last executing test programs: 3.216743877s ago: executing program 2 (id=1207): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x20342, 0x0) epoll_ctl$auto(0x5, 0x3, 0xffffffffffffffff, 0x0) syslog$auto(0x4, &(0x7f0000000040)='..\x00', 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) fchdir$auto(0xffffffffffffffff) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) write$auto(r0, 0x0, 0x1) ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xa0860100) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000080)=0x10000) write$auto(0x3, 0x0, 0xfffffdef) 2.896630625s ago: executing program 2 (id=1221): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/oops_count\x00', 0x8000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/124, 0x7c) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x385001, 0x0) fanotify_init$auto(0x200, 0x2010000000000) syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff) mq_open$auto(&(0x7f0000000200)='\x01', 0xde8, 0xb, &(0x7f0000000240)={0x3, 0x4, 0xffffffffffffffff, 0xb}) mmap$auto(0x8, 0x400, 0x9, 0x93, 0x2, 0x3) socket(0x2, 0x1, 0x106) socket(0x26, 0x80805, 0x0) mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x401, 0x8000) mkdir$auto(&(0x7f00000001c0)='}[,&*}\x00', 0xc001) unshare$auto(0x40000080) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0x80) fcntl$auto(r1, 0x9, 0xa19) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0xa, 0x5, 0x0) mq_open$auto(&(0x7f0000000200)='#)-\\&[}\x00', 0xde8, 0xb, &(0x7f0000000240)={0x20000000000d, 0x4, 0x2, 0x5}) mq_open$auto(&(0x7f0000000280)='#)-\\&[}\x00', 0x5, 0x10, 0x0) mmap$auto(0x0, 0x8001, 0x4000000000df, 0x610, 0x6, 0x300000000000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x3, 0x43, 0xdf, 0x17, 0x7, 0x40000000028000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000000), r2) sendmsg$auto_GTP_CMD_NEWPDP(r3, &(0x7f0000003080)={0x0, 0x0, &(0x7f0000003040)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="000004000000fddb0000000000000c00030080000000000000000800020001000000e60247e4035d43bb04eb6d62e7c74c9b0c02d18e120517f459de8a6b19cc1c409d372d1946d177ebcad2b5b81d728f2a7bb28f176a6aa266c67cc4b4fc7151080ea925d385ca301b0d062f5d9bb8e54752d2ad1574ec06d55308481fa46a4d365f15bdd70024a36b2b24c5ad2b16642d1fd69981a11b17df61b2964b9d20e9071203a051daa473c28f0614bc9a407f5e411c952e2c7a154174bbb309a3911714aadff5fd89e71a6070fbf6c5a5fed7e0fc9bb8e4340e6cf6e0921924c00568d23bc7303c4bf181b7bffc9bdbd4d2c5d9ac26d67949aa0bf79b922152c327ae9a1a94a4eceff9ed2796d245ddab0f95de3340c74a1b6b483488966562d102cfe248c0ef384952070416dc745dc98786c54fe9f1c231358632aad8dc71ba322c039d62295e2f"], 0x28}, 0x1, 0x0, 0x0, 0x4000810}, 0x80) gettid() 2.616853326s ago: executing program 2 (id=1213): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x29, 0x940, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd]}, 0x1fe, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = socket(0x2, 0x801, 0x100) poll$auto(&(0x7f0000000080)={r0, 0x81, 0x3}, 0x4, 0x7fffffff) connect$auto(0x3, &(0x7f0000000000), 0x55) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x25, 0x1, 0x3) setsockopt$auto(0x4, 0x2000000000000116, 0x80, 0xfffffffffffffffd, 0x9) r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) semctl$auto(0x80001ff, 0x804, 0x5, 0x4) keyctl$auto(0x1, 0x7, 0x100, 0x8, 0x4) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd7000fbdbdf250f00000008000300", @ANYRES32=r4, @ANYBLOB='\b\x00.'], 0x24}, 0x1, 0x0, 0x0, 0xc050}, 0x140000e4) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000640), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) 2.546444101s ago: executing program 3 (id=1215): mmap$auto(0x0, 0x400008, 0x8df, 0x9b72, 0x5, 0x8000) r0 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0xb8, 0x85, 0x0, 0x200) ppoll$auto(0x0, 0x7f, 0x0, 0x0, 0x8) r1 = socket(0x1e, 0x4, 0x0) sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf99076ec2142730d559d177d29aea6a6b062d7f29b26f0000000000000002ffffffffff72ce1f673d5665dd2ed95034ba2a6309f9b3033b1ad3ca"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) socket(0x9, 