] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 193.286286][ T7101] CPU: 0 UID: 0 PID: 7101 Comm: syz.2.285 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 193.296990][ T7101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 193.307379][ T7101] Call Trace: [ 193.310703][ T7101] [ 193.313784][ T7101] dump_stack_lvl+0x16c/0x1f0 [ 193.318599][ T7101] should_fail_ex+0x497/0x5b0 [ 193.323360][ T7101] _copy_from_user+0x2e/0xd0 [ 193.328041][ T7101] ____sys_sendmsg+0x56e/0xb40 [ 193.332924][ T7101] ? __pfx_____sys_sendmsg+0x10/0x10 [ 193.338353][ T7101] ___sys_sendmsg+0x135/0x1e0 [ 193.343118][ T7101] ? __pfx____sys_sendmsg+0x10/0x10 [ 193.348416][ T7101] ? __pfx_lock_release+0x10/0x10 [ 193.353539][ T7101] ? trace_lock_acquire+0x14e/0x1f0 [ 193.359010][ T7101] ? __fget_files+0x206/0x3a0 [ 193.363780][ T7101] __sys_sendmsg+0x16e/0x220 [ 193.368461][ T7101] ? __pfx___sys_sendmsg+0x10/0x10 [ 193.373683][ T7101] do_syscall_64+0xcd/0x250 [ 193.378278][ T7101] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.384269][ T7101] RIP: 0033:0x7f2a36185d29 [ 193.388742][ T7101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.408422][ T7101] RSP: 002b:00007f2a36feb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 193.416929][ T7101] RAX: ffffffffffffffda RBX: 00007f2a36376160 RCX: 00007f2a36185d29 [ 193.425232][ T7101] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 193.433258][ T7101] RBP: 00007f2a36feb090 R08: 0000000000000000 R09: 0000000000000000 [ 193.441300][ T7101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 193.449335][ T7101] R13: 0000000000000000 R14: 00007f2a36376160 R15: 00007ffc3d7a5988 [ 193.457385][ T7101] [ 194.741439][ T7117] netlink: 28 bytes leftover after parsing attributes in process `syz.3.288'. [ 194.774141][ T7118] FAULT_INJECTION: forcing a failure. [ 194.774141][ T7118] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 194.795474][ T7118] CPU: 0 UID: 0 PID: 7118 Comm: syz.3.288 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 194.806360][ T7118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 194.816917][ T7118] Call Trace: [ 194.820581][ T7118] [ 194.823744][ T7118] dump_stack_lvl+0x16c/0x1f0 [ 194.828602][ T7118] should_fail_ex+0x497/0x5b0 [ 194.833369][ T7118] _copy_from_user+0x2e/0xd0 [ 194.838057][ T7118] copy_msghdr_from_user+0x99/0x160 [ 194.843524][ T7118] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 194.849448][ T7118] ? __pfx___lock_acquire+0x10/0x10 [ 194.854725][ T7118] ___sys_recvmsg+0xdc/0x1a0 [ 194.859399][ T7118] ? __pfx____sys_recvmsg+0x10/0x10 [ 194.864782][ T7118] ? find_held_lock+0x2d/0x110 [ 194.869657][ T7118] ? __pfx___might_resched+0x10/0x10 [ 194.875023][ T7118] ? __might_fault+0xe3/0x190 [ 194.879796][ T7118] do_recvmmsg+0x2f8/0x740 [ 194.884334][ T7118] ? __pfx_do_recvmmsg+0x10/0x10 [ 194.889355][ T7118] ? vfs_write+0x306/0x1150 [ 194.894027][ T7118] ? __mutex_unlock_slowpath+0x164/0x690 [ 194.899747][ T7118] ? __fget_files+0x206/0x3a0 [ 194.904603][ T7118] __x64_sys_recvmmsg+0x239/0x290 [ 194.909725][ T7118] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 194.915644][ T7118] do_syscall_64+0xcd/0x250 [ 194.920260][ T7118] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.926331][ T7118] RIP: 0033:0x7f9cc4f85d29 [ 194.930807][ T7118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.950490][ T7118] RSP: 002b:00007f9cc5e7f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 194.959062][ T7118] RAX: ffffffffffffffda RBX: 00007f9cc5176080 RCX: 00007f9cc4f85d29 [ 194.967096][ T7118] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 194.975751][ T7118] RBP: 00007f9cc5e7f090 R08: 0000000000000000 R09: 0000000000000000 [ 194.984052][ T7118] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 194.992343][ T7118] R13: 0000000000000001 R14: 00007f9cc5176080 R15: 00007ffeb9c01088 [ 195.000571][ T7118] [ 195.384653][ T7127] random: crng reseeded on system resumption [ 195.494287][ T7129] netlink: 334 bytes leftover after parsing attributes in process `syz.3.292'. [ 195.694679][ T7122] netlink: 28 bytes leftover after parsing attributes in process `syz.1.289'. [ 196.780600][ T29] audit: type=1806 audit(1735244308.243:15): xattr="security.apparm" res=-17 [ 196.811295][ T7145] netlink: 28 bytes leftover after parsing attributes in process `syz.2.296'. [ 198.864239][ T7178] random: crng reseeded on system resumption [ 199.098559][ T29] audit: type=1806 audit(1735244310.603:16): xattr="security.apparm" res=-17 [ 199.901885][ T7201] sp0: Synchronizing with TNC [ 200.402442][ T7210] Process accounting resumed [ 200.440347][ T7074] Process accounting resumed [ 200.498762][ T7212] netlink: 28 bytes leftover after parsing attributes in process `syz.3.310'. [ 200.641575][ T7217] Process accounting resumed [ 200.729508][ T7219] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 200.736343][ T7219] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 201.034486][ T29] audit: type=1806 audit(8277292035.380:17): xattr="security.apparm" res=-17 [ 201.593012][ T7233] delete_channel: no stack [ 201.924288][ T7237] netlink: 28 bytes leftover after parsing attributes in process `syz.0.319'. [ 203.299443][ T29] audit: type=1806 audit(8277292037.650:18): xattr="security.apparm" res=-17 [ 204.240070][ T7288] random: crng reseeded on system resumption [ 205.171812][ T7311] netlink: 28 bytes leftover after parsing attributes in process `syz.2.334'. [ 205.249137][ T7311] veth0_macvtap: left promiscuous mode [ 205.782325][ T29] audit: type=1806 audit(8277292040.130:19): xattr="" res=-22 [ 205.986838][ T7335] netlink: 8 bytes leftover after parsing attributes in process `syz.1.338'. [ 206.338437][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 206.345153][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 206.569795][ T7354] sp0: Synchronizing with TNC [ 206.789326][ T7361] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 206.789326][ T7361] M' is too long [ 206.802257][ T7361] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 206.802257][ T7361] W ' is too long [ 206.897374][ T29] audit: type=1806 audit(8277292041.250:20): xattr="" res=-22 [ 207.043899][ T29] audit: type=1806 audit(8277292041.390:21): xattr="security.apparm" res=-17 [ 207.604948][ T7381] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 207.953444][ T7388] sp0: Synchronizing with TNC [ 208.323692][ T7394] netlink: 338 bytes leftover after parsing attributes in process `syz.3.355'. [ 209.606908][ T7438] netlink: 'syz.2.371': attribute type 2 has an invalid length. [ 209.832784][ T7447] netlink: 28 bytes leftover after parsing attributes in process `syz.1.364'. [ 209.875437][ T7447] veth0_macvtap: left promiscuous mode [ 210.093312][ T29] audit: type=1806 audit(8277292044.440:22): xattr="security.apparm" res=-17 [ 211.029038][ T7455] Process accounting resumed [ 211.252945][ T29] audit: type=1806 audit(8277292045.600:23): xattr="security.apparm" res=-17 [ 212.084900][ T7489] ======================================================= [ 212.084900][ T7489] WARNING: The mand mount option has been deprecated and [ 212.084900][ T7489] and is ignored by this kernel. Remove the mand [ 212.084900][ T7489] option