last executing test programs: 12.967323736s ago: executing program 0 (id=3451): mmap$auto(0x0, 0x4020008, 0xdf, 0xeb1, 0x1000000000401, 0x8000) r0 = open(&(0x7f0000000000)='./file0\x00', 0x40000, 0xa0) r1 = syz_genetlink_get_family_id$auto_IPVS(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_ZERO131(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x40) dup3$auto(0x8000000000000001, 0x5, 0x800000000) sendmsg$auto_NL80211_CMD_SET_CHANNEL273(r0, &(0x7f0000002480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000002440)={&(0x7f00000001c0)={0x226c, 0x0, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_STA_EXT_CAPABILITY={0xb2, 0xac, "165478931b0b9c50b631b187c5055cb38f29b5ee5ac5662bbac25ddf709a5b01517665d2b4ba274b55ceb03ada2f6badb51a638411f91a9f7405304886151fca6c1723e18e34cf2ddb8d31ecc580285f3c22af3dae63df7c79c2368e3963c10ab8f79340e7e157394e928435686fcb73bb9f4e3e49d5778e98143a47fc148d3de846084beda033ce6ec2939e3db1189c270cb6e1d1746f1ab6de5ac5755a5f3bac01361ee2d333adc1cca20e5abe"}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x8b, 0xbe, "a3f53351e09338e6dd95914f1b185aff21a65722e41e5a72717901b8e0e5973fa1c514884d751fd05bf21ff153d8a0d7167b3339db170b2b75a0e6f933030b0a4519e07b396d0291c221e4fc2522e55a2d0c4bf11456e7f848a65e401c5cbda2a7bbed5c8473ac91cd3d3e4a528194f210a732e984e96ed6c2104f11cc8a9044b0bc1118f7e6b0"}, @NL80211_ATTR_MLO_SUPPORT={0x4}, @NL80211_ATTR_TSID={0x5}, @NL80211_ATTR_CSA_IES={0xe1, 0xb9, "2cabe89970ba42ba7a42457b3b21a8db47cd4a850054f69e903e463ef85be7b7259412714587ab3fd3fcea577d59d403e5f7925752d598092d6c76f1adddeed56a991045d5549c9fa680660bc3b5c6a4b39e35d127c891bd29cf9d66e6ea621d04708af26b8241f898fe79dfd01e4cdb1696e5121e238a01232891f8858c6bef5d29402f47c397ff4adb68561cbd8f410ae2bb9bddbc519a9f17ab77f91f69a860894e9104fc2d0782649bfd4187cb9cf895dbc18160cea8814b512018a604709513a8ae7f67e8704258e320b6bb581fc4c39317bc10980b8751e2bc53"}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x64a4}, @NL80211_ATTR_STA_FLAGS2={0x1004, 0x43, "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"}, @NL80211_ATTR_MAC_MASK={0x1004, 0xd7, "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"}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_PMK={0x11, 0xfe, "d16b6064ed30e3de44291b3565"}]}, 0x226c}, 0x1, 0x0, 0x0, 0x4040890}, 0x2000d000) write$auto(0x5, 0x800, 0x80000001) 11.12082637s ago: executing program 0 (id=3454): mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) ioperm$auto(0x3, 0xe, 0x2000000000000149) ioprio_set$auto(0x2, 0x800000000, 0x8) (async) socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) mmap$auto(0x4, 0xa97, 0xdf, 0x17, 0x401, 0x8000) (async, rerun: 32) open(&(0x7f0000000000)='./file0\x00', 0x269c2, 0x84) (async, rerun: 32) socket$nl_generic(0x10, 0x3, 0x10) (async) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x27f1) (async) write$auto(0x6, 0x230d, 0xc) (async) recvfrom$auto(0x4000000000005, 0x0, 0x9, 0x6, 0xc000000, 0xffff) (async) sysfs$auto(0x2, 0x45e, 0x1) (async, rerun: 32) socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) socket(0x2b, 0x4, 0x1) (async) futimesat$auto(0x6, 0x0, 0x0) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async) ioperm$auto(0x7, 0x7a, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000580), r0) keyctl$auto(0x4, 0xfffffffd, 0x0, 0x0, 0x8) (async, rerun: 32) sendmsg$auto_TIPC_NL_PEER_REMOVE453(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000005c0)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="01002dbd7000fddbdf251400000004bb6600"], 0x18}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000040) (async, rerun: 32) keyctl$auto(0x4e, 0x1, 0xff, 0x2, 0x7) (async) syz_genetlink_get_family_id$auto_ethtool(0x0, r0) 10.129629377s ago: executing program 0 (id=3456): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioperm$auto(0x29, 0x2, 0x6) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) mincore$auto(0x300, 0x81, 0x8) 9.950988544s ago: executing program 0 (id=3459): ioperm$auto(0x0, 0x3, 0x1) socket(0x2b, 0x1, 0x1) socket(0xa, 0x3, 0x6) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto(0x3, 0x8936, 0x91) open(0x0, 0xc8281, 0x154) fanotify_init$auto(0x5, 0x2) io_uring_setup$auto(0x3ff, 0x3) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0x1) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) fstatfs$auto(0x1, 0x1) setsockopt$auto(0x10000000006, 0x0, 0x3, 0x7, 0x3ff) socket(0xa, 0x3, 0x6) mmap$auto(0x0, 0x20009, 0x4, 0xeb1, 0x401, 0x8000) setsockopt$auto(0x3, 0x29, 0x37, 0xe33, 0x7f8) setsockopt$auto(0x3, 0x29, 0x39, 0xe33, 0x90) write$auto(0x4, 0xc, 0x40) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x5) close_range$auto(0x2, 0x8000, 0x0) timerfd_settime$auto(0x9, 0x713, 0x1, 0x100000000) 9.764461909s ago: executing program 0 (id=3463): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) fchmodat2$auto(0x9, 0x0, 0x2, 0xfffffffffffffff9) sendmsg$auto_NL80211_CMD_START_AP300(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x28, r1, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_WDEV={0xc, 0x99, 0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000041}, 0x40000) sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG211(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, r1, 0x1838f5b35f3692df, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40800}, 0x20000040) 9.593550111s ago: executing program 0 (id=3466): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x80000002, 0x8000) mmap$auto(0x80000000, 0x80000001, 0x8001, 0x9b8, 0x100000000, 0x9) mbind$auto(0xf000, 0x8000000000000001, 0x1, 0x0, 0x7fff, 0x2) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) move_pages$auto(0x1, 0x2000000000003, 0xff, 0x0, 0x1, 0x8000000000000000) setsockopt$auto(0x4, 0x1, 0x3e, 0x480b, 0x800000) setsockopt$auto(0x200000004, 0x6, 0x3, 0x4808, 0x2f) prctl$auto(0x8, 0x1, 0x6, 0x1, 0xfff) ustat$auto(0x6, 0x3) socket(0x2, 0x1, 0x0) socket(0x10, 0x2, 0x0) memfd_create$auto(0x9, 0xc) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x27f1) shutdown$auto(0x5, 0x2) recvmmsg$auto(0x5, 0x4, 0x7fffff80, 0x34, 0x7) 5.552036755s ago: executing program 1 (id=3495): ioperm$auto(0x8, 0x5, 0x149) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) pipe2$auto(0x2000e708, 0x80) fcntl$auto(0x3, 0x4, 0xa553) close_range$auto(0x0, 0xfffffffffffffff7, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') clone$auto(0x521deeaa, 0xb, 0xe, 0x0, 0x9) socket(0xa, 0x2, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x2e, 0xe33, 0x0) socket(0x2, 0x1, 0x106) socket(0x15, 0x80003, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) lsm_list_modules$auto(0x1, 0x10000000000008, 0x0) msgsnd$auto(0x27c, 0x4, 0x8cc5, 0x5) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) get_robust_list$auto(0x100000000, 0x2, 0x7f) mmap$auto(0xf000, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) recvmmsg$auto(0x4, 0x4, 0x7fffff7f, 0x1563, 0x7) close_range$auto(0x0, 0xfffffffffffff000, 0x0) r0 = getpid() syz_open_procfs$namespace(r0, &(0x7f0000001200)='ns/pid\x00') syz_open_procfs$namespace(r0, &(0x7f0000000080)='ns/ipc\x00') mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) setreuid$auto(0x3, 0x7) bpf$auto(0x800000000000001f, 0x9, 0x0) prctl$auto(0x1000000003b, 0x1, 0x7, 0x5, 0x7) move_pages$auto(0x0, 0x1, 0x1, 0x8002000000040, 0x3d, 0x2) pause$auto() fchdir$auto(0xf4400000000) 5.532217261s ago: executing program 3 (id=3496): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000cc0), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_GET_TXSC153(r0, &(0x7f0000000780)={0x0, 0x60, &(0x7f0000000740)={&(0x7f0000000540)={0x14, r1, 0x301, 0x70bd2c, 0x25dfdbfd}, 0x14}, 0x1, 0x60, 0x0, 0x20004010}, 0x8000) 5.304148628s ago: executing program 3 (id=3498): fork$auto() open(0x0, 0x6041, 0x0) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) socket(0x26, 0x80805, 0x0) syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/time\x00') syz_open_procfs$namespace(0x0, &(0x7f00000022c0)='ns/time_for_children\x00') syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/uts\x00') splice$auto(0x6, 0x3, 0x5, 0x2, 0x526, 0x7) getpriority$auto(0x0, 0x1) madvise$auto(0x0, 0xffffffffffff0001, 0x15) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) pidfd_open$auto(0x1, 0x0) socket(0x10, 0x2, 0x4) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x106) setsockopt$auto(0x3, 0x1, 0x41, 0xe33, 0x4) mincore$auto(0x0, 0x81, 0x8) 4.756846775s ago: executing program 3 (id=3501): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS8(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000000)=ANY=[@ANYRESOCT, @ANYRES8, @ANYRES64=r0, @ANYRESHEX, @ANYRES64=r0, @ANYRES32], 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) get_robust_list$auto(0x100000000, 0x2, 0x7f) getsockopt$auto(0x6, 0x40000000084, 0x6d, 0x9, 0x6) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000a40), r1) r2 = syz_genetlink_get_family_id$auto_NLBL_MGMT(&(0x7f00000012c0), r1) sendmsg$auto_NLBL_MGMT_C_REMOVEDEF369(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="010327bd7000fcdbdf2505000000f04837597593fc198d27720adc142a68589a9d2bf842b1e54e7981d2bf"], 0x14}, 0x1, 0x0, 0x0, 0x40b0}, 0x40034) syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000200), r0) socket(0x2, 0x3, 0x6) mmap$auto(0x8d, 0x20009, 0xde, 0xeb1, 0x8, 0x8000) close_range$auto(0x2, 0x8000, 0x0) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x27f1) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x7, 0x0) inotify_init1$auto(0x3000000000000) recvfrom$auto(0x3, 0x0, 0x4, 0x101, 0x9, 0xffffffffffff4397) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x3, 0x6) setreuid$auto(0x0, 0x20000000004) socket(0x2, 0x801, 0x100) listen$auto(0x3, 0x81) ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0) setsockopt$auto(0x89, 0x2c, 0xf, 0xe33, 0x90) ioctl$auto(0x3, 0x8b2b, 0x91) 2.518536762s ago: executing program 2 (id=3505): mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2) io_uring_setup$auto(0x2, 0x3) io_uring_register$auto(0x100000001, 0x18, 0x0, 0x1) bpf$auto(0x7, 0xff, 0x400) move_pages$auto(0x8, 0x9, 0x1b, 0x6, 0x2de, 0x4) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) syslog$auto(0x3, 0x9ff4, 0x2000055f) 2.510823251s ago: executing program 1 (id=3506): socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x8000000000000024, 0x7, 0xa) pidfd_open$auto(0x1, 0x0) socket(0x23, 0x5, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') clone3$auto(0x4, 0x58) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) signalfd$auto(0x7fffffffffffffff, 0xc, 0x8) read$auto(0x3, 0xc215, 0xc218) sendmsg$auto_NL80211_CMD_SET_WOWLAN299(0xffffffffffffffff, 0x0, 0x20000884) vfork$auto() exit$auto(0x2) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x10003, 0x6, 0xfffffffffffffff7, 0x7) io_uring_setup$auto(0x3ff, 0x3) keyctl$auto(0x3, 0x5, 0x69c9, 0x2, 0x6) lsetxattr$auto(0xffffffffffffffff, 0x5, 0xb7, 0x200001005, 0x7) setresgid$auto(0x800, 0x28000000000000, 0xffffffffffffffff) mkdirat$auto(0x9, 0x8000000000000001, 0x8) socket(0x3a, 0x80000, 0x106) socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) getsockopt$auto(0x5, 0x114, 0x271d, 0x7, 0x401) 1.604365074s ago: executing program 2 (id=3507): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_SEG6(&(0x7f0000000900), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SETHMAC401(r0, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000001080)={0x33fe0, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x2}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x7}, @SEG6_ATTR_SECRETLEN={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x51}, 0x10) 1.485636824s ago: executing program 3 (id=3508): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) fstatfs$auto(0x0, 0x4) getsockopt$auto(0x4, 0x6, 0x23, 0x83bf, 0x6) getrandom$auto(0x7f, 0xec7, 0x3) madvise$auto(0xf500, 0x3, 0x15) 1.256832543s ago: executing program 2 (id=3509): socket(0x2, 0x3, 0x1) setsockopt$auto(0x3, 0x0, 0x4, 0x7, 0x28) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_BATADV_CMD_SET_MESH15(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x306, 0x0, 0x0, 0x10}, 0x50) 867.401155ms ago: executing program 2 (id=3510): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_GOV429(r0, &(0x7f00000010c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001080)={&(0x7f0000000040)={0x1020, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@THERMAL_GENL_ATTR_TZ_TRIP_TEMP={0x8, 0x7, 0x3466}, @THERMAL_GENL_ATTR_TZ={0x1004, 0x1, "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"}]}, 0x1020}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000) r1 = syz_genetlink_get_family_id$auto_802_15_4_MAC(&(0x7f0000001140), r0) sendmsg$auto_IEEE802154_LIST_PHY89(r0, &(0x7f0000001280)={&(0x7f0000001100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001240)={&(0x7f0000001180)={0x84, r1, 0x800, 0x70bd2a, 0x25dfdbff, {}, [@IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x7}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x81}, @IEEE802154_ATTR_PAN_COORD={0x5}, @IEEE802154_ATTR_SRC_HW_ADDR={0xc}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0x1}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x7}, @IEEE802154_ATTR_CCA_MODE={0x5, 0x23, 0xf1}, @IEEE802154_ATTR_LLSEC_KEY_USAGE_FRAME_TYPES={0x5, 0x31, 0xc0}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0x7}, @IEEE802154_ATTR_LLSEC_KEY_USAGE_COMMANDS={0x24, 0x32, "871fe11c4c67b1066d4dd83b1190026a15b3a6bb838b86aa347ca4fe9f464951"}]}, 0x84}, 0x1, 0x0, 0x0, 0x80}, 0x4000831) r2 = socket(0x10, 0x3, 0x0) r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT158(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x1c, r3, 0xa01, 0x70bd2d, 0x25dfdbfe, {}, [@NBD_ATTR_SOCKETS={0x8, 0x7, "c7f29d71"}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c084}, 0x0) keyctl$auto(0x2000000000000010, 0x8001, 0x8, 0x1, 0x6) 748.954716ms ago: executing program 1 (id=3511): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) prctl$auto(0x101000000003b, 0x1, 0xa, 0xf1b, 0x107) rt_sigtimedwait$auto(0x0, 0x8, 0x17, 0x8) sync_file_range$auto(0x8, 0x17, 0x8, 0x9) 650.154363ms ago: executing program 1 (id=3512): ioperm$auto(0x3, 0x5, 0x149) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) rseq$auto(0x40000, 0xc8f, 0x0, 0x2) (async, rerun: 32) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (rerun: 32) socket(0x2, 0x5, 0x0) (async) getsockopt$auto(0x3, 0x2000000000, 0xc, 0x4, 0x3) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x5, 0xffffffffffff0000, 0x78, 0xfff, 0x9) (async) io_uring_setup$auto(0x0, 0x50e) shmdt$auto(0x1000) 544.009263ms ago: executing program 2 (id=3513): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_CFG52(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="64f7ff00d0ecd474302407cd9e1c3f9517ddb63babeb2db58b3cf5a6b970eab8ff582f1fae8bed77c1df8a0bbf207c0d779009", @ANYRES16=r1, @ANYBLOB="02002bbd7000ffdbdf2527000000070001009d0a5f00070001008fcb27000700010013dc290007000100a3342900070001004ef13300070001001f18fb0007000100dd6e9400070001006185300007000100695fcc00070001001448e700"], 0x64}, 0x1, 0x0, 0x0, 0x40000}, 0x0) mmap$auto(0x0, 0x8, 0x7, 0x2000000000009b72, 0x5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x9) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) io_uring_setup$auto(0x6, 0x10) timer_create$auto(0x9, 0xc, 0x5) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) 442.572536ms ago: executing program 3 (id=3514): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) mlock$auto(0xfbe8, 0x5f626901) clone$auto(0x1, 0xc, 0x0, 0x2, 0x7fff) mmap$auto(0x700, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) 221.541995ms ago: executing program 1 (id=3515): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x80eb1, 0x3fe, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x3, 0x3a) ioctl$auto(0x1, 0x89a0, 0x8) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000063c0), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_POOL_MODE_SET200(r0, &(0x7f0000006480)={0x0, 0x0, &(0x7f0000006440)={&(0x7f0000006400)={0x1c, r1, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@NFSD_A_POOL_MODE_MODE={0x8, 0x1, '!