last executing test programs: 5.604169624s ago: executing program 1 (id=291): r0 = socket(0x2, 0x2, 0x0) bind$auto(r0, &(0x7f0000000100)=@llc={0x1a, 0x328, 0x4, 0x5, 0x1, 0x2, @multicast}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmsg$auto_NL802154_CMD_NEW_SEC_LEVEL(r0, 0x0, 0x4) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, r0, 0x8000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x523000, 0x0) openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, 0x0, 0x20000, 0x0) r3 = socket(0x23, 0x80805, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x2040eb5, 0x401, 0xa) gettimeofday$auto(&(0x7f0000000200)={0x0, 0x3}, &(0x7f00000000c0)={0x1, 0x674}) prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100) r4 = prctl$auto(0x3c, 0x9, 0x0, 0x1, 0x9) sendmmsg$auto(0x3, 0x0, 0x9a5, 0x47ffff7a) close_range$auto(r2, r3, 0xffffffff) r5 = socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x88) getpeername$auto(0x3, 0x0, 0x0) memfd_secret$auto(0x1) close_range$auto(0x2, 0x8, 0x2) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x40005, 0xdf, 0x9b72, 0x7, 0x28000) fsopen$auto(0x0, 0x1) sendmsg$auto_TIPC_NL_MON_GET(r1, &(0x7f0000001b00)={&(0x7f00000001c0), 0xc, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x6018850}, 0x1) sendfile$auto(r5, r4, &(0x7f0000000180)=0x893, 0x5f) mmap$auto(0x0, 0x800, 0x4ea8, 0x16, 0x1000000002, 0x0) syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000000), r0) 5.380229949s ago: executing program 2 (id=293): r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) madvise$auto(0x1ffff000, 0x7, 0x100000000) socket(0x2, 0x2, 0x88) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x90002, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) prctl$auto(0x43, 0x15, 0x0, 0x0, 0xffffffffffffffff) pselect6$auto(0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) shmget$auto(0xa, 0x10563, 0x568d1af2) read$auto_proc_pid_maps_operations_internal(r0, &(0x7f00000010c0)=""/4096, 0x1000) 4.810368957s ago: executing program 2 (id=295): request_key$auto_KEY_SPEC_SESSION_KEYRING(&(0x7f00000001c0)='!@{[#\x00', &(0x7f0000000200)=',%\x00', &(0x7f0000000240)='@&)-.&\x00', 0xfffffffffffffffd) socket$nl_generic(0x10, 0x3, 0x10) r0 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) getdents64$auto(r0, 0x0, 0x400) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)="8a6a1c054a7d33683a444c699372a656bd1f4220a03e163ffbd983cf2506f891ffb9ae190609a8ac59f2d7b157da38ad43ec65b345521862b6d8854f273bcb9f5e129bc365235b4089fd3357058131b88ff157f3e8327b78effd8987f9a96bbccf11b170273ffe3e83f23755780be2a879bd69b301762cfbcc12bb8d8e92091531831121030d1fbaf366cdf4e0d7e1d694ccd2a76ec2096f61800d61885f376ff6fbf9a21a56", 0xa6) r1 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(0xffffffffffffffff, 0x8, 0xfffffffc, &(0x7f0000000040)=',%\x00', 0xfffffffc) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000580)='/dev/audio\x00', 0x0, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, &(0x7f0000000080)) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r3 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kvm/mmu_pde_zapped\x00', 0x200400, 0x0) mmap$auto(0x0, 0x101, 0xdf, 0x9b72, 0x2, 0x8000) memfd_create$auto(0x0, 0x9) finit_module$auto(0x3, 0xfffffffffffffffe, 0x2) mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1e, 0x5, 0x201000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x2a240, 0x57) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(r0, &(0x7f00000018c0)=@nfc={0x27, 0x0, 0x0, 0x6}, 0x20055) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0xbb, 0x0, 0x8, &(0x7f0000000040), 0x81, 0x9}, 0xfffffffb}, 0x5, 0x6586, 0x0) getsockopt$auto_SO_PEERPIDFD(0xffffffffffffffff, 0x3, 0x4d, &(0x7f0000000140)='/sys/kernel/debug/kvm/mmu_pde_zapped\x00', &(0x7f0000000180)=0x2) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x200008d0}, 0x80) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0xff, 0x0, 0x1, 0x3}, 0xed7138c}, 0xb, 0x0) finit_module$auto(0x3, 0xfffffffffffffffe, 0x0) read$auto_stat_fops_per_vm_kvm_main(r3, 0x0, 0x0) mmap$auto(0x0, 0x2, 0xab05, 0xebf, 0x401, 0x2) unshare$auto(0x40000080) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000280), r1) unshare$auto(0x40000080) 4.683167208s ago: executing program 1 (id=296): openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x102, 0x0) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop10/mq/0/nr_tags\x00', 0x20000, 0x0) (async) r0 = socket(0xa, 0x1, 0x84) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) (async) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) (async) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) (async) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0xbb, 0x0, 0x8, &(0x7f0000000040), 0x81, 0x9}, 0xfffffffb}, 0x5, 0x6586, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async) r1 = socket(0x2b, 0x6, 0x73) (async) openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async) select$auto(0x1ff, 0x0, &(0x7f00000001c0)={[0x7, 0x100, 0x7, 0x7, 0x1, 0x4, 0x4, 0x6, 0x0, 0x13, 0x1, 0x3, 0x0, 0x9, 0xfffffffffffffffc, 0x5]}, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) process_vm_writev$auto(0xffffffffffffffff, &(0x7f0000000e00)={0x0, 0xb4}, 0x9, 0x0, 0x19c1, 0x0) (async) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r1) (async) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'netdevsim0\x00'}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'ip6gretap0\x00'}) r2 = socket$nl_generic(0x10, 0x3, 0x10) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), r3) (async) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_HARDIF(r2, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="f38327b97000fedbdf250500000008000300", @ANYRES32=r5], 0x1c}}, 0x4008000) (async) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'pim6reg1\x00'}) (async) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'veth0_to_team\x00'}) 4.409064658s ago: executing program 1 (id=298): syz_clone(0x80000000, &(0x7f0000000000)="085a1056b6aa2f10d8ddee0633aea682a5ff", 0x12, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x10, 0x2, 0xa) setsockopt$auto(r0, 0x104000000000010e, 0x1, 0x0, 0x16) r1 = clone$auto(0x6db, 0x1, 0x0, 0x0, 0x7) migrate_pages$auto(r1, 0x4, 0x0, &(0x7f0000000180)=0x2) r2 = socket(0x10, 0x2, 0x4) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000fd000000000000025fd8be2130"], 0x2c}, 0x1, 0x0, 0x0, 0x54}, 0x400c001) write$auto(r2, &(0x7f0000000000)='-\x00', 0x2fb) 4.114060479s ago: executing program 0 (id=301): r0 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x582, 0x0) r1 = socket(0x11, 0x80003, 0x300) sendfile$auto(r0, r1, 0x0, 0x4000000000002f) dup2$auto(0x0, 0x3) mmap$auto(0x0, 0x202000b, 0x4, 0x800000eb5, 0xfffffffffffffffa, 0x8000) socket(0x1d, 0xa, 0x0) sysfs$auto(0x1000006, 0x1, 0x0) r2 = fcntl$auto(0x3, 0x4, 0xa553) mmap$auto(0x0, 0x2020009, 0x3, 0x11d, 0xfffffffffffffffa, 0x108000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r3 = syz_open_procfs$namespace(0x0, 0x0) fstat$auto(r3, 0x0) ioctl$auto(0x3, 0x4008126e, 0x38) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x8, 0xb, 0x1a5, 0xc000000008010, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_SET(r2, &(0x7f00000025c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40040}, 0x4000000) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000028013, 0x3, 0x8000) madvise$auto(0x1, 0x10, 0x1) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101e81, 0x0) ioctl$auto(0x3, 0x541b, 0x10000000000402) prctl$auto_PR_SET_NAME(0xf, 0x5, 0x0, 0x8, 0xff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/tty7\x00', 0x200300, 0x0) 3.833367175s ago: executing program 1 (id=302): setitimer$auto(0x2, 0x0, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) mmap$auto(0x0, 0x10000, 0xde, 0x11, r0, 0x28000) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001ac0), 0xffffffffffffffff) sendmsg$auto_BATADV_CMD_GET_GATEWAYS(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001c00)={&(0x7f0000000080)={0x14, r2, 0x1301, 0x70bd29, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40080}, 0x20008800) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000040), r1) madvise$auto(0x0, 0x2000040080000004, 0xe) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) mmap$auto(0xfffffffffffffffd, 0x400008, 0xdb, 0x9b72, 0x2, 0x800008000) setitimer$auto_ITIMER_PROF(0x2, 0x0, 0x0) r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) pread64$auto(r3, &(0x7f0000000000)='\x03W\xd6l\x15\x88X\x1a\x9f\x9c{^\'\x00', 0x100000005, 0x100000001) msgrcv$auto(0x0, 0x0, 0xff9, 0x100000, 0xc48) 3.823006767s ago: executing program 2 (id=303): mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0xb, 0x4, 0x8) setsockopt$auto(r0, 0x10d, 0x2, 0x0, 0x17) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82043, 0x0) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8081, 0x0) close_range$auto(r0, r1, 0x5) socket(0x26, 0x2, 0x4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/projid_map\x00', 0x100000, 0x0) r2 = open(0x0, 0x80842, 0x91) read$auto(r2, 0x0, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20540, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/midiC2D3\x00', 0x2001, 0x0) select$auto(0xfffffffb, 0x0, &(0x7f0000000500)={[0x1, 0x101, 0x9, 0x4a, 0x0, 0x7, 0x0, 0x3, 0x3, 0xf, 0x51c7, 0x7, 0x8, 0x9, 0x1, 0x3]}, 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_l2tp(0x0, r4) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0) ioctl$auto(r5, 0x550c, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000080)={[0x1ff, 0xd5b, 0x9, 0x37, 0x9489, 0xfffffffffffffcfb, 0x15f4da0b, 0x1, 0x3, 0x300000000000600, 0x40080000001, 0x5, 0x6d3a, 0x8, 0x9, 0xfffffffffffffffc]}, 0x0) r6 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000002f80)='/sys/kernel/debug/ieee80211/phy0/aql_enable\x00', 0x802, 0x0) write$auto(r6, 0x0, 0x30) mprotect$auto(0x0, 0x2, 0x1000002) close_range$auto(0x2, 0x8, 0x0) 3.603018299s ago: executing program 3 (id=305): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) r0 = socket(0x10, 0x80002, 0x8) close_range$auto(r0, r0, 0x0) pipe$auto(0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027617c36720add70ab0343990f7d0bbc96dc0b"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) splice$auto(r0, 0x0, 0x2, 0x0, 0xfdef, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) fanotify_init$auto(0x5, 0x2000000000002) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) r3 = socket(0x28, 0x1, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000164c0), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_SCAN(r4, &(0x7f00000165c0)={0x0, 0x0, &(0x7f0000016580)={&(0x7f00000006c0)={0x14, r5, 0xd3ac6c422733a379, 0x70bd29, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x48800) sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="34000000eb43edbc64d27f6541048151e04762717f9d", @ANYRES16=r5, @ANYBLOB="080026bd7000fcdbdf25020000000400b9800400ff000400430005002001040000000400170004005f0004002101"], 0x34}}, 0x4000840) r6 = gettid() tkill$auto(r6, 0x7) r7 = prctl$auto_PR_SYS_DISPATCH_OFF(0x1, 0x0, 0xffffffffffffffff, 0xff, 0x101) capset$auto(&(0x7f00000000c0)={0x5fe, 0x0}, &(0x7f0000000100)={0x9, 0x0, 0xffffffaf}) sendmsg$auto_NL80211_CMD_DISASSOCIATE(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)={0x159c, r5, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_BSS_DUMP_INCLUDE_USE_DATA={0x4}, @NL80211_ATTR_MAC_ADDRS={0x110d, 0xa6, 0x0, 0x1, [@typed={0x8, 0x1a, 0x0, 0x0, @pid=r6}, @nested={0x1010, 0x118, 0x0, 0x1, [@generic="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", @typed={0xc, 0x120, 0x0, 0x0, @u64=0x2}]}, @generic="82a9ccf7440ab83750ae280e0b655a3704efe2c47153d00c6ca29255a008fd6a447e5681fd03a504d807be73291281dadb28b76d6072be90afb28d59b4167c2712b864cc22ee0ba45545078203b4e6c4a2c749e8209d6cdda55d3e3603d196a7144921d9bee7ee4d85a1673c2cc4248aeeb53b1554e7e41dbcb4c8682639c846aed01bad08b8bf9401515c54c95e3d193e708f3b9a5c7bec38379ebac178727b64191d42922d076b156b3345506eec786e5cf21253f95fb29939f823902ef7a5157537e70de6f198728ef4f9de27f63fd726f94d64c719f46f9a463734e71a4b64690768a5d20aa038", @typed={0x8, 0x18, 0x0, 0x0, @u32}]}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'vlan0\x00'}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0xc}, @NL80211_ATTR_MLO_SUPPORT={0x4}, @NL80211_ATTR_STA_FLAGS={0x451, 