0x2, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x2, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYRES8=r3, @ANYRESDEC=r1, @ANYRES8=r3], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x800) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f0000000100), 0x2200, 0x0) socket$nl_generic(0x10, 0x3, 0x10) memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5) gettid() mmap$auto(0x0, 0x20009, 0x4000000000db, 0x40000000000eb1, 0x401, 0x5660) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x1e, 0x805, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) ioctl$auto(0x3, 0x40045532, 0x38) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x40, 0x0) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000002100), 0xffffffffffffffff) io_uring_setup$auto(0x8000, &(0x7f0000000140)={0x2, 0x8, 0x3, 0x0, 0x7, 0x101, 0xffffffffffffffff, [0x95, 0x9], {0xffffff80, 0x5, 0x10, 0xb831, 0x8001, 0xdbb, 0x80003, 0xee9, 0x2}, {0x8001, 0x6, 0x208, 0x1, 0x8, 0x0, 0x4, 0x6, 0x11}}) socket$nl_generic(0x10, 0x3, 0x10) 2.522358778s ago: executing program 0 (id=1216): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r1) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f00000003c0), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000400)={'wg1\x00'}) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x4000000, 0x0, 0x8000}, 0x40000) 2.211067636s ago: executing program 0 (id=1218): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/uprobe/format/ref_ctr_offset\x00', 0x80, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000020c0)=""/29, 0x1d) (async) sysfs$auto(0x2, 0x46, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r1, 0x4b47, 0x1) 2.063621621s ago: executing program 0 (id=1220): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x20342, 0x0) epoll_ctl$auto(0x5, 0x3, 0xffffffffffffffff, 0x0) syslog$auto(0x4, &(0x7f0000000040)='..\x00', 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) fchdir$auto(0xffffffffffffffff) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) write$auto(r0, 0x0, 0x1) ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xa0860100) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000080)=0x10000) write$auto(0x3, 0x0, 0xfffffdef) 1.942598997s ago: executing program 0 (id=1222): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x80, 0x0) ioctl$auto_evdev_fops_evdev(r0, 0x40044590, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/system/node/node0/hugepages/hugepages-1048576kB/demote_size\x00', 0x305a01, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto(0x3, 0x0, 0x1f40) write$auto(0x3, 0x0, 0xfdef) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001480)='/proc/self/net/rxrpc/locals\x00', 0x40, 0x0) pread64$auto(r1, &(0x7f0000001bc0)='veth1\x00', 0x3, 0x8) r2 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x80202, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) ioctl$auto(r3, 0x40081271, 0x0) write$auto(r2, &(0x7f0000000040)='!@.+-::)!&\x00', 0x9) 1.939697449s ago: executing program 1 (id=1223): r0 = socket(0xa, 0x1, 0x84) setsockopt$auto(0x3, 0x0, 0x24, 0x0, 0x9) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000001380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001340)={&(0x7f0000002540)={0x17ec, 0x0, 0x800, 0x70bd2c, 0x25dfdbfb, {}, [@NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0x8000}, @NL80211_ATTR_BEACON_HEAD={0x6a9, 0xe, "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"}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x9}, @NL80211_ATTR_VENDOR_DATA={0x1004, 0xc5, "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"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x3}, @NL80211_ATTR_HE_CAPABILITY={0x3a, 0x10d, "8cb478f566026ec200ed0a6ef90aea680fea7e2467f1ee4bfc68326b40c3ec6807ef0b85ec6a4fadbb5cc5bde9839796551184915da6"}, @NL80211_ATTR_FILS_NONCES={0xcd, 