\\\'\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000084}, 0x4) mlockall$auto(0x6) msgctl$auto(0x0, 0x5, 0xc4) ioperm$auto(0x5, 0xffffffffffffffff, 0xffffffffffffffff) madvise$auto(0x0, 0x0, 0xe) mprotect$auto(0x1ffff000, 0x1003, 0x8) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mincore$auto(0x0, 0x0, 0xfff) mmap$auto(0x0, 0x40009, 0x8000000000000df, 0x9b72, 0x7fffffffffffffff, 0x28000) mlockall$auto(0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) shmdt$auto(0x1000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2c, 0x1, 0x110b) getsockopt$auto(0x100000006, 0x0, 0x18, 0x9, 0x0) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x801, 0x100) socket(0x11, 0x3, 0x2) 202.922604ms ago: executing program 2 (id=3516): ioperm$auto(0x8, 0x1ff, 0x149) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY23(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="110f2bbd710004dc9f250a0000000600010020000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4004}, 0x0) setpgid$auto(0x81, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x161542, 0x100) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) select$auto(0x8000000000006, 0x2, 0x1, 0x5, 0x2) 111.839137ms ago: executing program 3 (id=3517): r0 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'veth1_to_bridge\x00', 0x0}) r2 = socket(0x9, 0x2, 0x0) sendmsg$auto_ETHTOOL_MSG_FEC_SET37(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="b5"], 0x14}, 0x1, 0x0, 0x0, 0x20040010}, 0x44) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) fcntl$auto(0x2, 0x4, 0x2150fd80) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x15, 0x4, 0x740) 0s ago: executing program 1 (id=3518): pidfd_open$auto(0x1, 0x0) socket(0x2, 0x2, 0x1) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x1d, 0x3, 0x1) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) getpeername$auto(0x800000000003, 0x8000bb3d, 0x6) pwritev2$auto(0x3, 0x0, 0x9, 0xffffffffffffffff, 0x2, 0xc) socketpair$auto(0xffff, 0x6, 0xfffffffffffffff7, 0xb) io_uring_setup$auto(0x3ff, 0x3) pidfd_open$auto(0x1, 0x0) (async) socket(0x2, 0x2, 0x1) (async) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async) socket(0x1d, 0x3, 0x1) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) getpeername$auto(0x800000000003, 0x8000bb3d, 0x6) (async) pwritev2$auto(0x3, 0x0, 0x9, 0xffffffffffffffff, 0x2, 0xc) (async) socketpair$auto(0xffff, 0x6, 0xfffffffffffffff7, 0xb) (async) io_uring_setup$auto(0x3ff, 0x3) (async) kernel console output (not intermixed with test programs): 686.843992][T18727] hsr_slave_0: entered promiscuous mode [ 686.856120][T18727] hsr_slave_1: entered promiscuous mode [ 687.336522][T18835] coredump: 124(syz.0.3186): written to core: VMAs: 1, size 4096; core: 2659 bytes, pos 8192 [ 687.762411][T18727] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 687.781579][T18727] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 687.803109][T18727] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 687.813722][T18727] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 687.890957][ T4626] Bluetooth: hci4: command tx timeout [ 687.973660][T18727] 8021q: adding VLAN 0 to HW filter on device bond0 [ 687.989499][T18727] 8021q: adding VLAN 0 to HW filter on device team0 [ 688.001112][ T1302] bridge0: port 1(bridge_slave_0) entered blocking state [ 688.008217][ T1302] bridge0: port 1(bridge_slave_0) entered forwarding state [ 688.286226][ T2517] bridge0: port 2(bridge_slave_1) entered blocking state [ 688.293402][ T2517] bridge0: port 2(bridge_slave_1) entered forwarding state [ 688.339259][T18727] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 688.349878][T18727] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 688.920026][T18858] coredump: 6(syz.3.3191): written to core: VMAs: 34, size 80834560; core: 60271242 bytes, pos 80842752 [ 688.960988][T18727] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 689.075090][T18727] veth0_vlan: entered promiscuous mode [ 689.086735][T18727] veth1_vlan: entered promiscuous mode [ 689.118855][T18727] veth0_macvtap: entered promiscuous mode [ 689.127846][T18727] veth1_macvtap: entered promiscuous mode [ 689.142356][T18727] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 689.152867][T18727] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 689.162841][T18727] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 689.173757][T18727] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 689.184142][T18727] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 689.195100][T18727] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 689.211377][T18727] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 689.287522][T18727] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 689.298453][T18727] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 689.308287][T18727] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 689.318948][T18727] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 689.328934][T18727] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 689.339445][T18727] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 689.350664][T18727] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 689.377658][T18727] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 689.390884][T18727] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 689.401081][T18727] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 689.418485][T18727] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 689.583016][ T1302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 689.618533][ T1302] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 689.712945][ T1302] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 689.750245][ T1302] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 690.339815][T18920] FAULT_INJECTION: forcing a failure. [ 690.339815][T18920] name failslab, interval 1, probability 0, space 0, times 0 [ 690.401666][T18920] CPU: 1 UID: 0 PID: 18920 Comm: syz.0.3201 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 690.412310][T18920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 690.422409][T18920] Call Trace: [ 690.425701][T18920] [ 690.428649][T18920] dump_stack_lvl+0x16c/0x1f0 [ 690.433366][T18920] should_fail_ex+0x497/0x5b0 [ 690.438070][T18920] ? fs_reclaim_acquire+0xae/0x160 [ 690.443648][T18920] should_failslab+0xc2/0x120 [ 690.448352][T18920] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 690.453749][T18920] ? __thp_vma_allowable_orders+0x341/0xb40 [ 690.459674][T18920] ? __pmd_alloc+0xc3/0x810 [ 690.464204][T18920] __pmd_alloc+0xc3/0x810 [ 690.468557][T18920] __handle_mm_fault+0x942/0x2a10 [ 690.473615][T18920] ? __pfx_mt_find+0x10/0x10 [ 690.478233][T18920] ? __pfx_lock_acquire+0x10/0x10 [ 690.483286][T18920] ? __pfx___handle_mm_fault+0x10/0x10 [ 690.488791][T18920] ? find_vma+0xc0/0x140 [ 690.493055][T18920] ? __pfx_find_vma+0x10/0x10 [ 690.497768][T18920] handle_mm_fault+0x3fa/0xaa0 [ 690.502575][T18920] do_user_addr_fault+0x7a3/0x13f0 [ 690.507734][T18920] exc_page_fault+0x5c/0xc0 [ 690.512265][T18920] asm_exc_page_fault+0x26/0x30 [ 690.517145][T18920] RIP: 0010:rep_movs_alternative+0x30/0x70 [ 690.522993][T18920] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 [ 690.542626][T18920] RSP: 0018:ffffc90002f7fe00 EFLAGS: 00050212 [ 690.548729][T18920] RAX: 0000000000000001 RBX: 0000000000000002 RCX: 0000000000000010 [ 690.556726][T18920] RDX: fffff520005effd2 RSI: 0000000000000002 RDI: ffffc90002f7fe80 [ 690.564723][T18920] RBP: 0000000000000010 R08: 0000000000000001 R09: fffff520005effd1 [ 690.572716][T18920] R10: ffffc90002f7fe8f R11: 0000000000000000 R12: 0000000000000012 [ 690.580881][T18920] R13: ffffc90002f7fe80 R14: 0000000000000000 R15: 0000000000000005 [ 690.588888][T18920] _copy_from_user+0xc6/0xf0 [ 690.593515][T18920] kern_select+0xc1/0x1e0 [ 690.597872][T18920] ? __pfx_kern_select+0x10/0x10 [ 690.602848][T18920] ? __pfx_ksys_write+0x10/0x10 [ 690.607737][T18920] __x64_sys_select+0xbd/0x160 [ 690.612537][T18920] ? do_syscall_64+0x91/0x250 [ 690.617242][T18920] ? lockdep_hardirqs_on+0x7c/0x110 [ 690.622466][T18920] do_syscall_64+0xcd/0x250 [ 690.626997][T18920] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 690.632925][T18920] RIP: 0033:0x7fc9f077def9 [ 690.637359][T18920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 690.657081][T18920] RSP: 002b:00007fc9f1590038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 690.665517][T18920] RAX: ffffffffffffffda RBX: 00007fc9f0935f80 RCX: 00007fc9f077def9 [ 690.673510][T18920] RDX: 0000000000000001 RSI: 0000000000000002 RDI: 0008000000000006 [ 690.681501][T18920] RBP: 00007fc9f1590090 R08: 0000000000000002 R09: 0000000000000000 [ 690.689517][T18920] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 690.698039][T18920] R13: 0000000000000000 R14: 00007fc9f0935f80 R15: 00007ffc089d1c38 [ 690.706051][T18920] [ 690.712691][T11991] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 690.799457][T11991] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 691.228793][T11991] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 691.237945][T11991] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 691.245709][T11991] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 691.253345][T11991] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 692.886152][T18924] chnl_net:caif_netlink_parms(): no params data found [ 693.275073][T18924] bridge0: port 1(bridge_slave_0) entered blocking state [ 693.295108][T18924] bridge0: port 1(bridge_slave_0) entered disabled state [ 693.314685][T18924] bridge_slave_0: entered allmulticast mode [ 693.321850][T18924] bridge_slave_0: entered promiscuous mode [ 693.328921][T11991] Bluetooth: hci0: command tx timeout [ 693.330353][T18924] bridge0: port 2(bridge_slave_1) entered blocking state [ 693.341737][T18924] bridge0: port 2(bridge_slave_1) entered disabled state [ 693.349190][T18924] bridge_slave_1: entered allmulticast mode [ 693.356224][T18924] bridge_slave_1: entered promiscuous mode [ 693.572311][T18924] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 693.593109][T18924] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 693.787981][T18924] team0: Port device team_slave_0 added [ 693.901042][ T1302] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 693.943612][T18924] team0: Port device team_slave_1 added [ 694.078997][T18995] FAULT_INJECTION: forcing a failure. [ 694.078997][T18995] name failslab, interval 1, probability 0, space 0, times 0 [ 694.109344][T18995] CPU: 0 UID: 0 PID: 18995 Comm: syz.1.3220 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 694.119819][T18995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 694.129898][T18995] Call Trace: [ 694.133198][T18995] [ 694.136151][T18995] dump_stack_lvl+0x16c/0x1f0 [ 694.140866][T18995] should_fail_ex+0x497/0x5b0 [ 694.145583][T18995] ? fs_reclaim_acquire+0xae/0x160 [ 694.150740][T18995] should_failslab+0xc2/0x120 [ 694.155456][T18995] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 694.160871][T18995] ? vm_area_alloc+0x1f/0x1c0 [ 694.165594][T18995] vm_area_alloc+0x1f/0x1c0 [ 694.170131][T18995] mmap_region+0xf18/0x2a50 [ 694.174681][T18995] ? __pfx_mmap_region+0x10/0x10 [ 694.179647][T18995] ? hlock_class+0x4e/0x130 [ 694.184184][T18995] ? __lock_acquire+0xbdd/0x3ce0 [ 694.189206][T18995] ? mm_get_unmapped_area+0x95/0xe0 [ 694.194468][T18995] ? bpf_lsm_mmap_addr+0x9/0x10 [ 694.199363][T18995] ? security_mmap_addr+0x6c/0x1e0 [ 694.204528][T18995] ? __get_unmapped_area+0x26b/0x3a0 [ 694.209856][T18995] do_mmap+0xc00/0xfc0 [ 694.213976][T18995] vm_mmap_pgoff+0x1ba/0x360 [ 694.218606][T18995] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 694.223754][T18995] ? __fget_files+0x244/0x3f0 [ 694.228463][T18995] ksys_mmap_pgoff+0x7d/0x5c0 [ 694.233158][T18995] ? __pfx_ksys_write+0x10/0x10 [ 694.238025][T18995] __x64_sys_mmap+0x125/0x190 [ 694.242816][T18995] do_syscall_64+0xcd/0x250 [ 694.247351][T18995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 694.253278][T18995] RIP: 0033:0x7fb9f7d7def9 [ 694.257695][T18995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 694.277306][T18995] RSP: 002b:00007fb9f8ae2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 694.285726][T18995] RAX: ffffffffffffffda RBX: 00007fb9f7f35f80 RCX: 00007fb9f7d7def9 [ 694.293701][T18995] RDX: 00000000000000df RSI: 0000000004020009 RDI: 0000000000000000 [ 694.301677][T18995] RBP: 00007fb9f8ae2090 R08: 0000000000000401 R09: 0000000000008000 [ 694.309653][T18995] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001 [ 694.317623][T18995] R13: 0000000000000000 R14: 00007fb9f7f35f80 R15: 00007ffd96a1ef78 [ 694.325616][T18995] [ 694.345921][ T1302] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 694.444465][T18924] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 694.466590][T18924] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 694.668642][T18924] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 694.690508][T18924] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 694.714052][T18924] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 694.753733][T18924] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 694.867323][T18906] coredump: 148(syz.0.3198): written to core: VMAs: 35, size 80703488; core: 60142678 bytes, pos 80711680 [ 694.924378][ T1302] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 695.355263][ T1302] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 695.408968][T11991] Bluetooth: hci0: command tx timeout [ 695.453753][T18924] hsr_slave_0: entered promiscuous mode [ 695.545615][T18924] hsr_slave_1: entered promiscuous mode [ 695.598532][T18924] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 695.606138][T18924] Cannot create hsr debugfs directory [ 695.974571][ T1302] bridge_slave_1: left allmulticast mode [ 695.988390][ T1302] bridge_slave_1: left promiscuous mode [ 696.000803][ T1302] bridge0: port 2(bridge_slave_1) entered disabled state [ 696.089541][ T1302] bridge_slave_0: left allmulticast mode [ 696.098776][ T1302] bridge_slave_0: left promiscuous mode [ 696.138629][ T1302] bridge0: port 1(bridge_slave_0) entered disabled state [ 696.421531][T18950] coredump: 19(syz.3.3207): written to core: VMAs: 37, size 93675520; core: 56026222 bytes, pos 93683712 [ 696.908281][T19041] FAULT_INJECTION: forcing a failure. [ 696.908281][T19041] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 696.942905][T19041] CPU: 0 UID: 0 PID: 19041 Comm: syz.1.3229 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 696.953369][T19041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 696.963446][T19041] Call Trace: [ 696.966749][T19041] [ 696.969700][T19041] dump_stack_lvl+0x16c/0x1f0 [ 696.974409][T19041] should_fail_ex+0x497/0x5b0 [ 696.979121][T19041] _copy_to_user+0x30/0xc0 [ 696.983571][T19041] simple_read_from_buffer+0xd0/0x160 [ 696.988975][T19041] proc_fail_nth_read+0x198/0x270 [ 696.994026][T19041] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 696.999616][T19041] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 697.005187][T19041] vfs_read+0x1ce/0xbd0 [ 697.009380][T19041] ? __fget_files+0x23a/0x3f0 [ 697.014097][T19041] ? fdget_pos+0x24c/0x360 [ 697.018547][T19041] ? __pfx_lock_release+0x10/0x10 [ 697.023606][T19041] ? __pfx_vfs_read+0x10/0x10 [ 697.028751][T19041] ? __pfx___mutex_lock+0x10/0x10 [ 697.033821][T19041] ? __fget_files+0x244/0x3f0 [ 697.038543][T19041] ksys_read+0x12f/0x260 [ 697.042823][T19041] ? __pfx_ksys_read+0x10/0x10 [ 697.047628][T19041] do_syscall_64+0xcd/0x250 [ 697.052156][T19041] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 697.058061][T19041] RIP: 0033:0x7fb9f7d7c93c [ 697.062474][T19041] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 697.082087][T19041] RSP: 002b:00007fb9f8ae2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 697.090503][T19041] RAX: ffffffffffffffda RBX: 00007fb9f7f35f80 RCX: 00007fb9f7d7c93c [ 697.098480][T19041] RDX: 000000000000000f RSI: 00007fb9f8ae20a0 RDI: 0000000000000003 [ 697.106449][T19041] RBP: 00007fb9f8ae2090 R08: 0000000000000000 R09: 0000000000000000 [ 697.114504][T19041] R10: 00000000000000c9 R11: 0000000000000246 R12: 0000000000000001 [ 697.122472][T19041] R13: 0000000000000000 R14: 00007fb9f7f35f80 R15: 00007ffd96a1ef78 [ 697.130458][T19041] [ 697.328062][T19044] FAULT_INJECTION: forcing a failure. [ 697.328062][T19044] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 697.354184][T19044] CPU: 0 UID: 0 PID: 19044 Comm: syz.1.3230 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 697.364662][T19044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 697.374747][T19044] Call Trace: [ 697.378045][T19044] [ 697.380997][T19044] dump_stack_lvl+0x16c/0x1f0 [ 697.385712][T19044] should_fail_ex+0x497/0x5b0 [ 697.390426][T19044] ? fs_reclaim_acquire+0xae/0x160 [ 697.395575][T19044] should_fail_alloc_page+0xe7/0x130 [ 697.400890][T19044] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 697.407067][T19044] ? __pfx_mark_lock+0x10/0x10 [ 697.411867][T19044] __alloc_pages_noprof+0x190/0x25c0 [ 697.417177][T19044] ? __pfx_mark_lock+0x10/0x10 [ 697.421954][T19044] ? hlock_class+0x4e/0x130 [ 697.426461][T19044] ? mark_lock+0xb5/0xc60 [ 697.430802][T19044] ? hlock_class+0x4e/0x130 [ 697.435310][T19044] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 697.441042][T19044] ? hlock_class+0x4e/0x130 [ 697.445548][T19044] ? mark_lock+0xb5/0xc60 [ 697.449902][T19044] ? __lock_acquire+0xbdd/0x3ce0 [ 697.454857][T19044] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 697.460789][T19044] ? policy_nodemask+0xea/0x4e0 [ 697.465653][T19044] alloc_pages_mpol_noprof+0x275/0x610 [ 697.471126][T19044] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 697.477124][T19044] ? find_held_lock+0x2d/0x110 [ 697.481903][T19044] folio_alloc_mpol_noprof+0x36/0xd0 [ 697.487212][T19044] shmem_alloc_folio+0x135/0x160 [ 697.492169][T19044] shmem_alloc_and_add_folio+0x48b/0xc00 [ 