0x11, 0x0, 0x1, [@typed={0x8, 0xe, 0x0, 0x0, @fd=r7}, @nested={0x24c, 0x1f, 0x0, 0x1, [@generic="85bb95f7b9", @nested={0x4, 0x135}, @nested={0x4, 0xb2}, @typed={0x8, 0x129, 0x0, 0x0, @pid=r8}, @generic="462c3ce95516023b59c86dadb15f0987c79e4391258f33a75d85b3e9d5a72f07b7f9f435dda08f4720b6770d11ec43990a4b4af471240077aeef2827b8b7bf03a1b64bc5f6a1e4cd681c85ca90c946e18bfb6460d99a0840dd9fc5d24fb4f60deed89fe5158798aa1c7ce58001b68e4e7f8c71aa45b66a3c317802edde7cab813a555bcdf8be22440122f74d276dc495f30e26476bfa4aefa88be2a588e1143ae2d2e1a13908ef228d1cf2b43f1b0bec94e1cbeddce6bda3ce598cf401277de2331900dc27ea259822ee0f8efb0239d3cd0dd215", @nested={0x4, 0x148}, @generic="89159193a52d5d7658bdd8e4773a63315b381c65dfa81eaecd81308787101a43cc74f00f59c3f55146e5611121dd87194eaf409e3bdba502a2b08e4b1d3dafe406d54663bc3648f17e5f72d1c3f4b4a81f3620fa012b7dfd5bcbccf5", @generic="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"]}, @typed={0x17, 0x88, 0x0, 0x0, @str='/dev/btrfs-control\x00'}, @generic="0c10d14cc987ecb36a124c92ee91e7602b266f14ebaca6098031927d1d5cbbdbb40cf374f30de4b6ff2f5ed7056d57fa90e34920bd7f1ca025bef97473d26c2126d9b3096fdb9018c693d3b6d45bf545dbd9bc6616f0c600245a23ed30949a1ff537c6234d1e81443b6ea071255bfb6e629682033515186e0690196deb70c20289ba084b562ffd3acfa7775f1ecbbfd8", @generic="2f7e5e629267b3bbb3f8f81e0439c509198dbb33d2645ed9fdf036110746ed66a9a44765b99afb31824779f19853e5b5060d3f215c6c786f3fe5b017ad8452bdf5d41c2933329d680ed01e394a556c30f360da4af06bdab334be8567242137d9299142a345a9e4bf1fedb2b7d872975a360e13fdf81b5c7bca14907adbead0062293afe8fed4489966e09ed2869b06cb71b79c3bf127bee07783f3a31e97eb55e4f35280b57af4e307f73b8d51fbbb6046", @typed={0x9e, 0x51, 0x0, 0x0, @binary="5b9188fcd30c0d7091125528b4de70187996fcfa5f6e11ed0bdad93c18e6ba726a0ca5201d2f76819b5b7a1993434b4f70629d8a12c44e93cf70b8a1e59b729b3ee53abab4b63fd10ae4c5878f6d05b4c6d71c1c2aefba77d3c9e7ebec3e524d8b7f7463c88143aa64e7ab961448110fdf2da69641119767838959309b044c42646dc2e2166a931d529140e031c5cb1819b2ae240b3f161858f2"}]}]}, 0x159c}, 0x1, 0x0, 0x0, 0x20050080}, 0x80) ioctl$auto(0x3, 0x400c4d02, r2) openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000040), 0x218600, 0x0) write$auto(0x6, 0x0, 0x100000001) 3.062538459s ago: executing program 3 (id=306): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) r0 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) read$auto_l2cap_debugfs_fops_(r0, &(0x7f0000000240)=""/177, 0xb1) (async) timer_create$auto(0x8, 0x0, 0x0) timer_settime$auto(0x0, 0x9, &(0x7f00000000c0)={{0x7fff, 0x30d}, {0x7, 0x4}}, 0x0) (async) rt_sigaction$auto(0xe, &(0x7f0000000580)={&(0x7f00000004c0)=0x0, 0x100000001, 0x0, {0x7}}, 0x0, 0x8) (async) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0) socket(0x2, 0x80002, 0x73) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1) (async) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000fcdbdf252100000008000300", @ANYRES32=r3, @ANYBLOB="08009e"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0) ioctl$auto_XFS_IOC_FREESP64(0xffffffffffffffff, 0x40305825, &(0x7f0000000100)={0x6, 0x7ff, 0x9, 0x8b, 0x8000, 0xffffffffffffffff}) openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x4c802, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vimc.0/video4linux/video4/name\x00', 0x0, 0x0) (async) sendmsg$auto_NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, 0x0, 0x20040045) pwrite64$auto(0xc8, 0x0, 0x6, 0x7a) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) mlock$auto(0x1000, 0x6) (async) pselect6$auto(0x8000, &(0x7f0000000080)={[0x800, 0x3, 0xb, 0xb9, 0x7, 0x7, 0x28, 0x4, 0x100, 0x8024, 0x3, 0xffffffffffff6ee4, 0x80, 0x47, 0x3, 0x40]}, 0x0, &(0x7f0000000180)={[0x5d58, 0x7, 0xa5, 0x7f, 0xffffffffffffff63, 0x6, 0xfffffffffffffffa, 0x2001, 0x4, 0x7, 0x6, 0x8000, 0xc, 0x101, 0x4, 0x9]}, &(0x7f0000000200)={0x6, 0xac}, &(0x7f0000000240)="84564c8c26b8144fd4d3e1ecb7942bbed10faff85baff45164fe66cd970aa99ce6e0b82e3f049231ba73698898fcd2a65389893a8ce8b267d7aa4f5258122e0b18ac67ffde635cac8164af89d15c5b3222a32a0e03b46c0b57abb954eb9a7ba2e851d345c9e7319f0334e91d93a1a639c9a157cbd953f98a055c6326e49c3691aa27e73928cfc94b6ca85e02c62ac8fc9925f5c6481c62e36169492d6741aa7e32fbc03e9391f9b9b275e7e9551b938d5b80bafbdc1dd37bfb") madvise$auto(0x0, 0x200007, 0x19) (async) write$auto(0x1, &(0x7f0000000000)='//\xf2\x00', 0x80000000) 2.850870018s ago: executing program 0 (id=307): setresuid$auto(0x2, 0x7, 0x0) r0 = geteuid() r1 = socket$nl_generic(0x10, 0x3, 0x10) recvfrom$auto(r1, 0x0, 0xe, 0x5, 0x0, 0x0) ioprio_set$auto(0x6, 0x0, 0x8) statmount$auto(0x0, &(0x7f0000000180)={0x1, 0x1, 0x1000009, 0x3, 0x22, 0x940, 0x9ffde, 0x5, 0x6, 0x3ff, 0x9, 0x400005, 0xfff, 0x4, 0xb0, 0x8, 0x9, 0x3, 0x5, 0x6, 0x6, 0xffffffff, 0x0, 0x4000003, 0x80, 0x0, [0x3, 0x5, 0x200000000, 0x3ff, 0x0, 0x500, 0xfffffffffffffffd, 0x8, 0x3, 0x0, 0xc72, 0x7ffffffffffffffd, 0x0, 0x1, 0x0, 0x0, 0x40000000004, 0x5, 0x1000000800, 0x0, 0x0, 0x0, 0x9, 0x10000040000000, 0xcea, 0x0, 0xfffffffffffffffc, 0x800000, 0xfffffffffffffffa, 0x4, 0xffffffffffffffff, 0x2, 0x4001, 0xfffffffffffffffd, 0x0, 0xb548, 0x8, 0x0, 0xfffffffffffffff9, 0x0, 0x6c1a, 0x1, 0x0, 0x9f, 0x0, 0x3]}, 0x200, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) socketpair$auto(0x1a, 0x10000001, 0x9, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) r4 = socket(0xa, 0x1, 0x84) getsockopt$auto(r4, 0x84, 0x6c, 0x0, 0x0) r5 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1p\x00', 0x80, 0x0) mmap$auto(0x800000, 0x9, 0x100000001, 0x8000000008011, r5, 0x82000000) capget$auto(0x0, 0xfffffffffffffffe) unshare$auto(0x40000080) setreuid$auto(r0, 0x0) syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r6, 0x0, 0x20) r7 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r7, &(0x7f0000000200)={0x0, 0x7}, 0x3) r8 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r8) ioctl$auto(0x3, 0xae41, 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0xd4) 2.461829539s ago: executing program 0 (id=308): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) ioctl$auto_BLKRRPART(r0, 0x125f, 0x80010000) 2.210006767s ago: executing program 1 (id=309): syz_open_procfs$namespace(0x0, &(0x7f0000001340)='ns/mnt\x00') 2.179332338s ago: executing program 0 (id=310): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_TASKSTATS_CMD_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000) keyctl$auto_KEYCTL_SET_TIMEOUT(0xf, 0x0, 0x0, 0x0, 0x0) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/members\x00', 0x82204, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0x9, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00bbb0", @ANYRES16=0x0, @ANYBLOB="080027bd7000fbdbdf250400000008000500e1000000"], 0x1c}, 0x1, 0x0, 0x0, 0x40084}, 0x64040) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r1, 0x0, 0x1f40) socket(0x10, 0x2, 0x4) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000300)='/dev/sequencer\x00', 0x10000, 0x0) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) bpf$auto(0x9, &(0x7f00000001c0)=@raw_tracepoint={0x1006, 0xffffffffffffffff, 0x0, 0x11}, 0x6f3) fanotify_init$auto(0x602, 0x1) open(0x0, 0x10d2c2, 0xe1d2b27bdc14aa98) open(0x0, 0x12ba7e, 0x45) fanotify_mark$auto(0x0, 0xfffff3d1, 0xa, 0xffffffffffffffff, 0x0) open(0x0, 0x109301, 0x438) mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) clock_settime$auto(0xfffffffa, 0x0) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv6/neigh/nlmon0/retrans_time_ms\x00', 0x200, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) bpf$auto(0x0, 0x0, 0x6f3) getsockopt$auto_SO_PASSCRED(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x0) 2.036091993s ago: executing program 3 (id=311): socket(0x2, 0x5, 0x3) r0 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) msgctl$auto(0x0, 0x3, 0x0) r1 = socket(0x11, 0x80003, 0x0) setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x8) r2 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000140), 0x382, 0x0) write$auto_rfkill_fops_core(r2, &(0x7f0000000040)="a5cac73806f9a7", 0x7) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) write$auto(0x3, 0x0, 0xfffffdf2) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mq_open$auto(0x0, 0xfffefe01, 0x7d, &(0x7f0000000040)={0xfffffffffffffffd, 0x6, 0xffffffffffffffc0, 0x5}) socket(0x2, 0x80805, 0x0) eventfd$auto(0x7) writev$auto(0x4, &(0x7f0000000080)={&(0x7f0000000040), 0x8}, 0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000004180), r4) sendmsg$auto_OVS_VPORT_CMD_DEL(r4, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f00000041c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010028bd7000fbdbdf25020000000800"/26, @ANYRES32=0x0, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x40800}, 0x80) sendmsg$auto_OVS_VPORT_CMD_DEL(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="00012abd7000fddbdf25020000000800020001000000440006006534ffffffffffffffff000000000000f16f0000000000000600000000000000000000000000000002000000000000000700000000000000ff00000000000000c27a5f808708e2c707a0da85fd06d89ed54f550d5d907a17c440b76aee7b2817dd044e027292e5bf14557b42cb5e35e0fbc3defb4442522ce609edca39985871fbf90e01cc8637480f70321049201f2d96933eb9af58935b29dae7d5935a212183bab9724cf106f28866fcd5508350134e3f2b0278ea50c0b5d0cdb2cb04ceeb889e1bf7ac6a35bf674707ad78eb94c04edb4e5a072afcca774475c179"], 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x8020) read$auto_vhci_fops_hci_vhci(r0, &(0x7f0000000d40)=""/16, 0x10) 2.009020089s ago: executing program 2 (id=312): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x48041, 0x0) write$auto(r0, 0x0, 0x6) (async) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000280)=""/117, 0x75) r1 = socket(0xa, 0x3, 0x100) io_uring_register$auto(r1, 0x3, &(0x7f0000000180)="fd7301b6992f3636719bac2738637c75e70870bc1add77028a6f41251ee99aa47093b0a14b6cc6e3f5d63371741045f6da2eabdd094622dc603a2cdcd57ecb11e805cbcf9be7bd4bcd5e066f9fe694065b3daab514a7bc9700d03b8923ad3c7e1417d0eea39f3168a8104a9edb07691a3444880d25d4b7e5e7aa7282fc8d766bb6007a98a5017f4129ba2653cab11ed644c08f58603ff435f847f12ab26ce538b1d14bb3bc170045560152a35c76bdb01727339aade502e61fd035c4b88c4360e42627", 0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) (async) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) (async) openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/dri/vkms/vkms_config\x00', 0x8000, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x88441, 0x0) ioctl$auto_SG_GET_RESERVED_SIZE(r2, 0x4c03, 0x0) process_madvise$auto(0x3, 0x0, 0xb, 0xc15, 0x8000000000000000) close_range$auto(0x2, 0x8, 0x0) memfd_secret$auto(0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) write$auto(0x3, 0x0, 0xfffffdef) (async) mmap$auto(0x6, 0x10000, 0xf0, 0x8000000000000010, r1, 0x0) (async) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) (async) socket(0x2b, 0x1, 0x1) write$auto_ocfs2_control_fops_stack_user(r3, &(0x7f0000003900)='\t', 0x1) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0) (async) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) (async) ioperm$auto(0x7, 0x86, 0x40006) (async) socket(0xa, 0x80000, 0x3a) (async) socket$nl_generic(0x10, 0x3, 0x10) 1.69477051s ago: executing program 0 (id=313): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) ppoll$auto(0x0, 0x6, 0x0, 0x0, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x3, 0x4) flock$auto(0x1, 0x6) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x6) syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000040), r0) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x0) unshare$auto(0x40000080) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) r2 = socket(0x10, 0x4, 0x0) mmap$auto(0x3, 0x4, 0xdb, 0x12, 0x2, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000000)=""/226, 0xe2) r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r4, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r4, 0x40107447, &(0x7f00000000c0)={0x409, &(0x7f0000000000)={0x4, 0xf1, 0x2, @raw=0x10000}}) readv$auto(r2, &(0x7f0000000380)={0x0, 0x2}, 0x5f6) recvmmsg$auto(r2, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) socket(0x1d, 0x2, 0x6) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) connect$auto(0x3, &(0x7f00000001c0)=@in={0x2, 0x4e24, @remote}, 0x55) socket$nl_generic(0x10, 0x3, 