from the mount to silence this warning. [ 212.084900][ T7489] ======================================================= [ 212.207093][ T7481] bond0: option updelay: invalid value (/sys/devices/virtual/block/loop5/queue/discard_max_hw_bytes) [ 212.243941][ T7481] bond0: option updelay: allowed values 0 - 2147483647 [ 212.416980][ T29] audit: type=1806 audit(8277292046.770:24): xattr="security.apparm" res=-17 [ 213.214940][ T29] audit: type=1806 audit(8277292047.570:25): xattr="security.apparm" res=-17 [ 214.095130][ T7516] random: crng reseeded on system resumption [ 215.640307][ T7525] bond0: option updelay: invalid value (/sys/devices/virtual/block/loop5/queue/discard_max_hw_bytes) [ 215.651518][ T7525] bond0: option updelay: allowed values 0 - 2147483647 [ 215.878477][ T7531] random: crng reseeded on system resumption [ 216.265434][ T7535] kafs: addr_prefs: Invalid Command [ 217.074501][ T7547] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 217.597013][ T7546] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 217.764515][ T29] audit: type=1806 audit(8277292052.120:26): xattr="security.apparm" res=-17 [ 218.033854][ T29] audit: type=1806 audit(8277292052.380:27): xattr="security.apparm" res=-17 [ 218.094091][ T7578] netlink: 4 bytes leftover after parsing attributes in process `syz.1.399'. [ 218.331956][ T7584] netlink: 4 bytes leftover after parsing attributes in process `syz.1.399'. [ 218.947360][ T29] audit: type=1806 audit(8277292053.300:28): xattr="security.apparm" res=-17 [ 218.997987][ T7612] netlink: 28 bytes leftover after parsing attributes in process `syz.1.406'. [ 219.957910][ T7635] Process accounting resumed [ 220.322384][ T7642] vivid-013: ================= START STATUS ================= [ 220.332759][ T7642] vivid-013: Generate PTS: true [ 220.339025][ T7642] vivid-013: Generate SCR: true [ 220.344473][ T7642] tpg source WxH: 640x360 (Y'CbCr) [ 220.349771][ T7642] tpg field: 1 [ 220.353287][ T7642] tpg crop: 640x360@0x0 [ 220.359828][ T7642] tpg compose: 640x360@0x0 [ 220.364746][ T7642] tpg colorspace: 8 [ 220.368723][ T7642] tpg transfer function: 0/0 [ 220.373630][ T7642] tpg Y'CbCr encoding: 0/0 [ 220.378253][ T7642] tpg quantization: 0/0 [ 220.382591][ T7642] tpg RGB range: 0/2 [ 220.388101][ T7642] vivid-013: ================== END STATUS ================== [ 220.853946][ T29] audit: type=1800 audit(8277292055.200:29): pid=7655 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.417" name="lu_gp_id" dev="configfs" ino=14584 res=0 errno=0 [ 222.413880][ T7664] netlink: 334 bytes leftover after parsing attributes in process `syz.3.419'. [ 223.670715][ T7659] syz.0.416: vmalloc error: size 69206016, failed to allocated page array size 135168, mode:0xc22(GFP_ATOMIC|__GFP_HIGHMEM|__GFP_DIRECT_RECLAIM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 223.733973][ T7659] CPU: 1 UID: 0 PID: 7659 Comm: syz.0.416 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 223.744660][ T7659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 223.754749][ T7659] Call Trace: [ 223.758051][ T7659] [ 223.761006][ T7659] dump_stack_lvl+0x16c/0x1f0 [ 223.765728][ T7659] warn_alloc+0x24d/0x3a0 [ 223.770108][ T7659] ? __pfx_warn_alloc+0x10/0x10 [ 223.775019][ T7659] ? __get_vm_area_node+0x1b0/0x2f0 [ 223.780285][ T7659] ? __get_vm_area_node+0x1dc/0x2f0 [ 223.785530][ T7659] __vmalloc_node_range_noprof+0x1105/0x1530 [ 223.791566][ T7659] ? ctl_ioctl+0x862/0xde0 [ 223.796155][ T7659] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 223.802544][ T7659] ? rcu_is_watching+0x12/0xc0 [ 223.807365][ T7659] ? trace_kmalloc+0x2d/0xd0 [ 223.811988][ T7659] ? __kmalloc_node_noprof.cold+0x5a/0x5f [ 223.817759][ T7659] ? ctl_ioctl+0x862/0xde0 [ 223.822225][ T7659] __kvmalloc_node_noprof+0x14f/0x1a0 [ 223.827647][ T7659] ? ctl_ioctl+0x862/0xde0 [ 223.832141][ T7659] ctl_ioctl+0x862/0xde0 [ 223.836450][ T7659] ? __pfx_get_target_version+0x10/0x10 [ 223.842075][ T7659] ? do_vfs_ioctl+0x513/0x1950 [ 223.846887][ T7659] ? __pfx_ctl_ioctl+0x10/0x10 [ 223.851749][ T7659] ? __fget_files+0x206/0x3a0 [ 223.856587][ T7659] dm_ctl_ioctl+0x22/0x30 [ 223.860974][ T7659] ? __pfx_dm_ctl_ioctl+0x10/0x10 [ 223.866046][ T7659] __x64_sys_ioctl+0x190/0x200 [ 223.870858][ T7659] do_syscall_64+0xcd/0x250 [ 223.875419][ T7659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.881377][ T7659] RIP: 0033:0x7f71a6785d29 [ 223.885840][ T7659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 223.905588][ T7659] RSP: 002b:00007f71a7508038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 223.914051][ T7659] RAX: ffffffffffffffda RBX: 00007f71a6975fa0 RCX: 00007f71a6785d29 [ 223.922083][ T7659] RDX: 00000000200001c0 RSI: fffffffffffffd11 RDI: 0000000000000007 [ 223.930124][ T7659] RBP: 00007f71a6801b08 R08: 0000000000000000 R09: 0000000000000000 [ 223.938122][ T7659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 223.946131][ T7659] R13: 0000000000000000 R14: 00007f71a6975fa0 R15: 00007fff83f8aac8 [ 223.954150][ T7659] [ 223.983907][ T7659] Mem-Info: [ 223.987123][ T7659] active_anon:16576 inactive_anon:18 isolated_anon:0 [ 223.987123][ T7659] active_file:16492 inactive_file:44388 isolated_file:0 [ 223.987123][ T7659] unevictable:768 dirty:826 writeback:0 [ 223.987123][ T7659] slab_reclaimable:10494 slab_unreclaimable:93442 [ 223.987123][ T7659] mapped:29468 shmem:5304 pagetables:729 [ 223.987123][ T7659] sec_pagetables:0 bounce:0 [ 223.987123][ T7659] kernel_misc_reclaimable:0 [ 223.987123][ T7659] free:1313763 free_pcp:10440 free_cma:0 [ 224.223970][ T7659] Node 0 active_anon:73516kB inactive_anon:72kB active_file:65968kB inactive_file:177544kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:125468kB dirty:3300kB writeback:0kB shmem:22880kB shmem_thp:6144kB shmem_pmdmapped:6144kB anon_thp:4096kB writeback_tmp:0kB kernel_stack:11148kB pagetables:3016kB sec_pagetables:0kB all_unreclaimable? no [ 224.282765][ T7659] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 224.363347][ T7659] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 224.507646][ T7659] lowmem_reserve[]: 0 2465 2466 0 0 [ 224.539262][ T7659] Node 0 DMA32 free:1367376kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:75972kB inactive_anon:72kB active_file:65968kB inactive_file:176728kB unevictable:1536kB writepending:3300kB present:3129332kB managed:2551336kB mlocked:0kB bounce:0kB free_pcp:2092kB local_pcp:700kB free_cma:0kB [ 224.634800][ T7659] lowmem_reserve[]: 0 0 0 0 0 [ 224.657709][ T7659] Node 0 Normal free:8kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:816kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB [ 224.687499][ T7659] lowmem_reserve[]: 0 0 0 0 0 [ 224.692710][ T7659] Node 1 Normal free:3885028kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:19136kB local_pcp:5168kB free_cma:0kB [ 224.752716][ T7659] lowmem_reserve[]: 0 0 0 0 0 [ 224.768884][ T7659] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 224.796513][ T7706] FAULT_INJECTION: forcing a failure. [ 224.796513][ T7706] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 224.810339][ T7706] CPU: 0 UID: 0 PID: 7706 Comm: syz.2.428 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 