697.497915][T19044] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 697.504077][T19044] ? shmem_allowable_huge_orders+0x208/0x440 [ 697.510072][T19044] shmem_get_folio_gfp+0x689/0x1530 [ 697.515284][T19044] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 697.520929][T19044] ? filemap_map_pages+0xf93/0x16a0 [ 697.526141][T19044] shmem_fault+0x200/0xae0 [ 697.530565][T19044] ? __pfx_shmem_fault+0x10/0x10 [ 697.535511][T19044] ? do_pte_missing+0xdc2/0x3e50 [ 697.540454][T19044] ? __pfx_lock_release+0x10/0x10 [ 697.545491][T19044] __do_fault+0x10a/0x490 [ 697.549835][T19044] do_pte_missing+0xea8/0x3e50 [ 697.554614][T19044] __handle_mm_fault+0x100a/0x2a10 [ 697.559742][T19044] ? __pfx_mt_find+0x10/0x10 [ 697.564335][T19044] ? __pfx_lock_acquire+0x10/0x10 [ 697.569368][T19044] ? __pfx___handle_mm_fault+0x10/0x10 [ 697.574860][T19044] ? find_vma+0xc0/0x140 [ 697.579115][T19044] ? __pfx_find_vma+0x10/0x10 [ 697.583798][T19044] handle_mm_fault+0x3fa/0xaa0 [ 697.588575][T19044] do_user_addr_fault+0x7a3/0x13f0 [ 697.593705][T19044] exc_page_fault+0x5c/0xc0 [ 697.598213][T19044] asm_exc_page_fault+0x26/0x30 [ 697.603151][T19044] RIP: 0010:fault_in_readable+0x126/0x230 [ 697.608874][T19044] Code: 3a ba ff 48 39 dd 0f 84 f0 00 00 00 45 31 f6 eb 11 e8 1e 3a ba ff 48 81 c3 00 10 00 00 48 39 eb 74 1d e8 0d 3a ba ff 45 89 f7 <8a> 03 31 ff 44 89 fe 88 44 24 28 e8 3a 3c ba ff 45 85 ff 74 d2 e8 [ 697.628483][T19044] RSP: 0018:ffffc9000387fb18 EFLAGS: 00050293 [ 697.634550][T19044] RAX: 0000000000000000 RBX: 0000000000003000 RCX: ffffffff81d1efa6 [ 697.642521][T19044] RDX: ffff8880322e5a00 RSI: ffffffff81d1ef93 RDI: 0000000000000005 [ 697.650490][T19044] RBP: 0000000000201000 R08: 0000000000000005 R09: 0000000000000000 [ 697.658463][T19044] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000200000 [ 697.666545][T19044] R13: 0000000000000009 R14: 0000000000000000 R15: 0000000000000000 [ 697.674541][T19044] ? fault_in_readable+0x136/0x230 [ 697.679672][T19044] ? fault_in_readable+0x123/0x230 [ 697.684801][T19044] ? fault_in_readable+0x123/0x230 [ 697.689922][T19044] ? __pfx_fault_in_readable+0x10/0x10 [ 697.695384][T19044] ? simple_setattr+0x90/0x120 [ 697.700153][T19044] ? inode_to_bdi+0x9e/0x160 [ 697.704756][T19044] fault_in_iov_iter_readable+0x101/0x2c0 [ 697.710495][T19044] generic_perform_write+0x21b/0x920 [ 697.715796][T19044] ? __pfx_generic_perform_write+0x10/0x10 [ 697.721606][T19044] ? __mark_inode_dirty+0x2ae/0xe60 [ 697.726824][T19044] ? generic_update_time+0xcf/0xf0 [ 697.731935][T19044] ? mnt_put_write_access_file+0x45/0xf0 [ 697.737579][T19044] shmem_file_write_iter+0x10e/0x140 [ 697.742896][T19044] vfs_write+0x6b5/0x1140 [ 697.747238][T19044] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 697.753054][T19044] ? __pfx_vfs_write+0x10/0x10 [ 697.757830][T19044] ? __pfx___mutex_lock+0x10/0x10 [ 697.762878][T19044] ksys_write+0x12f/0x260 [ 697.767210][T19044] ? __pfx_ksys_write+0x10/0x10 [ 697.772084][T19044] do_syscall_64+0xcd/0x250 [ 697.776593][T19044] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 697.782497][T19044] RIP: 0033:0x7fb9f7d7def9 [ 697.786911][T19044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 697.806521][T19044] RSP: 002b:00007fb9f8ae2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 697.814940][T19044] RAX: ffffffffffffffda RBX: 00007fb9f7f35f80 RCX: 00007fb9f7d7def9 [ 697.822912][T19044] RDX: 0000000200000001 RSI: 0000000000000009 RDI: 0000000000000003 [ 697.830880][T19044] RBP: 00007fb9f8ae2090 R08: 0000000000000000 R09: 0000000000000000 [ 697.838851][T19044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 697.846819][T19044] R13: 0000000000000000 R14: 00007fb9f7f35f80 R15: 00007ffd96a1ef78 [ 697.854806][T19044] [ 697.892409][T11991] Bluetooth: hci0: command tx timeout [ 698.412434][ T1302] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 698.449139][ T1302] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 698.479540][ T1302] bond0 (unregistering): Released all slaves [ 699.514137][ T1302] hsr_slave_0: left promiscuous mode [ 699.528846][ T1302] hsr_slave_1: left promiscuous mode [ 699.579702][ T1302] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 699.587165][ T1302] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 699.639084][ T1302] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 699.646542][ T1302] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 699.854615][ T1302] veth1_macvtap: left promiscuous mode [ 699.877918][ T1302] veth0_macvtap: left promiscuous mode [ 699.897346][ T1302] veth1_vlan: left promiscuous mode [ 699.916479][ T1302] veth0_vlan: left promiscuous mode [ 699.968705][T11991] Bluetooth: hci0: command tx timeout [ 700.144631][T19085] FAULT_INJECTION: forcing a failure. [ 700.144631][T19085] name failslab, interval 1, probability 0, space 0, times 0 [ 700.167690][T19085] CPU: 0 UID: 0 PID: 19085 Comm: syz.1.3242 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 700.178165][T19085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 700.188245][T19085] Call Trace: [ 700.191534][T19085] [ 700.194498][T19085] dump_stack_lvl+0x16c/0x1f0 [ 700.199202][T19085] should_fail_ex+0x497/0x5b0 [ 700.203909][T19085] ? fs_reclaim_acquire+0xae/0x160 [ 700.209041][T19085] should_failslab+0xc2/0x120 [ 700.213748][T19085] __kmalloc_noprof+0xcb/0x410 [ 700.218628][T19085] lsm_blob_alloc+0x68/0x90 [ 700.223149][T19085] security_prepare_creds+0x30/0x270 [ 700.228465][T19085] prepare_creds+0x53e/0x750 [ 700.233080][T19085] set_current_groups+0x15/0xd0 [ 700.237958][T19085] __do_sys_setgroups+0x3db/0x4e0 [ 700.243013][T19085] do_syscall_64+0xcd/0x250 [ 700.247543][T19085] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 700.253465][T19085] RIP: 0033:0x7fb9f7d7def9 [ 700.257897][T19085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 700.277520][T19085] RSP: 002b:00007fb9f8ae2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000074 [ 700.286128][T19085] RAX: ffffffffffffffda RBX: 00007fb9f7f35f80 RCX: 00007fb9f7d7def9 [ 700.294116][T19085] RDX: 0000000000000000 RSI: 000000000000000d RDI: 0000000000000020 [ 700.302098][T19085] RBP: 00007fb9f8ae2090 R08: 0000000000000000 R09: 0000000000000000 [ 700.310083][T19085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 700.318064][T19085] R13: 0000000000000000 R14: 00007fb9f7f35f80 R15: 00007ffd96a1ef78 [ 700.326063][T19085] [ 701.071278][T19103] coredump: 96(syz.1.3247): written to core: VMAs: 1, size 4096; core: 2659 bytes, pos 8192 [ 701.257510][T19006] coredump: 33(syz.3.3221): written to core: VMAs: 39, size 85028864; core: 64218334 bytes, pos 85037056 [ 701.497283][T19052] coredump: 43(syz.3.3233): interrupted: fatal signal pending [ 701.586368][T19052] coredump: 43(syz.3.3233): written to core: VMAs: 37, size 97480704; core: 39066524 bytes, pos 76406784 [ 701.867591][ T1302] team0 (unregistering): Port device team_slave_1 removed [ 701.876718][ T4626] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 701.881794][T19111] netlink: get zone limit has 4 unknown bytes [ 701.910200][ T4626] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 701.918672][ T4626] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 701.927675][ T4626] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 701.940111][ T4626] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 701.947429][ T4626] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 702.151225][ T1302] team0 (unregistering): Port device team_slave_0 removed [ 702.765142][T19125] coredump: 112(syz.1.3255): written to core: VMAs: 1, size 4096; core: 2659 bytes, pos 8192 [ 703.593346][T19135] FAULT_INJECTION: forcing a failure. [ 703.593346][T19135] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 703.668562][T19135] CPU: 1 UID: 0 PID: 19135 Comm: syz.3.3257 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 703.679122][T19135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 703.689378][T19135] Call Trace: [ 703.692682][T19135] [ 703.695627][T19135] dump_stack_lvl+0x16c/0x1f0 [ 703.700333][T19135] should_fail_ex+0x497/0x5b0 [ 703.705217][T19135] _copy_to_user+0x30/0xc0 [ 703.709668][T19135] simple_read_from_buffer+0xd0/0x160 [ 703.715082][T19135] proc_fail_nth_read+0x198/0x270 [ 703.720137][T19135] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 703.725719][T19135] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 703.731291][T19135] vfs_read+0x1ce/0xbd0 [ 703.735486][T19135] ? __pfx_vfs_read+0x10/0x10 [ 703.740192][T19135] ? fdget+0x176/0x210 [ 703.744298][T19135] ? __sys_sendmsg+0x13c/0x1f0 [ 703.749093][T19135] ? __pfx___sys_sendmsg+0x10/0x10 [ 703.754251][T19135] ksys_read+0x12f/0x260 [ 703.758529][T19135] ? __pfx_ksys_read+0x10/0x10 [ 703.763334][T19135] do_syscall_64+0xcd/0x250 [ 703.767863][T19135] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 703.773790][T19135] RIP: 0033:0x7ff7e957c93c [ 703.778226][T19135] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 703.797862][T19135] RSP: 002b:00007ff7ea2c3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 703.806307][T19135] RAX: ffffffffffffffda RBX: 00007ff7e9735f80 RCX: 00007ff7e957c93c [ 703.814301][T19135] RDX: 000000000000000f RSI: 00007ff7ea2c30a0 RDI: 0000000000000004 [ 703.822295][T19135] RBP: 00007ff7ea2c3090 R08: 0000000000000000 R09: 0000000000000000 [ 703.830285][T19135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 703.838269][T19135] R13: 0000000000000000 R14: 00007ff7e9735f80 R15: 00007ffebc570a58 [ 703.846278][T19135] [ 704.063827][T11991] Bluetooth: hci2: command tx timeout [ 704.445323][T19142] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3260'. [ 705.489598][T19113] chnl_net:caif_netlink_parms(): no params data found [ 706.007538][T19113] bridge0: port 1(bridge_slave_0) entered blocking state [ 706.039754][T19113] bridge0: port 1(bridge_slave_0) entered disabled state [ 706.075735][T19113] bridge_slave_0: entered allmulticast mode [ 706.107276][T19113] bridge_slave_0: entered promiscuous mode [ 706.128680][T11991] Bluetooth: hci2: command tx timeout [ 706.184258][T19113] bridge0: port 2(bridge_slave_1) entered blocking state [ 706.192898][T19113] bridge0: port 2(bridge_slave_1) entered disabled state [ 706.202218][T19113] bridge_slave_1: entered allmulticast mode [ 706.210547][T19113] bridge_slave_1: entered promiscuous mode [ 706.320485][T19113] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 706.331822][T18924] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 706.474475][T18924] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 706.558682][T19113] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 706.641003][T18924] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 706.684198][T18924] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 706.710294][T19113] team0: Port device team_slave_0 added [ 706.740151][T19113] team0: Port device team_slave_1 added [ 706.818184][T19113] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 706.835692][T19113] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 706.904989][T19113] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 706.969489][T19113] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 706.976472][T19113] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 707.071218][T19113] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 707.585483][T19113] hsr_slave_0: entered promiscuous mode [ 707.604133][T19113] hsr_slave_1: entered promiscuous mode [ 707.626446][T19113] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 707.645920][T19113] Cannot create hsr debugfs directory [ 707.943470][T18924] 8021q: adding VLAN 0 to HW filter on device bond0 [ 708.005141][T18924] 8021q: adding VLAN 0 to HW filter on device team0 [ 708.101484][T19113] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 708.167544][ T1302] bridge0: port 1(bridge_slave_0) entered blocking state [ 708.174707][ T1302] bridge0: port 1(bridge_slave_0) entered forwarding state [ 708.209092][T11991] Bluetooth: hci2: command tx timeout [ 708.400629][ T1302] bridge0: port 2(bridge_slave_1) entered blocking state [ 708.407779][ T1302] bridge0: port 2(bridge_slave_1) entered forwarding state [ 708.486143][T19113] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 708.591757][T18924] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 708.608738][T18924] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 708.700598][T19113] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 708.841902][T19113] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 709.261201][T19113] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 709.278150][T19113] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 709.302645][T19113] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 709.338507][T19113] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 709.567395][T19113] 8021q: adding VLAN 0 to HW filter on device bond0 [ 709.624954][T19113] 8021q: adding VLAN 0 to HW filter on device team0 [ 709.716586][ T1302] bridge0: port 1(bridge_slave_0) entered blocking state [ 709.723752][ T1302] bridge0: port 1(bridge_slave_0) entered forwarding state [ 709.777389][ T1302] bridge0: port 2(bridge_slave_1) entered blocking state [ 709.784550][ T1302] bridge0: port 2(bridge_slave_1) entered forwarding state [ 709.857675][T18924] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 710.034147][T19113] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 710.064645][T19113] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 710.152407][T18924] veth0_vlan: entered promiscuous mode [ 710.202889][T18924] veth1_vlan: entered promiscuous mode [ 710.289922][T11991] Bluetooth: hci2: command tx timeout [ 710.378159][T18924] veth0_macvtap: entered promiscuous mode [ 710.470278][T18924] veth1_macvtap: entered promiscuous mode [ 710.550573][T18924] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 710.618421][T18924] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 710.628283][T18924] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 710.719396][T18924] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 710.758817][T18924] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 710.797879][T18924] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 710.831301][T18924] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 710.903328][T19113] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 710.956784][T18924] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 711.004843][T18924] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 711.034234][T18924] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 711.044859][T18924] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 711.065137][T18924] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 711.084173][T18924] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 711.104080][T18924] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 711.124782][T18924] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 711.144594][T18924] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 711.153500][T18924] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 711.162368][T18924] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 711.210771][T19213] FAULT_INJECTION: forcing a failure. [ 711.210771][T19213] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 711.243055][T19213] CPU: 0 UID: 0 PID: 19213 Comm: syz.1.3266 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 711.253518][T19213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 711.263599][T19213] Call Trace: [ 711.266895][T19213] [ 711.269844][T19213] dump_stack_lvl+0x16c/0x1f0 [ 711.274548][T19213] should_fail_ex+0x497/0x5b0 [ 711.279341][T19213] _copy_from_user+0x30/0xf0 [ 711.283963][T19213] do_ipv6_setsockopt+0x99f/0x4800 [ 711.289105][T19213] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 711.294674][T19213] ? hlock_class+0x4e/0x130 [ 711.299206][T19213] ? mark_lock+0xb5/0xc60 [ 711.303574][T19213] ? aa_label_sk_perm+0x19d/0x5a0 [ 711.308635][T19213] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 711.314037][T19213] ? __might_fault+0x13b/0x190 [ 711.318836][T19213] ? __pfx___lock_acquire+0x10/0x10 [ 711.324068][T19213] ? hlock_class+0x4e/0x130 [ 711.328596][T19213] ? __lock_acquire+0xbdd/0x3ce0 [ 711.333575][T19213] ? ipv6_setsockopt+0xcb/0x170 [ 711.338450][T19213] ipv6_setsockopt+0xcb/0x170 [ 711.343151][T19213] rawv6_setsockopt+0xdc/0x700 [ 711.347947][T19213] ? __pfx_rawv6_setsockopt+0x10/0x10 [ 711.353351][T19213] ? sock_common_setsockopt+0x2e/0xf0 [ 711.358735][T19213] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 711.364718][T19213] do_sock_setsockopt+0x222/0x480 [ 711.369759][T19213] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 711.375328][T19213] ? fdget+0x176/0x210 [ 711.379413][T19213] __sys_setsockopt+0x1a4/0x270 [ 711.384286][T19213] ? __pfx___sys_setsockopt+0x10/0x10 [ 711.389751][T19213] ? fput+0x30/0x390 [ 711.393657][T19213] ? ksys_write+0x1ad/0x260 [ 711.398162][T19213] ? __pfx_ksys_write+0x10/0x10 [ 711.403119][T19213] __x64_sys_setsockopt+0xbd/0x160 [ 711.408242][T19213] ? do_syscall_64+0x91/0x250 [ 711.412925][T19213] ? lockdep_hardirqs_on+0x7c/0x110 [ 711.418127][T19213] do_syscall_64+0xcd/0x250 [ 711.422639][T19213] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 711.428549][T19213] RIP: 0033:0x7fb9f7d7def9 [ 711.432971][T19213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 711.452669][T19213] RSP: 002b:00007fb9f8ae2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 711.461091][T19213] RAX: ffffffffffffffda RBX: 00007fb9f7f35f80 RCX: 00007fb9f7d7def9 [ 711.469065][T19213] RDX: 000000000000001b RSI: 0000000000000029 RDI: 0000000000000003 [ 711.477035][T19213] RBP: 00007fb9f8ae2090 R08: 0000000000000090 R09: 0000000000000000 [ 711.485008][T19213] R10: 0000000000000e33 R11: 0000000000000246 R12: 0000000000000001 [ 711.492984][T19213] R13: 0000000000000000 R14: 00007fb9f7f35f80 R15: 00007ffd96a1ef78 [ 711.500976][T19213] [ 711.670494][T19113] veth0_vlan: entered promiscuous mode [ 711.737192][T19113] veth1_vlan: entered promiscuous mode [ 711.769693][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 711.777650][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 711.837856][T19113] veth0_macvtap: entered promiscuous mode [ 711.883725][T19113] veth1_macvtap: entered promiscuous mode [ 711.926335][ T926] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 711.933243][T19113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 711.944771][ T926] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 711.961753][T19113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 711.981497][T19113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 711.993198][T19113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 712.003687][T19113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 712.017158][T19113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 712.027731][T19113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 712.044518][T19113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 712.065498][T19113] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 712.115084][T19113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 712.166135][T19113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 712.182334][T19113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 712.197925][T19233] FAULT_INJECTION: forcing a failure. [ 712.197925][T19233] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 712.223257][T19113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 712.238509][T19233] CPU: 1 UID: 0 PID: 19233 Comm: syz.2.3199 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 712.248972][T19233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 712.259049][T19233] Call Trace: [ 712.262345][T19233] [ 712.265290][T19233] dump_stack_lvl+0x16c/0x1f0 [ 712.269996][T19233] should_fail_ex+0x497/0x5b0 [ 712.274705][T19233] _copy_to_user+0x30/0xc0 [ 712.278448][T19113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 712.279138][T19233] simple_read_from_buffer+0xd0/0x160 [ 712.290299][T19113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 712.294901][T19233] proc_fail_nth_read+0x198/0x270 [ 712.294934][T19233] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 712.315317][T19233] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 712.320896][T19233] vfs_read+0x1ce/0xbd0 [ 712.325092][T19233] ? __fget_files+0x23a/0x3f0 [ 712.325572][T19113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 712.329782][T19233] ? fdget_pos+0x24c/0x360 [ 712.329817][T19233] ? __pfx_lock_release+0x10/0x10 [ 712.329847][T19233] ? fd_install+0x223/0x750 [ 712.354196][T19233] ? __pfx_vfs_read+0x10/0x10 [ 712.358907][T19233] ? __pfx___mutex_lock+0x10/0x10 [ 712.364150][T19233] ? __fget_files+0x244/0x3f0 [ 712.366643][T19113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 712.368851][T19233] ksys_read+0x12f/0x260 [ 712.368889][T19233] ? __pfx_ksys_read+0x10/0x10 [ 712.368929][T19233] do_syscall_64+0xcd/0x250 [ 712.392234][T19233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 712.398165][T19233] RIP: 0033:0x7f1f7c37c93c [ 712.402123][T19113] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 712.402587][T19233] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 712.429394][T19233] RSP: 002b:00007f1f7d0a9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 712.437829][T19233] RAX: ffffffffffffffda RBX: 00007f1f7c535f80 RCX: 00007f1f7c37c93c [ 712.445893][T19233] RDX: 000000000000000f RSI: 00007f1f7d0a90a0 RDI: 0000000000000003 [ 712.453869][T19233] RBP: 00007f1f7d0a9090 R08: 0000000000000000 R09: 0000000000000000 [ 712.461842][T19233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 712.469814][T19233] R13: 0000000000000000 R14: 00007f1f7c535f80 R15: 00007ffe4f0784f8 [ 712.477806][T19233] [ 712.501491][T19113] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 712.539575][T19113] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 712.572925][T19113] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 712.587381][T19113] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 712.768838][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 712.776704][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 712.869552][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 712.885713][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 713.598891][T19261] coredump: 142(syz.1.3277): written to core: VMAs: 1, size 4096; core: 2659 bytes, pos 8192 [ 713.975625][T19267] FAULT_INJECTION: forcing a failure. [ 713.975625][T19267] name failslab, interval 1, probability 0, space 0, times 0 [ 714.019003][T19267] CPU: 0 UID: 0 PID: 19267 Comm: syz.0.3279 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 714.029474][T19267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 714.039550][T19267] Call Trace: [ 714.042846][T19267] [ 714.045795][T19267] dump_stack_lvl+0x16c/0x1f0 [ 714.050505][T19267] should_fail_ex+0x497/0x5b0 [ 714.055210][T19267] ? fs_reclaim_acquire+0xae/0x160 [ 714.060346][T19267] should_failslab+0xc2/0x120 [ 714.065055][T19267] __kmalloc_cache_noprof+0x6b/0x310 [ 714.070366][T19267] ? __pfx_timestamp_truncate+0x10/0x10 [ 714.075945][T19267] ? hugetlb_vma_lock_alloc+0xc2/0x1f0 [ 714.081440][T19267] ? lockdep_hardirqs_on+0x7c/0x110 [ 714.086664][T19267] hugetlb_vma_lock_alloc+0xc2/0x1f0 [ 714.091974][T19267] hugetlb_reserve_pages+0x14a/0xd90 [ 714.097296][T19267] ? __pfx_atime_needs_update+0x10/0x10 [ 714.102873][T19267] ? __pfx_hugetlb_reserve_pages+0x10/0x10 [ 714.108719][T19267] ? down_write+0x14e/0x200 [ 714.113260][T19267] hugetlbfs_file_mmap+0x5da/0xba0 [ 714.118413][T19267] mmap_region+0x1283/0x2a50 [ 714.123039][T19267] ? __pfx_mmap_region+0x10/0x10 [ 714.128056][T19267] ? __pfx_lock_acquire+0x10/0x10 [ 714.133124][T19267] ? bpf_lsm_mmap_addr+0x9/0x10 [ 714.138007][T19267] ? security_mmap_addr+0x6c/0x1e0 [ 714.143153][T19267] ? __get_unmapped_area+0x26b/0x3a0 [ 714.148468][T19267] do_mmap+0xc00/0xfc0 [ 714.152570][T19267] vm_mmap_pgoff+0x1ba/0x360 [ 714.157194][T19267] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 714.162334][T19267] ? __fget_files+0x244/0x3f0 [ 714.167054][T19267] ksys_mmap_pgoff+0x32c/0x5c0 [ 714.171856][T19267] __x64_sys_mmap+0x125/0x190 [ 714.176558][T19267] do_syscall_64+0xcd/0x250 [ 714.181091][T19267] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 714.187021][T19267] RIP: 0033:0x7f43edd7def9 [ 714.191460][T19267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 714.211089][T19267] RSP: 002b:00007f43eebcf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 714.219533][T19267] RAX: ffffffffffffffda RBX: 00007f43edf35f80 RCX: 00007f43edd7def9 [ 714.227525][T19267] RDX: 0000001000000016 RSI: 0000000000000008 RDI: 0000000008000000 [ 714.235516][T19267] RBP: 00007f43eebcf090 R08: 0000000000000003 R09: 0000000180000000 [ 714.243509][T19267] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 714.251500][T19267] R13: 0000000000000000 R14: 00007f43edf35f80 R15: 00007ffce167e6e8 [ 714.259512][T19267] [ 714.298774][T19267] HugeTLB: unable to allocate vma specific lock [ 714.941534][ T61] bridge_slave_1: left allmulticast mode [ 714.966804][ T61] bridge_slave_1: left promiscuous mode [ 714.983713][ T61] bridge0: port 2(bridge_slave_1) entered disabled state [ 715.072178][ T61] bridge_slave_0: left allmulticast mode [ 715.087119][ T61] bridge_slave_0: left promiscuous mode [ 715.108586][ T61] bridge0: port 1(bridge_slave_0) entered disabled state [ 716.819718][ T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 716.884781][ T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 716.933522][ T61] bond0 (unregistering): Released all slaves [ 718.451911][ T61] hsr_slave_0: left promiscuous mode [ 718.539872][ T61] hsr_slave_1: left promiscuous mode [ 718.700995][ T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 718.735851][ T61] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 718.849447][ T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 718.856888][ T61] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 719.019009][T19330] FAULT_INJECTION: forcing a failure. [ 719.019009][T19330] name failslab, interval 1, probability 0, space 0, times 0 [ 719.128960][ T61] veth1_macvtap: left promiscuous mode [ 719.134526][ T61] veth0_macvtap: left promiscuous mode [ 719.165169][T19330] CPU: 1 UID: 0 PID: 19330 Comm: syz.0.3297 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 719.175630][T19330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 719.185729][T19330] Call Trace: [ 719.189027][T19330] [ 719.191972][T19330] dump_stack_lvl+0x16c/0x1f0 [ 719.196682][T19330] should_fail_ex+0x497/0x5b0 [ 719.201385][T19330] ? fs_reclaim_acquire+0xae/0x160 [ 719.206520][T19330] should_failslab+0xc2/0x120 [ 719.211229][T19330] __kmalloc_noprof+0xcb/0x410 [ 719.216031][T19330] io_alloc_hash_table+0x2d/0xc0 [ 719.220994][T19330] io_uring_setup+0x2f0/0x3730 [ 719.225790][T19330] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 719.231797][T19330] ? __pfx_io_uring_setup+0x10/0x10 [ 719.237021][T19330] ? __fget_files+0x244/0x3f0 [ 719.241734][T19330] ? ksys_write+0x1ad/0x260 [ 719.246254][T19330] ? __pfx_ksys_write+0x10/0x10 [ 719.251155][T19330] __x64_sys_io_uring_setup+0x98/0x140 [ 719.256657][T19330] do_syscall_64+0xcd/0x250 [ 719.261190][T19330] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 719.267119][T19330] RIP: 0033:0x7f43edd7def9 [ 719.271552][T19330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 719.291185][T19330] RSP: 002b:00007f43eebcf038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 719.299621][T19330] RAX: ffffffffffffffda RBX: 00007f43edf35f80 RCX: 00007f43edd7def9 [ 719.307633][T19330] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000006 [ 719.315618][T19330] RBP: 00007f43eebcf090 R08: 0000000000000000 R09: 0000000000000000 [ 719.323702][T19330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 719.331744][T19330] R13: 0000000000000000 R14: 00007f43edf35f80 R15: 00007ffce167e6e8 [ 719.339748][T19330] [ 719.358568][ T61] veth1_vlan: left promiscuous mode [ 719.363931][ T61] veth0_vlan: left promiscuous mode [ 719.528877][ T4626] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 719.549498][ T4626] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 719.557992][ T4626] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 719.566811][ T4626] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 719.574885][ T4626] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 719.582475][ T4626] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 720.215296][T19338] delete_channel: no stack [ 720.896943][T19348] coredump: 43(syz.0.3302): coredump has not been created, error -13 [ 721.227765][T19282] coredump: 17(syz.0.3283): written to core: VMAs: 35, size 97349632; core: 60019710 bytes, pos 97357824 [ 721.648862][ T4626] Bluetooth: hci0: command tx timeout [ 721.899654][T19312] coredump: 164(syz.1.3291): written to core: VMAs: 37, size 97611776; core: 60155034 bytes, pos 97619968 [ 722.203662][T19366] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3307'. [ 722.425308][T19370] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3309'. [ 722.519729][ T61] team0 (unregistering): Port device team_slave_1 removed [ 722.594305][ T61] team0 (unregistering): Port device team_slave_0 removed [ 723.471140][T19331] chnl_net:caif_netlink_parms(): no params data found [ 723.731305][T11991] Bluetooth: hci0: command tx timeout [ 723.742911][T19408] coredump: 73(syz.0.3320): written to core: VMAs: 1, size 4096; core: 10869 bytes, pos 16384 [ 723.753149][T19331] bridge0: port 1(bridge_slave_0) entered blocking state [ 723.762305][T19331] bridge0: port 1(bridge_slave_0) entered disabled state [ 723.770626][T19331] bridge_slave_0: entered allmulticast mode [ 723.777711][T19331] bridge_slave_0: entered promiscuous mode [ 723.786319][T19331] bridge0: port 2(bridge_slave_1) entered blocking state [ 723.794481][T19331] bridge0: port 2(bridge_slave_1) entered disabled state [ 723.802220][T19331] bridge_slave_1: entered allmulticast mode [ 723.810797][T19331] bridge_slave_1: entered promiscuous mode [ 723.907888][T19331] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 723.993299][ T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 724.042928][T19331] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 724.271452][ T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 724.307472][T19331] team0: Port device team_slave_0 added [ 724.326897][T19331] team0: Port device team_slave_1 added [ 724.367697][ T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 724.465356][T19430] coredump: 85(syz.0.3325): written to core: VMAs: 8, size 2363392; core: 2116633 bytes, pos 2367488 [ 724.524141][ T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 724.563183][T19331] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 724.572484][T19434] coredump: 107(syz.3.3326): coredump has not been created, error -13 [ 724.578433][T19331] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 724.630253][T19331] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 724.654070][T19331] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 724.669581][T19331] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 724.736234][T19331] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 724.963620][T19331] hsr_slave_0: entered promiscuous mode [ 724.980629][T19331] hsr_slave_1: entered promiscuous mode [ 724.997464][T19331] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 725.035925][T19331] Cannot create hsr debugfs directory [ 725.367470][ T12] bridge_slave_1: left allmulticast mode [ 725.375190][ T12] bridge_slave_1: left promiscuous mode [ 725.404460][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 725.442691][ T12] bridge_slave_0: left allmulticast mode [ 725.448607][ T12] bridge_slave_0: left promiscuous mode [ 725.474623][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 725.514602][T19444] FAULT_INJECTION: forcing a failure. [ 725.514602][T19444] name failslab, interval 1, probability 0, space 0, times 0 [ 725.565533][T19444] CPU: 0 UID: 0 PID: 19444 Comm: syz.3.3329 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 725.575994][T19444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 725.586070][T19444] Call Trace: [ 725.589375][T19444] [ 725.592323][T19444] dump_stack_lvl+0x16c/0x1f0 [ 725.597039][T19444] should_fail_ex+0x497/0x5b0 [ 725.601745][T19444] ? fs_reclaim_acquire+0xae/0x160 [ 725.606887][T19444] should_failslab+0xc2/0x120 [ 725.611595][T19444] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 725.616997][T19444] ? __pmd_alloc+0xc3/0x810 [ 725.621535][T19444] __pmd_alloc+0xc3/0x810 [ 725.625894][T19444] move_page_tables+0x21d9/0x3710 [ 725.630968][T19444] ? __pfx_move_page_tables+0x10/0x10 [ 725.636370][T19444] ? move_vma+0x5c7/0x1c50 [ 725.640833][T19444] ? up_write+0x1b2/0x520 [ 725.645198][T19444] move_vma+0x67b/0x1c50 [ 725.649479][T19444] ? __pfx_move_vma+0x10/0x10 [ 725.654191][T19444] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 725.660122][T19444] ? bpf_lsm_mmap_addr+0x9/0x10 [ 725.665003][T19444] ? security_mmap_addr+0x6c/0x1e0 [ 725.670157][T19444] __do_sys_mremap+0xf8c/0x15b0 [ 725.675050][T19444] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 725.681072][T19444] ? __pfx___do_sys_mremap+0x10/0x10 [ 725.686399][T19444] ? __fget_files+0x244/0x3f0 [ 725.691116][T19444] ? fput+0x30/0x390 [ 725.695047][T19444] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 725.701248][T19444] ? syscall_user_dispatch+0x77/0x140 [ 725.706675][T19444] do_syscall_64+0xcd/0x250 [ 725.711213][T19444] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 725.717156][T19444] RIP: 0033:0x7ff7e957def9 [ 725.721595][T19444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 725.741240][T19444] RSP: 002b:00007ff7ea2c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 725.749699][T19444] RAX: ffffffffffffffda RBX: 00007ff7e9735f80 RCX: 00007ff7e957def9 [ 725.757702][T19444] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000000000000000 [ 725.765703][T19444] RBP: 00007ff7ea2c3090 R08: 0000000100000000 R09: 0000000000000000 [ 725.773706][T19444] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 725.781707][T19444] R13: 0000000000000000 R14: 00007ff7e9735f80 R15: 00007ffebc570a58 [ 725.789722][T19444] [ 725.820746][ T4626] Bluetooth: hci0: command tx timeout [ 725.939329][T19421] coredump: 100(syz.3.3323): written to core: VMAs: 34, size 97345536; core: 60007366 bytes, pos 97353728 [ 726.596778][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 726.647482][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 726.675888][ T12] bond0 (unregistering): Released all slaves [ 727.199555][T19471] FAULT_INJECTION: forcing a failure. [ 727.199555][T19471] name failslab, interval 1, probability 0, space 0, times 0 [ 727.249226][T19471] CPU: 0 UID: 0 PID: 19471 Comm: syz.3.3335 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 727.259696][T19471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 727.269781][T19471] Call Trace: [ 727.273086][T19471] [ 727.276040][T19471] dump_stack_lvl+0x16c/0x1f0 [ 727.280752][T19471] should_fail_ex+0x497/0x5b0 [ 727.285561][T19471] ? fs_reclaim_acquire+0xae/0x160 [ 727.290708][T19471] should_failslab+0xc2/0x120 [ 727.295508][T19471] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 727.300918][T19471] ? ptlock_alloc+0x1f/0x70 [ 727.305473][T19471] ptlock_alloc+0x1f/0x70 [ 727.309836][T19471] pte_alloc_one+0x74/0x360 [ 727.314373][T19471] do_pte_missing+0x1ae0/0x3e50 [ 727.319261][T19471] ? do_raw_spin_unlock+0x172/0x230 [ 727.324489][T19471] ? __pmd_alloc+0x359/0x810 [ 727.329115][T19471] __handle_mm_fault+0x100a/0x2a10 [ 727.334269][T19471] ? __pfx_mt_find+0x10/0x10 [ 727.338906][T19471] ? __pfx_lock_acquire+0x10/0x10 [ 727.343977][T19471] ? __pfx___handle_mm_fault+0x10/0x10 [ 727.349486][T19471] ? find_vma+0xc0/0x140 [ 727.353758][T19471] ? __pfx_find_vma+0x10/0x10 [ 727.358464][T19471] handle_mm_fault+0x3fa/0xaa0 [ 727.363267][T19471] do_user_addr_fault+0x7a3/0x13f0 [ 727.368419][T19471] exc_page_fault+0x5c/0xc0 [ 727.372954][T19471] asm_exc_page_fault+0x26/0x30 [ 727.377824][T19471] RIP: 0010:rep_movs_alternative+0x13/0x70 [ 727.383667][T19471] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f [ 727.403300][T19471] RSP: 0018:ffffc9000378fdd8 EFLAGS: 00050202 [ 727.409398][T19471] RAX: 0000000000000001 RBX: 0000000000000008 RCX: 0000000000000004 [ 727.417382][T19471] RDX: fffff520006f1fc8 RSI: 0000000000000008 RDI: ffffc9000378fe40 [ 727.425358][T19471] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff520006f1fc8 [ 727.433330][T19471] R10: 0000000000000003 R11: 0000000000000000 R12: 000000000000000c [ 727.441299][T19471] R13: ffffc9000378fe40 R14: 0000000000000000 R15: 0000000000000000 [ 727.449287][T19471] _copy_from_user+0xc6/0xf0 [ 727.453908][T19471] do_sched_setscheduler+0x9f/0x2c0 [ 727.459126][T19471] ? __pfx_do_sched_setscheduler+0x10/0x10 [ 727.464946][T19471] ? native_tss_update_io_bitmap+0x2ec/0x610 [ 727.470943][T19471] ? __pfx_native_tss_update_io_bitmap+0x10/0x10 [ 727.477285][T19471] ? ksys_write+0x1ad/0x260 [ 727.481792][T19471] ? __pfx_ksys_write+0x10/0x10 [ 727.486679][T19471] __x64_sys_sched_setscheduler+0x75/0xa0 [ 727.492427][T19471] do_syscall_64+0xcd/0x250 [ 727.496966][T19471] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 727.502881][T19471] RIP: 0033:0x7ff7e957def9 [ 727.507300][T19471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 727.526926][T19471] RSP: 002b:00007ff7ea2c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000090 [ 727.535349][T19471] RAX: ffffffffffffffda RBX: 00007ff7e9735f80 RCX: 00007ff7e957def9 [ 727.543325][T19471] RDX: 0000000000000008 RSI: 0000000000000400 RDI: 0000000000000007 [ 727.551298][T19471] RBP: 00007ff7ea2c3090 R08: 0000000000000000 R09: 0000000000000000 [ 727.559282][T19471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 727.567272][T19471] R13: 0000000000000000 R14: 00007ff7e9735f80 R15: 00007ffebc570a58 [ 727.575276][T19471] [ 727.889323][ T4626] Bluetooth: hci0: command tx timeout [ 728.469057][ T12] hsr_slave_0: left promiscuous mode [ 728.528675][ T12] hsr_slave_1: left promiscuous mode [ 728.578598][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 728.610709][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 728.665573][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 728.689059][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 728.777644][ T12] veth1_macvtap: left promiscuous mode [ 728.806977][ T12] veth0_macvtap: left promiscuous mode [ 728.824857][ T12] veth1_vlan: left promiscuous mode [ 728.852629][ T12] veth0_vlan: left promiscuous mode [ 731.058308][T19484] coredump: 122(syz.3.3336): interrupted: fatal signal pending [ 731.078623][T19484] coredump: 122(syz.3.3336): written to core: VMAs: 38, size 99704832; core: 3406115 bytes, pos 4042752 [ 731.864716][ T12] team0 (unregistering): Port device team_slave_1 removed [ 732.158699][ T12] team0 (unregistering): Port device team_slave_0 removed [ 733.765001][T11991] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 733.774060][T11991] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 733.783265][T11991] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 733.805755][T11991] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 733.815147][T11991] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 733.826693][T11991] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 733.934239][T19452] coredump: 92(syz.0.3330): written to core: VMAs: 37, size 99647488; core: 62133407 bytes, pos 99655680 [ 734.012132][T19454] coredump: 93(syz.0.3330): written to core: VMAs: 37, size 99647488; core: 62133407 bytes, pos 99655680 [ 734.311586][T19547] coredump: 142(syz.3.3350): written to core: VMAs: 1, size 4096; core: 2659 bytes, pos 8192 [ 734.504699][T19331] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 734.611118][T19331] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 734.703007][T19331] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 734.846029][T19331] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 735.200053][ T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 735.287039][T19537] chnl_net:caif_netlink_parms(): no params data found [ 735.470233][ T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 735.682327][ T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 735.848024][ T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 735.899174][T11991] Bluetooth: hci3: command tx timeout [ 735.933720][T19537] bridge0: port 1(bridge_slave_0) entered blocking state [ 735.949655][T19537] bridge0: port 1(bridge_slave_0) entered disabled state [ 735.958120][T19537] bridge_slave_0: entered allmulticast mode [ 735.965936][T19537] bridge_slave_0: entered promiscuous mode [ 735.981454][T19537] bridge0: port 2(bridge_slave_1) entered blocking state [ 735.997771][T19537] bridge0: port 2(bridge_slave_1) entered disabled state [ 736.005419][T19537] bridge_slave_1: entered allmulticast mode [ 736.017640][T19537] bridge_slave_1: entered promiscuous mode [ 736.031674][T19331] 8021q: adding VLAN 0 to HW filter on device bond0 [ 736.103963][T19537] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 736.129300][T19537] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 736.266015][T19537] team0: Port device team_slave_0 added [ 736.297539][T19331] 8021q: adding VLAN 0 to HW filter on device team0 [ 736.365282][ T12] bridge_slave_1: left allmulticast mode [ 736.379227][ T12] bridge_slave_1: left promiscuous mode [ 736.388945][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 736.433771][ T12] bridge_slave_0: left allmulticast mode [ 736.446357][ T12] bridge_slave_0: left promiscuous mode [ 736.458890][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 737.508943][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 737.546990][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 737.574944][ T12] bond0 (unregistering): Released all slaves [ 737.605988][T19537] team0: Port device team_slave_1 added [ 737.638202][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 737.645408][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 737.874332][T19537] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 737.887284][T19537] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 737.948410][T19537] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 737.970356][T19537] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 737.976133][T11991] Bluetooth: hci3: command tx timeout [ 737.977311][T19537] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 738.009140][T19537] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 738.042836][ T926] bridge0: port 2(bridge_slave_1) entered blocking state [ 738.050034][ T926] bridge0: port 2(bridge_slave_1) entered forwarding state [ 738.421998][T19537] hsr_slave_0: entered promiscuous mode [ 738.484310][T19537] hsr_slave_1: entered promiscuous mode [ 738.514239][T19537] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 738.521970][T19537] Cannot create hsr debugfs directory [ 738.548543][ T12] hsr_slave_0: left promiscuous mode [ 738.608540][ T12] hsr_slave_1: left promiscuous mode [ 738.654824][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 738.668579][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 738.721245][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 738.754621][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 738.837081][ T12] veth1_macvtap: left promiscuous mode [ 738.848865][ T12] veth0_macvtap: left promiscuous mode [ 738.858524][ T12] veth1_vlan: left promiscuous mode [ 738.863848][ T12] veth0_vlan: left promiscuous mode [ 739.294977][T19626] coredump: 165(syz.3.3360): written to core: VMAs: 33, size 80568320; core: 60003214 bytes, pos 80576512 [ 740.048519][T11991] Bluetooth: hci3: command tx timeout [ 740.321371][ T12] team0 (unregistering): Port device team_slave_1 removed [ 740.431908][ T12] team0 (unregistering): Port device team_slave_0 removed [ 742.131486][T11991] Bluetooth: hci3: command tx timeout [ 742.190055][T19674] coredump: 180(syz.3.3365): written to core: VMAs: 35, size 80703488; core: 60138582 bytes, pos 80711680 [ 742.190609][T19677] coredump: 182(syz.3.3366): interrupted: fatal signal pending [ 742.258573][T19677] coredump: 182(syz.3.3366): written to core: VMAs: 35, size 97611776; core: 56404736 bytes, pos 93749248 [ 742.409940][T19331] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 742.565958][T19331] veth0_vlan: entered promiscuous mode [ 742.587928][T19331] veth1_vlan: entered promiscuous mode [ 742.610619][T19331] veth0_macvtap: entered promiscuous mode [ 742.620000][T19331] veth1_macvtap: entered promiscuous mode [ 742.635340][T19331] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 742.645895][T19331] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 742.656230][T19331] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 742.666739][T19331] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 742.678015][T19331] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 743.000326][T19331] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 743.011828][T19331] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 743.038409][T19331] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 743.059666][T19331] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 743.076820][T19331] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 743.104876][T19331] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 743.142017][T19331] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 743.162265][T19331] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 743.188414][T19331] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 743.512642][ T2517] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 743.513794][T19537] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 743.527478][ T2517] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 743.534948][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 743.534972][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 743.555177][T19537] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 743.588714][T19537] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 743.631978][T19537] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 743.816923][T19537] 8021q: adding VLAN 0 to HW filter on device bond0 [ 743.886626][T19537] 8021q: adding VLAN 0 to HW filter on device team0 [ 743.922321][ T1302] bridge0: port 1(bridge_slave_0) entered blocking state [ 743.929517][ T1302] bridge0: port 1(bridge_slave_0) entered forwarding state [ 743.947313][ T1302] bridge0: port 2(bridge_slave_1) entered blocking state [ 743.954482][ T1302] bridge0: port 2(bridge_slave_1) entered forwarding state [ 744.023666][T19537] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 744.034657][T19537] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 744.395291][T19537] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 744.614788][T19537] veth0_vlan: entered promiscuous mode [ 744.681953][T19537] veth1_vlan: entered promiscuous mode [ 744.810829][T19537] veth0_macvtap: entered promiscuous mode [ 744.860082][T19537] veth1_macvtap: entered promiscuous mode [ 744.963614][T19537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 745.002577][T19537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 745.063862][T19537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 745.089096][T19537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 745.133434][T19537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 745.178413][T19537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 745.229979][T19537] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 745.315082][T19537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 745.375120][T19537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 745.401544][T19537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 745.423832][T19537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 745.472227][T19537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 745.503476][T19537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 745.529826][T19537] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 745.588036][T19537] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 745.607307][T19537] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 745.630068][T19537] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 745.657802][T19537] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 745.764423][T19765] FAULT_INJECTION: forcing a failure. [ 745.764423][T19765] name failslab, interval 1, probability 0, space 0, times 0 [ 745.838792][T19765] CPU: 0 UID: 0 PID: 19765 Comm: syz.3.3378 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 745.849353][T19765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 745.859522][T19765] Call Trace: [ 745.862819][T19765] [ 745.865767][T19765] dump_stack_lvl+0x16c/0x1f0 [ 745.870478][T19765] should_fail_ex+0x497/0x5b0 [ 745.875187][T19765] ? fs_reclaim_acquire+0xae/0x160 [ 745.880332][T19765] should_failslab+0xc2/0x120 [ 745.885036][T19765] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 745.890465][T19765] ? vm_area_alloc+0xe0/0x1c0 [ 745.895182][T19765] vm_area_alloc+0xe0/0x1c0 [ 745.899718][T19765] mmap_region+0xf18/0x2a50 [ 745.904265][T19765] ? __pfx_mmap_region+0x10/0x10 [ 745.909234][T19765] ? hlock_class+0x4e/0x130 [ 745.913768][T19765] ? __lock_acquire+0xbdd/0x3ce0 [ 745.918780][T19765] ? mm_get_unmapped_area+0x95/0xe0 [ 745.924017][T19765] ? bpf_lsm_mmap_addr+0x9/0x10 [ 745.928897][T19765] ? security_mmap_addr+0x6c/0x1e0 [ 745.934053][T19765] ? __get_unmapped_area+0x26b/0x3a0 [ 745.939472][T19765] do_mmap+0xc00/0xfc0 [ 745.943584][T19765] vm_mmap_pgoff+0x1ba/0x360 [ 745.948217][T19765] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 745.953367][T19765] ? __fget_files+0x244/0x3f0 [ 745.958095][T19765] ksys_mmap_pgoff+0x7d/0x5c0 [ 745.962808][T19765] ? __pfx_ksys_write+0x10/0x10 [ 745.967693][T19765] __x64_sys_mmap+0x125/0x190 [ 745.972382][T19765] do_syscall_64+0xcd/0x250 [ 745.976892][T19765] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 745.983234][T19765] RIP: 0033:0x7ff7e957def9 [ 745.987647][T19765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 746.007263][T19765] RSP: 002b:00007ff7e8fff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 746.015684][T19765] RAX: ffffffffffffffda RBX: 00007ff7e9736130 RCX: 00007ff7e957def9 [ 746.023661][T19765] RDX: 00000000000000df RSI: 0000000004020009 RDI: 0000000000000000 [ 746.031637][T19765] RBP: 00007ff7e8fff090 R08: 0000000000000401 R09: 0000000000008000 [ 746.039642][T19765] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001 [ 746.047624][T19765] R13: 0000000000000000 R14: 00007ff7e9736130 R15: 00007ffebc570a58 [ 746.055615][T19765] [ 746.162742][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 746.175758][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 