last executing test programs: 5.702207327s ago: executing program 0 (id=235): openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/events/vmalloc/enable\x00', 0x42101, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/bus/usb/drivers/dvb_usb_ttusb2/remove_id\x00', 0x40000, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/kernel/auto_msgmni\x00', 0x202, 0x0) sendfile$auto(r1, r0, 0x0, 0x7fffe000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x9, 0x5, 0x3) close_range$auto(0x0, 0xfffffffffffff000, 0x2) clone3$auto(0x0, 0x1000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x0, 0x0) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) ioctl$auto(0x3, 0x402c542b, 0x38) ioctl$auto_TIOCSTI2(r2, 0x5412, 0x0) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007) mmap$auto(0x8000000000, 0x1, 0x4000000000df, 0xfffffffffffffe10, 0x401, 0x8000) open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x842, 0x91) mbind$auto(0x100000000, 0x2, 0x1, &(0x7f0000000040)=0x1, 0x6, 0x800) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/console\x00', 0x2, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/bridge0/regen_max_retry\x00', 0x20000, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x5, 0xfffffffffffffff7, 0x0, 0xeb1, 0x401, 0x200000000000003) write$auto(0x3, 0x0, 0xfffffdef) 5.046718896s ago: executing program 2 (id=239): r0 = memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00T\x00'/40, 0x9) fallocate$auto(0x3, 0x0, 0xe, 0x8ec8) write$auto(r0, &(0x7f0000000000)='%\x00', 0x3) finit_module$auto(0x3, 0xfffffffffffffffe, 0x2) 4.630744586s ago: executing program 2 (id=243): sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0x80) mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x403, 0x8000) (async) mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x403, 0x8000) socket(0x11, 0x80003, 0x300) (async) r0 = socket(0x11, 0x80003, 0x300) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x9, 0x0, 0x7, 0x0, 0x1}, 0x8}, 0x10000, 0x0, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0) (async) r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f00000000c0)={0x1, "e6c26c22ab89af11056b0001ac097e0a0728d9300000c500"}) socket(0x2, 0x1, 0x0) select$auto(0x6, 0x0, &(0x7f0000000280)={[0xfffffffffffffffc, 0x9, 0xc0000, 0xff, 0x4, 0x2, 0x8, 0x5, 0x9, 0xdd8f, 0x20d, 0x80000000, 0x2, 0x2, 0x3, 0x5]}, 0x0, 0x0) syz_genetlink_get_family_id$auto_vdpa(&(0x7f0000000100), 0xffffffffffffffff) 4.558752863s ago: executing program 3 (id=244): close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x848000000015, 0x6, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(r0, 0x12, 0x0, 0x0) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/neigh/bridge0/retrans_time\x00', 0x101000, 0x0) read$auto(r2, 0x0, 0x1ff) ioctl$auto_DMA_HEAP_IOCTL_ALLOC(r1, 0xc0184800, 0x0) 4.126185605s ago: executing program 2 (id=247): openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/034/001\x00', 0x143000, 0x0) r0 = openat$auto_deferred_devs_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x101080, 0x0) pread64$auto(r0, 0x0, 0x3, 0x10001) r1 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x204300, 0x0) recvfrom$auto(r1, &(0x7f0000000080)="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", 0x9, 0x6, &(0x7f0000001080)=@rc={0x1f, @none}, &(0x7f00000010c0)=0x8) 3.9780043s ago: executing program 1 (id=248): futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4, 0x4}, 0x77, 0x400000, 0x0, 0x62bd) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) bpf$auto(0x0, &(0x7f0000000000)=@link_update={0xffffffffffffffff, @new_prog_fd=0x4, 0x4}, 0xa3) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/rose9/statistics/rx_packets\x00', 0x100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)=""/57, 0x39) 3.878312458s ago: executing program 3 (id=249): bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x16, 0x4, 0x80000001, 0x8}, 0x6f4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x1e, 0x0) fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_fops_u32_ro_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim7/ports/3/bpf_offloaded_id\x00', 0x101383, 0x0) close_range$auto(r0, 0x8000, 0x6) 3.857670753s ago: executing program 2 (id=250): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x4000008000) socket(0x10, 0x2, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x6e640, 0x90) openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/filter\x00', 0x224000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/midi2\x00', 0x103341, 0x0) socket(0x2, 0x80802, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_freeze_timeout\x00', 0x40000, 0x0) openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/comm\x00', 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x88) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x2) pidfd_open$auto(0x1, 0x0) socketpair$auto(0x1e, 0x1, 0x0, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x89f1, 0x0) openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/ubifs/tst_recovery\x00', 0x101000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x21, 0x2, 0x2) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r1 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r1, 0x0, 0xc3) socket(0x2, 0x2, 0x1) recvmmsg$auto(0x3, 0x0, 0x8, 0x0, 0x0) prctl$auto(0x1000000003b, 0x1, 0x3, 0x3, 0x7) 3.529593612s ago: executing program 3 (id=251): close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r0) sendmsg$auto_TASKSTATS_CMD_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0015008ef8b04e69ad8591d10f6db4eb5d61abdb52d039cecb3e0a5dcf828eb4a93fbeb36da19410348541ab", @ANYRES16=r1, @ANYBLOB="010a2bbd7000fbdbdf250100000008000200", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000000) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x1fd, 0x7, 0x5, 0x7184, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x8, 0x4, 0x200000000001, 0xb4, 0xfffffffffffffff8, 0x2, 0x6, 0x4000080, 0x0, 0x100, 0xe, 0x22000, 0x200, 0x0, 0x84, [0x3, 0x3, 0x0, 0x2, 0x3, 0x2000, 0x0, 0xc, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x2, 0x8, 0x1000000000000000, 0x6, 0x0, 0xfffffffffffbfffd, 0x2000000000000004, 0x10000000000001, 0x10000000000, 0xffffffffffffffff, 0x4, 0xfffffffffffffe00, 0x0, 0x8, 0x1005, 0x400000000005b8, 0xffff, 0x0, 0x100, 0x0, 0x1, 0x2, 0x88e, 0x40, 0xfffffffffffffffc, 0x8, 0xa3c, 0x0, 0x3, 0x3ff, 0x2, 0x8, 0xfffffffffffffdcc, 0xc567]}, 0x1fe, 