0xf3, "38343568af8df208b010c861039d14fb2089f3d28e5c70e2b03da3baa5f3bf9443a21f87e2f009239eaa7290531ce7756cf546d55e403ba97b3e9bc87aa9812eb6a82a8880433383680e3c835886f3f555a541d62db20b782c63fba2ef2b6f9bcb67018f23b279528c35da0e3f9c6586d5add986cc70b0de1707edfc8afec177e9d056f9d7e63e6c7cb274c4d1607b6dc3598594a32d964967bf4a3b5fded589cd78415af4f5dc655fb99081a8098c044a4ae92ac15855bebf7444b0c2837bdc3bf5bcd9b9ae2f255a"}]}, 0x17ec}, 0x1, 0x0, 0x0, 0x20000000}, 0xc) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/vmstat\x00', 0x22040, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) select$auto(0x3, 0x0, &(0x7f0000000040)={[0x9, 0x200, 0x0, 0x7, 0x7, 0x3, 0x6, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x6, 0x6]}, 0x0, 0x0) mmap$auto(0x1, 0x7ff, 0x100000000, 0x11, 0xfffffffffffffff1, 0x8000) socket(0xa, 0x2, 0x88) select$auto(0x6d0c, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x800000000000008, 0xc, 0x9, 0x3, 0x6, 0x1, 0x40009, 0x5e582972, 0x4000000000000000, 0x14, 0x93, 0x8, 0x8, 0x6]}, 0x0, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x14, 0x940, 0x1ffe0, 0x3, 0x6, 0x6, 0x7, 0x5, 0x2, 0x9, 0x6, 0x9, 0x2, 0x3, 0x2, 0x80}, 0x1fe, 0x7) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) connect$auto(0x3, &(0x7f0000000140), 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xff00) connect$auto(0x3, &(0x7f0000000000), 0x53) socket(0x11, 0x80003, 0x300) mmap$auto(0x1, 0x9, 0x3ff57699, 0x9b72, 0x4, 0x8000000000008000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x59616d61, 0xdaffffffffffffff, 0x7ff, 0xffffffffffffffff, 0x8) setresuid$auto(0x0, 0x0, 0xffffffffffffffff) prctl$auto(0x4, 0x9, 0x6, 0x3, 0x0) ptrace$auto(0x10, 0x10000000000001, 0xffffffffffffff56, 0x868f) pipe2$auto(&(0x7f0000000000)=0xffffffffffffffff, 0x1) r3 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x2000, 0x80, 0x22}, 0x18) socket$nl_generic(0x10, 0x3, 0x10) pidfd_getfd$auto(r2, r3, 0x3) socket(0x2, 0x80002, 0x73) 1.750451911s ago: executing program 1 (id=1224): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2a, 0x1, 0x4) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) lsm_list_modules$auto(0x0, 0x0, 0x0) r0 = socket(0x2, 0x801, 0x106) getsockopt$auto(r0, 0x11c, 0x3, 0x0, 0x0) r1 = socket(0x2a, 0x3, 0x3a) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r1) r4 = gettid() sendmsg$auto_NL802154_CMD_DISASSOCIATE(r2, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\t\x00', @ANYRES16=r3, @ANYBLOB="000227bd7000fcdbdf2529000000050007000700000005001f000800000008000b0090c18f1508001c00", @ANYRES32=r4, @ANYBLOB="08002100050000000800160005000000"], 0x44}}, 0x859) ioctl$auto(0x1, 0x8983, 0x4) recvfrom$auto(0xffffffffffffffff, &(0x7f0000000040), 0x9, 0x3, 0x0, 0x0) mprotect$auto(0x49aa65ca, 0xa74d, 0x4) socketpair$auto(0xce, 0x8, 0x4, &(0x7f0000000080)=0x7) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f0000000040)={0x0, 0x34000}, 0x4, 0x0, 0x1}, 0xed7138c}, 0x2, 0x9) mmap$auto(0x0, 0x80000400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x10, 0x2, 0x300) open(0x0, 0xa240, 0x15e) socket(0xa, 0x3, 0x3a) statmount$auto(0x0, &(0x7f0000000180)={0x40008, 0x1, 0x9, 0x3, 0x40, 0x943, 0x1ffde, 0x3, 0x2000000000000006, 0x2, 0x9, 0x5, 0x2, 0x7, 0xffffffffffffffff, 0x9, 0xffff, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b40000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x8000000000000004, 0x0, 0x0, 0x0, 0x0, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x80]}, 0x1fe, 0x81) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) ioperm$auto(0x7, 0x6, 0x2) kcmp$auto(0x1, 0x1, 0x3, 0x85, 0x2) sendmmsg$auto(r5, 0x0, 0x7, 0x4008) 1.711558106s ago: executing program 2 (id=1225): ioperm$auto(0xa, 0x7, 0x2) (async) symlink$auto(&(0x7f0000001500)='./file0/file0\x00', &(0x7f0000001540)='./file0\x00') (async) readlinkat$auto(0xffffffffffffffff, &(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000000)='\x00\x00\xc0\x84\xdby~U\xd2\x1f\"\xf9\x05\xee\xf6\xdbc\x99\xe5]\xf3\x88\t\xc9\x1eB\xad\xe6 \x1f\x1f\xdc\x1a1\x93', 0x33e) 1.647600556s ago: executing program 1 (id=1226): r0 = socket(0x2a, 