[ 419.859851][ T6144] _copy_from_user+0x2a/0x170
[ 419.864546][ T6144] copy_msghdr_from_user+0x89/0x150
[ 419.869759][ T6144] ? __copy_msghdr+0x4a0/0x4a0
[ 419.874786][ T6144] ? slab_free_freelist_hook+0x8b/0x1c0
[ 419.880333][ T6144] ? ___sys_sendmsg+0x11d/0x1b0
[ 419.885280][ T6144] ? __kmem_cache_free+0xab/0x3b0
[ 419.890348][ T6144] ___sys_sendmsg+0xdd/0x1b0
[ 419.894941][ T6144] ? do_recvmmsg+0x6e0/0x6e0
[ 419.899547][ T6144] ? lock_acquire+0x480/0x570
[ 419.904221][ T6144] ? rcu_read_lock_sched_held+0xd/0x70
[ 419.909688][ T6144] ? lock_release+0x560/0x780
[ 419.914409][ T6144] ? __fget_files+0x248/0x440
[ 419.919245][ T6144] ? lock_downgrade+0x6e0/0x6e0
[ 419.924083][ T6144] ? _kstrtoul+0xf0/0xf0
[ 419.928488][ T6144] ? rcu_read_lock_sched_held+0xd/0x70
[ 419.933981][ T6144] ? rcu_read_lock_sched_held+0xd/0x70
[ 419.939533][ T6144] ? lock_acquire+0x480/0x570
[ 419.944208][ T6144] ? rcu_read_lock_sched_held+0xd/0x70
[ 419.949675][ T6144] ? lock_release+0x560/0x780
[ 419.954349][ T6144] ? __might_fault+0xd1/0x170
[ 419.959043][ T6144] ? lock_downgrade+0x6e0/0x6e0
[ 419.963897][ T6144] __sys_sendmmsg+0x18b/0x460
[ 419.968580][ T6144] ? __ia32_sys_sendmsg+0xb0/0xb0
[ 419.973645][ T6144] ? preempt_count_add+0x74/0x140
[ 419.978700][ T6144] ? rcu_read_lock_sched_held+0xd/0x70
[ 419.984164][ T6144] ? lock_release+0x560/0x780
[ 419.988836][ T6144] ? rcu_read_lock_sched_held+0xd/0x70
[ 419.994306][ T6144] ? __ct_user_exit+0xff/0x150
[ 419.999077][ T6144] ? lock_downgrade+0x6e0/0x6e0
[ 420.004193][ T6144] ? lock_downgrade+0x6e0/0x6e0
[ 420.009043][ T6144] ? vtime_user_exit+0x218/0x6c0
[ 420.013988][ T6144] __x64_sys_sendmmsg+0x99/0x100
[ 420.018928][ T6144] ? syscall_enter_from_user_mode+0x22/0xb0
[ 420.024825][ T6144] do_syscall_64+0x35/0xb0
[ 420.029241][ T6144] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 420.035150][ T6144] RIP: 0033:0x462829
[ 420.039042][ T6144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 420.058748][ T6144] RSP: 002b:00007fdcc38ed1a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 420.067158][ T6144] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000462829
[ 420.075141][ T6144] RDX: 0492492492492642 RSI: 0000000020000180 RDI: 0000000000000007
[ 420.083114][ T6144] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[ 420.091343][ T6144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008
[ 420.099395][ T6144] R13: 00000000004fb290 R14: 00000000004b5035 R15: 00007fdcc38ed6bc
[ 420.107515][ T6144]
[ 420.123132][ T6146] FAULT_INJECTION: forcing a failure.