0x10) write$auto(0x3, 0x0, 0xfdef) close_range$auto(0x2, 0x8, 0x0) 1.693486456s ago: executing program 1 (id=314): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x9, 0x20000000) r1 = io_uring_setup$auto(0x1, 0x0) sendmsg$auto_NL80211_CMD_PEER_MEASUREMENT_START(0xffffffffffffffff, 0x0, 0x4008080) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) ioctl$auto_RNDADDENTROPY2(r1, 0x40085203, 0x0) open(&(0x7f00000000c0)='./file0\x00', 0x103000, 0x60) r2 = socket(0xa, 0x801, 0x84) listen$auto(r2, 0x3) r3 = getsockopt$auto(r2, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x17d) sendmsg$auto_TASKSTATS_CMD_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0xec}, 0x1, 0x0, 0x0, 0x4001}, 0x20000000) r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r4, 0x0, 0x1f40) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000040)={0x0, 0x7}, 0x3) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/controlC0\x00', 0x20000, 0x0) shmctl$auto_SHM_UNLOCK(0x2, 0xc, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000140)=""/122, 0x7a) 1.586962871s ago: executing program 2 (id=315): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x3, 0x3c) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x800, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) symlink$auto(&(0x7f0000001500)='./file0/file0\x00', &(0x7f0000001540)='./file0\x00') truncate$auto(&(0x7f00000000c0)='./file0\x00', 0x0) dup$auto(0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) ioprio_set$auto(0x1, 0x0, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0) mmap$auto(0x0, 0x7fffffffffffffff, 0x40000c00000072, 0x8b72, 0x1000000002, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x1e, 0x4, 0x0) socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x111, 0x1006, 0x0, 0x5) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) bind$auto(0x3, 0xfffffffffffffffd, 0x0) mmap$auto(0x0, 0xe982, 0x2000000000df, 0xeb1, 0x401, 0x8000) sendto$auto(r1, 0x0, 0x7, 0x6, 0x0, 0x7) mmap$auto(0x3, 0x2020009, 0x100000001, 0x15, 0xffffffffffffffff, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) socket(0x15, 0x4, 0x800) 1.074243475s ago: executing program 3 (id=316): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x4, 0x0) r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002240)='/dev/cec17\x00', 0x181680, 0x0) ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, 0x0) ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20082, 0x0) openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer1\x00', 0x8000, 0x0) mmap$auto(0x0, 0x400008, 0xde, 0x9b72, 0x2, 0x8000) socketpair$auto(0x6, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2b, 0x1, 0x0) setsockopt$auto(0x3, 0x1, 0x9, 0x0, 0x8) socket$nl_generic(0x10, 0x3, 0x10) 652.62355ms ago: executing program 0 (id=317): openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) lseek$auto(0xffffffffffffffff, 0x8001, 0x4) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) prctl$auto(0x6, 0x4, 0x0, 0x5177, 0xee43) settimeofday$auto(0x0, &(0x7f0000000000)={0x0, 0x6000}) getsockopt$auto(0xffffffffffffffff, 0x10002, 0x2, 0x0, &(0x7f0000000040)=0x2000000) mmap$auto(0x0, 0x2020009, 0x7, 0x13, 0xfffffffffffffffb, 0x9bf) r0 = io_uring_setup$auto(0x3, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x108800, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) mmap$auto(0x0, 0xfff, 0xdf, 0xeb1, r0, 0x8000) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x3ff, 0x0) mmap$auto(0x0, 0x8, 0x329, 0x100000010, 0x2, 0x8000) mprotect$auto(0x0, 0x5, 0x8) close_range$auto(0x2, 0x8, 0x0) epoll_create$auto(0x4) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x600000, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyy2\x00', 0x20000, 0x0) ioctl$auto(0x3, 0x80045438, 0x10000000000402) mlock$auto(0x4, 0x0) mmap$auto(0xffffffffffffffff, 0x4020008, 0xfffffffffffffa07, 0x7fffffff, 0x401, 0x2) io_uring_setup$auto(0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) prctl$auto(0x23, 0x2, 0x0, 0x8, 0x0) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r2, 0x5522, 0xf15) 479.280315ms ago: executing program 3 (id=318): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r0) sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x29}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000840}, 0x2000c840) (fail_nth: 4) 453.148661ms ago: executing program 2 (id=319): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000002f80), 0xffffffffffffffff) sendmsg$auto_GTP_CMD_NEWPDP(r0, &(0x7f0000003080)={0x0, 0x0, &(0x7f0000003040)={&(0x7f0000000040)={0x1c, r1, 0x5, 0x70bd2b, 0x25dfdbfd, {}, [@GTPA_VERSION={0x8, 0x2, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4c000}, 0x80) mmap$auto(0x0, 0x2020009, 0x100003, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x10000000000048, 0x0) r2 = socket(0x11, 0x3, 0x2) getsockopt$auto(r2, 0x107, 0xb, 0x0, 0x0) r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20c01, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/pci0000:00/0000:00:04.0/power_state\x00', 0xa100, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000001180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001140)={&(0x7f0000000080)={0x38, 0x0, 0x400, 0x70bd25, 0x3ff, {}, [@NFSD_A_SERVER_SCOPE={0xa, 0x4, '/^;]j\x00'}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x101}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x1}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x801}, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = socket(0xa, 0x801, 0x84) getsockopt$auto(r4, 0x84, 0x0, 0x0, &(0x7f00000000c0)=0x10000) setresuid$auto(0x0, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x40044620, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r5 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast1}, 0x6a) sendmmsg$auto(r5, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) io_uring_setup$auto(0x1, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0x8) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f80)={0x19c, 0x0, 0x1, 0x51bd2e, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x184, 0x1, 0x0, 0x1, [@nested={0x4, 0x6}, @generic="398f32525e629163bfcc5d377bd8aed3ff1d26fc3c79ca435794c67d39b21ed0e95d1b3756e1789925d5c8a1a918c121a2b84869b15bb40ae4f671a8dd8ed01bb44efef2f4c768a2484f03635658fe8bfff71b8bf933532a61abcb7516ccfa73d70af3acc26f2c526959f19efd99202bc7ec5a2259a82d8e191691f5b23172f4f19ca9b0080dff732a7df559ae2279f426f2baa018832cd8e9b58fee32b1bcd4c087f83b0f3c0aed0c943a50ba5a327530d1", @typed={0x8, 0xd2, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @generic="f3c1881feb99fe432d5fa89114591690f2efcbe9a7f87a8774637face20e7a821c481a653778aaf92185e8bfb092c2900920cca139540fd90efab653551552721f2b2889999ce801e47cfad8f735f702c852bd40e1ef6f259c36d7d8bc31748c903b1ceadd56ead8730d0e727f333855c6b3b286c779abbfff5f47e390b1336271492db0b266e2b8910bf339d4037a7dcf9c8a0669629580c65489f41db5adb59f53f3acd871444d9f34952c00ec9365f3dd", @typed={0x8, 0x38, 0x0, 0x0, @fd}, @nested={0x8, 0x6f, 0x0, 0x1, [@typed={0x4, 0x2d, 0x0, 0x0, @binary}]}]}]}, 0x19c}, 0x1, 0x0, 0x0, 0x40}, 0x4) close_range$auto(0x2, 0x8, 0x0) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCCONS2(r7, 0x541d, 0x0) 0s ago: executing program 3 (id=320): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) modify_ldt$auto(0x1, 0x0, 0x10) unshare$auto(0x40000080) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_RSS_GET(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={0x0, 0x34}, 0x1, 0x0, 0x0, 0x24000880}, 0x20000050) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000180), 0x450000, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/mtd/mtd0/writesize\x00', 0x22400, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000003940)=""/207, 0xcf) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = socket(0x5, 0x3, 0x9) socket(0x2, 0x80002, 0x73) socket(0xa, 0x3, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) eventfd$auto(0x3) eventfd$auto(0x0) r4 = socket(0xa, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r4, @new_map_fd, 0x80, @old_map_fd=r3}, 0xa3) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x1000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000c80)=ANY=[@ANYBLOB="140064", @ANYRES16=0x0, @ANYBLOB="00002bbd7000ffdbdf2502000000"], 0x14}, 0x1, 0x0, 0x0, 0x4040000}, 0x90) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.107' (ED25519) to the list of known hosts. syzkaller login: [ 76.651575][ T5817] cgroup: Unknown subsys name 'net' [ 76.775449][ T5817] cgroup: Unknown subsys name 'cpuset' [ 76.783311][ T5817] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 78.302496][ T5817] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 80.195056][ T5840] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 80.203097][ T5840] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 80.211027][ T5840] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 80.218900][ T5840] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 80.226267][ T5840] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 80.233855][ T5840] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 80.236317][ T5841] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 80.241588][ T5840] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 80.255956][ T5840] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 80.263876][ T5840] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 80.268612][ T5842] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 80.271232][ T5840] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 80.280936][ T5842] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 80.285334][ T5843] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 80.292656][ T5842] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 80.307039][ T5840] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 80.315325][ T5842] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 80.318430][ T5840] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 80.323471][ T5842] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 80.332675][ T5840] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 80.336907][ T5842] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 80.357108][ T5842] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 80.365561][ T5842] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 80.373594][ T5842] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 80.688437][ T5826] chnl_net:caif_netlink_parms(): no params data found [ 80.716467][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 80.790388][ T5827] chnl_net:caif_netlink_parms(): no params data found [ 80.829145][ T5830] chnl_net:caif_netlink_parms(): no params data found [ 80.866528][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.874364][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 80.881990][ T5826] bridge_slave_0: entered allmulticast mode [ 80.888716][ T5826] bridge_slave_0: entered promiscuous mode [ 80.897421][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.904719][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 80.911847][ T5826] bridge_slave_1: entered allmulticast mode [ 80.918761][ T5826] bridge_slave_1: entered promiscuous mode [ 81.019378][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.028701][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.039100][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.046339][ T5829] bridge_slave_0: entered allmulticast mode [ 81.053908][ T5829] bridge_slave_0: entered promiscuous mode [ 81.061787][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.069049][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.076236][ T5829] bridge_slave_1: entered allmulticast mode [ 81.082946][ T5829] bridge_slave_1: entered promiscuous mode [ 81.102114][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.149298][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.156660][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.164628][ T5830] bridge_slave_0: entered allmulticast mode [ 81.171267][ T5830] bridge_slave_0: entered promiscuous mode [ 81.196162][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.205538][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.212848][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.220017][ T5827] bridge_slave_0: entered allmulticast mode [ 81.227302][ T5827] bridge_slave_0: entered promiscuous mode [ 81.235159][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.243645][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.250816][ T5830] bridge_slave_1: entered allmulticast mode [ 81.257787][ T5830] bridge_slave_1: entered promiscuous mode [ 81.266862][ T5826] team0: Port device team_slave_0 added [ 81.277163][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.286562][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.294129][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.301396][ T5827] bridge_slave_1: entered allmulticast mode [ 81.308409][ T5827] bridge_slave_1: entered promiscuous mode [ 81.329509][ T5826] team0: Port device team_slave_1 added [ 81.376478][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.389588][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.400976][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.420620][ T5829] team0: Port device team_slave_0 added [ 81.428872][ T5829] team0: Port device team_slave_1 added [ 81.436725][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.455860][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.462989][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.489025][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 81.538178][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.545354][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.571370][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.587874][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.595995][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.622605][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 81.642421][ T5827] team0: Port device team_slave_0 added [ 81.651781][ T5830] team0: Port device team_slave_0 added [ 81.659641][ T5830] team0: Port device team_slave_1 added [ 81.668620][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.675838][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.701939][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.720177][ T5827] team0: Port device team_slave_1 added [ 81.742065][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.749056][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.775645][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 81.788338][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.802014][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.828090][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.887819][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.894899][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.921494][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 81.934314][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.941281][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.968748][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.983434][ T5826] hsr_slave_0: entered promiscuous mode [ 81.989695][ T5826] hsr_slave_1: entered promiscuous mode [ 82.007245][ T5829] hsr_slave_0: entered promiscuous mode [ 82.013615][ T5829] hsr_slave_1: entered promiscuous mode [ 82.020881][ T5829] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 82.028679][ T5829] Cannot create hsr debugfs directory [ 82.103582][ T5830] hsr_slave_0: entered promiscuous mode [ 82.109680][ T5830] hsr_slave_1: entered promiscuous mode [ 82.116086][ T5830] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 82.124009][ T5830] Cannot create hsr debugfs directory [ 82.137138][ T5827] hsr_slave_0: entered promiscuous mode [ 82.143325][ T5827] hsr_slave_1: entered promiscuous mode [ 82.149225][ T5827] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 82.156950][ T5827] Cannot create hsr debugfs directory [ 82.353445][ T5842] Bluetooth: hci0: command tx timeout [ 82.409289][ T5826] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 82.432178][ T5842] Bluetooth: hci3: command tx timeout [ 82.432425][ T5834] Bluetooth: hci2: command tx timeout [ 82.437801][ T5842] Bluetooth: hci1: command tx timeout [ 82.444976][ T5826] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 82.469598][ T5826] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 82.480825][ T5826] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 82.490869][ T5829] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 82.500914][ T5829] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 82.523610][ T5829] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 82.535653][ T5829] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 82.573871][ T5827] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 82.596054][ T5827] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 82.609550][ T5827] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 82.639417][ T5827] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 82.664228][ T5830] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 82.689202][ T5830] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 82.700219][ T5830] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 82.721663][ T5830] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 82.802307][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.828367][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.856000][ T5826] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.882901][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.890091][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.900925][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.936653][ T4758] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.943791][ T4758] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.953874][ T4758] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.961005][ T4758] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.970363][ T4758] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.977485][ T4758] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.998459][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 83.068246][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 83.090008][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 83.112809][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 83.128752][ T4758] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.135907][ T4758] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.166001][ T5060] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.173186][ T5060] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.211392][ T5060] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.218596][ T5060] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.239390][ T5060] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.246725][ T5060] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.449852][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.520716][ T5829] veth0_vlan: entered promiscuous mode [ 83.548681][ T5829] veth1_vlan: entered promiscuous mode [ 83.578243][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.624881][ T5829] veth0_macvtap: entered promiscuous mode [ 83.653962][ T5829] veth1_macvtap: entered promiscuous mode [ 83.673812][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.688387][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.704109][ T5826] veth0_vlan: entered promiscuous mode [ 83.727672][ T5826] veth1_vlan: entered promiscuous mode [ 83.768931][ T5830] veth0_vlan: entered promiscuous mode [ 83.777482][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.803828][ T5830] veth1_vlan: entered promiscuous mode [ 83.812816][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.837536][ T5826] veth0_macvtap: entered promiscuous mode [ 83.846260][ T5829] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.860548][ T5829] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.870374][ T5829] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.885550][ T5829] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.901628][ T5827] veth0_vlan: entered promiscuous mode [ 83.910776][ T5826] veth1_macvtap: entered promiscuous mode [ 83.937406][ T5827] veth1_vlan: entered promiscuous mode [ 83.978744][ T5830] veth0_macvtap: entered promiscuous mode [ 84.001237][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.019340][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.031182][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.047770][ T5830] veth1_macvtap: entered promiscuous mode [ 84.055521][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.066351][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.077392][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.101335][ T5826] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.115767][ T5826] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.125603][ T5826] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.134957][ T5826] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.154603][ T5827] veth0_macvtap: entered promiscuous mode [ 84.184581][ T5827] veth1_macvtap: entered promiscuous mode [ 84.201132][ T70] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.217994][ T70] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.240032][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.252315][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.262744][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.273868][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.287636][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.310379][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.321033][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.331648][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.342375][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.352613][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.363263][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.374716][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.399286][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.411719][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.424801][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.435543][ T5842] Bluetooth: hci0: command tx timeout [ 84.441675][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.453095][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.462501][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.473913][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.484705][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.495391][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.505581][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.516024][ T5842] Bluetooth: hci1: command tx timeout [ 84.516112][ T5842] Bluetooth: hci2: command tx timeout [ 84.516146][ T5842] Bluetooth: hci3: command tx timeout [ 84.532940][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.544069][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.557584][ T5060] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.566282][ T5060] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.577296][ T5830] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.586888][ T5830] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.598227][ T5830] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.607176][ T5830] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.636667][ T5827] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.645570][ T5827] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.654489][ T5827] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.663349][ T5827] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.680865][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.720072][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.749839][ T5829] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 84.819113][ T5060] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.833004][ T5060] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.844263][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.866954][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.923843][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.931692][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.979267][ T5060] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.001845][ T4758] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.040338][ T5060] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.056868][ T4758] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.512609][ T5834] Bluetooth: hci0: command tx timeout [ 86.592294][ T5834] Bluetooth: hci3: command tx timeout [ 86.596204][ T5842] Bluetooth: hci2: command tx timeout [ 86.597837][ T55] Bluetooth: hci1: command tx timeout [ 86.709684][ T5911] netlink: 226 bytes leftover after parsing attributes in process `syz.1.5'. [ 86.758396][ T5911] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5'. [ 86.803525][ T5911] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check. [ 88.173074][ T5933] mmap: syz.2.10 (5933) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 88.672646][ T5834] Bluetooth: hci3: command tx timeout [ 88.678695][ T5842] Bluetooth: hci1: command tx timeout [ 88.678698][ T55] Bluetooth: hci2: command tx timeout [ 89.263569][ T5927] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 89.269764][ T5927] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 89.374881][ T5927] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 89.406431][ T5927] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 89.436392][ T5927] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 89.465799][ T5927] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 89.487814][ T5927] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 89.497995][ T5927] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 89.519260][ T5927] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 89.535219][ T5927] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 89.541284][ T5927] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 89.562888][ T5927] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 90.088741][ T5939] FAULT_INJECTION: forcing a failure. [ 90.088741][ T5939] name failslab, interval 1, probability 0, space 0, times 1 [ 90.142119][ T5939] CPU: 1 UID: 0 PID: 5939 Comm: syz.1.12 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) [ 90.142162][ T5939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 90.142185][ T5939] Call Trace: [ 90.142193][ T5939] [ 90.142207][ T5939] dump_stack_lvl+0x16c/0x1f0 [ 90.142256][ T5939] should_fail_ex+0x512/0x640 [ 90.142285][ T5939] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 90.142332][ T5939] should_failslab+0xc2/0x120 [ 90.142377][ T5939] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 90.142416][ T5939] ? __proc_create+0xc3/0x8c0 [ 90.142445][ T5939] ? __proc_create+0x2ce/0x8c0 [ 90.142476][ T5939] __proc_create+0x2ce/0x8c0 [ 90.142506][ T5939] ? __pfx___proc_create+0x10/0x10 [ 90.142533][ T5939] ? __lock_acquire+0x5ca/0x1ba0 [ 90.142581][ T5939] proc_mkdir+0x81/0x170 [ 90.142610][ T5939] ? __pfx_proc_mkdir+0x10/0x10 [ 90.142640][ T5939] ? find_held_lock+0x2b/0x80 [ 90.142670][ T5939] bond_create_proc_dir+0xa1/0x120 [ 90.142710][ T5939] bond_net_init+0x170/0x360 [ 90.142751][ T5939] ? __pfx_bond_net_init+0x10/0x10 [ 90.142790][ T5939] ops_init+0x1df/0x5f0 [ 90.142820][ T5939] setup_net+0x21e/0x850 [ 90.142848][ T5939] ? __pfx_setup_net+0x10/0x10 [ 90.142873][ T5939] ? lockdep_init_map_type+0x5c/0x280 [ 90.142918][ T5939] ? __pfx_down_read_killable+0x10/0x10 [ 90.142943][ T5939] ? debug_mutex_init+0x37/0x70 [ 90.142967][ T5939] copy_net_ns+0x2a6/0x5f0 [ 90.143000][ T5939] create_new_namespaces+0x3ea/0xad0 [ 90.143034][ T5939] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 90.143065][ T5939] ksys_unshare+0x45b/0xa40 [ 90.143095][ T5939] ? __pfx_ksys_unshare+0x10/0x10 [ 90.143125][ T5939] ? ksys_write+0x1b9/0x240 [ 90.143155][ T5939] ? rcu_is_watching+0x12/0xc0 [ 90.143180][ T5939] __x64_sys_unshare+0x31/0x40 [ 90.143209][ T5939] do_syscall_64+0xcd/0x260 [ 90.143244][ T5939] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.143266][ T5939] RIP: 0033:0x7f223d38d169 [ 90.143283][ T5939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 90.143312][ T5939] RSP: 002b:00007f223b1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 90.143333][ T5939] RAX: ffffffffffffffda RBX: 00007f223d5a5fa0 RCX: 00007f223d38d169 [ 90.143349][ T5939] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 90.143362][ T5939] RBP: 00007f223d40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 90.143376][ T5939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 90.143390][ T5939] R13: 0000000000000000 R14: 00007f223d5a5fa0 R15: 00007ffe5f698498 [ 90.143414][ T5939] [ 90.143428][ T5939] Warning: Cannot create /proc/net/bonding [ 90.266371][ T5944] Zero length message leads to an empty skb [ 90.392050][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout [ 90.675735][ T5951] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 91.472058][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout [ 91.552204][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout [ 91.553096][ T55] Bluetooth: hci2: command 0x0c1a tx timeout [ 91.881002][ T9] cfg80211: failed to load regulatory.db [ 91.965920][ T5968] netlink: 'syz.2.22': attribute type 2 has an invalid length. [ 92.087737][ T5968] svc: failed to register nfsdv3 RPC service (errno 111). [ 92.098902][ T5968] svc: failed to register nfsaclv3 RPC service (errno 111). [ 92.441741][ T55] Bluetooth: hci0: command 0x0c1a tx timeout [ 93.210285][ T55] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 93.552014][ T55] Bluetooth: hci1: command 0x0c1a tx timeout [ 93.632105][ T55] Bluetooth: hci3: command 0x0c1a tx timeout [ 93.632112][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout [ 93.789299][ T6000] netlink: 4 bytes leftover after parsing attributes in process `syz.0.31'. [ 94.512397][ T55] Bluetooth: hci0: command 0x0c1a tx timeout [ 94.749958][ T6012] zswap: compressor not available [ 95.316680][ T6034] netlink: 4 bytes leftover after parsing attributes in process `syz.3.37'. [ 95.632256][ T55] Bluetooth: hci1: command 0x0c1a tx timeout [ 95.712659][ T55] Bluetooth: hci2: command 0x0c1a tx timeout [ 95.724220][ T55] Bluetooth: hci3: command 0x0c1a tx timeout [ 95.908981][ T6035] zswap: compressor not available [ 99.329654][ T6106] random: crng reseeded on system resumption [ 99.772772][ T6117] kernel read not supported for file /\*)A (pid: 6117 comm: syz.0.58) [ 99.812572][ T30] audit: type=1800 audit(6038027425.711:2): pid=6117 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.58" name="\*)A" dev="mqueue" ino=9340 res=0 errno=0 [ 101.006736][ T6132] FAULT_INJECTION: forcing a failure. [ 101.006736][ T6132] name failslab, interval 1, probability 0, space 0, times 0 [ 101.021869][ T6132] CPU: 1 UID: 0 PID: 6132 Comm: syz.0.62 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) [ 101.021920][ T6132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 101.021939][ T6132] Call Trace: [ 101.021948][ T6132] [ 101.021958][ T6132] dump_stack_lvl+0x16c/0x1f0 [ 101.022012][ T6132] should_fail_ex+0x512/0x640 [ 101.022039][ T6132] ? __kmalloc_noprof+0xbf/0x510 [ 101.022080][ T6132] ? ops_init+0x77/0x5f0 [ 101.022102][ T6132] should_failslab+0xc2/0x120 [ 101.022145][ T6132] __kmalloc_noprof+0xd2/0x510 [ 101.022181][ T6132] ? __pfx_xt_net_init+0x10/0x10 [ 101.022209][ T6132] ops_init+0x77/0x5f0 [ 101.022235][ T6132] setup_net+0x21e/0x850 [ 101.022261][ T6132] ? __pfx_setup_net+0x10/0x10 [ 101.022285][ T6132] ? lockdep_init_map_type+0x5c/0x280 [ 101.022322][ T6132] ? __pfx_down_read_killable+0x10/0x10 [ 101.022350][ T6132] ? debug_mutex_init+0x37/0x70 [ 101.022377][ T6132] copy_net_ns+0x2a6/0x5f0 [ 101.022407][ T6132] create_new_namespaces+0x3ea/0xad0 [ 101.022444][ T6132] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 101.022479][ T6132] ksys_unshare+0x45b/0xa40 [ 101.022515][ T6132] ? __pfx_ksys_unshare+0x10/0x10 [ 101.022549][ T6132] ? xfd_validate_state+0x5d/0x180 [ 101.022575][ T6132] ? rcu_is_watching+0x12/0xc0 [ 101.022605][ T6132] __x64_sys_unshare+0x31/0x40 [ 101.022639][ T6132] do_syscall_64+0xcd/0x260 [ 101.022680][ T6132] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 101.022705][ T6132] RIP: 0033:0x7fa99038d169 [ 101.022725][ T6132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 101.022751][ T6132] RSP: 002b:00007fa991102038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 101.022778][ T6132] RAX: ffffffffffffffda RBX: 00007fa9905a5fa0 RCX: 00007fa99038d169 [ 101.022796][ T6132] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 101.022811][ T6132] RBP: 00007fa99040e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 101.022827][ T6132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 101.022843][ T6132] R13: 0000000000000000 R14: 00007fa9905a5fa0 R15: 00007ffea0dc5348 [ 101.022871][ T6132] [ 101.237554][ C1] vkms_vblank_simulate: vblank timer overrun [ 101.262252][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 101.482240][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 102.074067][ T6144] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 102.309933][ T6154] FAULT_INJECTION: forcing a failure. [ 102.309933][ T6154] name failslab, interval 1, probability 0, space 0, times 0 [ 102.350173][ T6154] CPU: 0 UID: 0 PID: 6154 Comm: syz.3.68 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) [ 102.350215][ T6154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 102.350232][ T6154] Call Trace: [ 102.350241][ T6154] [ 102.350262][ T6122] vivid-003: ================= START STATUS ================= [ 102.350251][ T6154] dump_stack_lvl+0x16c/0x1f0 [ 102.350300][ T6154] should_fail_ex+0x512/0x640 [ 102.350329][ T6154] ? fs_reclaim_acquire+0xae/0x150 [ 102.350363][ T6154] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 102.350407][ T6154] should_failslab+0xc2/0x120 [ 102.350452][ T6154] __kmalloc_noprof+0xd2/0x510 [ 102.350505][ T6154] tomoyo_realpath_from_path+0xc2/0x6e0 [ 102.350569][ T6154] tomoyo_check_open_permission+0x2ab/0x3c0 [ 102.350628][ T6154] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 102.350704][ T6154] ? __pfx_hook_file_open+0x10/0x10 [ 102.350757][ T6154] tomoyo_file_open+0x6b/0x90 [ 102.350793][ T6154] security_file_open+0x84/0x1e0 [ 102.350843][ T6154] do_dentry_open+0x596/0x1c10 [ 102.350892][ T6154] ? inode_permission+0xdd/0x5f0 [ 102.350930][ T6154] vfs_open+0x82/0x3f0 [ 102.350959][ T6154] ? may_open+0x1f2/0x400 [ 102.350997][ T6154] path_openat+0x1e5e/0x2d40 [ 102.351054][ T6154] ? __pfx_path_openat+0x10/0x10 [ 102.351109][ T6154] do_filp_open+0x20b/0x470 [ 102.351156][ T6154] ? __pfx_do_filp_open+0x10/0x10 [ 102.351203][ T6154] ? find_held_lock+0x2b/0x80 [ 102.351243][ T6154] ? __pfx_kfree_link+0x10/0x10 [ 102.351290][ T6154] ? alloc_fd+0x420/0x760 [ 102.351342][ T6154] do_sys_openat2+0x11b/0x1d0 [ 102.351374][ T6154] ? __pfx_do_sys_openat2+0x10/0x10 [ 102.351418][ T6154] __x64_sys_openat+0x174/0x210 [ 102.351452][ T6154] ? __pfx___x64_sys_openat+0x10/0x10 [ 102.351489][ T6154] ? rcu_is_watching+0x12/0xc0 [ 102.351527][ T6154] do_syscall_64+0xcd/0x260 [ 102.351578][ T6154] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.351617][ T6154] RIP: 0033:0x7efe7318d169 [ 102.351642][ T6154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 102.351674][ T6154] RSP: 002b:00007efe74035038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 102.351703][ T6154] RAX: ffffffffffffffda RBX: 00007efe733a5fa0 RCX: 00007efe7318d169 [ 102.351728][ T6154] RDX: 0000000000001802 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 102.351749][ T6154] RBP: 00007efe7320e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 102.351769][ T6154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 102.351789][ T6154] R13: 0000000000000000 R14: 00007efe733a5fa0 R15: 00007ffe0fab8c48 [ 102.351824][ T6154] [ 102.357419][ T6154] ERROR: Out of memory at tomoyo_realpath_from_path. [ 102.378035][ T6122] vivid-003: Radio HW Seek Mode: [ 102.479054][ T6157] db_root: cannot open: ffffff81000000 T srso_alias_untrain_ret [ 102.479054][ T6157] ffffffff81000000 T _stext [ 102.479054][ T6157] ffffffff81000000 T _text [ 102.479054][ T6157] ffffffff81000010 T __entry_text_start [ 102.479054][ T6157] ffffffff81000040 T mds_verw_sel [ 102.479054][ T6157] ffffffff81000080 T entry_SYSCALL_64 [ 102.479054][ T6157] ffffffff810000ab T entry_SYSCALL_64_safe_stack [ 102.479054][ T6157] ffffffff810000b9 T entry_SYSCALL_64_after_hwframe [ 