0x2, 0xffffffff) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x80, 0x0) ioctl$auto_evdev_fops_evdev(r1, 0x8000450d, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e"], 0x1ac}}, 0x40000) r3 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0) pread64$auto(r3, 0x0, 0x9, 0x2e) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r5 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91) read$auto(r5, 0x0, 0x1) ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x5) ioctl$auto(0x3, 0x4008af03, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x810000000000003a, 0x0) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8000, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) r6 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000002c0), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r7, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000b40)={0x24, r6, 0x101, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x60048400}, 0x800) sendmsg$auto_NL802154_CMD_SEND_BEACONS(r2, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f00000002c0)={0x1b0, r6, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@NL802154_ATTR_SEC_KEY={0x194, 0x30, 0x0, 0x1, [@nested={0xf6, 0x86, 0x0, 0x1, [@generic="92cf679a710f426e1d52ef5912eeeb2c2433979715c0bbe546b71048067a5a79d30354d843f8e6a52f0648614206059d2fe6dbed1fb16ae1c8400dd6ef5674dbfd379761bdd413e7324d80c074ac93c677b12f5a41e6ccc7f64cd65a2c84ec86cb0a844f0a3c71532994e4e84c39e00fb25c82817d162fb32c9e4c0d4a0f878ccfcb0e1da9491140bd0c37e5fcc2967933bae13cdc53cde6917a753b0e7bd5ed8d3d0efe7630db8ddcd0f38c351e6f04cc0970b95b17aa0c357720c16ba596c5d99e0399eb677c4dd3d9de16b0cd0a73d8ab8f5478415453f9580369c73c40f836f2bc609e1e", @nested={0x4, 0x14d}, @nested={0x4, 0x122}, @nested={0x4, 0x55}]}, @generic="f0575e8f8280a6508c59f9b45b3702cbd2a63295372a8f009f4bd035abccaa664843c7d95dee68de759b73499e4dc8abafbd3cc9a07f1d0f44d060673957414e2522e91e7666264f50e52c30283f57925474edcaa47075b6a5fc987d5ddb2f4ac5ce8f09d0fa7085", @generic="592af0bce3d5d1d6782fc7bc8cb667d7b6c9c1f2fac682d1aca1e24db057cebbd536051fcf23847b73996debc777fafe"]}, @NL802154_ATTR_SCAN_DURATION={0x5}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x40040}, 0x4000) sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0) connect$auto(r0, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0x4001}, 0x55) getpeername$auto(r0, &(0x7f0000000080)=@ethernet={0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f0000000040)=0x4) 1.647426147s ago: executing program 2 (id=1227): socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x1000, 0x20009, 0x800000000000df, 0x8000000006b2, 0xfffffffffffffffc, 0x7d165632) getpriority$auto(0x2, 0x7ff) setsockopt$auto(0x4, 0x1, 0xc, 0x0, 0x6) mmap$auto(0x0, 0x4022009, 0xdf, 0xebd, 0x401, 0x8004) unshare$auto(0x40000080) clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0xffffffffffffffff, 0x1, 0x4, 0x14, 0x34, 0x8) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) setsockopt$auto(r0, 0x7, 0x2, 0x0, 0x9) mmap$auto(0x0, 0x2030009, 0x2, 0x100000000eb1, 0x0, 0x8000) socket(0xa, 0x5, 0x0) setuid$auto(0x80000000000c) ioctl$auto(0x3, 0xfffffffa, 0x91) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) madvise$auto(0x0, 0x20200, 0x15) mmap$auto(0x0, 0x4, 0x4000000000df, 0x2f33, 0x3ff, 0x300000000000) io_cancel$auto(0x6, 0x0, &(0x7f00000002c0)={0x180000000, 0x42, 0xfffffffffdfffff8, 0xf23d}) mmap$auto(0x20000000, 0xe9, 0xdf, 0x9b72, 0x2, 0x4) socket(0x0, 0x1, 0x22) clone$auto(0xd2d4, 0x101, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) clock_nanosleep$auto(0x0, 0x1003, 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) mlock$auto(0xf3e8, 0x8) mlock$auto(0x81, 0xffff) 1.563208851s ago: executing program 3 (id=1228): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) prctl$auto(0x10000000024, 0x2, 0x2008, 0x4000000c, 0x80001) mmap$auto(0x0, 0xa, 0xa, 0x9b72, 0x8000005, 0x8000) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) clone$auto(0x0, 0x5, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x9) r0 = socket(0xa, 0x5, 0x0) getsockopt$auto(r0, 0x84, 0x1e, 0x0, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) connect$auto(0x3, 0x0, 0x55) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) (async) prctl$auto(0x10000000024, 0x2, 0x2008, 0x4000000c, 0x80001) (async) mmap$auto(0x0, 0xa, 0xa, 0x9b72, 0x8000005, 0x8000) (async) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) (async) clone$auto(0x0, 0x5, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x9) (async) socket(0xa, 0x5, 0x0) (async) getsockopt$auto(r0, 0x84, 0x1e, 0x0, 0x0) (async) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) connect$auto(0x3, 0x0, 0x55) (async) 1.187549703s ago: executing program 3 (id=1229): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r1) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f00000003c0), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000400)={'wg1\x00'}) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x5000000, 0x0, 0x8000}, 0x40000) 1.07617012s ago: executing program 1 (id=1230): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = getpid() mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0) mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000) r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r2, 0xc0686611, &(0x7f0000000340)={0x18, 0x0, 0x4, 0x1, 0x8, 0x1, 0x0, 0x6, 0x5, 0x200, 0xffff7ffe, 0x80000000, 0x7ff, 0x7, 0x9}) process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000200), 0x20000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000db, 0xebd, 0x3, 0xfffffffffffffffc) io_uring_setup$auto(0x6, 0x0) lsm_set_self_attr$auto(0x1, 0x0, 0x80, 0x0) socket(0xa, 0x2, 0x3a) close_range$auto(0x2, 0x8, 0x0) r3 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r4 = socket(0xa, 0x5, 0x0) getsockopt$auto(r4, 0x84, 0xb, 0x0, &(0x7f0000000080)=0x2) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x47, 0x32b, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x2, 0x10000, 0x80, 0x7, 0x0, 0x7, 0x0, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x400000000005b8, 0x0, 0x0, 0x0, 0x4000000000, 0x6, 0xffffffffffffffff, 0x0, 0x8000000000008, 0xfffffffffffffffc, 0x3, 0xa38, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x0, 0x0, 0x0, 0x3]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = socket(0x2, 0x6, 0x0) getsockopt$auto(r5, 0x10d, 0xc, 0x0, 0x0) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 1.067564133s ago: executing program 3 (id=1231): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x20342, 0x0) epoll_ctl$auto(0x5, 0x3, 0xffffffffffffffff, 0x0) syslog$auto(0x4, &(0x7f0000000040)='..\x00', 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) fchdir$auto(0xffffffffffffffff) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) write$auto(r0, 0x0, 0x1) ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xa0860100) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000080)=0x10000) write$auto(0x3, 0x0, 0xfffffdef) 969.976068ms ago: executing program 0 (id=1232): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x20342, 0x0) epoll_ctl$auto(0x5, 0x3, 0xffffffffffffffff, 0x0) syslog$auto(0x4, &(0x7f0000000040)='..\x00', 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) fchdir$auto(0xffffffffffffffff) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) write$auto(r0, 0x0, 0x1) ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0x20000000) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000080)=0x10000) write$auto(0x3, 0x0, 0xfffffdef) 797.163428ms ago: executing program 3 (id=1233): r0 = socket(0xa, 0x1, 0x84) setsockopt$auto(0x3, 0x0, 0x24, 0x0, 0x9) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000001380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001340)={&(0x7f0000002540)={0x17ec, 0x0, 0x800, 0x70bd2c, 0x25dfdbfb, {}, [@NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0x8000}, @NL80211_ATTR_BEACON_HEAD={0x6a9, 