224.821003][ T7706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 224.833036][ T7706] Call Trace: [ 224.836385][ T7706] [ 224.839361][ T7706] dump_stack_lvl+0x16c/0x1f0 [ 224.844108][ T7706] should_fail_ex+0x497/0x5b0 [ 224.848871][ T7706] _copy_from_user+0x2e/0xd0 [ 224.853544][ T7706] memdup_user_nul+0x72/0x110 [ 224.854999][ T7659] Node 0 [ 224.858269][ T7706] evm_write_xattrs+0x1ed/0x890 [ 224.866367][ T7706] ? __pfx_evm_write_xattrs+0x10/0x10 [ 224.871922][ T7706] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 224.877623][ T7706] ? ksys_write+0x12b/0x250 [ 224.882249][ T7706] ? __pfx_evm_write_xattrs+0x10/0x10 [ 224.887697][ T7706] vfs_write+0x24c/0x1150 [ 224.892080][ T7706] ? __fget_files+0x1fc/0x3a0 [ 224.897075][ T7706] ? __pfx___mutex_lock+0x10/0x10 [ 224.902143][ T7706] ? __pfx_vfs_write+0x10/0x10 [ 224.906989][ T7706] ? __fget_files+0x206/0x3a0 [ 224.911711][ T7706] ksys_write+0x12b/0x250 [ 224.916079][ T7706] ? __pfx_ksys_write+0x10/0x10 [ 224.920977][ T7706] do_syscall_64+0xcd/0x250 [ 224.925524][ T7706] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.931458][ T7706] RIP: 0033:0x7f2a36185d29 [ 224.935903][ T7706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.955543][ T7706] RSP: 002b:00007f2a3702d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 224.963992][ T7706] RAX: ffffffffffffffda RBX: 00007f2a36375fa0 RCX: 00007f2a36185d29 [ 224.971990][ T7706] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000004 [ 224.979985][ T7706] RBP: 00007f2a3702d090 R08: 0000000000000000 R09: 0000000000000000 [ 224.987979][ T7706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 224.995973][ T7706] R13: 0000000000000000 R14: 00007f2a36375fa0 R15: 00007ffc3d7a5988 [ 225.003987][ T7706] [ 225.033923][ T29] audit: type=1806 audit(8277292059.150:30): res=-14 [ 225.064775][ T7659] DMA32: 3*4kB (ME) 982*8kB (UME) 1030*16kB (ME) 751*32kB (ME) 545*64kB (UME) 300*128kB (UME) 204*256kB (UME) 99*512kB (UM) 51*1024kB (UME) 15*2048kB (UME) 256*4096kB (UME) = 1356092kB [ 225.093321][ T7659] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 225.114640][ T7659] Node 1 Normal: 64*4kB (UE) 38*8kB (UME) 7*16kB (UME) 150*32kB (UE) 92*64kB (UME) 37*128kB (UE) 20*256kB (UME) 7*512kB (UE) 2*1024kB (UE) 4*2048kB (UME) 940*4096kB (M) = 3885280kB [ 225.125483][ T29] audit: type=1806 audit(8277292059.470:31): xattr="security.apparm" res=-17 [ 225.133632][ T7659] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 225.152349][ T7659] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 225.163012][ T7659] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 225.173072][ T7659] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 225.182851][ T7659] 67849 total pagecache pages [ 225.188172][ T7659] 46 pages in swap cache [ 225.192574][ T7659] Free swap = 124036kB [ 225.196926][ T7659] Total swap = 124996kB [ 225.201232][ T7659] 2097051 pages RAM [ 225.205225][ T7659] 0 pages HighMem/MovableOnly [ 225.210563][ T7659] 427367 pages reserved [ 225.215116][ T7659] 0 pages cma reserved [ 225.257188][ T7704] netlink: 8 bytes leftover after parsing attributes in process `syz.1.426'. [ 225.435185][ T7717] random: crng reseeded on system resumption [ 225.630705][ T7718] kernel read not supported for file /#)-\&[} (pid: 7718 comm: syz.2.430) [ 225.656681][ T29] audit: type=1800 audit(8277292060.010:32): pid=7718 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.430" name="#)-\&[}" dev="mqueue" ino=13872 res=0 errno=0 [ 226.236595][ T7731] nfsd: Unknown parameter 'IPVS' [ 226.797551][ T7746] netlink: 28 bytes leftover after parsing attributes in process `syz.1.437'. [ 227.267017][ T7749] syz.2.438 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 229.536784][ T7803] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 229.651368][ T7803] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 232.339401][ T29] audit: type=1806 audit(8277292066.690:33): xattr="security.apparm" res=-17 [ 232.406341][ T29] audit: type=1800 audit(8277292066.760:34): pid=7838 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.454" name="lu_gp_id" dev="configfs" ino=14091 res=0 errno=0 [ 233.046867][ T7844] erspan0: entered allmulticast mode [ 233.384570][ T7850] netlink: 326 bytes leftover after parsing attributes in process `syz.0.457'. [ 233.427252][ T7850] bridge0: port 2(bridge_slave_1) entered disabled state [ 233.436068][ T7850] bridge0: port 1(bridge_slave_0) entered disabled state [ 235.041303][ T7874] netlink: 4 bytes leftover after parsing attributes in process `syz.1.463'. [ 235.101387][ T7872] netlink: 8 bytes leftover after parsing attributes in process `syz.0.462'. [ 235.133401][ T7874] netlink: 4 bytes leftover after parsing attributes in process `syz.1.463'. [ 238.871623][ T7917] netlink: 4 bytes leftover after parsing attributes in process `syz.1.471'. [ 238.903295][ T29] audit: type=1800 audit(8277292073.250:35): pid=7920 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.470" name="lu_gp_id" dev="configfs" ino=14976 res=0 errno=0 [ 238.983875][ T29] audit: type=1806 audit(8277292073.250:36): xattr="security.apparm" res=-17 [ 239.961552][ T7929] erspan0: entered allmulticast mode [ 241.135964][ T7945] Process accounting paused [ 242.016591][ T29] audit: type=1806 audit(8277292076.370:37): xattr="security.apparm" res=-17 [ 243.644839][ T29] audit: type=1806 audit(8277292078.000:38): xattr="security.apparm" res=-17 [ 244.407974][ T8005] FAULT_INJECTION: forcing a failure. [ 244.407974][ T8005] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 244.439204][ T8005] CPU: 1 UID: 0 PID: 8005 Comm: syz.0.491 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 244.449978][ T8005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 244.460093][ T8005] Call Trace: [ 244.463414][ T8005] [ 244.466393][ T8005] dump_stack_lvl+0x16c/0x1f0 [ 244.471143][ T8005] should_fail_ex+0x497/0x5b0 [ 244.475906][ T8005] _copy_from_user+0x2e/0xd0 [ 244.480575][ T8005] bm_register_write+0x119/0x1780 [ 244.485686][ T8005] ? __pfx_bm_register_write+0x10/0x10 [ 244.491223][ T8005] vfs_write+0x24c/0x1150 [ 244.495622][ T8005] ? __fget_files+0x1fc/0x3a0 [ 244.500380][ T8005] ? __pfx___mutex_lock+0x10/0x10 [ 244.505472][ T8005] ? __pfx_vfs_write+0x10/0x10 [ 244.510310][ T8005] ? __fget_files+0x206/0x3a0 [ 244.515063][ T8005] ksys_write+0x12b/0x250 [ 244.519460][ T8005] ? __pfx_ksys_write+0x10/0x10 [ 244.524388][ T8005] do_syscall_64+0xcd/0x250 [ 244.528990][ T8005] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.534953][ T8005] RIP: 0033:0x7f71a6785d29 [ 244.539420][ T8005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.559091][ T8005] RSP: 002b:00007f71a7508038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 244.567569][ T8005] RAX: ffffffffffffffda RBX: 00007f71a6975fa0 RCX: 00007f71a6785d29 [ 244.575596][ T8005] RDX: 00000000000000ff RSI: 0000000000000000 RDI: 0000000000000004 [ 244.583619][ T8005] RBP: 00007f71a7508090 R08: 0000000000000000 R09: 0000000000000000 [ 244.591645][ T8005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 244.599672][ T8005] R13: 0000000000000000 R14: 00007f71a6975fa0 R15: 00007fff83f8aac8 [ 244.607721][ T8005] [ 245.245437][ T8012] netlink: 20 bytes leftover after parsing attributes in process `syz.1.502'. [ 245.274096][ T8012] netlink: 20 bytes leftover after parsing attributes in process `syz.1.502'. [ 246.305090][ T8032] netlink: 28 bytes leftover after parsing attributes in process `syz.1.497'. [ 246.625574][ T8037] netlink: 4 bytes leftover after parsing attributes in process `syz.3.494'. [ 246.923967][ T8032] bond0: (slave bond_slave_1): Releasing backup interface [ 247.067722][ T8040] random: crng reseeded on system resumption [ 248.645559][ T8044] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 249.748813][ T8063] netlink: 12 bytes leftover after parsing attributes in process `syz.3.505'. [ 249.764990][ T8063] netlink: 16 bytes leftover after parsing attributes in process `syz.3.505'. [ 249.949458][ T29] audit: type=1806 audit(8277292084.300:39): xattr="security.apparm" res=-17 [ 250.543899][ T29] audit: type=1806 audit(8277292084.890:40): xattr="security.apparm" res=-17 [ 252.706038][ T8131] netlink: 'syz.0.519': attribute type 1 has an invalid length. [ 252.758281][ T8131] nbd: error processing sock list [ 252.839243][ T8132] netlink: 28 bytes leftover after parsing attributes in process `syz.0.519'. [ 252.989197][ T8137] netlink: 28 bytes leftover after parsing attributes in process `syz.1.520'. [ 255.186015][ T29] audit: type=1806 audit(8277292089.540:41): xattr="security.apparm" res=-17 [ 255.782634][ T29] audit: type=1806 audit(8277292090.130:42): xattr="security.apparm" res=-17 [ 256.637132][ T8186] could not allocate digest TFM handle [ 260.392347][ T8239] Falling back ldisc for ptm0. [ 260.608747][ T8254] Process accounting resumed [ 262.516146][ T8272] sp0: Synchronizing with TNC [ 262.909879][ T8278] sp0: Synchronizing with TNC [ 263.596384][ T29] audit: type=1806 audit(8277292097.950:43): xattr="security.apparm" res=-17 [ 263.844868][ T29] audit: type=1806 audit(8277292098.190:44): xattr="security.apparm" res=-17 [ 265.306516][ T8322] sp0: Synchronizing with TNC [ 265.683464][ T8330] HfR: entered promiscuous mode [ 265.713379][ T8330] netlink: 32 bytes leftover after parsing attributes in process `syz.2.574'. [ 266.458693][ T8352] netlink: 8 bytes leftover after parsing attributes in process `syz.1.569'. [ 267.500607][ T29] audit: type=1806 audit(8277292101.850:45): xattr=73656375726974792E61707061726D6F720A73 res=0 [ 267.777682][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 267.784348][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 268.114028][ T8383] Process accounting resumed [ 270.568051][ T8406] netlink: 'syz.3.584': attribute type 8 has an invalid length. [ 271.407205][ T29] audit: type=1806 audit(8277292105.760:46): xattr="security.apparm" res=-17 [ 272.989859][ T8450] Invalid ELF header magic: != ELF [ 273.418692][ T8459] FAULT_INJECTION: forcing a failure. [ 273.418692][ T8459] name failslab, interval 1, probability 0, space 0, times 0 [ 273.479608][ T8459] CPU: 0 UID: 0 PID: 8459 Comm: syz.0.598 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 273.490316][ T8459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 273.500429][ T8459] Call Trace: [ 273.503750][ T8459] [ 273.506721][ T8459] dump_stack_lvl+0x16c/0x1f0 [ 273.511468][ T8459] should_fail_ex+0x497/0x5b0 [ 273.516224][ T8459] ? fs_reclaim_acquire+0xae/0x150 [ 273.521410][ T8459] should_failslab+0xc2/0x120 [ 273.526166][ T8459] __kmalloc_node_track_caller_noprof+0xcf/0x520 [ 273.532571][ T8459] ? evm_write_xattrs+0x1ed/0x890 [ 273.537673][ T8459] memdup_user_nul+0x2b/0x110 [ 273.542450][ T8459] evm_write_xattrs+0x1ed/0x890 [ 273.547386][ T8459] ? __pfx_evm_write_xattrs+0x10/0x10 [ 273.552828][ T8459] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 273.558537][ T8459] ? ksys_write+0x12b/0x250 [ 273.563112][ T8459] ? __pfx_evm_write_xattrs+0x10/0x10 [ 273.568557][ T8459] vfs_write+0x24c/0x1150 [ 273.572948][ T8459] ? __fget_files+0x1fc/0x3a0 [ 273.577689][ T8459] ? __pfx___mutex_lock+0x10/0x10 [ 273.582779][ T8459] ? __pfx_vfs_write+0x10/0x10 [ 273.587628][ T8459] ? __fget_files+0x206/0x3a0 [ 273.592353][ T8459] ksys_write+0x12b/0x250 [ 273.596719][ T8459] ? __pfx_ksys_write+0x10/0x10 [ 273.601618][ T8459] do_syscall_64+0xcd/0x250 [ 273.606165][ T8459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.612104][ T8459] RIP: 0033:0x7f71a6785d29 [ 273.616545][ T8459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 273.636183][ T8459] RSP: 002b:00007f71a7508038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 273.644655][ T8459] RAX: ffffffffffffffda RBX: 00007f71a6975fa0 RCX: 00007f71a6785d29 [ 273.652654][ T8459] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000005 [ 273.660651][ T8459] RBP: 00007f71a7508090 R08: 0000000000000000 R09: 0000000000000000 [ 273.668653][ T8459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 273.676666][ T8459] R13: 0000000000000000 R14: 00007f71a6975fa0 R15: 00007fff83f8aac8 [ 273.684694][ T8459] [ 273.792277][ T29] audit: type=1806 audit(8277292107.770:47): res=-12 [ 275.457749][ T8504] sp0: Synchronizing with TNC [ 275.638799][ T8510] FAULT_INJECTION: forcing a failure. [ 275.638799][ T8510] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 275.652660][ T8510] CPU: 0 UID: 0 PID: 8510 Comm: syz.1.612 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 275.663321][ T8510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 275.673430][ T8510] Call Trace: [ 275.676753][ T8510] [ 275.679728][ T8510] dump_stack_lvl+0x16c/0x1f0 [ 275.684475][ T8510] should_fail_ex+0x497/0x5b0 [ 275.689219][ T8510] _copy_from_user+0x2e/0xd0 [ 275.693872][ T8510] memdup_user_nul+0x72/0x110 [ 275.698600][ T8510] evm_write_xattrs+0x1ed/0x890 [ 275.703499][ T8510] ? __pfx_evm_write_xattrs+0x10/0x10 [ 275.708923][ T8510] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 275.714609][ T8510] ? ksys_write+0x12b/0x250 [ 275.719172][ T8510] ? __pfx_evm_write_xattrs+0x10/0x10 [ 275.724590][ T8510] vfs_write+0x24c/0x1150 [ 275.728962][ T8510] ? __fget_files+0x1fc/0x3a0 [ 275.733681][ T8510] ? __pfx___mutex_lock+0x10/0x10 [ 275.738748][ T8510] ? __pfx_vfs_write+0x10/0x10 [ 275.743556][ T8510] ? __fget_files+0x206/0x3a0 [ 275.748288][ T8510] ksys_write+0x12b/0x250 [ 275.752652][ T8510] ? __pfx_ksys_write+0x10/0x10 [ 275.757552][ T8510] do_syscall_64+0xcd/0x250 [ 275.762126][ T8510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.768057][ T8510] RIP: 0033:0x7f5ee9185d29 [ 275.772500][ T8510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.792144][ T8510] RSP: 002b:00007f5ee9ff9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 275.800601][ T8510] RAX: ffffffffffffffda RBX: 00007f5ee9375fa0 RCX: 00007f5ee9185d29 [ 275.808599][ T8510] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000005 [ 275.816595][ T8510] RBP: 00007f5ee9ff9090 R08: 0000000000000000 R09: 0000000000000000 [ 275.824593][ T8510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 275.832587][ T8510] R13: 0000000000000000 R14: 00007f5ee9375fa0 R15: 00007ffe4ad60998 [ 275.840601][ T8510] [ 275.854329][ T29] audit: type=1806 audit(8277292109.990:48): res=-14 [ 277.743665][ T8541] batman_adv: Routing algorithm '' is not supported [ 278.456169][ T29] audit: type=1806 