746.227757][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 746.242442][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 746.589177][ T4626] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 746.598775][ T4626] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 746.607379][ T4626] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 746.615670][ T4626] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 746.623549][ T4626] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 746.633766][ T4626] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 746.790233][ T1264] ieee802154 phy0 wpan0: encryption failed: -22 [ 746.796642][ T1264] ieee802154 phy1 wpan1: encryption failed: -22 [ 747.295470][T19772] chnl_net:caif_netlink_parms(): no params data found [ 748.107165][T19746] coredump: 15(syz.2.3376): interrupted: fatal signal pending [ 748.157429][T19746] coredump: 15(syz.2.3376): written to core: VMAs: 33, size 93413376; core: 34788238 bytes, pos 72204288 [ 748.332359][T19772] bridge0: port 1(bridge_slave_0) entered blocking state [ 748.364327][T19772] bridge0: port 1(bridge_slave_0) entered disabled state [ 748.400611][T19772] bridge_slave_0: entered allmulticast mode [ 748.449899][T19772] bridge_slave_0: entered promiscuous mode [ 748.541788][T19772] bridge0: port 2(bridge_slave_1) entered blocking state [ 748.556083][T19772] bridge0: port 2(bridge_slave_1) entered disabled state [ 748.589543][T19772] bridge_slave_1: entered allmulticast mode [ 748.596935][T19772] bridge_slave_1: entered promiscuous mode [ 748.773687][T19772] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 748.811081][T19772] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 748.858630][ T4626] Bluetooth: hci4: command tx timeout [ 748.949953][T19772] team0: Port device team_slave_0 added [ 748.958037][T19772] team0: Port device team_slave_1 added [ 749.307436][ T11] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 749.404659][T19772] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 749.438496][T19772] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 749.486254][T19772] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 749.638564][T19772] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 749.654934][T19772] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 749.711361][T19772] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 749.781710][ T11] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 749.959195][ T29] audit: type=1326 audit(1727199480.369:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19817 comm="syz.1.3391" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efd51b7def9 code=0x0 [ 750.111922][T11991] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 750.121354][T11991] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 750.132241][ T11] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 750.144827][T11991] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 750.153910][T11991] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 750.162581][T11991] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 750.170269][T11991] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 750.208192][T19772] hsr_slave_0: entered promiscuous mode [ 750.244922][T19772] hsr_slave_1: entered promiscuous mode [ 750.323816][ T11] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 750.801618][ T11] bridge_slave_1: left allmulticast mode [ 750.807403][ T11] bridge_slave_1: left promiscuous mode [ 750.833082][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 750.926935][ T11] bridge_slave_0: left allmulticast mode [ 750.933621][ T11] bridge_slave_0: left promiscuous mode [ 750.938972][ T4626] Bluetooth: hci4: command tx timeout [ 750.956279][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 752.218554][ T4626] Bluetooth: hci0: command tx timeout [ 752.408886][T19852] FAULT_INJECTION: forcing a failure. [ 752.408886][T19852] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 752.450487][T19852] CPU: 1 UID: 0 PID: 19852 Comm: syz.1.3397 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 752.460973][T19852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 752.471056][T19852] Call Trace: [ 752.474344][T19852] [ 752.477279][T19852] dump_stack_lvl+0x16c/0x1f0 [ 752.481968][T19852] should_fail_ex+0x497/0x5b0 [ 752.486657][T19852] _copy_to_user+0x30/0xc0 [ 752.491086][T19852] simple_read_from_buffer+0xd0/0x160 [ 752.496468][T19852] proc_fail_nth_read+0x198/0x270 [ 752.501510][T19852] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 752.507068][T19852] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 752.512642][T19852] vfs_read+0x1ce/0xbd0 [ 752.516828][T19852] ? __fget_files+0x23a/0x3f0 [ 752.521529][T19852] ? fdget_pos+0x24c/0x360 [ 752.525959][T19852] ? __pfx_lock_release+0x10/0x10 [ 752.530997][T19852] ? aa_get_newest_label+0x376/0x680 [ 752.536290][T19852] ? __pfx_vfs_read+0x10/0x10 [ 752.540980][T19852] ? __pfx___mutex_lock+0x10/0x10 [ 752.546021][T19852] ? __fget_files+0x244/0x3f0 [ 752.550717][T19852] ksys_read+0x12f/0x260 [ 752.554973][T19852] ? __pfx_ksys_read+0x10/0x10 [ 752.559756][T19852] do_syscall_64+0xcd/0x250 [ 752.564273][T19852] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 752.570188][T19852] RIP: 0033:0x7efd51b7c93c [ 752.574608][T19852] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 752.594221][T19852] RSP: 002b:00007efd529f2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 752.602672][T19852] RAX: ffffffffffffffda RBX: 00007efd51d35f80 RCX: 00007efd51b7c93c [ 752.610647][T19852] RDX: 000000000000000f RSI: 00007efd529f20a0 RDI: 0000000000000003 [ 752.618622][T19852] RBP: 00007efd529f2090 R08: 0000000000000000 R09: 0000000000000000 [ 752.626594][T19852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 752.634567][T19852] R13: 0000000000000000 R14: 00007efd51d35f80 R15: 00007ffd6e6f5818 [ 752.642574][T19852] [ 753.013831][ T4626] Bluetooth: hci4: command tx timeout [ 753.085771][T19776] coredump: 205(syz.3.3381): written to core: VMAs: 35, size 80699392; core: 60011518 bytes, pos 80707584 [ 753.175747][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 753.309764][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 753.390700][ T11] bond0 (unregistering): Released all slaves [ 753.391144][T19771] coredump: 203(syz.3.3381): written to core: VMAs: 33, size 80568320; core: 59929486 bytes, pos 80576512 [ 754.288840][ T4626] Bluetooth: hci0: command tx timeout [ 754.345715][T19870] coredump: 55(syz.1.3402): coredump has not been created, error -13 [ 754.367225][T19820] chnl_net:caif_netlink_parms(): no params data found [ 754.440181][T19780] coredump: 206(syz.3.3381): written to core: VMAs: 36, size 80965632; core: 60277814 bytes, pos 80973824 [ 754.730593][T19797] coredump: 211(syz.3.3382): written to core: VMAs: 37, size 97607680; core: 60040302 bytes, pos 97615872 [ 755.089983][ T4626] Bluetooth: hci4: command tx timeout [ 755.475311][T19855] coredump: 43(syz.1.3398): written to core: VMAs: 34, size 97345536; core: 60015558 bytes, pos 97353728 [ 755.605059][T19820] bridge0: port 1(bridge_slave_0) entered blocking state [ 755.624917][T19820] bridge0: port 1(bridge_slave_0) entered disabled state [ 755.649215][T19820] bridge_slave_0: entered allmulticast mode [ 755.656301][T19820] bridge_slave_0: entered promiscuous mode [ 755.681593][T19820] bridge0: port 2(bridge_slave_1) entered blocking state [ 755.698550][T19820] bridge0: port 2(bridge_slave_1) entered disabled state [ 755.705845][T19820] bridge_slave_1: entered allmulticast mode [ 755.719662][T19820] bridge_slave_1: entered promiscuous mode [ 755.853843][ T11] hsr_slave_0: left promiscuous mode [ 755.891253][ T11] hsr_slave_1: left promiscuous mode [ 755.902795][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 755.918532][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 755.934363][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 755.958598][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 756.013963][ T11] veth1_macvtap: left promiscuous mode [ 756.021955][ T11] veth0_macvtap: left promiscuous mode [ 756.030033][ T11] veth1_vlan: left promiscuous mode [ 756.037630][ T11] veth0_vlan: left promiscuous mode [ 756.376037][ T4626] Bluetooth: hci0: command tx timeout [ 757.052382][ T11] team0 (unregistering): Port device team_slave_1 removed [ 757.106788][ T11] team0 (unregistering): Port device team_slave_0 removed [ 757.762718][T19820] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 757.778010][T19820] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 757.946765][T19898] -+^‡]: entered promiscuous mode [ 758.010067][T19820] team0: Port device team_slave_0 added [ 758.025660][T19772] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 758.064053][T19820] team0: Port device team_slave_1 added [ 758.092484][T19772] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 758.174535][T19772] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 758.230575][T19820] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 758.237556][T19820] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 758.310224][T19820] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 758.335282][T19772] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 758.361253][T19820] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 758.368243][T19820] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 758.404300][T19820] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 758.460481][ T4626] Bluetooth: hci0: command tx timeout [ 758.532703][T19820] hsr_slave_0: entered promiscuous mode [ 758.554443][T19820] hsr_slave_1: entered promiscuous mode [ 758.561127][T19820] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 758.568999][T19820] Cannot create hsr debugfs directory [ 758.677893][ T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 758.862731][ T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 759.261094][ T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 759.560041][ T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 759.642512][T19772] 8021q: adding VLAN 0 to HW filter on device bond0 [ 759.658952][T19772] 8021q: adding VLAN 0 to HW filter on device team0 [ 759.680527][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 759.687652][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 759.705225][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 759.712414][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 759.777141][T19772] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 759.788521][T19772] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 760.038241][ T11] bridge_slave_1: left allmulticast mode [ 760.065976][ T11] bridge_slave_1: left promiscuous mode [ 760.078737][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 760.120781][ T11] bridge_slave_0: left allmulticast mode [ 760.126472][ T11] bridge_slave_0: left promiscuous mode [ 760.166920][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 760.536275][T11991] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 760.567804][T11991] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 760.695307][T11991] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 760.760712][T19957] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 760.772806][ T5231] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 760.810400][ T5231] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 760.817529][ T5231] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 760.825633][ T5231] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 760.835454][ T5231] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 760.843795][ T5231] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 760.866368][T19957] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 760.877492][ T5231] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 761.145533][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 761.161643][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 761.179741][ T11] bond0 (unregistering): Released all slaves [ 761.335311][T19772] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 761.443408][T19772] veth0_vlan: entered promiscuous mode [ 761.457596][T19772] veth1_vlan: entered promiscuous mode [ 761.678036][T19772] veth0_macvtap: entered promiscuous mode [ 761.690107][T19772] veth1_macvtap: entered promiscuous mode [ 761.734793][T19954] chnl_net:caif_netlink_parms(): no params data found [ 762.066478][T19954] bridge0: port 1(bridge_slave_0) entered blocking state [ 762.076503][T19954] bridge0: port 1(bridge_slave_0) entered disabled state [ 762.104996][T19954] bridge_slave_0: entered allmulticast mode [ 762.125105][T19954] bridge_slave_0: entered promiscuous mode [ 762.151371][ T11] hsr_slave_0: left promiscuous mode [ 762.166244][ T11] hsr_slave_1: left promiscuous mode [ 762.172910][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 762.187997][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 762.197028][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 762.213702][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 762.244958][ T11] veth1_macvtap: left promiscuous mode [ 762.255284][ T11] veth0_macvtap: left promiscuous mode [ 762.265244][ T11] veth1_vlan: left promiscuous mode [ 762.275453][ T11] veth0_vlan: left promiscuous mode [ 762.929197][ T4626] Bluetooth: hci3: command tx timeout [ 762.929204][ T5231] Bluetooth: hci2: command tx timeout [ 762.945744][ T11] team0 (unregistering): Port device team_slave_1 removed [ 763.003330][ T11] team0 (unregistering): Port device team_slave_0 removed [ 763.623914][T19772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 763.634814][T19772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 763.644918][T19772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 763.655806][T19772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 763.670380][T19772] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 763.682524][T19772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 763.693235][T19772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 763.703339][T19772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 763.714033][T19772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 763.728643][T19772] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 763.740612][T19950] chnl_net:caif_netlink_parms(): no params data found [ 763.796762][T19954] bridge0: port 2(bridge_slave_1) entered blocking state [ 763.805628][T19954] bridge0: port 2(bridge_slave_1) entered disabled state [ 763.821929][T19954] bridge_slave_1: entered allmulticast mode [ 763.833794][T19954] bridge_slave_1: entered promiscuous mode [ 763.854485][T19772] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 763.866928][T19772] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 763.875934][T19772] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 763.884806][T19772] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 764.057883][T19820] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 764.200376][T19954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 764.227009][T19954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 764.268584][T19820] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 764.313341][T19954] team0: Port device team_slave_0 added [ 764.330990][T19954] team0: Port device team_slave_1 added [ 764.358286][T19820] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 764.379695][T19820] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 764.434622][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 764.443320][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 764.517579][T19950] bridge0: port 1(bridge_slave_0) entered blocking state [ 764.538851][T19950] bridge0: port 1(bridge_slave_0) entered disabled state [ 764.546630][T19950] bridge_slave_0: entered allmulticast mode [ 764.577633][T19950] bridge_slave_0: entered promiscuous mode [ 764.586556][T19950] bridge0: port 2(bridge_slave_1) entered blocking state [ 764.596611][T19950] bridge0: port 2(bridge_slave_1) entered disabled state [ 764.604753][T19950] bridge_slave_1: entered allmulticast mode [ 764.613636][T19950] bridge_slave_1: entered promiscuous mode [ 764.642773][T19954] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 764.653079][T19954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 764.687006][T19954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 764.741891][T19950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 764.779112][T19950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 764.801593][T19954] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 764.809674][T19954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 764.845346][T19954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 764.962649][ T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 765.005145][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 765.014012][ T5231] Bluetooth: hci2: command tx timeout [ 765.018818][ T4626] Bluetooth: hci3: command tx timeout [ 765.040679][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 765.102799][T19950] team0: Port device team_slave_0 added [ 765.111528][T19950] team0: Port device team_slave_1 added [ 765.327583][ T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 765.390487][T19950] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 765.397473][T19950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 765.448167][T19950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 765.480568][T19954] hsr_slave_0: entered promiscuous mode [ 765.494629][T19954] hsr_slave_1: entered promiscuous mode [ 765.502518][T19954] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 765.510623][T19954] Cannot create hsr debugfs directory [ 765.550759][T19820] 8021q: adding VLAN 0 to HW filter on device bond0 [ 765.567245][T19820] 8021q: adding VLAN 0 to HW filter on device team0 [ 765.582412][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 765.589570][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 765.624250][ T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 765.640527][T19950] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 765.647524][T19950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 765.674396][T19950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 765.771962][ T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 765.879717][T19950] hsr_slave_0: entered promiscuous mode [ 765.886534][T19950] hsr_slave_1: entered promiscuous mode [ 765.893576][T19950] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 765.901697][T19950] Cannot create hsr debugfs directory [ 766.028063][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 766.035263][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 766.063401][T19820] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 766.074085][T19820] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 766.501551][ T12] bridge_slave_1: left allmulticast mode [ 766.507254][ T12] bridge_slave_1: left promiscuous mode [ 766.545207][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 766.576863][ T12] bridge_slave_0: left allmulticast mode [ 766.589053][ T12] bridge_slave_0: left promiscuous mode [ 766.606949][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 767.088859][ T4626] Bluetooth: hci3: command tx timeout [ 767.094325][ T4626] Bluetooth: hci2: command tx timeout [ 767.801011][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 767.825438][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 767.843956][ T12] bond0 (unregistering): Released all slaves [ 767.878196][T19820] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 767.964571][T19820] veth0_vlan: entered promiscuous mode [ 767.986898][T19820] veth1_vlan: entered promiscuous mode [ 768.076112][T19820] veth0_macvtap: entered promiscuous mode [ 768.181864][ T12] -+^‡]: left promiscuous mode [ 768.205587][T19820] veth1_macvtap: entered promiscuous mode [ 768.256997][T19820] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 768.528640][T19820] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 768.539780][T19820] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 768.559344][T19820] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 768.586103][T19820] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 768.608895][T19820] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 768.630913][T19820] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 768.867169][T19820] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 769.008787][T19820] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 769.028499][T19820] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 769.048719][T19820] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 769.078731][T19820] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 769.098544][T19820] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 769.120049][T19820] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 769.170955][ T4626] Bluetooth: hci2: command tx timeout [ 769.176414][ T4626] Bluetooth: hci3: command tx timeout [ 769.241394][T19820] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 769.251105][T19820] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 769.261812][T19820] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 769.270963][T19820] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 769.543275][ T2565] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 769.558982][ T2565] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 769.623847][ T2565] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 769.652192][ T2565] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 769.683231][ T12] hsr_slave_0: left promiscuous mode [ 769.696706][ T12] hsr_slave_1: left promiscuous mode [ 769.706448][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 769.714358][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 769.724624][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 769.733142][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 769.775881][ T12] veth1_macvtap: left promiscuous mode [ 769.787565][ T12] veth0_macvtap: left promiscuous mode [ 769.795431][ T12] veth1_vlan: left promiscuous mode [ 769.806883][ T12] veth0_vlan: left promiscuous mode [ 771.117581][ T12] team0 (unregistering): Port device team_slave_1 removed [ 771.195455][ T12] team0 (unregistering): Port device team_slave_0 removed [ 772.491598][T19950] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 772.522107][T19954] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 772.541686][T19954] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 772.594514][T19954] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 772.621419][T19954] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 772.861370][T19954] 8021q: adding VLAN 0 to HW filter on device bond0 [ 772.931262][T19954] 8021q: adding VLAN 0 to HW filter on device team0 [ 772.991727][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 772.998928][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 773.076970][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 773.084153][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 773.197319][T19950] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 773.332971][T19954] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 773.473693][T19950] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 773.608193][T19950] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 773.776707][ T12] bridge_slave_1: left allmulticast mode [ 774.139605][ T12] bridge_slave_1: left promiscuous mode [ 774.145374][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 774.247648][ T12] bridge_slave_0: left allmulticast mode [ 774.256524][ T12] bridge_slave_0: left promiscuous mode [ 774.271258][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 775.258724][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 775.272327][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 775.300704][ T12] bond0 (unregistering): Released all slaves [ 775.607785][T19950] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 775.637214][T19950] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 775.666204][T19950] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 775.691338][T19954] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 775.818142][T19950] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 775.923527][ T12] hsr_slave_0: left promiscuous mode [ 775.940600][ T12] hsr_slave_1: left promiscuous mode [ 775.954462][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 775.965461][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 775.980621][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 775.994890][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 776.053347][ T12] veth1_macvtap: left promiscuous mode [ 776.068876][ T12] veth0_macvtap: left promiscuous mode [ 776.081559][ T12] veth1_vlan: left promiscuous mode [ 776.100545][ T12] veth0_vlan: left promiscuous mode [ 776.231075][T20112] coredump: 12(syz.2.3424): written to core: VMAs: 37, size 80830464; core: 60025018 bytes, pos 80842752 [ 776.840330][ T12] team0 (unregistering): Port device team_slave_1 removed [ 776.908997][ T12] team0 (unregistering): Port device team_slave_0 removed [ 776.959338][T20168] FAULT_INJECTION: forcing a failure. [ 776.959338][T20168] name failslab, interval 1, probability 0, space 0, times 0 [ 776.973206][T20168] CPU: 1 UID: 0 PID: 20168 Comm: syz.2.3430 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 776.983648][T20168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 776.993702][T20168] Call Trace: [ 776.996972][T20168] [ 776.999901][T20168] dump_stack_lvl+0x16c/0x1f0 [ 777.004599][T20168] should_fail_ex+0x497/0x5b0 [ 777.009281][T20168] ? fs_reclaim_acquire+0xae/0x160 [ 777.014408][T20168] should_failslab+0xc2/0x120 [ 777.019096][T20168] __kmalloc_cache_noprof+0x6b/0x310 [ 777.024399][T20168] ? lock_acquire+0x1b1/0x560 [ 777.029084][T20168] ? allocate_file_region_entries+0x1a3/0x620 [ 777.035186][T20168] allocate_file_region_entries+0x1a3/0x620 [ 777.041101][T20168] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 777.047544][T20168] region_chg+0x85/0x140 [ 777.051873][T20168] hugetlb_reserve_pages+0x1fd/0xd90 [ 777.057161][T20168] ? __pfx_atime_needs_update+0x10/0x10 [ 777.062706][T20168] ? __pfx_hugetlb_reserve_pages+0x10/0x10 [ 777.068521][T20168] ? down_write+0x14e/0x200 [ 777.073045][T20168] hugetlbfs_file_mmap+0x5da/0xba0 [ 777.078160][T20168] mmap_region+0x1283/0x2a50 [ 777.082775][T20168] ? __pfx_mmap_region+0x10/0x10 [ 777.087757][T20168] ? __pfx_lock_acquire+0x10/0x10 [ 777.092789][T20168] ? bpf_lsm_mmap_addr+0x9/0x10 [ 777.097631][T20168] ? security_mmap_addr+0x6c/0x1e0 [ 777.102744][T20168] ? __get_unmapped_area+0x26b/0x3a0 [ 777.108025][T20168] do_mmap+0xc00/0xfc0 [ 777.112091][T20168] vm_mmap_pgoff+0x1ba/0x360 [ 777.116682][T20168] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 777.121791][T20168] ? __fget_files+0x244/0x3f0 [ 777.126470][T20168] ksys_mmap_pgoff+0x32c/0x5c0 [ 777.131248][T20168] __x64_sys_mmap+0x125/0x190 [ 777.135962][T20168] do_syscall_64+0xcd/0x250 [ 777.140478][T20168] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 777.146400][T20168] RIP: 0033:0x7fcb1e57def9 [ 777.150819][T20168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 777.170472][T20168] RSP: 002b:00007fcb1f34f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 777.178925][T20168] RAX: ffffffffffffffda RBX: 00007fcb1e735f80 RCX: 00007fcb1e57def9 [ 777.186915][T20168] RDX: 0000001000000016 RSI: 0000000000000008 RDI: 0000000008000000 [ 777.194908][T20168] RBP: 00007fcb1f34f090 R08: 0000000000000003 R09: 0000000180000000 [ 777.202881][T20168] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 777.210908][T20168] R13: 0000000000000000 R14: 00007fcb1e735f80 R15: 00007ffd87c8c6e8 [ 777.218902][T20168] [ 777.795441][T19954] veth0_vlan: entered promiscuous mode [ 777.916504][T19950] 8021q: adding VLAN 0 to HW filter on device bond0 [ 777.943597][T19954] veth1_vlan: entered promiscuous mode [ 778.027717][T19954] veth0_macvtap: entered promiscuous mode [ 778.054007][T19954] veth1_macvtap: entered promiscuous mode [ 778.087557][T19954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 778.104185][T19954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 778.114736][T19954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 778.140931][T19954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 778.163279][T19954] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 778.184648][T19954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 778.203923][T19954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 778.224239][T19954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 778.241691][T19954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 778.255935][T19954] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 778.328107][T19950] 8021q: adding VLAN 0 to HW filter on device team0 [ 778.365911][T19954] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 778.376650][T19954] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 778.386514][T19954] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 778.395639][T19954] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 778.417502][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 778.424701][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 778.480949][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 778.488116][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 778.602760][ T1302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 778.651232][ T1302] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 778.720364][T19950] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 778.746774][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 778.762829][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 779.236267][T19950] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 779.369078][T19950] veth0_vlan: entered promiscuous mode [ 779.417897][T19950] veth1_vlan: entered promiscuous mode [ 779.494215][T19950] veth0_macvtap: entered promiscuous mode [ 779.537835][T19950] veth1_macvtap: entered promiscuous mode [ 779.636763][T19950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 779.683554][T19950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 779.723680][T19950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 779.754073][T19950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 779.776188][T19950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 779.807773][T19950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 779.859997][T19950] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 779.892653][T19950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 779.938524][T19950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 779.958493][T19950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 779.988481][T19950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 780.009066][T19950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 780.038500][T19950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 780.056321][T19950] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 780.082921][T19950] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 780.101907][T19950] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 780.122646][T19950] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 780.143208][T19950] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 780.307620][ T2565] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 780.339079][ T2565] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 780.369809][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 780.394917][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 782.490448][T20199] coredump: 39(syz.0.3438): written to core: VMAs: 34, size 97480704; core: 60152502 bytes, pos 97488896 [ 782.662632][T20234] FAULT_INJECTION: forcing a failure. [ 782.662632][T20234] name failslab, interval 1, probability 0, space 0, times 0 [ 782.743127][T20234] CPU: 1 UID: 0 PID: 20234 Comm: syz.1.3450 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 782.753602][T20234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 782.763695][T20234] Call Trace: [ 782.766985][T20234] [ 782.770019][T20234] dump_stack_lvl+0x16c/0x1f0 [ 782.774734][T20234] should_fail_ex+0x497/0x5b0 [ 782.779441][T20234] ? fs_reclaim_acquire+0xae/0x160 [ 782.784578][T20234] should_failslab+0xc2/0x120 [ 782.789280][T20234] __kmalloc_noprof+0xcb/0x410 [ 782.794078][T20234] io_alloc_hash_table+0x2d/0xc0 [ 782.799034][T20234] io_uring_setup+0x320/0x3730 [ 782.803829][T20234] ? __pfx_io_uring_setup+0x10/0x10 [ 782.809049][T20234] ? __fget_files+0x244/0x3f0 [ 782.813765][T20234] ? ksys_write+0x1ad/0x260 [ 782.818285][T20234] ? __pfx_ksys_write+0x10/0x10 [ 782.823165][T20234] __x64_sys_io_uring_setup+0x98/0x140 [ 782.828655][T20234] do_syscall_64+0xcd/0x250 [ 782.833186][T20234] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 782.839110][T20234] RIP: 0033:0x7f83ad77def9 [ 782.843539][T20234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 782.863174][T20234] RSP: 002b:00007f83ae65a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 782.871610][T20234] RAX: ffffffffffffffda RBX: 00007f83ad935f80 RCX: 00007f83ad77def9 [ 782.879602][T20234] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000006 [ 782.887592][T20234] RBP: 00007f83ae65a090 R08: 0000000000000000 R09: 0000000000000000 [ 782.895582][T20234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 782.903572][T20234] R13: 0000000000000000 R14: 00007f83ad935f80 R15: 00007ffd254f4028 [ 782.911579][T20234] [ 783.704521][T20236] Invalid ELF header magic: != ELF [ 783.763608][T20235] delete_channel: no stack [ 784.688201][T20248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3454'. [ 784.728049][T20248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3454'. [ 784.777884][T20248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3454'. [ 