0xe, "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"}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x9}, @NL80211_ATTR_VENDOR_DATA={0x1004, 0xc5, "95ea4323709b602c26f02b80e1187ff87875331f48cdf3bc6b38c6692510b73d50fc3e1acd0390e41872d2ef10f0e37676fef1451ce4960fa520e541cccc6c2d34128c27a0f3cf2595110f784dfc4fc97ee5320f4e40db3ca838fc23f33e11da4690b6f925cbabf480b649d6151c326ca85faf703f12650bc14b6bddc504778f44a4c97ca46ab13e47f2c8b9bb99bf14ef95ec864d58b305c7621131af5a879460692dd2e325864995fa01085db9cbb21d65d15f5346cc85d24a5c7bd48c0d31e60296fd8260c174411305d6955a5ad0c3425de4c2561112c3d1bccf0f2ad7247f72eaea9fc907a756efe49dd112ab0c5349b0f6fbcfc0445e4b689de6d6bd2ebb86db88d12aeff67e78745684f454078fe8602036e38e61b6bbe81e00a860a60020703714fc41c4e0b780f618f55c9a7d2ad4ec289f646d772ad810df123ca8f1218370e28d28d59dfd5dea42a41c0f83e3422ab0da838325ba3458a1c2bc36ab9f309f412b9ecf25f77839b0f4b88dc97b7dfa55c7e4fc103ffa1f44025792c13be6b852c248a38bb90259fe009d4841f5ead2256bf891d2e6fb743531e7d2a5d902be697ce6e4992e8625a6a5d1f6fbbb67ba98f72a60cac29965bdecc8e5a682969511ec450210ad6bf685d63bd6687cc7743af0f165d63d26f25ce39f80d3de75d54d01f3c2a4acc21f524f5709ebc93fee8c89013e368130867f72cf8d52bdd19691245b99f1704b87fbf5ca7b5cd3ed98af334f81de658b7f403095f44028f719d127cb50dc65c19cc05d9a1b5b610a18d18b2dbb9228d0a0369a04c1afdf89f2c31fa0daadd3858489a7ee960006b5c3ed879a501388958afd9669b2f9c607b3c51007a973513b167020ba35acdfbe786c34e80a08eb619e4a6831088a07954afde5acfd6fe32e0b102878cd91b380029ce9d1eec370fbcf256a2dd25bcd1d8ac6f5918da2e25e487085fa66b8d8e950fe44b88f1c95527a63b87f1887b1b48d8644ebab161499ae82f058714456f3d6a877f7074e7c8b30fafd66807a31f86cdeeb2f38579ef7e18b1cf88f16c065c22d0107bb25b5dd717ad9e3b872199b231412d39639388a8e3f4a24edf3231c25dd5ea92de34eec1f130827b07ef3d16ff870a89095e33c21d99b0158369d0dba6fe33a8e229834d0c697821a8e464caae1d93283aa76c5a2b3e1a6580b5fd585c18363ff2615716b5b46d5aa1cdc8e87eedc7e18c988de197f529df99a59e73d975472be655c6f3cbfd0c7bb551c16d374aef9c8c188e27993a702ae335ef4bee96152232847f40e1d4cd169ef1523628fc5be6eec215b3d73427ab0b59ef7ce644978b648d73a000b2dbca605e8772a7c9d14dd8795cf026e1c46499304ab0a556a40fcea1133deb0d98319ac2a0f4698f01b82c151d589309846a77664041ed8d77d011e52132d1273ee9e69187ece3f13e5a0eaacdb84164bd0df73dad4341a3f729d59d29e487a072fcb6f89b82e112261b9db4f4572f64fde8f2d45680c5fe9d57fcebbd59804791bd536ac735bbc63a6de3be5b8861f1da16ee4cd35d833e2186905dafd4514836ef815dcf567a91c1d5570729d6c6125c2327d09743eba3d5e5c7d54071f4a1446dd229173b86562a54e2326f82f9959ec221d6035e85ea2698bf1912918139868b18ebd50b7de8a3cfff6adcc7eb50ce2d26fa4d810ea2a15d2f781ac58d3ddf47477bc52bddf6cf3ec0783edab21c6626886c360e45e64a71cc9e833196aa025d050294fa9ef0168afe0191c430629a714cc2c2dac2f6adfdff3bc20fbf35e6ba17594efcb1369641fe37d9b84b20dd9a67652687d12f7a202353c263e3c9663579027685a7806ea89b1f3812038d2787421636060a6082aaf35667f3f6f5dd059c125b246f88e212c1ec69d61b4fd0831969b6fa05dc31fcb941856325f03d614877ff149eb077951a290683c8f3970611b3201d2c5524a01a45c91b17588d640264f796cae62cef33fb976e1ba4c6d7d7b304be29b9ff1c7e757f7bec71c747a686a0a16c191261302b733ddf9baf073116442123b41896215671827c58bb6ffaefe2bc6ec6842de5ad69b2bab71d78fcd5efae911512a594877bfad7ce881b8859d96d593572d68a5ab61c7c06d4f592f45e7390a422490f7d428398fd7929629f08fbd71edd9cb014efa943e6e0f203f6d6254148c20adf61d7da6b16eb4df8fee7ce41a27d42a98053f955b82e0f75c3c32bdc5b903d59ae5d132fabcec249f31a9f851c28bec000befb0d8b50546bdc6448a1d7590407f31f3afd4a39b714a156aaeb4426309776f9c6d7d30e349ee5bb40b885ea5d32440d8e243bf04e0ebd36113f5260b2550e9cf8801541803868e5bd85683e19dae15527a5ad621a32aee8c0745417e2cac9fdd17dc688a58489d433ef9d9fa2beefffc486067b2065007cbeb2f5897f9d4b3d37a4d87be3409223ce6044bc4bf3362f5e540f14ef92140175f4bb6a04d7f40a65906680a9e18ba85f577fce31efacfc47560281fdd1680fcc5c347421b3dc353de4572aa023b020079e786bfd04cada7cd7233e286dd912a41c008782731e4c99f6d13d73aa2f0d3db49c1439e12cb1ea93581523020abe622be2d69e3efb628d85ba2d0b951ccddd86330a17ea82106e20f43577adaac9158f4829573bd1bb5a5bdad4a12c3b3927ca5574599469eaed904e187737157b52d1272e756c6a56011b5bc3326434b34071b20d5418bcf293ee5d1adda2938d5