audit(8277292112.810:49): xattr="" res=-22 [ 280.154156][ T8607] mkiss: ax0: crc mode is auto. [ 282.766923][ T8680] batman_adv: Routing algorithm '' is not supported [ 283.216266][ T8700] sp0: Synchronizing with TNC [ 284.125074][ T8721] netlink: 28 bytes leftover after parsing attributes in process `syz.1.663'. [ 284.428525][ T8728] netlink: 452 bytes leftover after parsing attributes in process `syz.0.666'. [ 285.195860][ T8750] netlink: 28 bytes leftover after parsing attributes in process `syz.3.674'. [ 286.294105][ T8776] sp0: Synchronizing with TNC [ 287.008282][ T8794] netlink: 24 bytes leftover after parsing attributes in process `syz.1.684'. [ 287.025008][ T8794] netlink: 504 bytes leftover after parsing attributes in process `syz.1.684'. [ 287.073897][ T8795] netlink: 504 bytes leftover after parsing attributes in process `syz.1.684'. [ 287.107290][ T8794] netlink: 504 bytes leftover after parsing attributes in process `syz.1.684'. [ 288.531146][ T29] audit: type=1806 audit(8277292122.870:50): xattr="" res=-22 [ 288.794885][ T8847] sp0: Synchronizing with TNC [ 289.147963][ T8860] sp0: Synchronizing with TNC [ 289.204500][ T8863] Process accounting resumed [ 289.445484][ T8870] netlink: 342 bytes leftover after parsing attributes in process `syz.2.704'. [ 289.493882][ T29] audit: type=1806 audit(8277292123.830:51): xattr="security.apparm" res=-17 [ 290.327635][ T8907] netlink: 8 bytes leftover after parsing attributes in process `syz.0.713'. [ 290.367475][ T8908] Process accounting resumed [ 290.493100][ T8915] netlink: 1 bytes leftover after parsing attributes in process `syz.0.715'. [ 291.286140][ T8938] netlink: 28 bytes leftover after parsing attributes in process `syz.2.722'. [ 291.414187][ T8940] openvswitch: netlink: Flow key attr not present in new flow. [ 291.526883][ T8946] netlink: 252 bytes leftover after parsing attributes in process `syz.2.725'. [ 292.052816][ T8963] netlink: 342 bytes leftover after parsing attributes in process `syz.0.730'. [ 294.466165][ T9025] sp0: Synchronizing with TNC [ 295.122790][ T9047] openvswitch: netlink: Port -2134900732 exceeds max allowable 65535 [ 296.201799][ T9074] Process accounting resumed [ 296.571927][ T9091] netlink: 28 bytes leftover after parsing attributes in process `syz.1.759'. [ 299.348370][ T9144] sp0: Synchronizing with TNC [ 301.541752][ T29] audit: type=1806 audit(8277292135.890:52): res=-14 [ 302.751931][ T9206] sp0: Synchronizing with TNC [ 303.474686][ T9211] netlink: 85 bytes leftover after parsing attributes in process `syz.3.786'. [ 303.534155][ T29] audit: type=1806 audit(8277292137.890:53): xattr="security.apparm" res=-17 [ 304.281233][ T9241] sp0: Synchronizing with TNC [ 305.106027][ T9246] syz_tun: tun_chr_ioctl cmd 1074025676 [ 305.117298][ T9246] syz_tun: owner set to 3 [ 305.123532][ T29] audit: type=1806 audit(8277292139.470:54): xattr="security.apparm" res=-17 [ 313.360519][ T9407] netlink: 4 bytes leftover after parsing attributes in process `syz.3.833'. [ 313.751619][ T9415] program syz.1.835 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 313.775869][ T9415] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 314.283934][ T9426] netlink: 8 bytes leftover after parsing attributes in process `syz.0.839'. [ 314.892497][ T9438] program syz.3.840 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 317.916826][ T9473] syz_tun: tun_chr_ioctl cmd 6 [ 318.842955][ T9488] Process accounting resumed [ 318.958701][ T9483] FAULT_INJECTION: forcing a failure. [ 318.958701][ T9483] name fail_futex, interval 1, probability 0, space 0, times 1 [ 319.004185][ T9483] CPU: 0 UID: 0 PID: 9483 Comm: syz.3.849 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 319.014893][ T9483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 319.025003][ T9483] Call Trace: [ 319.028324][ T9483] [ 319.031293][ T9483] dump_stack_lvl+0x16c/0x1f0 [ 319.036039][ T9483] should_fail_ex+0x497/0x5b0 [ 319.040784][ T9483] ? __lock_acquire+0x15a9/0x3c40 [ 319.045872][ T9483] get_futex_key+0x4a3/0x1000 [ 319.050629][ T9483] ? __pfx_get_futex_key+0x10/0x10 [ 319.055836][ T9483] futex_wake+0xe8/0x4e0 [ 319.060150][ T9483] ? __pfx_futex_wake+0x10/0x10 [ 319.065072][ T9483] ? find_held_lock+0x2d/0x110 [ 319.069921][ T9483] do_futex+0x1e5/0x350 [ 319.074155][ T9483] ? __pfx_do_futex+0x10/0x10 [ 319.078913][ T9483] ? __might_fault+0xe3/0x190 [ 319.083666][ T9483] ? __might_fault+0xe3/0x190 [ 319.088420][ T9483] mm_release+0x24e/0x300 [ 319.092809][ T9483] do_exit+0x886/0x2d70 [ 319.097039][ T9483] ? get_signal+0x8f7/0x2610 [ 319.101690][ T9483] ? __pfx_do_exit+0x10/0x10 [ 319.106340][ T9483] ? do_raw_spin_lock+0x12d/0x2c0 [ 319.111408][ T9483] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 319.116911][ T9483] do_group_exit+0xd3/0x2a0 [ 319.121463][ T9483] get_signal+0x2576/0x2610 [ 319.126121][ T9483] ? __pfx_get_signal+0x10/0x10 [ 319.131037][ T9483] ? __pfx_vfs_read+0x10/0x10 [ 319.135761][ T9483] ? __fget_files+0x40/0x3a0 [ 319.140404][ T9483] arch_do_signal_or_restart+0x90/0x7e0 [ 319.146006][ T9483] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 319.152212][ T9483] ? ksys_read+0x1ba/0x250 [ 319.156666][ T9483] ? __pfx_ksys_read+0x10/0x10 [ 319.161475][ T9483] syscall_exit_to_user_mode+0x150/0x2a0 [ 319.167152][ T9483] do_syscall_64+0xda/0x250 [ 319.171699][ T9483] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.177631][ T9483] RIP: 0033:0x7f9cc4f85d29 [ 319.182073][ T9483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 319.201716][ T9483] RSP: 002b:00007f9cc5e7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 319.210181][ T9483] RAX: fffffffffffffe00 RBX: 00007f9cc5176080 RCX: 00007f9cc4f85d29 [ 319.218181][ T9483] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000003 [ 319.226181][ T9483] RBP: 00007f9cc5e7f090 R08: 0000000000000000 R09: 0000000000000000 [ 319.234187][ T9483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 319.242185][ T9483] R13: 0000000000000001 R14: 00007f9cc5176080 R15: 00007ffeb9c01088 [ 319.250225][ T9483] [ 319.253408][ C0] vkms_vblank_simulate: vblank timer overrun [ 320.099216][ T9150] syz.1.767 (9150) used greatest stack depth: 19312 bytes left [ 324.434298][ T9569] sd 0:0:1:0: PR command failed: 1026 [ 324.450112][ T9569] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 324.469712][ T9569] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 326.671241][ T9608] Process accounting resumed [ 327.007785][ T9618] random: crng reseeded on system resumption [ 328.684144][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 328.693620][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 328.784320][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 328.796528][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 328.914113][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 329.224228][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 329.230831][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 329.374293][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 329.382632][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 329.391340][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 329.719739][ T9657] dlm: non-version read from control device 128 [ 329.847168][ T9658] dlm: non-version read from control device 128 [ 329.904031][ T9657] dlm: non-version read from control device 65535 [ 329.934237][ T9658] dlm: non-version read from control device 8 [ 330.129154][ T9657] dlm: non-version read from control device 2147479552 [ 334.422473][ T29] audit: type=1806 audit(8277292168.770:55): xattr=73656375726974792E61707061726D6F720A73 res=-17 [ 336.777502][ T29] audit: type=1806 audit(8277292171.100:56): xattr=73656375726974792E61707061726D6F720A73 res=-17 [ 339.572505][ T9804] sp0: Synchronizing with TNC [ 341.417161][ T9812] syz_tun: tun_chr_ioctl cmd 2147767519 [ 341.850032][ T29] audit: type=1806 audit(8277292176.190:57): xattr="" res=-22 [ 342.793878][ T9844] netlink: 4 bytes leftover after parsing attributes in process `syz.1.940'. [ 343.128825][ T9853] netlink: 342 bytes leftover after parsing attributes in process `syz.1.942'. [ 343.779557][ T29] audit: type=1806 audit(8277292178.130:58): xattr="" res=-22 [ 344.341139][ T9884] netlink: 52 bytes leftover after parsing attributes in process `syz.0.948'. [ 345.138387][ T9892] netlink: 4 bytes leftover after parsing attributes in process `syz.0.950'. [ 345.362002][ T9897] netlink: 28 bytes leftover after parsing attributes in process `syz.1.952'. [ 345.859474][ T9915] netlink: 'syz.1.956': attribute type 2 has an invalid length. [ 345.876218][ T9915] netlink: 4 bytes leftover after parsing attributes in process `syz.1.956'. [ 355.245080][T10037] FAULT_INJECTION: forcing a failure. [ 355.245080][T10037] name failslab, interval 1, probability 0, space 0, times 0 [ 355.268088][T10037] CPU: 0 UID: 0 PID: 10037 Comm: syz.1.984 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 355.278858][T10037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 355.288946][T10037] Call Trace: [ 355.292277][T10037] [ 355.295233][T10037] dump_stack_lvl+0x16c/0x1f0 [ 355.299957][T10037] should_fail_ex+0x497/0x5b0 [ 355.304678][T10037] ? fs_reclaim_acquire+0xae/0x150 [ 355.309829][T10037] should_failslab+0xc2/0x120 [ 355.314549][T10037] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 355.319968][T10037] ? audit_log_start+0x2bc/0x7e0 [ 355.324960][T10037] audit_log_start+0x2bc/0x7e0 [ 355.329770][T10037] ? __pfx_audit_log_start+0x10/0x10 [ 355.335107][T10037] ? apparmor_capable+0x114/0x1d0 [ 355.340175][T10037] ? bpf_lsm_capable+0x9/0x10 [ 355.344883][T10037] ? security_capable+0x7e/0x260 [ 355.349869][T10037] evm_write_xattrs+0x15f/0x890 [ 355.354763][T10037] ? __pfx_evm_write_xattrs+0x10/0x10 [ 355.360171][T10037] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 355.365839][T10037] ? ksys_write+0x12b/0x250 [ 355.370382][T10037] ? __pfx_evm_write_xattrs+0x10/0x10 [ 355.375823][T10037] vfs_write+0x24c/0x1150 [ 355.380189][T10037] ? __fget_files+0x1fc/0x3a0 [ 355.384904][T10037] ? __pfx___mutex_lock+0x10/0x10 [ 355.389975][T10037] ? __pfx_vfs_write+0x10/0x10 [ 355.394801][T10037] ? __fget_files+0x206/0x3a0 [ 355.399522][T10037] ksys_write+0x12b/0x250 [ 355.403887][T10037] ? __pfx_ksys_write+0x10/0x10 [ 355.408784][T10037] do_syscall_64+0xcd/0x250 [ 355.413336][T10037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 355.419266][T10037] RIP: 0033:0x7f5ee9185d29 [ 355.423706][T10037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 355.443457][T10037] RSP: 002b:00007f5ee9ff9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 355.451900][T10037] RAX: ffffffffffffffda RBX: 00007f5ee9375fa0 RCX: 00007f5ee9185d29 [ 355.459902][T10037] RDX: 000000000000004d RSI: 0000000000000000 RDI: 0000000000000006 [ 355.467903][T10037] RBP: 00007f5ee9ff9090 R08: 0000000000000000 R09: 0000000000000000 [ 355.475902][T10037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 355.483911][T10037] R13: 0000000000000000 R14: 00007f5ee9375fa0 R15: 00007ffe4ad60998 [ 355.491962][T10037] [ 355.495026][ C0] vkms_vblank_simulate: vblank timer overrun [ 355.683776][T10037] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64 [ 355.724821][T10037] audit: out of memory in audit_log_start [ 358.057879][ T29] audit: type=1400 audit(8277292192.410:59): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=10065 comm="syz.1.991" [ 358.837194][ T9436] syz.2.837 (9436) used greatest stack depth: 19248 bytes left [ 359.067921][ T9433] syz.2.837 (9433) used greatest stack depth: 18016 bytes left [ 361.504759][T10113] vivid-013: ================= START STATUS ================= [ 361.512483][T10113] vivid-013: Generate PTS: true [ 361.624433][T10113] vivid-013: Generate SCR: true [ 361.629419][T10113] tpg source WxH: 640x360 (Y'CbCr) [ 361.693970][T10113] tpg field: 1 [ 361.697421][T10113] tpg crop: 640x360@0x0 [ 361.774116][T10113] tpg compose: 640x360@0x0 [ 361.803878][T10113] tpg colorspace: 8 [ 361.807772][T10113] tpg transfer function: 0/0 [ 361.812409][T10113] tpg Y'CbCr encoding: 0/0 [ 361.905129][T10113] tpg quantization: 0/0 [ 361.940507][T10113] tpg RGB range: 0/2 [ 361.989356][T10113] vivid-013: ================== END STATUS ================== [ 362.305676][T10129] audit: audit_lost=2 audit_rate_limit=0 audit_backlog_limit=64 [ 362.313429][T10129] audit: out of memory in audit_log_start [ 362.900900][T10137] sp0: Synchronizing with TNC [ 365.498703][T10189] sp0: Synchronizing with TNC [ 365.604922][T10177] Invalid ELF header magic: != ELF [ 367.833300][T10240] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1028'. [ 367.869776][ T29] audit: type=1400 audit(8277292202.220:60): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=10236 comm="syz.3.1029" [ 368.015975][T10246] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 368.427875][ T29] audit: type=1806 audit(8277292202.780:61): xattr=73656375726974792E61707061726D6F720A73 res=-17 [ 368.463053][T10265] lo: entered allmulticast mode [ 368.483620][T10265] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1035'. [ 368.591650][T10263] lo: left allmulticast mode [ 368.961728][T10276] sp0: Synchronizing with TNC [ 370.347804][ T29] audit: type=1800 audit(8277292204.700:62): pid=10303 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="dbroot" dev="configfs" ino=24403 res=0 errno=0 [ 370.749800][T10313] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1053'. [ 370.816333][T10313] mac80211_hwsim hwsim7 wlan0: entered promiscuous mode [ 370.843934][T10313] mac80211_hwsim hwsim7 wlan0: entered allmulticast mode [ 371.834265][T10341] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1055'. [ 372.251065][T10341] team0: Port device team_slave_0 removed [ 373.123545][T10367] sp0: Synchronizing with TNC [ 375.163638][T10412] sp0: Synchronizing with TNC [ 375.986857][T10425] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000010006 [ 376.426567][T10435] vivid-013: ================= START STATUS ================= [ 376.463568][T10435] vivid-013: Generate PTS: true [ 376.504752][T10435] vivid-013: Generate SCR: true [ 376.509724][T10435] tpg source WxH: 640x360 (Y'CbCr) [ 376.552947][T10435] tpg field: 1 [ 376.569919][T10435] tpg crop: 640x360@0x0 [ 376.585963][T10435] tpg compose: 640x360@0x0 [ 376.629248][T10435] tpg colorspace: 8 [ 376.633205][T10435] tpg transfer function: 0/0 [ 