0x4000d) poll$auto(&(0x7f0000000000)={0xffffffffffffffff, 0x6, 0x5}, 0x81, 0x4) (async) poll$auto(&(0x7f0000000000)={0xffffffffffffffff, 0x6, 0x5}, 0x81, 0x4) 3.41651165s ago: executing program 1 (id=252): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000) semtimedop$auto(0x1, 0x0, 0x400, 0x0) r0 = openat$auto_ocfs2_control_fops_stack_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) readv$auto(r0, &(0x7f0000001640)={0x0, 0x4}, 0x2) write$auto(0x3, 0x0, 0xfffffdef) io_setup$auto(0x10000, &(0x7f0000000040)) 3.266123939s ago: executing program 3 (id=253): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x1) timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6) futex_waitv$auto(&(0x7f0000003a00)={0xed, 0x100, 0x5}, 0x9, 0x0, &(0x7f0000003a40)={0x0, 0x2000ffff}, 0xffffffff) timer_settime$auto(0x0, 0xd80, &(0x7f0000000040)={{0x40000000000026b, 0x4}, {0x0, 0x83}}, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, r0, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x10, 0x2, 0xc) socket(0x28, 0x1, 0x0) getcwd$auto(&(0x7f0000000080)='nfsd\x00', 0x10000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x101083, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0xf, 0x800, 0x2) read$auto(r1, 0x0, 0xfdef) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_MON_PEER_GET(0xffffffffffffffff, &(0x7f0000006140)={0x0, 0x0, &(0x7f0000006100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="54fffb0043dd9ba6229242710b9dafe0967abd6f", @ANYRES16=r2, @ANYBLOB="11072cbd7000ffdbdf2513000000"], 0x14}, 0x1, 0x0, 0x0, 0x4401}, 0x4c848) r3 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000140), 0x20080, 0x0) readv$auto(r3, &(0x7f0000000080)={0x0, 0x14000000000}, 0x3) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/user/max_fanotify_groups\x00', 0x20202, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001540), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_KEY_SET(r4, &(0x7f0000001fc0)={0x0, 0x0, &(0x7f0000001f80)={&(0x7f0000000100)=ANY=[@ANYRES64, @ANYRESOCT=r3, @ANYBLOB="01002abd7000ffdbdf251700000004000680"], 0x18}, 0x1, 0x0, 0x0, 0x4084}, 0x40000) openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/current\x00', 0x4fc143, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x8000000000000001, 0x4000000000e2, 0xeb1, r4, 0x8000) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b7f, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) mmap$auto(0x7, 0x8, 0x7, 0x18, 0x42c8b44c, 0x0) 2.623629066s ago: executing program 1 (id=254): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syslog$auto(0x4, &(0x7f0000000040)='..\x00', 0xffffff7f) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) r0 = getsid$auto(0x0) mprotect$auto(0x2, 0x0, 0x0) r1 = syz_open_procfs$namespace(r0, &(0x7f0000000040)='ns/net\x00') mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x7f, 0x8000) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto_def_blk_fops_fs(r2, 0x301, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0) ioctl$auto(r3, 0xc074510c, 0x3) r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x1, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0xcaf80e44bf501304, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r4, 0xc00caee0, 0x0) getdents$auto(r1, 0x0, 0x4000020a) 2.059242841s ago: executing program 2 (id=255): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r0, 0x5522, 0xf15) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r1, 0x5522, 0xf15) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) 1.940245336s ago: executing program 0 (id=256): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) readv$auto(r0, &(0x7f00000002c0)={0x0, 0x9}, 0x8) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) socket(0x8, 0x3, 0x101) io_uring_register$auto(0x2, 0x0, 0x0, 0x3) 1.639686414s ago: executing program 2 (id=257): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xf6f6, 0x8000) r0 = socket(0x11, 0x80003, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) setsockopt$auto(r0, 0x107, 0xd, 0x0, 0x8000) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec15\x00', 0x8140, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket(0x10, 0x80002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi28\x00', 0xc0500, 0x0) ioctl$auto(0x3, 0x40045612, 0x34) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="28812dec9fee47d93f6dfd2383f7441758bf39b6bf1256a4babfda15ddd7a4558661365adb2611c0feb0a27154967f05", @ANYRES16=r4, @ANYBLOB="ffa2"], 0x44}, 0x1, 0x0, 0x0, 0x10000000}, 0x40000) ppoll$auto(&(0x7f00000000c0)={r1, 0x9, 0x5}, 0x7ff, &(0x7f0000000100)={0x3, 0x400}, &(0x7f0000000140)={0x3}, 0x8) fallocate$auto(r5, 0x30000000, 0x9, 0x2) read$auto(0x3, 0x0, 0x8c6e) ioctl$auto_CEC_S_MODE(r2, 0x40046109, 0x0) 1.475671734s ago: executing program 0 (id=258): r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x20400, 0x0) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0) close_range$auto(r0, 0x8, 0x2) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x20400, 0x0) (async) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0) (async) close_range$auto(r0, 0x8, 0x2) (async) 1.394996589s ago: executing program 1 (id=259): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) openat$auto_sc_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0xa240, 0x36) open(&(0x7f0000000000)='./file1\x00', 0x163b42, 0x102) read$auto(0x3, 0x0, 0xfffffdef) r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x0, 0x50b301a, 0x2c, 0x2c, 0xe4, 0x2}) 1.326127107s ago: executing program 3 (id=260): mmap$auto(0x0, 0x400008, 0xdf, 0x9b73, 0xffffffffffffffff, 0x8041) setresuid$auto(0xffffffffffffffff, 0x8, 0x8000) tkill$auto(0x80000000000001, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mlockall$auto(0x7) mremap$auto(0x0, 0x44, 0x4, 0x7, 0x100000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 1.04265575s ago: executing program 0 (id=261): r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video61\x00', 0x8a240, 0x0) ioctl$auto(r0, 0x5646, r0) read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f0000000080)=""/45, 0x2d) 1.040183545s ago: executing program 1 (id=262): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="9979de89", @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030007000000060007000080000006000600060000000a000500d71aed11187c00000a000100987874e64b8500000a0001007572c85c318e0000060006000600000008000200", @ANYRES32=0x0, @ANYBLOB="080004"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) (async) removexattr$auto(0x0, 