[ 420.123132][ T6146] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 420.136892][ T6146] CPU: 1 PID: 6146 Comm: syz-executor.0 Not tainted 6.0.0-rc5-next-20220914-syzkaller #0
[ 420.146693][ T6146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022
[ 420.156852][ T6146] Call Trace:
[ 420.160123][ T6146]
[ 420.163130][ T6146] dump_stack_lvl+0xcd/0x134
[ 420.167712][ T6146] should_fail.cold+0x5/0xa
[ 420.172211][ T6146] _copy_from_user+0x2a/0x170
[ 420.177051][ T6146] copy_msghdr_from_user+0x89/0x150
[ 420.182251][ T6146] ? __copy_msghdr+0x4a0/0x4a0
[ 420.187015][ T6146] ? slab_free_freelist_hook+0x8b/0x1c0
[ 420.192581][ T6146] ? ___sys_sendmsg+0x11d/0x1b0
[ 420.197454][ T6146] ? __kmem_cache_free+0xab/0x3b0
[ 420.202585][ T6146] ___sys_sendmsg+0xdd/0x1b0
[ 420.207166][ T6146] ? do_recvmmsg+0x6e0/0x6e0
[ 420.211743][ T6146] ? lock_acquire+0x480/0x570
[ 420.216407][ T6146] ? rcu_read_lock_sched_held+0xd/0x70
[ 420.221870][ T6146] ? lock_release+0x560/0x780
[ 420.226539][ T6146] ? __fget_files+0x248/0x440
[ 420.231318][ T6146] ? lock_downgrade+0x6e0/0x6e0
[ 420.236164][ T6146] ? _kstrtoul+0xf0/0xf0
[ 420.240403][ T6146] ? rcu_read_lock_sched_held+0xd/0x70
[ 420.245906][ T6146] ? rcu_read_lock_sched_held+0xd/0x70
[ 420.251398][ T6146] ? lock_acquire+0x480/0x570
[ 420.256258][ T6146] ? rcu_read_lock_sched_held+0xd/0x70
[ 420.261826][ T6146] ? lock_release+0x560/0x780
[ 420.266596][ T6146] ? __might_fault+0xd1/0x170
[ 420.271305][ T6146] ? lock_downgrade+0x6e0/0x6e0
[ 420.276420][ T6146] __sys_sendmmsg+0x18b/0x460
[ 420.281098][ T6146] ? __ia32_sys_sendmsg+0xb0/0xb0
[ 420.286123][ T6146] ? preempt_count_add+0x74/0x140
[ 420.291417][ T6146] ? rcu_read_lock_sched_held+0xd/0x70
[ 420.297130][ T6146] ? lock_release+0x560/0x780
[ 420.301802][ T6146] ? rcu_read_lock_sched_held+0xd/0x70
[ 420.307270][ T6146] ? __ct_user_exit+0xff/0x150
[ 420.312045][ T6146] ? lock_downgrade+0x6e0/0x6e0
[ 420.316915][ T6146] ? lock_downgrade+0x6e0/0x6e0
[ 420.321938][ T6146] ? vtime_user_exit+0x218/0x6c0
[ 420.326881][ T6146] __x64_sys_sendmmsg+0x99/0x100
[ 420.332352][ T6146] ? syscall_enter_from_user_mode+0x22/0xb0
[ 420.338263][ T6146] do_syscall_64+0x35/0xb0
[ 420.342803][ T6146] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 420.348786][ T6146] RIP: 0033:0x462829
[ 420.352679][ T6146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 420.372625][ T6146] RSP: 002b:00007fdcc38ed1a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 420.381131][ T6146] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000462829
[ 420.389100][ T6146] RDX: 0492492492492642 RSI: 0000000020000180 RDI: 0000000000000007
[ 420.397077][ T6146] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[ 420.405141][ T6146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008
[ 420.413107][ T6146] R13: 00000000004fb290 R14: 00000000004b5035 R15: 00007fdcc38ed6bc
[ 420.421085][ T6146]
[ 420.437545][ T6148] FAULT_INJECTION: forcing a failure.
[ 420.437545][ T6148] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 420.450677][ T6148] CPU: 1 PID: 6148 Comm: syz-executor.0 Not tainted 6.0.0-rc5-next-20220914-syzkaller #0
[ 420.460673][ T6148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022
[ 420.470912][ T6148] Call Trace:
[ 420.474187][ T6148]
[ 420.477107][ T6148] dump_stack_lvl+0xcd/0x134
[ 420.481790][ T6148] should_fail.cold+0x5/0xa
[ 420.486320][ T6148] _copy_from_user+0x2a/0x170
[ 420.491001][ T6148] copy_msghdr_from_user+0x89/0x150
[ 420.496194][ T6148] ? __copy_msghdr+0x4a0/0x4a0
[ 420.501641][ T6148] ? slab_free_freelist_hook+0x8b/0x1c0
[ 420.507642][ T6148] ? ___sys_sendmsg+0x11d/0x1b0
[ 420.512611][ T6148] ? __kmem_cache_free+0xab/0x3b0
[ 420.517640][ T6148] ___sys_sendmsg+0xdd/0x1b0
[ 420.522224][ T6148] ? do_recvmmsg+0x6e0/0x6e0
[ 420.526819][ T6148] ? lock_acquire+0x480/0x570
[ 420.531503][ T6148] ? rcu_read_lock_sched_held+0xd/0x70
[ 420.536979][ T6148] ? lock_release+0x560/0x780
[ 420.541745][ T6148] ? __fget_files+0x248/0x440
[ 420.546418][ T6148] ? lock_downgrade+0x6e0/0x6e0
[ 420.551260][ T6148] ? _kstrtoul+0xf0/0xf0
[ 420.555510][ T6148] ? rcu_read_lock_sched_held+0xd/0x70
[ 420.560994][ T6148] ? rcu_read_lock_sched_held+0xd/0x70
[ 420.566479][ T6148] ? lock_acquire+0x480/0x570
[ 420.571161][ T6148] ? rcu_read_lock_sched_held+0xd/0x70
[ 420.576800][ T6148] ? lock_release+0x560/0x780
[ 420.581751][ T6148] ? __might_fault+0xd1/0x170
[ 420.586537][ T6148] ? lock_downgrade+0x6e0/0x6e0
[ 420.591478][ T6148] __sys_sendmmsg+0x18b/0x460
[ 420.596160][ T6148] ? __ia32_sys_sendmsg+0xb0/0xb0
[ 420.601394][ T6148] ? preempt_count_add+0x74/0x140
[ 420.606433][ T6148] ? rcu_read_lock_sched_held+0xd/0x70
[ 420.612044][ T6148] ? lock_release+0x560/0x780
[ 420.616830][ T6148] ? rcu_read_lock_sched_held+0xd/0x70
[ 420.622318][ T6148] ? __ct_user_exit+0xff/0x150
[ 420.627268][ T6148] ? lock_downgrade+0x6e0/0x6e0
[ 420.632205][ T6148] ? lock_downgrade+0x6e0/0x6e0
[ 420.637071][ T6148] ? vtime_user_exit+0x218/0x6c0
[ 420.642026][ T6148] __x64_sys_sendmmsg+0x99/0x100
[ 420.646993][ T6148] ? syscall_enter_from_user_mode+0x22/0xb0