376.669821][T10435] tpg Y'CbCr encoding: 0/0 [ 376.696197][T10435] tpg quantization: 0/0 [ 376.700845][T10435] tpg RGB range: 0/2 [ 376.772692][T10435] vivid-013: ================== END STATUS ================== [ 376.821618][T10443] sp0: Synchronizing with TNC [ 377.165676][T10453] sp0: Synchronizing with TNC [ 379.102776][ T29] audit: type=1806 audit(8277292213.450:63): xattr=08 res=-22 [ 382.048056][T10517] sp0: Synchronizing with TNC [ 384.447704][T10538] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1110'. [ 386.699029][T10579] HfR: entered promiscuous mode [ 386.714101][T10581] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1122'. [ 386.858384][T10586] sp0: Synchronizing with TNC [ 388.411775][T10620] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1133'. [ 389.989747][T10653] sp0: Synchronizing with TNC [ 390.660175][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 390.669246][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 390.976763][T10685] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1149'. [ 391.318990][T10693] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1152'. [ 392.050578][T10708] sp0: Synchronizing with TNC [ 393.264014][T10741] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1164'. [ 394.168211][T10763] sctp: [Deprecated]: syz.1.1172 (pid 10763) Use of int in max_burst socket option. [ 394.168211][T10763] Use struct sctp_assoc_value instead [ 394.283882][T10764] syz_tun: tun_chr_ioctl cmd 1074025672 [ 394.302220][T10764] syz_tun: ignored: set checksum disabled [ 394.585943][T10764] svc: failed to register nfsdv3 RPC service (errno 111). [ 394.616745][T10764] svc: failed to register nfsaclv3 RPC service (errno 111). [ 395.838612][ T29] audit: type=1806 audit(8277292230.190:64): xattr=73656375726974792E61707061726D6F720A73 res=-17 [ 396.947333][T10825] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1185'. [ 397.038439][T10824] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1185'. [ 397.825082][T10831] netlink: 350 bytes leftover after parsing attributes in process `syz.2.1187'. [ 397.836781][T10837] binder: 10836:10837 unknown command 0 [ 397.899365][T10837] binder: 10836:10837 ioctl c0306201 9 returned -22 [ 398.638245][T10860] sp0: Synchronizing with TNC [ 399.456497][T10869] netlink: zone id is out of range [ 399.461700][T10869] netlink: zone id is out of range [ 399.506398][T10869] netlink: zone id is out of range [ 399.512566][T10869] netlink: del zone limit has 4 unknown bytes [ 401.117650][T10907] sp0: Synchronizing with TNC [ 401.313944][ T29] audit: type=1800 audit(4294967299.110:65): pid=10913 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1209" name="members" dev="configfs" ino=26359 res=0 errno=0 [ 401.389248][T10913] syz_tun: tun_chr_ioctl cmd 1074025681 [ 401.952458][T10923] Invalid ELF header magic: != ELF [ 402.704479][T10936] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1212'. [ 402.811844][T10929] Process accounting resumed [ 402.824417][T10936] geneve1: entered allmulticast mode [ 403.322884][T10946] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1217'. [ 404.136747][T10959] sp0: Synchronizing with TNC [ 405.418872][T10984] nbd: must specify a size in bytes for the device [ 407.016426][T10975] netlink: 'syz.3.1224': attribute type 1 has an invalid length. [ 407.183571][T10995] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1230'. [ 407.204946][T10995] lo: entered promiscuous mode [ 407.209819][T10995] lo: entered allmulticast mode [ 407.247439][T10975] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 407.305431][T11009] sp0: Synchronizing with TNC [ 407.370437][T10975] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 407.426416][T10975] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 407.458449][T10975] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 409.297390][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout [ 409.373824][ T5848] Bluetooth: hci1: command 0x0c1a tx timeout [ 409.466244][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout [ 409.533860][ T5848] Bluetooth: hci2: command 0x0c1a tx timeout [ 414.223124][T11093] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1253'. [ 414.643798][T11093] netlink: 294 bytes leftover after parsing attributes in process `syz.0.1253'. [ 416.103602][ T29] audit: type=1800 audit(4294967313.900:66): pid=11109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1258" name="members" dev="configfs" ino=28758 res=0 errno=0 [ 417.754716][T11142] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1266'. [ 417.873966][T11142] netlink: 294 bytes leftover after parsing attributes in process `syz.1.1266'. [ 419.495462][T11179] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1276'. [ 419.516985][T11174] sp0: Synchronizing with TNC [ 419.596204][T11179] netlink: 294 bytes leftover after parsing attributes in process `syz.3.1276'. [ 420.616639][T11209] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1285'. [ 421.052987][T11217] sp0: Synchronizing with TNC [ 421.602269][T11230] sp0: Synchronizing with TNC [ 423.770843][T11285] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1306'. [ 424.042956][T11289] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1305'. [ 424.073457][T11292] sp0: Synchronizing with TNC [ 425.005433][T11321] Line length is too long: Should be less than 4094 [ 427.095598][T11364] sp0: Synchronizing with TNC [ 427.259184][ T29] audit: type=1806 audit(4294967325.060:67): xattr=73656375726974792E61707061726D6F720A73 res=-17 [ 432.078635][T11439] sp0: Synchronizing with TNC [ 432.535220][T11445] can: request_module (can-proto-0) failed. [ 433.569223][T11440] Process accounting paused [ 433.968288][T11473] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1352'. [ 434.152014][T11475] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1353'. [ 434.712173][T11469] cgroup: fork rejected by pids controller in /syz3 [ 438.644130][T11672] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1368'. [ 438.687234][T11671] kernel read not supported for file /#)-\&[} (pid: 11671 comm: syz.2.1367) [ 438.723859][ T29] audit: type=1800 audit(4294967336.520:68): pid=11671 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1367" name="#)-\&[}" dev="mqueue" ino=13872 res=0 errno=0 [ 440.192672][T11705] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 440.246698][T11705] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 441.162520][T11715] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 441.182788][T11715] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 441.405612][T11724] can: request_module (can-proto-0) failed. [ 441.509864][T11728] Invalid ELF header magic: != ELF [ 442.469296][T11736] Falling back ldisc for pty19. [ 443.551719][T11759] ------------[ cut here ]------------ [ 443.557799][T11759] WARNING: CPU: 1 PID: 11759 at mm/page_alloc.c:4729 __alloc_pages_noprof+0xeff/0x25b0 [ 443.567882][T11759] Modules linked in: [ 443.571856][T11759] CPU: 1 UID: 0 PID: 11759 Comm: syz.3.1388 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 443.582777][T11759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 443.592951][T11759] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 