0x0) (async, rerun: 32) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="ffffff03", @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502000000060020000300000008000b000d"], 0x24}, 0x1, 0x0, 0x0, 0xc005}, 0x4) (rerun: 32) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) (async) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40084) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) (async) sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 590.203051ms ago: executing program 1 (id=263): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), r1) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) fcntl$getown(r0, 0x9) sendmsg$auto_NET_SHAPER_CMD_DELETE(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)={0x30, r2, 0x9, 0x70bd27, 0x25dfdbfb, {}, [@NET_SHAPER_A_IFINDEX={0x8, 0x8, r4}, @NET_SHAPER_A_HANDLE={0x14, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x6}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x2}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0xc050) sendmsg$auto_NET_SHAPER_CMD_DELETE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x18, r2, 0x4, 0x70bd2b, 0x25dfdbfd, {}, [@NET_SHAPER_A_HANDLE={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x800}, 0x20000009) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f0, 0x8) 587.420303ms ago: executing program 0 (id=264): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async) r1 = open(&(0x7f0000000800)='./file0\x00', 0x690c40, 0xf7) (async) socket(0xa, 0x2, 0x3a) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/0/cpuid\x00', 0x240000, 0x0) (async) r2 = socket(0x10, 0x3, 0xc) epoll_ctl$auto(r1, 0x1000, r2, &(0x7f0000000000)={0x5, 0x100}) (async) ioctl$auto_sg_fops_sg(r1, 0x4, &(0x7f00000001c0)="ffdef6e950a3c05976fe1abd30e4f35fb410cbc77af6827afb8e31d9bc73ef77bba83d706ad06896d8d164fabc59d784864229022900772f2281e2bc94be3c5d6780c9061b3eb9e2bc03465cef376a17159af7e5e9f21a0f98b43b70754d86cdbdfead771c9af4d679069c4b4fa6b777924b173bff72458c568c6fe6f428818e3a5d7b529d07e6edecff7f96d85d58885243fd0e8a52b6ed87b35c29ea41567bb6519d462a06736d1eb23928cd1ca27489067e0ce975bc68fbd0a98de5d0de62bbed9fb1c669c4ef65") (async) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r2, @ANYRES8=r0, @ANYRES32], 0x18}}, 0x80) (async) mprotect$auto(0x1ffff000, 0x7ffffffffffffffd, 0xd) (async) r3 = socket(0xa, 0x2, 0x3a) (async) r4 = socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) (async) timerfd_settime$auto(r4, 0x8, 0x0, &(0x7f0000000180)={{0x10004, 0x3}, {0xf78, 0x6}}) bind$auto(0x3, &(0x7f0000000040), 0x6a) sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x2, 0xb}, 0x800009}, 0x5, 0x20000000) (async) setsockopt$auto(r3, 0x29, 0x36, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110) (async) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x1f, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84, [0x3, 0x4, 0x0, 0x2, 0x0, 0x2000, 0x0, 0xe, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x4000, 0x0, 0x6, 0x0, 0xfffffffffffbfffd, 0x4, 0x1, 0x10000000000, 0x7, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x400000000005b8, 0x14ee, 0x0, 0x0, 0x0, 0x6, 0xfdffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffe, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffffffffc, 0x2, 0x1, 0x4]}, 0x1fe, 0xd) (async) r5 = socket(0x10, 0x2, 0x0) (async) syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000380), 0xffffffffffffffff) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async) recvmmsg$auto(r5, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) (async) socket(0x10, 0x2, 0x0) (async) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) 481.919495ms ago: executing program 3 (id=265): mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0) r0 = socket(0x15, 0x5, 0x0) getsockopt$auto(r0, 0x114, 0x271f, 0xfffffffffffffffc, 0x0) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000000)=@iter_create={0x15, 0x8}, 0x7) socket(0x10, 0x4, 0x8) 396.551572ms ago: executing program 0 (id=266): openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) open(&(0x7f0000000100)='./file0\x00', 0x201c2, 0x10e) socket(0x15, 0x5, 0x0) lstat$auto(0x0, &(0x7f0000000180)={0x9, 0x101, 0x100000001, 0x63, 0x0, 0x0, 0x0, 0x1000000006, 0x2, 0x8, 0x7, 0x7fffffff, 0x5, 0x7, 0x9, 0x61, 0x103}) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0xffffffffffff0001, 0x15) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bridge_slave_1/base_reachable_time_ms\x00', 0x80001, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) write$auto(0x3, 0x0, 0xfffffdef) madvise$auto(0x0, 0xffffffffffff0001, 0x17) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendfile$auto(0x6, 0x3, 0x0, 0xfffffdef) r0 = socket(0x11, 0x3, 0x9) clone$auto(0x20003b46, 0x100000000000005, 0x0, 0x0, 0x2) close_range$auto(0x2, 0x8000, 0x0) open(0x0, 0xa22c0, 0x155) r1 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r1, 0x107, 0xf, 0x0, 0x6) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={0x0, 0x1c000000000}, 0x5, 0x0, 0x1, 0x1}, 0x2005}, 0x2, 0x100) close_range$auto(0x0, 0x5, 0x0) fanotify_init$auto(0x5, 0x2000000000002) inotify_init1$auto(0x3000000000000) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x15, 0x5, 0x0) socket(0x15, 0x5, 0x0) getsockname$auto(0x3, 0x0, 0x0) 0s ago: executing program 32 (id=265): mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0) r0 = socket(0x15, 0x5, 0x0) getsockopt$auto(r0, 0x114, 0x271f, 0xfffffffffffffffc, 0x0) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000000)=@iter_create={0x15, 0x8}, 0x7) socket(0x10, 0x4, 0x8) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.224' (ED25519) to the list of known hosts. syzkaller login: [ 83.181326][ T5827] cgroup: Unknown subsys name 'net' [ 83.351272][ T5827] cgroup: Unknown subsys name 'cpuset' [ 83.359693][ T5827] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 85.016457][ T5827] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 86.978247][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 86.982637][ T5846] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 86.993559][ T5839] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 87.002328][ T5839] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 87.010418][ T5839] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 87.015048][ T5850] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 87.017728][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 