[ 420.653010][ T6148] do_syscall_64+0x35/0xb0
[ 420.657863][ T6148] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 420.663843][ T6148] RIP: 0033:0x462829
[ 420.667738][ T6148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 420.687361][ T6148] RSP: 002b:00007fdcc38ed1a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 420.695781][ T6148] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000462829
[ 420.703749][ T6148] RDX: 0492492492492642 RSI: 0000000020000180 RDI: 0000000000000007
[ 420.711714][ T6148] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[ 420.719678][ T6148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008
[ 420.727902][ T6148] R13: 00000000004fb290 R14: 00000000004b5035 R15: 00007fdcc38ed6bc
[ 420.735880][ T6148]
[ 421.616589][ T56] device hsr_slave_0 left promiscuous mode
[ 421.622900][ T56] device hsr_slave_1 left promiscuous mode
[ 421.629778][ T56] device bridge_slave_1 left promiscuous mode
[ 421.636634][ T56] bridge0: port 2(bridge_slave_1) entered disabled state
[ 421.645270][ T56] device bridge_slave_0 left promiscuous mode
[ 421.651641][ T56] bridge0: port 1(bridge_slave_0) entered disabled state
[ 421.662059][ T56] device veth1_vlan left promiscuous mode
[ 421.668081][ T56] device veth0_vlan left promiscuous mode
[ 421.745413][ T56] team0 (unregistering): Port device team_slave_1 removed
[ 421.758355][ T56] team0 (unregistering): Port device team_slave_0 removed
[ 421.769052][ T56] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 421.780641][ T56] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 421.805525][ T56] bond0 (unregistering): Released all slaves
Warning: Permanently added '10.128.10.37' (ECDSA) to the list of known hosts.
[ 425.115109][ T6345] chnl_net:caif_netlink_parms(): no params data found
[ 425.138720][ T6345] bridge0: port 1(bridge_slave_0) entered blocking state
[ 425.146294][ T6345] bridge0: port 1(bridge_slave_0) entered disabled state
[ 425.153860][ T6345] device bridge_slave_0 entered promiscuous mode
[ 425.161887][ T6345] bridge0: port 2(bridge_slave_1) entered blocking state
[ 425.169054][ T6345] bridge0: port 2(bridge_slave_1) entered disabled state
[ 425.176889][ T6345] device bridge_slave_1 entered promiscuous mode
[ 425.192859][ T6345] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 425.203468][ T6345] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 425.221960][ T6345] team0: Port device team_slave_0 added
[ 425.228792][ T6345] team0: Port device team_slave_1 added
[ 425.245173][ T6345] device hsr_slave_0 entered promiscuous mode
[ 425.251884][ T6345] device hsr_slave_1 entered promiscuous mode
[ 425.286262][ T6345] bridge0: port 2(bridge_slave_1) entered blocking state
[ 425.293541][ T6345] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 425.301046][ T6345] bridge0: port 1(bridge_slave_0) entered blocking state
[ 425.308129][ T6345] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 425.335889][ T6345] 8021q: adding VLAN 0 to HW filter on device bond0
[ 425.346639][ T6149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 425.355422][ T6149] bridge0: port 1(bridge_slave_0) entered disabled state
[ 425.362867][ T6149] bridge0: port 2(bridge_slave_1) entered disabled state
[ 425.371683][ T6149] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 425.382259][ T6345] 8021q: adding VLAN 0 to HW filter on device team0
[ 425.391371][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 425.399835][ T2746] bridge0: port 1(bridge_slave_0) entered blocking state
[ 425.407008][ T2746] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 425.416969][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 425.425337][ T6] bridge0: port 2(bridge_slave_1) entered blocking state
[ 425.432393][ T6] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 425.451005][ T6345] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 425.461688][ T6345] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 425.474362][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 425.482813][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 425.491782][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 425.500140][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 425.508386][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 425.516071][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 425.530531][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 425.538432][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 425.548510][ T6345] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 425.725413][ T6158] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 425.738111][ T6345] device veth0_vlan entered promiscuous mode
[ 425.744709][ T6158] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 425.753733][ T6158] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 425.761774][ T6158] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 425.772200][ T6345] device veth1_vlan entered promiscuous mode
[ 425.783536][ T6345] FAULT_INJECTION: forcing a failure.