536778b0ff634b7606786208b73f998ee9cb650d134503d13d1bb27c11d839e62e45732b9cbb573c8c81d1c9ce3951da913e79593c566664490323c7e483828eea48d23e0479a943b032ad6fc92a6d23b3ff3d7e88a577ff6d757be3730822d146869d10e6d52dacbd2f519c3041599237074da9578256eb186afc72580167c9ede22a651aa7e7d9523e49c2b0e5d87b3c93ea61c19ef0914587eecc5cd739c66633762ae94a7493de1784da827508e4f064e3bd60b817f0b8b0ed39faa9e08a4ec63cfba3cda2b544511e6496e73c00a5e4142f8b913bc26614718cd9014098ada47a81dd9e85330a5be4d8e4b0a3147ae61548813c97d75acda1e1d257ec4485c9a70cd64c7a8001f4ea176ba06dc3f2c8f8b82f3156fb4aa914d452cda948432c2e6e8482e1714f6dfefb6b6c8d456f8cea464fdd943a7f4b85b1b4a19a65cfb74a9fa92525ef669d1c274e73de5be56e2a6fed19cb249e8654519ab7b67569f57e6a2b27828edbd5ffd42b104b61cb2081c9ffe6d1750d25e257ec380d44c2909f477e0b56d1389f28307b7a3d4dcd38a6ea997d9dcd19448d43e3f1fd37c7f23438e101454a98ae928de4175d2e3d63169424b80ee9f3073662f10272cda837a7fffb240bf6362b5af074fda95a72d5860d47507470287833a54228127ec1ad5d3b60705bda2f7aebac2fc9d41be16fe81993a9bd2f698bae15f98f97c5d3a84ff93738657033fc9e5a329f34c5a7b56b25b4f7535d8f454b65f21831c5b7755e6b754be6fcb9f8f42797055f26ed9a71c8b52330ba7631f5726cc222ba58e274410cf53da5ef3c7facf400d5a180ef8d8b2b794f64d5374af650864832c35d1f2ad2398fd29d018e0c9133469f40ce0291af2ff9c0a98e5211ac65f77aa73e4b1e8556225df7deeeb0903e129e833beadb9de56f9fd45c670db3fe0928969f77ab6343c04dffc6b4576d5014b0370471bcdd5801b3c01491059506e9a4b4db73fd6a5264cc1944a367a34a95aad5f5e1ff8252102460329eb2f1dcc6963c9c3ba0b42e29c7af723ae38b1aa34e11ab0e1eda5102a0611d464883698f3a4e5799d163083c9c46ed65308b01748729b766b0b14e281d2021369803132a838be4b00ff357ac98aeaeaae24d2f19d7aacba4e9fdb00d4d112a85cd28d89d0ccb681c4e673a563b165a09d9230fd69da06d2af57ea4cd9872901d5203e1445b6b27fc63d8a5fa5059c04fb596bd4a3afbbb154f5b2935da7cb1d5e0d93a7b89cb6f3d871391a0492ea789bd7d3aaa670691849bfb1990a2a97d8fa3522aa3e156cddb9301c3d5d53df083b5809259ee97c00e64c42f685fd353174e0f24c67ea5b56e9ce460e6dc89bfe8bc16e168b4c436a572e33bc872f1fc9c909fb18f573a743d600ad92348c389621a2c2f2a93cee386d41d51fc430c3cb51ed488526a4146e3f020209c9b4ef4aa2b60e197cd9d65ecbd8972f22fa37d4f5633fdcf1cbfd0b662d4bd455e497a11aa96ad6d9c5811f1f85f68c8d510e253ec0b5fadda850707055a588a3cc8fcd7b597fcf37f7bb381b0f82469bfc6c4700269bad4aa45f067612de314009510eb50f237a6ec10d74db15a2b038996a52541cdc88301b059278b9a4125eed370d86de6386169243c37f2aa444c167a241af67fa0f402497bd3919138bf80de292984a428cc24d1e358060d5027ab0d87e7d33cc8c51c4bb6ebe19e53020560625fa98255c3064ca8471ecbdd20906bdbd095210e5b0ff310542ac90699bf50e0ac2dceb15012932550da467a78f7a52b9616183657c133458eea18de9ffb0ac093236fe9388a6fb202c14822d35cafdffa40324a854ca91162560fee3e0b7447e4f3a1c8a8a412a1cf38b4e4e1a590e72c02875d43a93893b2a627892f77474bc5de07afaebf859426e2575cf9ec5a0f455b1e263742d61584e5b834c0b0ad2cf5fb04dd41fe61aca019b056013422cba9ef631cba32d0c1e6400807c3b23840887270e69f2dcd5543253ba78f3619583d014584452cd1408b9e2c017f627184fe3d06563d9570737051365fd13111fc7b2d66e883384cce4730ac07a1816b5c3d7e918603c0d86105460ad32d7eb7364339e3fddf8e75892f5aaf6c264f38f4984ecfcc7662a178ac50445aa8433de084fe577193a6df6eb9519d1c50b5e828e116a97224ee8242aa5219803e734f220ea2473567de3fde4fe6212ffe5c1b989c10229aff49824e844592d8602f0710d784a53020e3194f02da12d72da52ef3015932b1f1128dbe68d0f823cd3bb3fc6a9a675919ef0569844702f3f847e0053aa63cb6f4d4a7c3d30d57aa64642efd8228f9d3fa01cf180e75d6f5b44aaf33763f9cd0b81344c2b946a8d0dcd3948b2d93d21ec12535d55a9d7dc6e45833f00ed4fd3903c1e053f083c296c14627e18767f7db008385d7d49e354a606641fc4c6e650cd5930f9a7fa25caf913726919e0a461588b31affec9f8830c100ee90a32972456704cbad7cda9ffc82a17352eb18efc4cebfdd75093e8903da876c666428262496658a3875c6a2c5c75d3dcffc1ddf6e8e70a56d2448a61c859ed5afcb90f80a3cb38686fc1ac441bf6a37ec2dbd1f7ea9f25ad7794d4b2c97b010b43da636f543b3086a2a49548aced2d0c5091a8f897324571ba980af971fd7fc4720da83a0e489a1072acc69d54fa727db456cf0c1029de6091ae3fb95b5d8ab12f124f1a1770da39f51c25ab89a4532db36fd9ce07af1a7f768e0cfd847231f596a344280dd46b95cb8b2fa77b33e67794b2cfb347bdad76438a8b883476e721ddc8b4539d9623026f184f4367f8232ebecb08a203fa555f6da87a91f61c978ae030ff1e64256085d2428471767da592c91e9aeb7723844574ba9db1f5ff425718ff16f2d593f324ec7409d5a35ec83e893ca10aa5ce233d16821ce434632ba7a4e8ea4e32f67d2aab32e1cd49a3cd418e8af8ed899b23db6e1ac86eb90f85ed03bfd8995e14a6a0627bea8f46fd49094b29517"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x3}, @NL80211_ATTR_HE_CAPABILITY={0x3a, 