87.027125][ T5850] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 87.032532][ T5852] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 87.047500][ T5852] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 87.054811][ T5850] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 87.054839][ T5839] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 87.064081][ T5850] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 87.070577][ T5839] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 87.079606][ T5850] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 87.084259][ T5839] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 87.091502][ T5850] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 87.105501][ T5839] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 87.106714][ T5850] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 87.120019][ T5839] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 87.122075][ T5850] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 87.135432][ T5839] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 87.155447][ T5839] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 87.163120][ T5839] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 87.502691][ T5836] chnl_net:caif_netlink_parms(): no params data found [ 87.563001][ T5838] chnl_net:caif_netlink_parms(): no params data found [ 87.711565][ T5843] chnl_net:caif_netlink_parms(): no params data found [ 87.752700][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.759986][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.768074][ T5836] bridge_slave_0: entered allmulticast mode [ 87.774994][ T5836] bridge_slave_0: entered promiscuous mode [ 87.805364][ T5849] chnl_net:caif_netlink_parms(): no params data found [ 87.820512][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.827816][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.835051][ T5836] bridge_slave_1: entered allmulticast mode [ 87.842925][ T5836] bridge_slave_1: entered promiscuous mode [ 87.863396][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.870626][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.878227][ T5838] bridge_slave_0: entered allmulticast mode [ 87.885014][ T5838] bridge_slave_0: entered promiscuous mode [ 87.892875][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.900205][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.907478][ T5838] bridge_slave_1: entered allmulticast mode [ 87.914204][ T5838] bridge_slave_1: entered promiscuous mode [ 87.981213][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.994131][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.031439][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.043854][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.071727][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.079021][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.086244][ T5843] bridge_slave_0: entered allmulticast mode [ 88.093754][ T5843] bridge_slave_0: entered promiscuous mode [ 88.120150][ T5836] team0: Port device team_slave_0 added [ 88.126298][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.135316][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.143195][ T5843] bridge_slave_1: entered allmulticast mode [ 88.151110][ T5843] bridge_slave_1: entered promiscuous mode [ 88.181622][ T5836] team0: Port device team_slave_1 added [ 88.216607][ T5838] team0: Port device team_slave_0 added [ 88.250306][ T5838] team0: Port device team_slave_1 added [ 88.256218][ T5849] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.264188][ T5849] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.271702][ T5849] bridge_slave_0: entered allmulticast mode [ 88.279163][ T5849] bridge_slave_0: entered promiscuous mode [ 88.288825][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 88.295805][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.322120][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 88.335970][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.348723][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.374182][ T5849] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.382469][ T5849] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.389949][ T5849] bridge_slave_1: entered allmulticast mode [ 88.396757][ T5849] bridge_slave_1: entered promiscuous mode [ 88.404126][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 88.411604][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.438137][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 88.473193][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 88.480350][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.506979][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 88.538891][ T5843] team0: Port device team_slave_0 added [ 88.546064][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 88.554538][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.581149][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 88.621624][ T5843] team0: Port device team_slave_1 added [ 88.643367][ T5849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.655549][ T5849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.670008][ T5836] hsr_slave_0: entered promiscuous mode [ 88.676796][ T5836] hsr_slave_1: entered promiscuous mode [ 88.699795][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 88.706806][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.732860][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 88.772956][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 88.780222][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.806399][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 88.845721][ T5849] team0: Port device team_slave_0 added [ 88.855549][ T5838] hsr_slave_0: entered promiscuous mode [ 88.862890][ T5838] hsr_slave_1: entered promiscuous mode [ 88.869469][ T5838] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 88.877249][ T5838] Cannot create hsr debugfs directory [ 88.889531][ T5849] team0: Port device team_slave_1 added [ 88.959875][ T5843] hsr_slave_0: entered promiscuous mode [ 88.966615][ T5843] hsr_slave_1: entered promiscuous mode [ 88.976391][ T5843] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 88.984463][ T5843] Cannot create hsr debugfs directory [ 89.004318][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.011507][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.037656][ T5849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.062989][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.071098][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.098504][ T5849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.158318][ T5839] Bluetooth: hci1: command tx timeout [ 89.167486][ T5846] Bluetooth: hci3: command tx timeout [ 89.238314][ T5846] Bluetooth: hci0: command tx timeout [ 89.252383][ T5846] Bluetooth: hci2: command tx timeout [ 89.271302][ T5849] hsr_slave_0: entered promiscuous mode [ 89.279402][ T5849] hsr_slave_1: entered promiscuous mode [ 89.285992][ T5849] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 89.293676][ T5849] Cannot create hsr debugfs directory [ 89.421567][ T5838] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 89.450425][ T5838] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 89.475654][ T5838] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 89.487591][ T5838] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 89.533636][ T5836] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 89.555345][ T5836] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 89.581928][ T5836] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 89.607008][ T5836] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 89.621311][ T5843] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 89.633123][ T5843] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 89.653680][ T5843] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 89.663956][ T5843] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 89.722643][ T5849] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 89.751643][ T5849] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 89.762007][ T5849] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 89.773291][ T5849] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 89.914200][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.974400][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0 [ 90.012099][ T5838] 8021q: adding VLAN 0 to HW filter on device team0 [ 90.030289][ T5849] 8021q: adding VLAN 0 to HW filter on device bond0 [ 90.047681][ T4995] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.055067][ T4995] bridge0: port 1(bridge_slave_0) entered forwarding state [ 90.073016][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.080256][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 90.091313][ T5843] 8021q: adding VLAN 0 to HW filter on device team0 [ 90.102027][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0 [ 90.143644][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.150787][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 90.166210][ T5849] 8021q: adding VLAN 0 to HW filter on device team0 [ 90.174986][ T5836] 8021q: adding VLAN 0 to HW filter on device team0 [ 90.206853][ T53] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.214014][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state [ 90.227024][ T53] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.234281][ T53] bridge0: port 2(bridge_slave_1) entered forwarding state [ 90.266430][ T53] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.273584][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state [ 90.284825][ T53] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.291965][ T53] bridge0: port 2(bridge_slave_1) entered forwarding state [ 90.315790][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.322968][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 90.416559][ T5843] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 90.728631][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.814743][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.860902][ T5838] veth0_vlan: entered promiscuous mode [ 90.885119][ T5838] veth1_vlan: entered promiscuous mode [ 90.915149][ T5849] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.934707][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.991899][ T5843] veth0_vlan: entered promiscuous mode [ 91.018525][ T5838] veth0_macvtap: entered promiscuous mode [ 91.032770][ T5843] veth1_vlan: entered promiscuous mode [ 91.044961][ T5838] veth1_macvtap: entered promiscuous mode [ 91.086213][ T5836] veth0_vlan: entered promiscuous mode [ 91.101090][ T5849] veth0_vlan: entered promiscuous mode [ 91.114839][ T5836] veth1_vlan: entered promiscuous mode [ 91.130112][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.144482][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.156051][ T5838] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.165884][ T5838] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.179658][ T5838] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.188584][ T5838] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.205305][ T5843] veth0_macvtap: entered promiscuous mode [ 91.221537][ T5849] veth1_vlan: entered promiscuous mode [ 91.237912][ T5846] Bluetooth: hci3: command tx timeout [ 91.243390][ T5846] Bluetooth: hci1: command tx timeout [ 91.251841][ T5843] veth1_macvtap: entered promiscuous mode [ 91.276630][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.287838][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.299002][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.317834][ T5839] Bluetooth: hci0: command tx timeout [ 91.323351][ T5846] Bluetooth: hci2: command tx timeout [ 91.331983][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.348675][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.360588][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.375456][ T5836] veth0_macvtap: entered promiscuous mode [ 91.387534][ T5836] veth1_macvtap: entered promiscuous mode [ 91.411245][ T5843] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.420472][ T5843] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.429968][ T5843] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.438831][ T5843] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.489588][ T5849] veth0_macvtap: entered promiscuous mode [ 91.503590][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.519343][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.531438][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.537991][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.547443][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.560052][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.570960][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.589283][ T5849] veth1_macvtap: entered promiscuous mode [ 91.643628][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.655624][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.667000][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.677765][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.687887][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.698491][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.709728][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.726738][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.726839][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.740873][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.755176][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.765822][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.769998][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.785556][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.806783][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.819274][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.831051][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.841758][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.851653][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.862626][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.878463][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.894776][ T5836] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.903741][ T5836] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.912544][ T5836] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.921357][ T5836] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.959132][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.963529][ T5849] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.972991][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.976076][ T5849] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.992530][ T5849] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.003080][ T5849] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.068284][ T5838] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 92.173653][ T4995] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.186428][ T4995] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.206018][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.250129][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.351723][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.367335][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.396646][ T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.458547][ T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.567565][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.575464][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.976933][ T5914] erspan0: entered allmulticast mode [ 93.317659][ T5839] Bluetooth: hci3: command tx timeout [ 93.323517][ T5846] Bluetooth: hci1: command tx timeout [ 93.397751][ T5846] Bluetooth: hci2: command tx timeout [ 93.403266][ T5839] Bluetooth: hci0: command tx timeout [ 93.568664][ T5947] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10'. [ 94.105666][ T5961] nbd: must specify at least one socket [ 94.245345][ T5962] Invalid ELF header magic: != ELF [ 95.398542][ T5846] Bluetooth: hci1: command tx timeout [ 95.405207][ T5846] Bluetooth: hci3: command tx timeout [ 95.441092][ T5991] Process accounting resumed [ 95.477852][ T5846] Bluetooth: hci2: command tx timeout [ 95.483335][ T5846] Bluetooth: hci0: command tx timeout [ 95.807797][ T29] audit: type=1326 audit(1735124037.699:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5992 comm="syz.0.20" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f109b585d29 code=0x0 [ 95.829196][ C1] vkms_vblank_simulate: vblank timer overrun [ 96.868734][ T6018] Zero length message leads to an empty skb [ 96.940082][ T6019] netlink: 28 bytes leftover after parsing attributes in process `syz.0.24'. [ 97.038780][ T6016] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 97.250685][ T9] cfg80211: failed to load regulatory.db [ 97.881168][ T6037] netlink: 350 bytes leftover after parsing attributes in process `syz.2.29'. [ 98.111814][ T6033] could not allocate digest TFM handle [ 98.760256][ T6051] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 98.797933][ T6051] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 99.813639][ T6065] svc: failed to register nfsdv3 RPC service (errno 111). [ 99.838589][ T6065] svc: failed to register nfsaclv3 RPC service (errno 111). [ 100.797476][ T6082] program syz.2.39 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 101.785964][ T6098] netlink: 266 bytes leftover after parsing attributes in process `syz.3.41'. [ 101.817477][ T6098] IPv6: NLM_F_CREATE should be specified when creating new route [ 102.014663][ T6106] netlink: 28 bytes leftover after parsing attributes in process `syz.1.46'. [ 102.024782][ T6106] ip_vti0: entered promiscuous mode [ 102.201028][ T6109] netlink: 8 bytes leftover after parsing attributes in process `syz.2.48'. [ 102.784422][ T6132] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 103.815570][ T6162] scsi_dev_info_list_add_str: bad dev info string ';íÙ/&cŒõ›ú $3' '' '' [ 104.366842][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 104.384119][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 104.566804][ T6181] Process accounting resumed [ 104.743272][ T6187] netlink: 330 bytes leftover after parsing attributes in process `syz.2.70'. [ 104.773317][ T6177] netlink: 'syz.0.65': attribute type 1 has an invalid length. [ 104.787464][ T6177] netlink: 322 bytes leftover after parsing attributes in process `syz.0.65'. [ 104.877570][ T6187] syz.2.70 (6187) used greatest stack depth: 20944 bytes left [ 105.263136][ T6206] netlink: 4 bytes leftover after parsing attributes in process `syz.3.75'. [ 105.361510][ T6216] netlink: 'syz.3.75': attribute type 4 has an invalid length. [ 105.411183][ T6216] netlink: 314 bytes leftover after parsing attributes in process `syz.3.75'. [ 106.328069][ T6240] kernel read not supported for file /#)-\&[} (pid: 6240 comm: syz.2.80) [ 106.336279][ T6237] can: request_module (can-proto-0) failed. [ 106.337200][ T29] audit: type=1804 audit(1735124048.229:3): pid=6240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.80" name="#)-\&[}" dev="mqueue" ino=8984 res=1 errno=0 [ 106.467437][ T29] audit: type=1800 