443.599192][T11759] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 34 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9 [ 443.619257][T11759] RSP: 0018:ffffc9000b8df958 EFLAGS: 00010246 [ 443.625636][T11759] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 443.633813][T11759] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 443.641866][T11759] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 443.650623][T11759] R10: 0000000080000000 R11: 0000000000000001 R12: 0000000000000013 [ 443.659289][T11759] R13: 0000000000040cc0 R14: 1ffff9200171bf3f R15: 00000000ffffffff [ 443.667389][T11759] FS: 00007f9cc5ea06c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 443.676769][T11759] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 443.683421][T11759] CR2: 0000001b30b08ff8 CR3: 0000000033774000 CR4: 00000000003526f0 [ 443.691523][T11759] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 443.699695][T11759] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 443.707815][T11759] Call Trace: [ 443.711141][T11759] [ 443.714164][T11759] ? __warn+0xea/0x3c0 [ 443.718320][T11759] ? __alloc_pages_noprof+0xeff/0x25b0 [ 443.723911][T11759] ? report_bug+0x3c0/0x580 [ 443.728492][T11759] ? handle_bug+0x54/0xa0 [ 443.732895][T11759] ? exc_invalid_op+0x17/0x50 [ 443.737764][T11759] ? asm_exc_invalid_op+0x1a/0x20 [ 443.742887][T11759] ? __alloc_pages_noprof+0xeff/0x25b0 [ 443.749035][T11759] ? hlock_class+0x4e/0x130 [ 443.753613][T11759] ? mark_lock+0xb5/0xc60 [ 443.758598][T11759] ? __pfx_mark_lock+0x10/0x10 [ 443.763453][T11759] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 443.769331][T11759] ? trace_lock_acquire+0x14e/0x1f0 [ 443.774730][T11759] ? hlock_class+0x4e/0x130 [ 443.779312][T11759] ? __lock_acquire+0x15a9/0x3c40 [ 443.784453][T11759] ___kmalloc_large_node+0x84/0x1b0 [ 443.789734][T11759] __kmalloc_large_node_noprof+0x1c/0x70 [ 443.795551][T11759] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 443.802225][T11759] ? bitmap_parse_user+0x24/0x90 [ 443.807312][T11759] memdup_user_nul+0x2b/0x110 [ 443.812066][T11759] bitmap_parse_user+0x24/0x90 [ 443.816972][T11759] tracing_cpumask_write+0xfc/0x1a0 [ 443.822250][T11759] ? __pfx_tracing_cpumask_write+0x10/0x10 [ 443.828185][T11759] ? ksys_write+0x12b/0x250 [ 443.832762][T11759] ? __pfx_tracing_cpumask_write+0x10/0x10 [ 443.838695][T11759] vfs_write+0x24c/0x1150 [ 443.843103][T11759] ? __fget_files+0x1fc/0x3a0 [ 443.847934][T11759] ? __pfx___mutex_lock+0x10/0x10 [ 443.853629][T11759] ? __pfx_vfs_write+0x10/0x10 [ 443.859238][T11759] ? __fget_files+0x206/0x3a0 [ 443.864053][T11759] ksys_write+0x12b/0x250 [ 443.868456][T11759] ? __pfx_ksys_write+0x10/0x10 [ 443.873392][T11759] do_syscall_64+0xcd/0x250 [ 443.878026][T11759] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 443.884106][T11759] RIP: 0033:0x7f9cc4f85d29 [ 443.888580][T11759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 443.908319][T11759] RSP: 002b:00007f9cc5ea0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 443.916939][T11759] RAX: ffffffffffffffda RBX: 00007f9cc5175fa0 RCX: 00007f9cc4f85d29 [ 443.925025][T11759] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 443.933058][T11759] RBP: 00007f9cc5001b08 R08: 0000000000000000 R09: 0000000000000000 [ 443.941174][T11759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 443.949325][T11759] R13: 0000000000000000 R14: 00007f9cc5175fa0 R15: 00007ffeb9c01088 [ 443.957960][T11759] [ 443.961036][T11759] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 443.968357][T11759] CPU: 1 UID: 0 PID: 11759 Comm: syz.3.1388 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 443.979173][T11759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 443.989272][T11759] Call Trace: [ 443.992591][T11759] [ 443.995561][T11759] dump_stack_lvl+0x3d/0x1f0 [ 444.000219][T11759] panic+0x71d/0x800 [ 444.004181][T11759] ? __pfx_panic+0x10/0x10 [ 444.008668][T11759] ? show_trace_log_lvl+0x29d/0x3d0 [ 444.013946][T11759] ? __alloc_pages_noprof+0xeff/0x25b0 [ 444.019478][T11759] check_panic_on_warn+0xab/0xb0 [ 444.024500][T11759] __warn+0xf6/0x3c0 [ 444.028482][T11759] ? __alloc_pages_noprof+0xeff/0x25b0 [ 444.034024][T11759] report_bug+0x3c0/0x580 [ 444.038430][T11759] handle_bug+0x54/0xa0 [ 444.042665][T11759] exc_invalid_op+0x17/0x50 [ 444.047250][T11759] asm_exc_invalid_op+0x1a/0x20 [ 444.052174][T11759] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 444.058407][T11759] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 34 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9 [ 444.078085][T11759] RSP: 0018:ffffc9000b8df958 EFLAGS: 00010246 [ 444.084215][T11759] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 444.092237][T11759] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 444.100262][T11759] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 444.108291][T11759] R10: 0000000080000000 R11: 0000000000000001 R12: 0000000000000013 [ 444.116316][T11759] R13: 0000000000040cc0 R14: 1ffff9200171bf3f R15: 00000000ffffffff [ 444.124352][T11759] ? hlock_class+0x4e/0x130 [ 444.128903][T11759] ? mark_lock+0xb5/0xc60 [ 444.133290][T11759] ? __pfx_mark_lock+0x10/0x10 [ 444.138108][T11759] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 444.143886][T11759] ? trace_lock_acquire+0x14e/0x1f0 [ 444.149133][T11759] ? hlock_class+0x4e/0x130 [ 444.153678][T11759] ? __lock_acquire+0x15a9/0x3c40 [ 444.158853][T11759] ___kmalloc_large_node+0x84/0x1b0 [ 444.164105][T11759] __kmalloc_large_node_noprof+0x1c/0x70 [ 444.169782][T11759] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 444.176470][T11759] ? bitmap_parse_user+0x24/0x90 [ 444.181491][T11759] memdup_user_nul+0x2b/0x110 [ 444.186217][T11759] bitmap_parse_user+0x24/0x90 [ 444.191033][T11759] tracing_cpumask_write+0xfc/0x1a0 [ 444.196293][T11759] ? __pfx_tracing_cpumask_write+0x10/0x10 [ 444.202155][T11759] ? ksys_write+0x12b/0x250 [ 444.206719][T11759] ? __pfx_tracing_cpumask_write+0x10/0x10 [ 444.212572][T11759] vfs_write+0x24c/0x1150 [ 444.216940][T11759] ? __fget_files+0x1fc/0x3a0 [ 444.221670][T11759] ? __pfx___mutex_lock+0x10/0x10 [ 444.226760][T11759] ? __pfx_vfs_write+0x10/0x10 [ 444.231584][T11759] ? __fget_files+0x206/0x3a0 [ 444.236313][T11759] ksys_write+0x12b/0x250 [ 444.240689][T11759] ? __pfx_ksys_write+0x10/0x10 [ 444.245584][T11759] do_syscall_64+0xcd/0x250 [ 444.250126][T11759] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 444.256060][T11759] RIP: 0033:0x7f9cc4f85d29 [ 444.260520][T11759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 444.280169][T11759] RSP: 002b:00007f9cc5ea0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 444.288619][T11759] RAX: ffffffffffffffda RBX: 00007f9cc5175fa0 RCX: 00007f9cc4f85d29 [ 444.296621][T11759] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 444.304615][T11759] RBP: 00007f9cc5001b08 R08: 0000000000000000 R09: 0000000000000000 [ 444.312611][T11759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 444.320606][T11759] R13: 0000000000000000 R14: 00007f9cc5175fa0 R15: 00007ffeb9c01088 [ 444.328621][T11759] [ 444.331969][T11759] Kernel Offset: disabled [ 444.336378][T11759] Rebooting in 86400 seconds..