784.801954][T20248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3454'. [ 784.829892][T20248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3454'. [ 784.858807][T20248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3454'. [ 784.880944][T20248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3454'. [ 784.905356][T20248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3454'. [ 784.926407][T20248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3454'. [ 784.953124][T20248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3454'. [ 786.446786][T20292] coredump: 41(syz.2.3470): coredump has not been created, error -13 [ 786.471036][T20294] coredump: 42(syz.2.3470): coredump has not been created, error -13 [ 786.486065][T20295] coredump: 43(syz.2.3470): coredump has not been created, error -13 [ 786.504091][T20296] coredump: 44(syz.2.3470): coredump has not been created, error -13 [ 786.518675][T20297] coredump: 45(syz.2.3470): coredump has not been created, error -13 [ 786.550839][T20298] coredump: 46(syz.2.3470): coredump has not been created, error -13 [ 786.569215][T20301] coredump: 47(syz.2.3470): coredump has not been created, error -13 [ 786.592207][T20302] coredump: 48(syz.2.3470): coredump has not been created, error -13 [ 786.612591][T20303] coredump: 49(syz.2.3470): coredump has not been created, error -13 [ 786.663099][T20307] coredump: 52(syz.2.3470): coredump has not been created, error -13 [ 786.768320][T20289] cgroup: fork rejected by pids controller in /syz2 [ 787.359404][T20380] coredump: 111(syz.2.3477): written to core: VMAs: 8, size 2363392; core: 2116633 bytes, pos 2367488 [ 788.014879][T20230] coredump: 34(syz.1.3448): written to core: VMAs: 34, size 97349632; core: 60015558 bytes, pos 97357824 [ 788.049142][T20394] FAULT_INJECTION: forcing a failure. [ 788.049142][T20394] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 788.075710][T20394] CPU: 1 UID: 0 PID: 20394 Comm: syz.2.3481 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 788.086184][T20394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 788.096263][T20394] Call Trace: [ 788.099563][T20394] [ 788.102514][T20394] dump_stack_lvl+0x16c/0x1f0 [ 788.107226][T20394] should_fail_ex+0x497/0x5b0 [ 788.111940][T20394] ? fs_reclaim_acquire+0xae/0x160 [ 788.117082][T20394] should_fail_alloc_page+0xe7/0x130 [ 788.122399][T20394] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 788.128581][T20394] ? mark_lock+0xb5/0xc60 [ 788.132945][T20394] __alloc_pages_noprof+0x190/0x25c0 [ 788.138253][T20394] ? stack_trace_save+0x95/0xd0 [ 788.143114][T20394] ? __pfx_stack_trace_save+0x10/0x10 [ 788.148495][T20394] ? stack_depot_save_flags+0x28/0x900 [ 788.153963][T20394] ? rcu_is_watching+0x12/0xc0 [ 788.158739][T20394] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 788.164467][T20394] ? hlock_class+0x4e/0x130 [ 788.168979][T20394] ? hlock_class+0x4e/0x130 [ 788.173491][T20394] ? __lock_acquire+0x163e/0x3ce0 [ 788.178540][T20394] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 788.184445][T20394] ? policy_nodemask+0xea/0x4e0 [ 788.189310][T20394] alloc_pages_mpol_noprof+0x275/0x610 [ 788.194790][T20394] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 788.200799][T20394] ? __pmd_alloc+0x354/0x810 [ 788.205396][T20394] ? __pfx_lock_release+0x10/0x10 [ 788.210438][T20394] pte_alloc_one+0x20/0x360 [ 788.214946][T20394] __pte_alloc+0x6e/0x390 [ 788.219279][T20394] ? __pfx___pte_alloc+0x10/0x10 [ 788.224220][T20394] ? _raw_spin_unlock+0x28/0x50 [ 788.229085][T20394] ? __pmd_alloc+0x359/0x810 [ 788.233685][T20394] move_page_tables+0x1d61/0x3710 [ 788.238740][T20394] ? __pfx_move_page_tables+0x10/0x10 [ 788.244125][T20394] ? move_vma+0x5c7/0x1c50 [ 788.248566][T20394] ? up_write+0x1b2/0x520 [ 788.252910][T20394] move_vma+0x67b/0x1c50 [ 788.257172][T20394] ? __pfx_move_vma+0x10/0x10 [ 788.261863][T20394] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 788.267771][T20394] ? bpf_lsm_mmap_addr+0x9/0x10 [ 788.272626][T20394] ? security_mmap_addr+0x6c/0x1e0 [ 788.277754][T20394] __do_sys_mremap+0xf8c/0x15b0 [ 788.282623][T20394] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 788.288612][T20394] ? __pfx___do_sys_mremap+0x10/0x10 [ 788.293916][T20394] ? __fget_files+0x244/0x3f0 [ 788.298612][T20394] ? fput+0x30/0x390 [ 788.302516][T20394] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 788.308692][T20394] ? syscall_user_dispatch+0x77/0x140 [ 788.314097][T20394] do_syscall_64+0xcd/0x250 [ 788.318612][T20394] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 788.324519][T20394] RIP: 0033:0x7fcb1e57def9 [ 788.328934][T20394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 788.348567][T20394] RSP: 002b:00007fcb1f34f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 788.356991][T20394] RAX: ffffffffffffffda RBX: 00007fcb1e735f80 RCX: 00007fcb1e57def9 [ 788.364963][T20394] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000000000000000 [ 788.372942][T20394] RBP: 00007fcb1f34f090 R08: 0000000100000000 R09: 0000000000000000 [ 788.380920][T20394] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 788.388892][T20394] R13: 0000000000000000 R14: 00007fcb1e735f80 R15: 00007ffd87c8c6e8 [ 788.396881][T20394] [ 788.430186][T20391] coredump: 61(syz.1.3478): written to core: VMAs: 13, size 4591616; core: 4222304 bytes, pos 4595712 [ 788.947094][T20237] coredump: 41(syz.1.3452): written to core: VMAs: 34, size 80572416; core: 60007366 bytes, pos 80580608 [ 788.971321][T20414] FAULT_INJECTION: forcing a failure. [ 788.971321][T20414] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 788.995038][T20414] CPU: 1 UID: 0 PID: 20414 Comm: syz.2.3486 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 789.005519][T20414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 789.015604][T20414] Call Trace: [ 789.018900][T20414] [ 789.021850][T20414] dump_stack_lvl+0x16c/0x1f0 [ 789.026557][T20414] should_fail_ex+0x497/0x5b0 [ 789.031266][T20414] ? fs_reclaim_acquire+0xae/0x160 [ 789.036407][T20414] should_fail_alloc_page+0xe7/0x130 [ 789.041728][T20414] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 789.047929][T20414] __alloc_pages_noprof+0x190/0x25c0 [ 789.053259][T20414] ? __pfx_mark_lock+0x10/0x10 [ 789.058073][T20414] ? __pfx___lock_acquire+0x10/0x10 [ 789.063305][T20414] ? mark_lock+0xb5/0xc60 [ 789.067667][T20414] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 789.073437][T20414] ? __lock_acquire+0xbdd/0x3ce0 [ 789.078413][T20414] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 789.084344][T20414] ? policy_nodemask+0xea/0x4e0 [ 789.089237][T20414] alloc_pages_mpol_noprof+0x275/0x610 [ 789.094735][T20414] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 789.100758][T20414] ? find_held_lock+0x2d/0x110 [ 789.105555][T20414] folio_alloc_mpol_noprof+0x36/0xd0 [ 789.110878][T20414] shmem_alloc_folio+0x135/0x160 [ 789.115853][T20414] shmem_alloc_and_add_folio+0x48b/0xc00 [ 789.121524][T20414] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 789.127712][T20414] ? shmem_allowable_huge_orders+0x208/0x440 [ 789.133734][T20414] shmem_get_folio_gfp+0x689/0x1530 [ 789.138976][T20414] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 789.144640][T20414] ? filemap_map_pages+0xf93/0x16a0 [ 789.149875][T20414] shmem_fault+0x200/0xae0 [ 789.154321][T20414] ? __pfx_shmem_fault+0x10/0x10 [ 789.159294][T20414] ? do_pte_missing+0xdc2/0x3e50 [ 789.164355][T20414] ? __pfx_lock_release+0x10/0x10 [ 789.169425][T20414] __do_fault+0x10a/0x490 [ 789.173795][T20414] do_pte_missing+0xea8/0x3e50 [ 789.178593][T20414] ? do_raw_spin_unlock+0x172/0x230 [ 789.183832][T20414] ? __pmd_alloc+0x359/0x810 [ 789.188457][T20414] __handle_mm_fault+0x100a/0x2a10 [ 789.193614][T20414] ? __pfx_mt_find+0x10/0x10 [ 789.198235][T20414] ? __pfx_lock_acquire+0x10/0x10 [ 789.203297][T20414] ? __pfx___handle_mm_fault+0x10/0x10 [ 789.208811][T20414] ? find_vma+0xc0/0x140 [ 789.213087][T20414] ? __pfx_find_vma+0x10/0x10 [ 789.217801][T20414] handle_mm_fault+0x3fa/0xaa0 [ 789.222608][T20414] do_user_addr_fault+0x7a3/0x13f0 [ 789.227765][T20414] exc_page_fault+0x5c/0xc0 [ 789.232299][T20414] asm_exc_page_fault+0x26/0x30 [ 789.237174][T20414] RIP: 0010:rep_movs_alternative+0x13/0x70 [ 789.243021][T20414] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f [ 789.262673][T20414] RSP: 0018:ffffc90004107dd8 EFLAGS: 00050202 [ 789.268780][T20414] RAX: 0000000000000001 RBX: 0000000000000008 RCX: 0000000000000004 [ 789.276784][T20414] RDX: fffff52000820fc8 RSI: 0000000000000008 RDI: ffffc90004107e40 [ 789.284789][T20414] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff52000820fc8 [ 789.292791][T20414] R10: 0000000000000003 R11: 0000000000000000 R12: 000000000000000c [ 789.300793][T20414] R13: ffffc90004107e40 R14: 0000000000000000 R15: 0000000000000000 [ 789.308816][T20414] _copy_from_user+0xc6/0xf0 [ 789.313457][T20414] do_sched_setscheduler+0x9f/0x2c0 [ 789.318698][T20414] ? __pfx_do_sched_setscheduler+0x10/0x10 [ 789.324547][T20414] ? native_tss_update_io_bitmap+0x2ec/0x610 [ 789.330571][T20414] ? __pfx_native_tss_update_io_bitmap+0x10/0x10 [ 789.336943][T20414] ? ksys_write+0x1ad/0x260 [ 789.341470][T20414] ? __pfx_ksys_write+0x10/0x10 [ 789.346365][T20414] __x64_sys_sched_setscheduler+0x75/0xa0 [ 789.352123][T20414] do_syscall_64+0xcd/0x250 [ 789.356663][T20414] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 789.362597][T20414] RIP: 0033:0x7fcb1e57def9 [ 789.367046][T20414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 789.386686][T20414] RSP: 002b:00007fcb1f34f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000090 [ 789.395138][T20414] RAX: ffffffffffffffda RBX: 00007fcb1e735f80 RCX: 00007fcb1e57def9 [ 789.403145][T20414] RDX: 0000000000000008 RSI: 0000000000000400 RDI: 0000000000000007 [ 789.411150][T20414] RBP: 00007fcb1f34f090 R08: 0000000000000000 R09: 0000000000000000 [ 789.419151][T20414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 789.427154][T20414] R13: 0000000000000000 R14: 00007fcb1e735f80 R15: 00007ffd87c8c6e8 [ 789.435176][T20414] [ 790.582277][T20456] coredump: 137(syz.2.3499): written to core: VMAs: 1, size 4096; core: 2659 bytes, pos 8192 [ 791.033427][T20372] coredump: 28(syz.3.3475): written to core: VMAs: 33, size 97345536; core: 59995022 bytes, pos 97353728 [ 792.972903][T20448] coredump: 68(syz.1.3495): written to core: VMAs: 33, size 80703488; core: 60148368 bytes, pos 80719872 [ 793.935651][T20465] coredump: 61(syz.3.3501): written to core: VMAs: 34, size 97345536; core: 60021386 bytes, pos 97353728 [ 794.894353][T20463] coredump: 142(syz.2.3500): written to core: VMAs: 35, size 97476608; core: 60019710 bytes, pos 97484800 [ 795.721766][T20513] ------------[ cut here ]------------ [ 795.727268][T20513] WARNING: CPU: 0 PID: 20513 at include/linux/cpumask.h:135 io_sq_offload_create+0xe81/0x10a0 [ 795.737878][T20513] Modules linked in: [ 795.741857][T20513] CPU: 0 UID: 0 PID: 20513 Comm: syz.1.3518 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 795.752440][T20513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 795.762595][T20513] RIP: 0010:io_sq_offload_create+0xe81/0x10a0 [ 795.768771][T20513] Code: 00 e9 2f ff ff ff e8 2e 6d 0a fd 31 ff 48 89 de e8 94 6f 0a fd 48 85 db 75 2f bb ea ff ff ff e9 c4 f2 ff ff e8 10 6d 0a fd 90 <0f> 0b 90 e9 b3 fd ff ff e8 02 6d 0a fd be 02 00 00 00 48 89 df e8 [ 795.789364][T20513] RSP: 0018:ffffc9000392fcd8 EFLAGS: 00010293 [ 795.795465][T20513] RAX: 0000000000000000 RBX: ffff888031473000 RCX: ffffffff8481ba42 [ 795.804224][T20513] RDX: ffff888027075a00 RSI: ffffffff8481bc90 RDI: 0000000000000005 [ 795.812630][T20513] RBP: ffff88807ffa2000 R08: 0000000000000005 R09: 0000000000000007 [ 795.820746][T20513] R10: 0000000000000008 R11: 0000000000000000 R12: 0000000000000008 [ 795.828823][T20513] R13: 1ffff92000725fa0 R14: ffffc9000392fd20 R15: 0000000000000000 [ 795.836827][T20513] FS: 00007f83ae65a6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 795.845860][T20513] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 795.852565][T20513] CR2: 000000000000000b CR3: 000000006eac6000 CR4: 00000000003506f0 [ 795.860610][T20513] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 795.868671][T20513] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 795.876678][T20513] Call Trace: [ 795.880692][T20513] [ 795.883650][T20513] ? __warn+0xea/0x3d0 [ 795.887763][T20513] ? io_sq_offload_create+0xe81/0x10a0 [ 795.894151][T20513] ? report_bug+0x3c0/0x580 [ 795.898770][T20513] ? handle_bug+0x54/0xa0 [ 795.903135][T20513] ? exc_invalid_op+0x17/0x50 [ 795.907848][T20513] ? asm_exc_invalid_op+0x1a/0x20 [ 795.913005][T20513] ? io_sq_offload_create+0xc32/0x10a0 [ 795.918535][T20513] ? io_sq_offload_create+0xe80/0x10a0 [ 795.924029][T20513] ? io_sq_offload_create+0xe81/0x10a0 [ 795.929619][T20513] ? io_sq_offload_create+0xe80/0x10a0 [ 795.935119][T20513] ? __pfx_io_sq_offload_create+0x10/0x10 [ 795.940956][T20513] ? io_pages_map+0x1dd/0x510 [ 795.945684][T20513] io_uring_setup+0x180f/0x3730 [ 795.950680][T20513] ? __pfx_io_uring_setup+0x10/0x10 [ 795.955935][T20513] __x64_sys_io_uring_setup+0x98/0x140 [ 795.961568][T20513] do_syscall_64+0xcd/0x250 [ 795.966106][T20513] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 795.972209][T20513] RIP: 0033:0x7f83ad77def9 [ 795.976657][T20513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 795.997174][T20513] RSP: 002b:00007f83ae65a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 796.006460][T20513] RAX: ffffffffffffffda RBX: 00007f83ad935f80 RCX: 00007f83ad77def9 [ 796.014540][T20513] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 00000000000003ff [ 796.022635][T20513] RBP: 00007f83ad7f0b76 R08: 0000000000000000 R09: 0000000000000000 [ 796.030719][T20513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 796.038739][T20513] R13: 0000000000000000 R14: 00007f83ad935f80 R15: 00007ffd254f4028 [ 796.046751][T20513] [ 796.050131][T20513] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 796.057428][T20513] CPU: 0 UID: 0 PID: 20513 Comm: syz.1.3518 Not tainted 6.11.0-syzkaller-09015-g18ba6034468e #0 [ 796.067861][T20513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 796.077919][T20513] Call Trace: [ 796.081193][T20513] [ 796.084124][T20513] dump_stack_lvl+0x3d/0x1f0 [ 796.088736][T20513] panic+0x71d/0x800 [ 796.092637][T20513] ? __pfx_panic+0x10/0x10 [ 796.097064][T20513] ? show_trace_log_lvl+0x29d/0x3d0 [ 796.102278][T20513] ? check_panic_on_warn+0x1f/0xb0 [ 796.107395][T20513] ? io_sq_offload_create+0xe81/0x10a0 [ 796.112869][T20513] check_panic_on_warn+0xab/0xb0 [ 796.117820][T20513] __warn+0xf6/0x3d0 [ 796.121722][T20513] ? io_sq_offload_create+0xe81/0x10a0 [ 796.127187][T20513] report_bug+0x3c0/0x580 [ 796.131530][T20513] handle_bug+0x54/0xa0 [ 796.135688][T20513] exc_invalid_op+0x17/0x50 [ 796.140197][T20513] asm_exc_invalid_op+0x1a/0x20 [ 796.145060][T20513] RIP: 0010:io_sq_offload_create+0xe81/0x10a0 [ 796.151133][T20513] Code: 00 e9 2f ff ff ff e8 2e 6d 0a fd 31 ff 48 89 de e8 94 6f 0a fd 48 85 db 75 2f bb ea ff ff ff e9 c4 f2 ff ff e8 10 6d 0a fd 90 <0f> 0b 90 e9 b3 fd ff ff e8 02 6d 0a fd be 02 00 00 00 48 89 df e8 [ 796.170827][T20513] RSP: 0018:ffffc9000392fcd8 EFLAGS: 00010293 [ 796.176898][T20513] RAX: 0000000000000000 RBX: ffff888031473000 RCX: ffffffff8481ba42 [ 796.184873][T20513] RDX: ffff888027075a00 RSI: ffffffff8481bc90 RDI: 0000000000000005 [ 796.192852][T20513] RBP: ffff88807ffa2000 R08: 0000000000000005 R09: 0000000000000007 [ 796.200836][T20513] R10: 0000000000000008 R11: 0000000000000000 R12: 0000000000000008 [ 796.208807][T20513] R13: 1ffff92000725fa0 R14: ffffc9000392fd20 R15: 0000000000000000 [ 796.216784][T20513] ? io_sq_offload_create+0xc32/0x10a0 [ 796.222249][T20513] ? io_sq_offload_create+0xe80/0x10a0 [ 796.227712][T20513] ? io_sq_offload_create+0xe80/0x10a0 [ 796.233176][T20513] ? __pfx_io_sq_offload_create+0x10/0x10 [ 796.238904][T20513] ? io_pages_map+0x1dd/0x510 [ 796.243588][T20513] io_uring_setup+0x180f/0x3730 [ 796.248453][T20513] ? __pfx_io_uring_setup+0x10/0x10 [ 796.253669][T20513] __x64_sys_io_uring_setup+0x98/0x140 [ 796.259138][T20513] do_syscall_64+0xcd/0x250 [ 796.263651][T20513] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 796.269556][T20513] RIP: 0033:0x7f83ad77def9 [ 796.273972][T20513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 796.293579][T20513] RSP: 002b:00007f83ae65a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 796.301997][T20513] RAX: ffffffffffffffda RBX: 00007f83ad935f80 RCX: 00007f83ad77def9 [ 796.309967][T20513] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 00000000000003ff [ 796.317934][T20513] RBP: 00007f83ad7f0b76 R08: 0000000000000000 R09: 0000000000000000 [ 796.325906][T20513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 796.333873][T20513] R13: 0000000000000000 R14: 00007f83ad935f80 R15: 00007ffd254f4028 [ 796.341856][T20513] [ 796.344988][T20513] Kernel Offset: disabled [ 796.349304][T20513] Rebooting in 86400 seconds..