audit(1735124048.309:4): pid=6240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.80" name="#)-\&[}" dev="mqueue" ino=8984 res=0 errno=0 [ 107.037429][ T6255] netlink: 342 bytes leftover after parsing attributes in process `syz.0.85'. [ 107.053545][ T6255] netlink: 342 bytes leftover after parsing attributes in process `syz.0.85'. [ 107.182432][ T6255] netlink: 342 bytes leftover after parsing attributes in process `syz.0.85'. [ 107.321739][ T6255] netlink: 342 bytes leftover after parsing attributes in process `syz.0.85'. [ 107.458598][ T6255] netlink: 342 bytes leftover after parsing attributes in process `syz.0.85'. [ 107.955390][ T6246] syz.1.82 uses obsolete (PF_INET,SOCK_PACKET) [ 108.535501][ T6287] Invalid ELF header magic: != ELF [ 109.973671][ T6310] netlink: 'syz.3.94': attribute type 4 has an invalid length. [ 110.004175][ T6310] netlink: 314 bytes leftover after parsing attributes in process `syz.3.94'. [ 113.232854][ T6353] process 'syz.1.105' launched ':,' with NULL argv: empty string added [ 113.340622][ T6355] netlink: 28 bytes leftover after parsing attributes in process `syz.1.105'. [ 115.393880][ T29] audit: type=1326 audit(1735124057.299:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6395 comm="syz.0.115" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f109b585d29 code=0x0 [ 117.361958][ T6417] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 118.001879][ T6446] netlink: 206 bytes leftover after parsing attributes in process `syz.1.131'. [ 120.436793][ T6486] could not allocate digest TFM handle [ 120.758695][ T6502] netlink: 1 bytes leftover after parsing attributes in process `syz.3.144'. [ 121.858700][ T6520] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 121.877579][ T6520] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 125.131122][ T6597] syz.3.158 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 125.932431][ T6610] ICMPv6: process `syz.3.161' is using deprecated sysctl (syscall) net.ipv6.neigh.virt_wifi0.retrans_time - use net.ipv6.neigh.virt_wifi0.retrans_time_ms instead [ 126.647981][ T6626] netlink: 8 bytes leftover after parsing attributes in process `syz.2.164'. [ 126.807742][ T6614] netlink: 4 bytes leftover after parsing attributes in process `syz.1.160'. [ 126.835971][ T6614] tc_dump_action: action bad kind [ 130.723764][ T6678] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 133.171763][ T6707] netlink: 28 bytes leftover after parsing attributes in process `syz.2.181'. [ 133.680768][ T6718] netlink: 74 bytes leftover after parsing attributes in process `syz.3.183'. [ 134.399096][ T6725] program syz.2.187 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 138.211552][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.218045][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.788015][ T6782] serio: Serial port ptm0 [ 138.901268][ T6772] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 139.303517][ T6784] can: request_module (can-proto-0) failed. [ 140.223718][ T6812] netlink: 28 bytes leftover after parsing attributes in process `syz.3.205'. [ 144.824772][ T6902] netlink: 28 bytes leftover after parsing attributes in process `syz.0.231'. [ 144.980290][ T6902] lo: entered promiscuous mode [ 144.985133][ T6902] lo: entered allmulticast mode [ 146.218770][ T6936] Invalid ELF header magic: != ELF [ 146.306736][ T6937] can: request_module (can-proto-3) failed. [ 149.371408][ T6976] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 150.059328][ T7019] vivid-013: ================= START STATUS ================= [ 150.079369][ T7019] vivid-013: Generate PTS: true [ 150.095498][ T7019] vivid-013: Generate SCR: true [ 150.117505][ T7019] tpg source WxH: 640x360 (Y'CbCr) [ 150.122700][ T7019] tpg field: 1 [ 150.126111][ T7019] tpg crop: 640x360@0x0 [ 150.175906][ T7019] tpg compose: 640x360@0x0 [ 150.189797][ T7019] tpg colorspace: 8 [ 150.196625][ T7026] netlink: 334 bytes leftover after parsing attributes in process `syz.1.262'. [ 150.225900][ T7019] tpg transfer function: 0/0 [ 150.239197][ T7019] tpg Y'CbCr encoding: 0/0 [ 150.285365][ T7019] tpg quantization: 0/0 [ 150.305622][ T7019] tpg RGB range: 0/2 [ 150.339830][ T7019] vivid-013: ================== END STATUS ================== [ 150.993344][ T7045] ------------[ cut here ]------------ [ 151.000479][ T7045] WARNING: CPU: 1 PID: 7045 at mm/page_alloc.c:4729 __alloc_pages_noprof+0xeff/0x25b0 [ 151.011225][ T7045] Modules linked in: [ 151.015235][ T7045] CPU: 1 UID: 0 PID: 7045 Comm: syz.0.266 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 151.026535][ T7045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 151.036788][ T7045] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 151.043562][ T7045] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 34 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9 [ 151.063493][ T7045] RSP: 0018:ffffc90004fdf8e8 EFLAGS: 00010246 [ 151.071576][ T7045] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 151.079844][ T7045] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 151.087930][ T7045] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000100 [ 151.095960][ T7045] R10: 0000000000000100 R11: ffffffff81fb8d44 R12: 0000000000000013 [ 151.104168][ T7045] R13: 0000000000040cc0 R14: 1ffff920009fbf31 R15: 00000000ffffffff [ 151.112763][ T7045] FS: 00007f109c4226c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 151.122653][ T7045] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 151.129432][ T7045] CR2: 0000001b3080aff8 CR3: 000000003210e000 CR4: 00000000003526f0 [ 151.137537][ T7045] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 151.145577][ T7045] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 151.153718][ T7045] Call Trace: [ 151.157045][ T7045] [ 151.160094][ T7045] ? __warn+0xea/0x3c0 [ 151.164255][ T7045] ? __alloc_pages_noprof+0xeff/0x25b0 [ 151.169879][ T7045] ? report_bug+0x3c0/0x580 [ 151.174462][ T7045] ? handle_bug+0x54/0xa0 [ 151.178918][ T7045] ? exc_invalid_op+0x17/0x50 [ 151.183673][ T7045] ? asm_exc_invalid_op+0x1a/0x20 [ 151.188834][ T7045] ? kasan_save_track+0x14/0x30 [ 151.193762][ T7045] ? __alloc_pages_noprof+0xeff/0x25b0 [ 151.199351][ T7045] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 151.205220][ T7045] ? lockdep_hardirqs_on+0x7c/0x110 [ 151.210587][ T7045] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 151.216909][ T7045] ? stack_depot_save_flags+0x36d/0x9e0 [ 151.223056][ T7045] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 151.228949][ T7045] ? kasan_save_stack+0x33/0x60 [ 151.233871][ T7045] ? __kasan_kmalloc+0xaa/0xb0 [ 151.239037][ T7045] ? safesetid_uid_file_write+0x84/0xc0 [ 151.244652][ T7045] ? vfs_write+0x24c/0x1150 [ 151.249294][ T7045] ? ksys_write+0x12b/0x250 [ 151.253864][ T7045] ? do_syscall_64+0xcd/0x250 [ 151.258684][ T7045] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.264877][ T7045] ___kmalloc_large_node+0x84/0x1b0 [ 151.270229][ T7045] __kmalloc_large_node_noprof+0x1c/0x70 [ 151.275928][ T7045] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 151.282684][ T7045] ? handle_policy_update+0x188/0x11e0 [ 151.288281][ T7045] memdup_user_nul+0x2b/0x110 [ 151.293037][ T7045] handle_policy_update+0x188/0x11e0 [ 151.298474][ T7045] ? __pfx_handle_policy_update+0x10/0x10 [ 151.304260][ T7045] ? apparmor_capable+0x114/0x1d0 [ 151.309435][ T7045] ? bpf_lsm_capable+0x9/0x10 [ 151.314178][ T7045] ? security_capable+0x7e/0x260 [ 151.319710][ T7045] safesetid_uid_file_write+0x84/0xc0 [ 151.325175][ T7045] ? __pfx_safesetid_uid_file_write+0x10/0x10 [ 151.331900][ T7045] vfs_write+0x24c/0x1150 [ 151.336313][ T7045] ? __fget_files+0x1fc/0x3a0 [ 151.341242][ T7045] ? __pfx___mutex_lock+0x10/0x10 [ 151.346340][ T7045] ? __pfx_vfs_write+0x10/0x10 [ 151.351249][ T7045] ? __fget_files+0x206/0x3a0 [ 151.356002][ T7045] ksys_write+0x12b/0x250 [ 151.360474][ T7045] ? __pfx_ksys_write+0x10/0x10 [ 151.365404][ T7045] do_syscall_64+0xcd/0x250 [ 151.370063][ T7045] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.376034][ T7045] RIP: 0033:0x7f109b585d29 [ 151.380611][ T7045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 151.400380][ T7045] RSP: 002b:00007f109c422038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 151.408975][ T7045] RAX: ffffffffffffffda RBX: 00007f109b776080 RCX: 00007f109b585d29 [ 151.417391][ T7045] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 151.425410][ T7045] RBP: 00007f109b601aa8 R08: 0000000000000000 R09: 0000000000000000 [ 151.434052][ T7045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 151.442332][ T7045] R13: 0000000000000000 R14: 00007f109b776080 R15: 00007ffcc782d958 [ 151.450450][ T7045] [ 151.453506][ T7045] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 151.460837][ T7045] CPU: 1 UID: 0 PID: 7045 Comm: syz.0.266 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 151.471479][ T7045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 151.481578][ T7045] Call Trace: [ 151.484891][ T7045] [ 151.487861][ T7045] dump_stack_lvl+0x3d/0x1f0 [ 151.492525][ T7045] panic+0x71d/0x800 [ 151.496487][ T7045] ? __pfx_panic+0x10/0x10 [ 151.500977][ T7045] ? show_trace_log_lvl+0x29d/0x3d0 [ 151.506253][ T7045] ? __alloc_pages_noprof+0xeff/0x25b0 [ 151.511786][ T7045] check_panic_on_warn+0xab/0xb0 [ 151.516797][ T7045] __warn+0xf6/0x3c0 [ 151.520773][ T7045] ? __alloc_pages_noprof+0xeff/0x25b0 [ 151.526294][ T7045] report_bug+0x3c0/0x580 [ 151.530653][ T7045] handle_bug+0x54/0xa0 [ 151.534846][ T7045] exc_invalid_op+0x17/0x50 [ 151.539409][ T7045] asm_exc_invalid_op+0x1a/0x20 [ 151.544292][ T7045] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 151.550393][ T7045] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 34 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9 [ 151.570027][ T7045] RSP: 0018:ffffc90004fdf8e8 EFLAGS: 00010246 [ 151.576123][ T7045] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 151.584122][ T7045] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 151.592113][ T7045] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000100 [ 151.600108][ T7045] R10: 0000000000000100 R11: ffffffff81fb8d44 R12: 0000000000000013 [ 151.608103][ T7045] R13: 0000000000040cc0 R14: 1ffff920009fbf31 R15: 00000000ffffffff [ 151.616106][ T7045] ? kasan_save_track+0x14/0x30 [ 151.621014][ T7045] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 151.626855][ T7045] ? lockdep_hardirqs_on+0x7c/0x110 [ 151.632087][ T7045] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 151.637939][ T7045] ? stack_depot_save_flags+0x36d/0x9e0 [ 151.643524][ T7045] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 151.649281][ T7045] ? kasan_save_stack+0x33/0x60 [ 151.654203][ T7045] ? __kasan_kmalloc+0xaa/0xb0 [ 151.659003][ T7045] ? safesetid_uid_file_write+0x84/0xc0 [ 151.664573][ T7045] ? vfs_write+0x24c/0x1150 [ 151.669148][ T7045] ? ksys_write+0x12b/0x250 [ 151.673680][ T7045] ? do_syscall_64+0xcd/0x250 [ 151.678389][ T7045] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.684528][ T7045] ___kmalloc_large_node+0x84/0x1b0 [ 151.689769][ T7045] __kmalloc_large_node_noprof+0x1c/0x70 [ 151.695451][ T7045] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 151.702088][ T7045] ? handle_policy_update+0x188/0x11e0 [ 151.707604][ T7045] memdup_user_nul+0x2b/0x110 [ 151.712318][ T7045] handle_policy_update+0x188/0x11e0 [ 151.717653][ T7045] ? __pfx_handle_policy_update+0x10/0x10 [ 151.723400][ T7045] ? apparmor_capable+0x114/0x1d0 [ 151.728466][ T7045] ? bpf_lsm_capable+0x9/0x10 [ 151.733173][ T7045] ? security_capable+0x7e/0x260 [ 151.738160][ T7045] safesetid_uid_file_write+0x84/0xc0 [ 151.743559][ T7045] ? __pfx_safesetid_uid_file_write+0x10/0x10 [ 151.749648][ T7045] vfs_write+0x24c/0x1150 [ 151.754013][ T7045] ? __fget_files+0x1fc/0x3a0 [ 151.758742][ T7045] ? __pfx___mutex_lock+0x10/0x10 [ 151.763803][ T7045] ? __pfx_vfs_write+0x10/0x10 [ 151.768608][ T7045] ? __fget_files+0x206/0x3a0 [ 151.773327][ T7045] ksys_write+0x12b/0x250 [ 151.777693][ T7045] ? __pfx_ksys_write+0x10/0x10 [ 151.782585][ T7045] do_syscall_64+0xcd/0x250 [ 151.787144][ T7045] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.793077][ T7045] RIP: 0033:0x7f109b585d29 [ 151.797522][ T7045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 151.817160][ T7045] RSP: 002b:00007f109c422038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 151.825605][ T7045] RAX: ffffffffffffffda RBX: 00007f109b776080 RCX: 00007f109b585d29 [ 151.833607][ T7045] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 151.841606][ T7045] RBP: 00007f109b601aa8 R08: 0000000000000000 R09: 0000000000000000 [ 151.849604][ T7045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 151.857597][ T7045] R13: 0000000000000000 R14: 00007f109b776080 R15: 00007ffcc782d958 [ 151.865634][ T7045] [ 151.869046][ T7045] Kernel Offset: disabled [ 151.873434][ T7045] Rebooting in 86400 seconds..