102.479054][ T6157] ffffffff81000138 t syscall_return_via_sysret [ 102.479054][ T6157] ffffffff810001bf T entry_SYSRETQ_unsafe_stack [ 102.479054][ T6157] ffffffff810001cc T entry_SYSRETQ_end [ 102.479054][ T6157] ffffffff810001d0 T xen_error_entry [ 102.479054][ T6157] ffffffff81000230 T irq_entries_start [ 102.479054][ T6157] ffffffff81000230 T __irqentry_text_start [ 102.479054][ T6157] ffffffff81000ee0 T spurious_entries_start [ 102.479054][ T6157] ffffffff81001030 T asm_exc_divide_error [ 102.479054][ T6157] ffffffff81001050 T asm_exc_overflow [ 102.479054][ T6157] ffffffff81001070 T asm_exc_bounds [ 102.479054][ T6157] ffffffff81001090 T asm_exc_device_not_available [ 102.479054][ T6157] ffffffff810010b0 T asm_exc_coproc_segment_overrun [ 102.479054][ T6157] ffffffff810010d0 T asm_exc_spurious_interrupt_bug [ 102.479054][ T6157] ffffffff810010f0 T asm_exc_coprocessor_error [ 102.479054][ T6157] ffffffff81001110 T asm_exc_simd_coprocessor_error [ 102.479054][ T6157] ffffffff81001130 T asm_exc_invalid_tss [ 102.479054][ T6157] ffffffff81001160 T asm_exc_seg [ 102.523884][ T6122] Bounded [ 102.769178][ C1] vkms_vblank_simulate: vblank timer overrun [ 102.801372][ T6122] [ 102.806722][ T6122] vivid-003: Radio Programmable HW Seek: false [ 102.852823][ T6122] vivid-003: RDS Rx I/O Mode: Block I/O [ 102.886940][ T6122] vivid-003: Generate RBDS Instead of RDS: false [ 102.907122][ T6122] vivid-003: RDS Reception: true [ 102.919225][ T6122] vivid-003: RDS Program Type: 0 inactive [ 102.925308][ T6122] vivid-003: RDS PS Name: inactive [ 102.931305][ T6122] vivid-003: RDS Radio Text: inactive [ 102.937084][ T6122] vivid-003: RDS Traffic Announcement: false inactive [ 102.946294][ T6122] vivid-003: RDS Traffic Program: false inactive [ 102.954940][ T6122] vivid-003: RDS Music: false inactive [ 102.982996][ T6122] vivid-003: ================== END STATUS ================== [ 103.182397][ T6191] netlink: 12 bytes leftover after parsing attributes in process `syz.2.72'. [ 103.287890][ T6197] netlink: 4 bytes leftover after parsing attributes in process `syz.3.74'. [ 103.477630][ T6205] FAULT_INJECTION: forcing a failure. [ 103.477630][ T6205] name failslab, interval 1, probability 0, space 0, times 0 [ 103.489228][ T55] Bluetooth: hci0: SCO packet for unknown connection handle 0 [ 103.512079][ T6205] CPU: 1 UID: 0 PID: 6205 Comm: syz.3.78 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) [ 103.512131][ T6205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 103.512150][ T6205] Call Trace: [ 103.512161][ T6205] [ 103.512173][ T6205] dump_stack_lvl+0x16c/0x1f0 [ 103.512227][ T6205] should_fail_ex+0x512/0x640 [ 103.512258][ T6205] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 103.512304][ T6205] should_failslab+0xc2/0x120 [ 103.512354][ T6205] __kmalloc_cache_noprof+0x6a/0x3e0 [ 103.512395][ T6205] ? fsnotify_alloc_group+0x92/0x330 [ 103.512442][ T6205] fsnotify_alloc_group+0x92/0x330 [ 103.512486][ T6205] do_inotify_init+0x49/0x5f0 [ 103.512512][ T6205] ? rcu_is_watching+0x12/0xc0 [ 103.512559][ T6205] __x64_sys_inotify_init1+0x30/0x40 [ 103.512592][ T6205] do_syscall_64+0xcd/0x260 [ 103.512641][ T6205] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 103.512674][ T6205] RIP: 0033:0x7efe7318d169 [ 103.512699][ T6205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 103.512730][ T6205] RSP: 002b:00007efe74035038 EFLAGS: 00000246 ORIG_RAX: 0000000000000126 [ 103.512768][ T6205] RAX: ffffffffffffffda RBX: 00007efe733a5fa0 RCX: 00007efe7318d169 [ 103.512789][ T6205] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 103.512807][ T6205] RBP: 00007efe7320e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 103.512827][ T6205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 103.512845][ T6205] R13: 0000000000000000 R14: 00007efe733a5fa0 R15: 00007ffe0fab8c48 [ 103.512879][ T6205] [ 103.692961][ C1] vkms_vblank_simulate: vblank timer overrun [ 103.789640][ T6216] netlink: 4 bytes leftover after parsing attributes in process `syz.3.82'. [ 103.803244][ T30] audit: type=1807 audit(6038027429.741:3): UNKNOWN= res=0 [ 103.803404][ T6215] ima: policy update failed [ 103.820732][ T30] audit: type=1802 audit(6038027429.741:4): pid=6216 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.82" res=0 errno=0 [ 103.839868][ T30] audit: type=1802 audit(6038027429.761:5): pid=6215 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.82" res=0 errno=0 [ 103.959397][ T6220] FAULT_INJECTION: forcing a failure. [ 103.959397][ T6220] name failslab, interval 1, probability 0, space 0, times 0 [ 103.972664][ T6220] CPU: 0 UID: 0 PID: 6220 Comm: syz.3.83 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) [ 103.972702][ T6220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 103.972719][ T6220] Call Trace: [ 103.972727][ T6220] [ 103.972737][ T6220] dump_stack_lvl+0x16c/0x1f0 [ 103.972784][ T6220] should_fail_ex+0x512/0x640 [ 103.972813][ T6220] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 103.972861][ T6220] should_failslab+0xc2/0x120 [ 103.972908][ T6220] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 103.972952][ T6220] ? vm_area_dup+0x53/0x2f0 [ 103.972989][ T6220] vm_area_dup+0x53/0x2f0 [ 103.973021][ T6220] copy_process+0x8114/0x9130 [ 103.973077][ T6220] ? __pfx_copy_process+0x10/0x10 [ 103.973114][ T6220] ? __pfx___futex_wait+0x10/0x10 [ 103.973169][ T6220] ? __pfx____sys_sendmsg+0x10/0x10 [ 103.973224][ T6220] kernel_clone+0xfc/0x960 [ 103.973263][ T6220] ? __pfx_kernel_clone+0x10/0x10 [ 103.973316][ T6220] __do_sys_clone+0xce/0x120 [ 103.973354][ T6220] ? __pfx___do_sys_clone+0x10/0x10 [ 103.973392][ T6220] ? __sys_sendmsg+0x199/0x220 [ 103.973451][ T6220] ? rcu_is_watching+0x12/0xc0 [ 103.973497][ T6220] do_syscall_64+0xcd/0x260 [ 103.973545][ T6220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 103.973575][ T6220] RIP: 0033:0x7efe7318d169 [ 103.973597][ T6220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 103.973625][ T6220] RSP: 002b:00007efe74013fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 103.973652][ T6220] RAX: ffffffffffffffda RBX: 00007efe733a6080 RCX: 00007efe7318d169 [ 103.973671][ T6220] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000800011 [ 103.973688][ T6220] RBP: 00007efe7320e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 103.973705][ T6220] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 103.973722][ T6220] R13: 0000000000000000 R14: 00007efe733a6080 R15: 00007ffe0fab8c48 [ 103.973753][ T6220] [ 104.568500][ T6232] udc dummy_udc.0: soft-connect without a gadget driver [ 104.822641][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.752909][ T6253] process 'syz.1.93' launched '/dev/fd/4' with NULL argv: empty string added [ 106.132228][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 106.583866][ T6273] [U] [ 106.586801][ T6273] [U] [ 106.589554][ T6273] [U] [ 106.592308][ T6273] [U] [ 106.632268][ T6273] [U] [ 106.635053][ T6273] [U] [ 106.637774][ T6273] [U] [ 106.640473][ T6273] [U] [ 106.683169][ T6273] [U] [ 106.685956][ T6273] [U] [ 106.688710][ T6273] [U] [ 106.691457][ T6273] [U] [ 106.712561][ T6273] [U] [ 106.715356][ T6273] [U] [ 106.718104][ T6273] [U] [ 106.720846][ T6273] [U] [ 106.725063][ T6273] [U] [ 106.727849][ T6273] [U] [ 106.730599][ T6273] [U] [ 106.733345][ T6273] [U] [ 106.752213][ T6273] [U] [ 106.755025][ T6273] [U] [ 106.757766][ T6273] [U] [ 106.760488][ T6273] [U] [ 106.812287][ T6273] [U] [ 106.812359][ T6273] [U] [ 106.812434][ T6273] [U] [ 106.812491][ T6273] [U] [ 106.812770][ T6273] [U] [ 106.812825][ T6273] [U] [ 106.812880][ T6273] [U] [ 106.812952][ T6273] [U] [ 106.813206][ T6273] [U] [ 106.813262][ T6273] [U] [ 106.813316][ T6273] [U] [ 106.813372][ T6273] [U] [ 106.813644][ T6273] [U] [ 106.813700][ T6273] [U] [ 106.813752][ T6273] [U] [ 106.813805][ T6273] [U] [ 106.814072][ T6273] [U] [ 106.814133][ T6273] [U] [ 106.814191][ T6273] [U] [ 106.814250][ T6273] [U] [ 106.814551][ T6273] [U] [ 106.814614][ T6273] [U] [ 106.814675][ T6273] [U] [ 106.814736][ T6273] [U] [ 106.815014][ T6273] [U] [ 106.815076][ T6273] [U] [ 106.815136][ T6273] [U] [ 106.815196][ T6273] [U] [ 106.815487][ T6273] [U] [ 106.815579][ T6273] [U] [ 106.815637][ T6273] [U] [ 106.815694][ T6273] [U] [ 106.815963][ T6273] [U] [ 106.816021][ T6273] [U] [ 106.816079][ T6273] [U] [ 106.816136][ T6273] [U] [ 106.816406][ T6273] [U] [ 106.816464][ T6273] [U] [ 106.816528][ T6273] [U] [ 106.816586][ T6273] [U] [ 106.816855][ T6273] [U] [ 106.816913][ T6273] [U] [ 106.816970][ T6273] [U] [ 106.817028][ T6273] [U] [ 106.817290][ T6273] [U] [ 106.817349][ T6273] [U] [ 106.817407][ T6273] [U] [ 106.817466][ T6273] [U] [ 106.817737][ T6273] [U] [ 106.817798][ T6273] [U] [ 106.817855][ T6273] [U] [ 106.817913][ T6273] [U] [ 106.818181][ T6273] [U] [ 106.818239][ T6273] [U] [ 106.818295][ T6273] [U] [ 106.818353][ T6273] [U] [ 106.818647][ T6273] [U] [ 106.818706][ T6273] [U] [ 106.818766][ T6273] [U] [ 106.818826][ T6273] [U] [ 106.819105][ T6273] [U] [ 106.819165][ T6273] [U] [ 106.819225][ T6273] [U] [ 106.819285][ T6273] [U] [ 106.819566][ T6273] [U] [ 106.819630][ T6273] [U] [ 106.819691][ T6273] [U] [ 106.819750][ T6273] [U] [ 106.820039][ T6273] [U] [ 106.820095][ T6273] [U] [ 106.820152][ T6273] [U] [ 106.820208][ T6273] [U] [ 106.820474][ T6273] [U] [ 106.820535][ T6273] [U] [ 106.820595][ T6273] [U] [ 106.820653][ T6273] [U] [ 106.820919][ T6273] [U] [ 106.820977][ T6273] [U] [ 106.821035][ T6273] [U] [ 106.821093][ T6273] [U] [ 106.821361][ T6273] [U] [ 106.821419][ T6273] [U] [ 106.821476][ T6273] [U] [ 106.821540][ T6273] [U] [ 106.821808][ T6273] [U] [ 106.821865][ T6273] [U] [ 106.821925][ T6273] [U] [ 106.821980][ T6273] [U] [ 106.857451][ T6273] [U] [ 106.857521][ T6273] [U] [ 106.857578][ T6273] [U] [ 106.857635][ T6273] [U] [ 106.857898][ T6273] [U] [ 106.857956][ T6273] [U] [ 106.858014][ T6273] [U] [ 106.858072][ T6273] [U] [ 106.931158][ T6269] [U] [ 109.697648][ T6338] netlink: 4 bytes leftover after parsing attributes in process `syz.3.112'. [ 109.728193][ T6338] netlink: 25 bytes leftover after parsing attributes in process `syz.3.112'. [ 110.113505][ T6349] FAULT_INJECTION: forcing a failure. [ 110.113505][ T6349] name failslab, interval 1, probability 0, space 0, times 0 [ 110.137421][ T6349] CPU: 1 UID: 0 PID: 6349 Comm: syz.2.115 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) [ 110.137466][ T6349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 110.137484][ T6349] Call Trace: [ 110.137493][ T6349] [ 110.137504][ T6349] dump_stack_lvl+0x16c/0x1f0 [ 110.137556][ T6349] should_fail_ex+0x512/0x640 [ 110.137586][ T6349] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 110.137630][ T6349] should_failslab+0xc2/0x120 [ 110.137679][ T6349] __kmalloc_cache_noprof+0x6a/0x3e0 [ 110.137720][ T6349] ? ovs_flow_tbl_init+0x8b/0x600 [ 110.137759][ T6349] ovs_flow_tbl_init+0x8b/0x600 [ 110.137797][ T6349] ovs_dp_cmd_new+0x251/0xe60 [ 110.137838][ T6349] ? rcu_is_watching+0x12/0xc0 [ 110.137869][ T6349] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 110.137912][ T6349] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 110.137954][ T6349] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 110.137995][ T6349] genl_family_rcv_msg_doit+0x206/0x2f0 [ 110.138029][ T6349] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 110.138061][ T6349] ? trace_cap_capable+0x18d/0x200 [ 110.138104][ T6349] ? bpf_lsm_capable+0x9/0x10 [ 110.138133][ T6349] ? security_capable+0x7e/0x260 [ 110.138168][ T6349] ? ns_capable+0xd7/0x110 [ 110.138203][ T6349] genl_rcv_msg+0x55c/0x800 [ 110.138256][ T6349] ? __pfx_genl_rcv_msg+0x10/0x10 [ 110.138286][ T6349] ? __pfx___dev_queue_xmit+0x10/0x10 [ 110.138328][ T6349] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 110.138380][ T6349] ? __lock_acquire+0xaa4/0x1ba0 [ 110.138427][ T6349] netlink_rcv_skb+0x16a/0x440 [ 110.138474][ T6349] ? __pfx_genl_rcv_msg+0x10/0x10 [ 110.138503][ T6349] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 110.138563][ T6349] ? __pfx_down_read+0x10/0x10 [ 110.138592][ T6349] ? netlink_deliver_tap+0x1ae/0xd30 [ 110.138640][ T6349] genl_rcv+0x28/0x40 [ 110.138664][ T6349] netlink_unicast+0x53a/0x7f0 [ 110.138712][ T6349] ? __pfx_netlink_unicast+0x10/0x10 [ 110.138759][ T6349] ? __phys_addr_symbol+0x30/0x80 [ 110.138799][ T6349] ? __check_object_size+0x4c7/0x710 [ 110.138852][ T6349] netlink_sendmsg+0x8da/0xd70 [ 110.138903][ T6349] ? __pfx_netlink_sendmsg+0x10/0x10 [ 110.138968][ T6349] ____sys_sendmsg+0xa8d/0xc60 [ 110.139007][ T6349] ? copy_msghdr_from_user+0x10a/0x160 [ 110.139057][ T6349] ? __pfx_____sys_sendmsg+0x10/0x10 [ 110.139115][ T6349] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 110.139166][ T6349] ___sys_sendmsg+0x134/0x1d0 [ 110.139218][ T6349] ? __pfx____sys_sendmsg+0x10/0x10 [ 110.139303][ T6349] __sys_sendmsg+0x16d/0x220 [ 110.139354][ T6349] ? __pfx___sys_sendmsg+0x10/0x10 [ 110.139404][ T6349] ? __x64_sys_futex+0x1e0/0x4c0 [ 110.139449][ T6349] ? rcu_is_watching+0x12/0xc0 [ 110.139489][ T6349] do_syscall_64+0xcd/0x260 [ 110.139539][ T6349] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.139570][ T6349] RIP: 0033:0x7f59b038d169 [ 110.139594][ T6349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 110.139624][ T6349] RSP: 002b:00007f59b1135038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 110.139653][ T6349] RAX: ffffffffffffffda RBX: 00007f59b05a5fa0 RCX: 00007f59b038d169 [ 110.139674][ T6349] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000008 [ 110.139693][ T6349] RBP: 00007f59b040e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 110.139712][ T6349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 110.139730][ T6349] R13: 0000000000000000 R14: 00007f59b05a5fa0 R15: 00007fffa9be0ee8 [ 110.139764][ T6349] [ 111.468853][ T55] Bluetooth: hci1: ACL packet too small [ 111.612138][ T6368] zswap: compressor not available [ 112.574044][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 114.750789][ T6395] syz.3.126 uses obsolete (PF_INET,SOCK_PACKET) [ 116.423551][ T6433] [U] [ 116.426435][ T6433] [U] [ 116.429189][ T6433] [U] [ 116.431941][ T6433] [U] [ 116.479896][ T6433] [U] [ 116.482711][ T6433] [U] [ 116.485485][ T6433] [U] [ 116.488242][ T6433] [U] [ 116.618649][ T6433] [U] [ 116.621543][ T6433] [U] [ 116.624314][ T6433] [U] [ 116.627064][ T6433] [U] [ 116.756389][ T6433] [U] [ 116.759189][ T6433] [U] [ 116.761950][ T6433] [U] [ 116.764726][ T6433] [U] [ 116.837689][ T6433] [U] [ 118.283569][ T6470] device-mapper: ioctl: Unable to rename non-existent device, to uuid [ 120.321273][ T6516] FAULT_INJECTION: forcing a failure. [ 120.321273][ T6516] name failslab, interval 1, probability 0, space 0, times 0 [ 120.337790][ T6516] CPU: 1 UID: 0 PID: 6516 Comm: syz.2.158 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) [ 120.337834][ T6516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 120.337852][ T6516] Call Trace: [ 120.337861][ T6516] [ 120.337871][ T6516] dump_stack_lvl+0x16c/0x1f0 [ 120.337922][ T6516] should_fail_ex+0x512/0x640 [ 120.337957][ T6516] should_failslab+0xc2/0x120 [ 120.338007][ T6516] __kmalloc_cache_noprof+0x6a/0x3e0 [ 120.338049][ T6516] ? nfc_genl_rcv_nl_event+0xc1/0x2e0 [ 120.338102][ T6516] nfc_genl_rcv_nl_event+0xc1/0x2e0 [ 120.338153][ T6516] notifier_call_chain+0xb9/0x410 [ 120.338193][ T6516] ? __pfx_nfc_genl_rcv_nl_event+0x10/0x10 [ 120.338257][ T6516] blocking_notifier_call_chain+0x69/0xa0 [ 120.338303][ T6516] netlink_release+0x1836/0x1fe0 [ 120.338352][ T6516] ? netlink_release+0x1de/0x1fe0 [ 120.338399][ T6516] ? __pfx_netlink_release+0x10/0x10 [ 120.338446][ T6516] ? __pfx_locks_remove_file+0x10/0x10 [ 120.338489][ T6516] __sock_release+0xb0/0x270 [ 120.338519][ T6516] ? __pfx_sock_close+0x10/0x10 [ 120.338546][ T6516] sock_close+0x1c/0x30 [ 120.338572][ T6516] __fput+0x3ff/0xb70 [ 120.338602][ T6516] ? _raw_spin_unlock_irq+0x23/0x50 [ 120.338644][ T6516] task_work_run+0x14d/0x240 [ 120.338674][ T6516] ? __pfx_task_work_run+0x10/0x10 [ 120.338704][ T6516] ? __pfx___do_sys_close_range+0x10/0x10 [ 120.338750][ T6516] ? rcu_is_watching+0x12/0xc0 [ 120.338784][ T6516] syscall_exit_to_user_mode+0x27b/0x2a0 [ 120.338831][ T6516] do_syscall_64+0xda/0x260 [ 120.338897][ T6516] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.338929][ T6516] RIP: 0033:0x7f59b038d169 [ 120.338953][ T6516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 120.338984][ T6516] RSP: 002b:00007f59b1114038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 120.339015][ T6516] RAX: 0000000000000000 RBX: 00007f59b05a6080 RCX: 00007f59b038d169 [ 120.339035][ T6516] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 120.339053][ T6516] RBP: 00007f59b040e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 120.339071][ T6516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 120.339089][ T6516] R13: 0000000000000000 R14: 00007f59b05a6080 R15: 00007fffa9be0ee8 [ 120.339122][ T6516] [ 121.303678][ T6533] netlink: 'syz.1.164': attribute type 64 has an invalid length. [ 121.348651][ T6533] netlink: 74 bytes leftover after parsing attributes in process `syz.1.164'. [ 123.082831][ T6569] Invalid ELF header magic: != ELF [ 123.451565][ T6581] netlink: 28 bytes leftover after parsing attributes in process `syz.3.174'. [ 123.550462][ T6581] geneve1: entered allmulticast mode [ 124.319506][ T6599] openvswitch: netlink: VXLAN extension 64 out of range max 1 [ 124.504922][ T6597] zswap: compressor not available [ 126.760204][ T6642] zswap: compressor not available [ 127.034035][ T6653] i8042 kbd 00:01: in use; can't configure [ 127.688926][ T6665] aoe: invalid device specification v m w [ 127.754792][ T6665] svc: failed to register nfsdv3 RPC service (errno 111). [ 127.786799][ T6668] netlink: 8 bytes leftover after parsing attributes in process `syz.1.202'. [ 127.810428][ T6665] svc: failed to register nfsaclv3 RPC service (errno 111). [ 128.019386][ T6667] zswap: compressor not available [ 129.078833][ T6690] FAULT_INJECTION: forcing a failure. [ 129.078833][ T6690] name failslab, interval 1, probability 0, space 0, times 0 [ 129.126760][ T6690] CPU: 0 UID: 0 PID: 6690 Comm: syz.1.207 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) [ 129.126803][ T6690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 129.126822][ T6690] Call Trace: [ 129.126831][ T6690] [ 129.126859][ T6690] dump_stack_lvl+0x16c/0x1f0 [ 129.126910][ T6690] should_fail_ex+0x512/0x640 [ 129.126940][ T6690] ? fs_reclaim_acquire+0xae/0x150 [ 129.126980][ T6690] should_failslab+0xc2/0x120 [ 129.127028][ T6690] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 129.127074][ T6690] ? security_inode_alloc+0x3b/0x2b0 [ 129.127118][ T6690] security_inode_alloc+0x3b/0x2b0 [ 129.127160][ T6690] inode_init_always_gfp+0xce4/0x1030 [ 129.127212][ T6690] alloc_inode+0x86/0x240 [ 129.127246][ T6690] path_from_stashed+0x2be/0xb00 [ 129.127294][ T6690] ? do_raw_spin_lock+0x12c/0x2b0 [ 129.127345][ T6690] ? __pfx_path_from_stashed+0x10/0x10 [ 129.127395][ T6690] ? do_raw_spin_unlock+0x172/0x230 [ 129.127449][ T6690] ns_get_path+0x5f/0x80 [ 129.127502][ T6690] proc_ns_get_link+0x121/0x260 [ 129.127551][ T6690] ? __pfx_proc_ns_get_link+0x10/0x10 [ 129.127599][ T6690] ? __pfx___might_resched+0x10/0x10 [ 129.127640][ T6690] ? __pfx_proc_ns_get_link+0x10/0x10 [ 129.127688][ T6690] step_into+0x1b22/0x2270 [ 129.127734][ T6690] ? __pfx_step_into+0x10/0x10 [ 129.127773][ T6690] ? find_held_lock+0x2b/0x80 [ 129.127813][ T6690] path_openat+0x749/0x2d40 [ 129.127868][ T6690] ? __pfx_path_openat+0x10/0x10 [ 129.127922][ T6690] do_filp_open+0x20b/0x470 [ 129.127978][ T6690] ? __pfx_do_filp_open+0x10/0x10 [ 129.128022][ T6690] ? find_held_lock+0x2b/0x80 [ 129.128070][ T6690] ? alloc_fd+0x420/0x760 [ 129.128118][ T6690] do_sys_openat2+0x11b/0x1d0 [ 129.128149][ T6690] ? __pfx_do_sys_openat2+0x10/0x10 [ 129.128190][ T6690] __x64_sys_openat+0x174/0x210 [ 129.128223][ T6690] ? __pfx___x64_sys_openat+0x10/0x10 [ 129.128257][ T6690] ? rcu_is_watching+0x12/0xc0 [ 129.128293][ T6690] do_syscall_64+0xcd/0x260 [ 129.128341][ T6690] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.128371][ T6690] RIP: 0033:0x7f223d38bad0 [ 129.128394][ T6690] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 129.128423][ T6690] RSP: 002b:00007f223b1f5f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 129.128456][ T6690] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f223d38bad0 [ 129.128476][ T6690] RDX: 0000000000000002 RSI: 00007f223b1f5fa0 RDI: 00000000ffffff9c [ 129.128495][ T6690] RBP: 00007f223b1f5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 129.128514][ T6690] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 129.128532][ T6690] R13: 0000000000000000 R14: 00007f223d5a5fa0 R15: 00007ffe5f698498 [ 129.128583][ T6690] [ 129.137257][ T6686] netlink: 4 bytes leftover after parsing attributes in process `syz.3.206'. [ 130.498321][ T6706] zswap: compressor not available [ 130.760663][ T6737] random: crng reseeded on system resumption [ 131.521057][ T6759] random: crng reseeded on system resumption [ 132.833323][ T6788] netlink: 28 bytes leftover after parsing attributes in process `syz.0.230'. [ 133.176742][ T6794] netlink: 32 bytes leftover after parsing attributes in process `syz.2.231'. [ 133.444451][ T6804] netlink: 330 bytes leftover after parsing attributes in process `syz.0.235'. [ 133.586871][ T6804] syz.0.235 (6804) used greatest stack depth: 21496 bytes left [ 134.335219][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 134.343815][ T0] NOHZ tick-stop error: local softirq work is pending, handler #210!!! [ 136.310307][ T6869] netlink: 8 bytes leftover after parsing attributes in process `syz.1.252'. [ 137.046218][ T6887] ptrace attach of "./syz-executor exec"[5827] was attempted by "./syz-executor exec"[6887] [ 137.417321][ T6904] netlink: 20 bytes leftover after parsing attributes in process `syz.1.261'. [ 137.973236][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.986598][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.387275][ T6916] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input7 [ 138.917017][ T6922] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(9) [ 139.385431][ T30] audit: type=1800 audit(4294967300.048:6): pid=6942 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.273" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 139.862024][ T6936] netlink: 504 bytes leftover after parsing attributes in process `syz.2.271'. [ 139.926330][ T6936] netlink: 350 bytes leftover after parsing attributes in process `syz.2.271'. [ 140.688282][ T6961] netlink: 24 bytes leftover after parsing attributes in process `syz.2.278'. [ 141.180229][ T6971] random: crng reseeded on system resumption [ 141.841691][ T6993] FAULT_INJECTION: forcing a failure. [ 141.841691][ T6993] name failslab, interval 1, probability 0, space 0, times 0 [ 141.877001][ T6993] CPU: 1 UID: 0 PID: 6993 Comm: syz.0.286 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) [ 141.877073][ T6993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 141.877093][ T6993] Call Trace: [ 141.877103][ T6993] [ 141.877115][ T6993] dump_stack_lvl+0x16c/0x1f0 [ 141.877170][ T6993] should_fail_ex+0x512/0x640 [ 141.877213][ T6993] ? fs_reclaim_acquire+0xae/0x150 [ 141.877251][ T6993] should_failslab+0xc2/0x120 [ 141.877300][ T6993] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 141.877353][ T6993] ? security_inode_alloc+0x3b/0x2b0 [ 141.877396][ T6993] security_inode_alloc+0x3b/0x2b0 [ 141.877435][ T6993] inode_init_always_gfp+0xce4/0x1030 [ 141.877484][ T6993] alloc_inode+0x86/0x240 [ 141.877518][ T6993] path_from_stashed+0x2be/0xb00 [ 141.877583][ T6993] ? do_raw_spin_lock+0x12c/0x2b0 [ 141.877636][ T6993] ? __pfx_path_from_stashed+0x10/0x10 [ 141.877686][ T6993] ? do_raw_spin_unlock+0x172/0x230 [ 141.877742][ T6993] ns_get_path+0x5f/0x80 [ 141.877787][ T6993] proc_ns_get_link+0x121/0x260 [ 141.877834][ T6993] ? __pfx_proc_ns_get_link+0x10/0x10 [ 141.877883][ T6993] ? __pfx___might_resched+0x10/0x10 [ 141.877925][ T6993] ? __pfx_proc_ns_get_link+0x10/0x10 [ 141.877977][ T6993] step_into+0x1b22/0x2270 [ 141.878023][ T6993] ? __pfx_step_into+0x10/0x10 [ 141.878062][ T6993] ? find_held_lock+0x2b/0x80 [ 141.878102][ T6993] path_openat+0x749/0x2d40 [ 141.878157][ T6993] ? __pfx_path_openat+0x10/0x10 [ 141.878210][ T6993] do_filp_open+0x20b/0x470 [ 141.878255][ T6993] ? __pfx_do_filp_open+0x10/0x10 [ 141.878300][ T6993] ? find_held_lock+0x2b/0x80 [ 141.878355][ T6993] ? alloc_fd+0x420/0x760 [ 141.878405][ T6993] do_sys_openat2+0x11b/0x1d0 [ 141.878437][ T6993] ? __pfx_do_sys_openat2+0x10/0x10 [ 141.878481][ T6993] __x64_sys_openat+0x174/0x210 [ 141.878513][ T6993] ? __pfx___x64_sys_openat+0x10/0x10 [ 141.878548][ T6993] ? rcu_is_watching+0x12/0xc0 [ 141.878586][ T6993] do_syscall_64+0xcd/0x260 [ 141.878636][ T6993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.878667][ T6993] RIP: 0033:0x7fa99038bad0 [ 141.878692][ T6993] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 141.878722][ T6993] RSP: 002b:00007fa991101f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 141.878751][ T6993] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fa99038bad0 [ 141.878771][ T6993] RDX: 0000000000000002 RSI: 00007fa991101fa0 RDI: 00000000ffffff9c [ 141.878790][ T6993] RBP: 00007fa991101fa0 R08: 0000000000000000 R09: 0000000000000000 [ 141.878808][ T6993] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 141.878826][ T6993] R13: 0000000000000000 R14: 00007fa9905a5fa0 R15: 00007ffea0dc5348 [ 141.878859][ T6993] [ 142.546896][ T6999] WARNING! power/level is deprecated; use power/control instead [ 143.314406][ T7002] Invalid ELF header magic: != ELF [ 143.539565][ T7003] ======================================================= [ 143.539565][ T7003] WARNING: The mand mount option has been deprecated and [ 143.539565][ T7003] and is ignored by this kernel. Remove the mand [ 143.539565][ T7003] option from the mount to silence this warning. [ 143.539565][ T7003] ======================================================= [ 144.121067][ T7023] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 144.167886][ T7021] netlink: zone id is out of range [ 144.177690][ T7021] netlink: zone id is out of range [ 144.206832][ T7021] netlink: zone id is out of range [ 144.232578][ T7021] netlink: zone id is out of range [ 144.250037][ T7021] netlink: zone id is out of range [ 144.267405][ T7021] netlink: zone id is out of range [ 144.382515][ T7021] netlink: zone id is out of range [ 144.388703][ T7021] netlink: zone id is out of range [ 144.432649][ T7021] netlink: zone id is out of range [ 144.511143][ T7021] netlink: zone id is out of range [ 144.817338][ T7036] block2mtd: illegal erase size [ 145.426022][ T7058] can: request_module (can-proto-0) failed. [ 146.196907][ T7072] syz.1.302 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 146.236674][ T7070] MTRR 1 not used [ 147.211127][ T30] audit: type=1800 audit(4294967307.884:7): pid=7090 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.310" name="members" dev="configfs" ino=12969 res=0 errno=0 [ 147.231237][ C0] vkms_vblank_simulate: vblank timer overrun [ 147.738159][ T7098] netlink: 12 bytes leftover after parsing attributes in process `syz.3.311'. [ 148.953615][ T7130] FAULT_INJECTION: forcing a failure. [ 148.953615][ T7130] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 149.033762][ T7130] CPU: 0 UID: 0 PID: 7130 Comm: syz.3.318 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) [ 149.033805][ T7130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 149.033822][ T7130] Call Trace: [ 149.033831][ T7130] [ 149.033842][ T7130] dump_stack_lvl+0x16c/0x1f0 [ 149.033891][ T7130] should_fail_ex+0x512/0x640 [ 149.033927][ T7130] _copy_from_iter+0x2a4/0x15b0 [ 149.033966][ T7130] ? find_held_lock+0x2b/0x80 [ 149.033998][ T7130] ? __pfx__copy_from_iter+0x10/0x10 [ 149.034038][ T7130] ? __virt_addr_valid+0x5e/0x590 [ 149.034080][ T7130] ? __phys_addr_symbol+0x30/0x80 [ 149.034120][ T7130] ? __check_object_size+0x4c7/0x710 [ 149.034173][ T7130] netlink_sendmsg+0x83a/0xd70 [ 149.034224][ T7130] ? __pfx_netlink_sendmsg+0x10/0x10 [ 149.034280][ T7130] ____sys_sendmsg+0xa8d/0xc60 [ 149.034317][ T7130] ? copy_msghdr_from_user+0x10a/0x160 [ 149.034366][ T7130] ? __pfx_____sys_sendmsg+0x10/0x10 [ 149.034415][ T7130] ___sys_sendmsg+0x134/0x1d0 [ 149.034465][ T7130] ? __pfx____sys_sendmsg+0x10/0x10 [ 149.034546][ T7130] __sys_sendmsg+0x16d/0x220 [ 149.034599][ T7130] ? __pfx___sys_sendmsg+0x10/0x10 [ 149.034656][ T7130] ? rcu_is_watching+0x12/0xc0 [ 149.034702][ T7130] do_syscall_64+0xcd/0x260 [ 149.034751][ T7130] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.034781][ T7130] RIP: 0033:0x7efe7318d169 [ 149.034804][ T7130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.034833][ T7130] RSP: 002b:00007efe74035038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 149.034861][ T7130] RAX: ffffffffffffffda RBX: 00007efe733a5fa0 RCX: 00007efe7318d169 [ 149.034881][ T7130] RDX: 000000002000c840 RSI: 0000200000000100 RDI: 0000000000000003 [ 149.034899][ T7130] RBP: 00007efe74035090 R08: 0000000000000000 R09: 0000000000000000 [ 149.034917][ T7130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 149.034935][ T7130] R13: 0000000000000000 R14: 00007efe733a5fa0 R15: 00007ffe0fab8c48 [ 149.034967][ T7130] [ 149.242326][ T7135] ------------[ cut here ]------------ [ 149.245247][ C0] vkms_vblank_simulate: vblank timer overrun [ 149.250817][ T7135] platform vkms: [drm] vblank wait timed out on crtc 0 [ 149.307313][ T7135] WARNING: CPU: 1 PID: 7135 at drivers/gpu/drm/drm_vblank.c:1307 drm_wait_one_vblank+0x2e3/0x580 [ 149.318051][ T7135] Modules linked in: [ 149.322010][ T7135] CPU: 1 UID: 0 PID: 7135 Comm: syz.2.319 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) [ 149.334293][ T7135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 149.344859][ T7135] RIP: 0010:drm_wait_one_vblank+0x2e3/0x580 [ 149.350832][ T7135] Code: ed 0f 84 f4 01 00 00 e8 3b 28 59 fc 48 89 ef e8 b3 87 8b 00 44 89 e1 4c 89 ea 48 c7 c7 a0 dd e8 8b 48 89 c6 e8 1e d3 18 fc 90 <0f> 0b 90 90 e9 61 fe ff ff e8 0f 28 59 fc 48 89 ef e8 57 69 fc 05 [ 149.370606][ T7135] RSP: 0018:ffffc9000ca7fb20 EFLAGS: 00010286 [ 149.376803][ T7135] RAX: 0000000000000000 RBX: ffff888024edc000 RCX: ffffc9000cc89000 [ 149.384901][ T7135] RDX: 0000000000080000 RSI: ffffffff817aae25 RDI: 0000000000000001 [ 149.393036][ T7135] RBP: ffff88814272d010 R08: 0000000000000001 R09: 0000000000000000 [ 149.401061][ T7135] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000 [ 149.409153][ T7135] R13: ffff8880245a6bc0 R14: 1ffff9200194ff67 R15: 0000000000001fe4 [ 149.417244][ T7135] FS: 00007f59b11356c0(0000) GS:ffff888124f5a000(0000) knlGS:0000000000000000 [ 149.426739][ T7135] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 149.433806][ T7135] CR2: 0000001b2fff1ff8 CR3: 00000000611ca000 CR4: 00000000003526f0 [ 149.441834][ T7135] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 149.449929][ T7135] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 149.458051][ T7135] Call Trace: [ 149.461376][ T7135] [ 149.464436][ T7135] ? __warn+0xea/0x3c0 [ 149.468577][ T7135] ? preempt_schedule_notrace+0x62/0xe0 [ 149.474247][ T7135] ? drm_wait_one_vblank+0x2e3/0x580 [ 149.479593][ T7135] ? report_bug+0x3c3/0x580 [ 149.484260][ T7135] ? drm_wait_one_vblank+0x2e3/0x580 [ 149.489609][ T7135] ? handle_bug+0x184/0x210 [ 149.494644][ T7135] ? exc_invalid_op+0x17/0x50 [ 149.499380][ T7135] ? asm_exc_invalid_op+0x1a/0x20 [ 149.504798][ T7135] ? __warn_printk+0x1a5/0x350 [ 149.509641][ T7135] ? drm_wait_one_vblank+0x2e3/0x580 [ 149.515034][ T7135] ? __pfx_drm_wait_one_vblank+0x10/0x10 [ 149.520730][ T7135] ? __pfx_autoremove_wake_function+0x10/0x10 [ 149.526944][ T7135] ? lockdep_hardirqs_on+0x7c/0x110 [ 149.532635][ T7135] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 149.538520][ T7135] ? drm_vblank_get+0x150/0x280 [ 149.543861][ T7135] drm_fb_helper_ioctl+0x156/0x1a0 [ 149.549072][ T7135] ? __pfx_drm_fb_helper_ioctl+0x10/0x10 [ 149.554886][ T7135] do_fb_ioctl+0x3d2/0x7e0 [ 149.559368][ T7135] ? __pfx_do_fb_ioctl+0x10/0x10 [ 149.564458][ T7135] ? do_vfs_ioctl+0x512/0x1990 [ 149.569309][ T7135] ? __fget_files+0x20e/0x3c0 [ 149.574114][ T7135] fb_ioctl+0xe5/0x150 [ 149.578235][ T7135] ? __pfx_fb_ioctl+0x10/0x10 [ 149.583039][ T7135] __x64_sys_ioctl+0x190/0x200 [ 149.587954][ T7135] do_syscall_64+0xcd/0x260 [ 149.592603][ T7135] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.598555][ T7135] RIP: 0033:0x7f59b038d169 [ 149.603082][ T7135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.622815][ T7135] RSP: 002b:00007f59b1135038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 149.631706][ T7135] RAX: ffffffffffffffda RBX: 00007f59b05a5fa0 RCX: 00007f59b038d169 [ 149.640217][ T7135] RDX: 0000000000000000 RSI: 0000000040044620 RDI: 0000000000000005 [ 149.648498][ T7135] RBP: 00007f59b040e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 149.656912][ T7135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 149.665204][ T7135] R13: 0000000000000000 R14: 00007f59b05a5fa0 R15: 00007fffa9be0ee8 [ 149.673479][ T7135] [ 149.676710][ T7135] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 149.684024][ T7135] CPU: 1 UID: 0 PID: 7135 Comm: syz.2.319 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) [ 149.695628][ T7135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 149.705729][ T7135] Call Trace: [ 149.709046][ T7135] [ 149.712001][ T7135] dump_stack_lvl+0x3d/0x1f0 [ 149.716634][ T7135] panic+0x71c/0x800 [ 149.720573][ T7135] ? __pfx_panic+0x10/0x10 [ 149.725027][ T7135] ? show_trace_log_lvl+0x29c/0x3c0 [ 149.730252][ T7135] ? drm_wait_one_vblank+0x2e3/0x580 [ 149.735590][ T7135] check_panic_on_warn+0xab/0xb0 [ 149.740591][ T7135] __warn+0xf6/0x3c0 [ 149.744521][ T7135] ? preempt_schedule_notrace+0x62/0xe0 [ 149.750099][ T7135] ? drm_wait_one_vblank+0x2e3/0x580 [ 149.755410][ T7135] report_bug+0x3c3/0x580 [ 149.759768][ T7135] ? drm_wait_one_vblank+0x2e3/0x580 [ 149.765086][ T7135] handle_bug+0x184/0x210 [ 149.769435][ T7135] exc_invalid_op+0x17/0x50 [ 149.773956][ T7135] asm_exc_invalid_op+0x1a/0x20 [ 149.778823][ T7135] RIP: 0010:drm_wait_one_vblank+0x2e3/0x580 [ 149.784744][ T7135] Code: ed 0f 84 f4 01 00 00 e8 3b 28 59 fc 48 89 ef e8 b3 87 8b 00 44 89 e1 4c 89 ea 48 c7 c7 a0 dd e8 8b 48 89 c6 e8 1e d3 18 fc 90 <0f> 0b 90 90 e9 61 fe ff ff e8 0f 28 59 fc 48 89 ef e8 57 69 fc 05 [ 149.804376][ T7135] RSP: 0018:ffffc9000ca7fb20 EFLAGS: 00010286 [ 149.810469][ T7135] RAX: 0000000000000000 RBX: ffff888024edc000 RCX: ffffc9000cc89000 [ 149.818484][ T7135] RDX: 0000000000080000 RSI: ffffffff817aae25 RDI: 0000000000000001 [ 149.826473][ T7135] RBP: ffff88814272d010 R08: 0000000000000001 R09: 0000000000000000 [ 149.834465][ T7135] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000 [ 149.842454][ T7135] R13: ffff8880245a6bc0 R14: 1ffff9200194ff67 R15: 0000000000001fe4 [ 149.850460][ T7135] ? __warn_printk+0x1a5/0x350 [ 149.855263][ T7135] ? __pfx_drm_wait_one_vblank+0x10/0x10 [ 149.860920][ T7135] ? __pfx_autoremove_wake_function+0x10/0x10 [ 149.867021][ T7135] ? lockdep_hardirqs_on+0x7c/0x110 [ 149.872246][ T7135] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 149.878078][ T7135] ? drm_vblank_get+0x150/0x280 [ 149.882946][ T7135] drm_fb_helper_ioctl+0x156/0x1a0 [ 149.888086][ T7135] ? __pfx_drm_fb_helper_ioctl+0x10/0x10 [ 149.893766][ T7135] do_fb_ioctl+0x3d2/0x7e0 [ 149.898219][ T7135] ? __pfx_do_fb_ioctl+0x10/0x10 [ 149.903183][ T7135] ? do_vfs_ioctl+0x512/0x1990 [ 149.907996][ T7135] ? __fget_files+0x20e/0x3c0 [ 149.912707][ T7135] fb_ioctl+0xe5/0x150 [ 149.916797][ T7135] ? __pfx_fb_ioctl+0x10/0x10 [ 149.921493][ T7135] __x64_sys_ioctl+0x190/0x200 [ 149.926284][ T7135] do_syscall_64+0xcd/0x260 [ 149.930821][ T7135] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.936737][ T7135] RIP: 0033:0x7f59b038d169 [ 149.941166][ T7135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.960788][ T7135] RSP: 002b:00007f59b1135038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 149.969223][ T7135] RAX: ffffffffffffffda RBX: 00007f59b05a5fa0 RCX: 00007f59b038d169 [ 149.977213][ T7135] RDX: 0000000000000000 RSI: 0000000040044620 RDI: 0000000000000005 [ 149.985204][ T7135] RBP: 00007f59b040e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 149.993195][ T7135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 150.001180][ T7135] R13: 0000000000000000 R14: 00007f59b05a5fa0 R15: 00007fffa9be0ee8 [ 150.009178][ T7135] [ 150.012528][ T7135] Kernel Offset: disabled [ 150.016911][ T7135] Rebooting in 86400 seconds..