[ 425.783536][ T6345] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 425.798359][ T6345] CPU: 0 PID: 6345 Comm: syz-executor145 Not tainted 6.0.0-rc5-next-20220914-syzkaller #0
[ 425.808357][ T6345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022
[ 425.818500][ T6345] Call Trace:
[ 425.822026][ T6345]
[ 425.824955][ T6345] dump_stack_lvl+0xcd/0x134
[ 425.829648][ T6345] should_fail.cold+0x5/0xa
[ 425.834232][ T6345] _copy_from_user+0x2a/0x170
[ 425.838913][ T6345] copy_msghdr_from_user+0x89/0x150
[ 425.844113][ T6345] ? __copy_msghdr+0x4a0/0x4a0
[ 425.848962][ T6345] ? slab_free_freelist_hook+0x8b/0x1c0
[ 425.854502][ T6345] ? ___sys_sendmsg+0x11d/0x1b0
[ 425.859355][ T6345] ? __kmem_cache_free+0xab/0x3b0
[ 425.864847][ T6345] ___sys_sendmsg+0xdd/0x1b0
[ 425.869442][ T6345] ? do_recvmmsg+0x6e0/0x6e0
[ 425.874035][ T6345] ? kstrtouint+0xd2/0x120
[ 425.878484][ T6345] ? _kstrtoul+0xf0/0xf0
[ 425.882731][ T6345] ? rcu_read_lock_sched_held+0xd/0x70
[ 425.888196][ T6345] ? rcu_read_lock_sched_held+0xd/0x70
[ 425.893659][ T6345] ? lock_acquire+0x480/0x570
[ 425.898333][ T6345] ? rcu_read_lock_sched_held+0xd/0x70
[ 425.903891][ T6345] ? lock_release+0x560/0x780
[ 425.908566][ T6345] ? __might_fault+0xd1/0x170
[ 425.913238][ T6345] ? lock_downgrade+0x6e0/0x6e0
[ 425.918091][ T6345] ? _raw_spin_unlock_irqrestore+0x3d/0x70
[ 425.923929][ T6345] __sys_sendmmsg+0x18b/0x460
[ 425.928622][ T6345] ? __ia32_sys_sendmsg+0xb0/0xb0
[ 425.933657][ T6345] ? preempt_count_add+0x74/0x140
[ 425.938690][ T6345] ? rcu_read_lock_sched_held+0xd/0x70
[ 425.944166][ T6345] ? lock_release+0x560/0x780
[ 425.948843][ T6345] ? rcu_read_lock_sched_held+0xd/0x70
[ 425.954314][ T6345] ? __ct_user_exit+0xff/0x150
[ 425.959085][ T6345] ? lock_downgrade+0x6e0/0x6e0
[ 425.963936][ T6345] ? lock_downgrade+0x6e0/0x6e0
[ 425.968795][ T6345] ? vtime_user_exit+0x218/0x6c0
[ 425.973920][ T6345] __x64_sys_sendmmsg+0x99/0x100
[ 425.978862][ T6345] ? syscall_enter_from_user_mode+0x22/0xb0
[ 425.985023][ T6345] do_syscall_64+0x35/0xb0
[ 425.989632][ T6345] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 425.995611][ T6345] RIP: 0033:0x7f0f7c872a59
[ 426.000023][ T6345] Code: 28 c3 e8 4a 15 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 426.019715][ T6345] RSP: 002b:00007ffd56a22708 EFLAGS: 00000246 ORIG_RAX: 00000