0x10d, "8cb478f566026ec200ed0a6ef90aea680fea7e2467f1ee4bfc68326b40c3ec6807ef0b85ec6a4fadbb5cc5bde9839796551184915da6"}, @NL80211_ATTR_FILS_NONCES={0xcd, 0xf3, "38343568af8df208b010c861039d14fb2089f3d28e5c70e2b03da3baa5f3bf9443a21f87e2f009239eaa7290531ce7756cf546d55e403ba97b3e9bc87aa9812eb6a82a8880433383680e3c835886f3f555a541d62db20b782c63fba2ef2b6f9bcb67018f23b279528c35da0e3f9c6586d5add986cc70b0de1707edfc8afec177e9d056f9d7e63e6c7cb274c4d1607b6dc3598594a32d964967bf4a3b5fded589cd78415af4f5dc655fb99081a8098c044a4ae92ac15855bebf7444b0c2837bdc3bf5bcd9b9ae2f255a"}]}, 0x17ec}, 0x1, 0x0, 0x0, 0x20000000}, 0xc) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/vmstat\x00', 0x22040, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) select$auto(0x3, 0x0, &(0x7f0000000040)={[0x9, 0x200, 0x0, 0x7, 0x7, 0x3, 0x6, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x6, 0x6]}, 0x0, 0x0) mmap$auto(0x1, 0x7ff, 0x100000000, 0x11, 0xfffffffffffffff1, 0x8000) socket(0xa, 0x2, 0x88) select$auto(0x6d0c, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x800000000000008, 0xc, 0x9, 0x3, 0x6, 0x1, 0x40009, 0x5e582972, 0x4000000000000000, 0x14, 0x93, 0x8, 0x8, 0x6]}, 0x0, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x14, 0x940, 0x1ffe0, 0x3, 0x6, 0x6, 0x7, 0x5, 0x2, 0x9, 0x6, 0x9, 0x2, 0x3, 0x2, 0x80}, 0x1fe, 0x7) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) connect$auto(0x3, &(0x7f0000000140), 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xff00) connect$auto(0x3, &(0x7f0000000000), 0x53) socket(0x11, 0x80003, 0x300) mmap$auto(0x1, 0x9, 0x3ff57699, 0x9b72, 0x4, 0x8000000000008000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x59616d61, 0xdaffffffffffffff, 0x7ff, 0xffffffffffffffff, 0x8) setresuid$auto(0x0, 0x0, 0xffffffffffffffff) prctl$auto(0x4, 0x9, 0x6, 0x3, 0x0) ptrace$auto(0x10, 0x10000000000001, 0xffffffffffffff56, 0x868f) pipe2$auto(&(0x7f0000000000)=0xffffffffffffffff, 0x1) r3 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x2000, 0x80, 0x22}, 0x18) socket$nl_generic(0x10, 0x3, 0x10) pidfd_getfd$auto(r2, r3, 0x3) socket(0x2, 0x80002, 0x73) 445.597025ms ago: executing program 0 (id=1234): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x29, 0x940, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd]}, 0x1fe, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = socket(0x2, 0x801, 0x100) poll$auto(&(0x7f0000000080)={r0, 0x81, 0x3}, 0x4, 0x7fffffff) connect$auto(0x3, &(0x7f0000000000), 0x55) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x25, 0x1, 0x3) setsockopt$auto(0x4, 0x2000000000000116, 0x80, 0xfffffffffffffffd, 0x9) r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) semctl$auto(0x80001ff, 0x804, 0x5, 0x4) keyctl$auto(0x1, 0x7, 0x100, 0x8, 0x4) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd7000fbdbdf250f00000008000300", @ANYRES32=r4, @ANYBLOB='\b\x00.'], 0x24}, 0x1, 0x0, 0x0, 0xc050}, 0x140000e4) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000640), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) 413.05038ms ago: executing program 1 (id=1235): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2a, 0x1, 0x4) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) lsm_list_modules$auto(0x0, 0x0, 0x0) r0 = socket(0x2, 0x801, 0x106) getsockopt$auto(r0, 0x11c, 0x3, 0x0, 0x0) r1 = socket(0x2a, 0x3, 0x3a) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r1) r4 = gettid() sendmsg$auto_NL802154_CMD_DISASSOCIATE(r2, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\t\x00', @ANYRES16=r3, @ANYBLOB="000227bd7000fcdbdf2529000000050007000700000005001f000800000008000b0090c18f1508001c00", @ANYRES32=r4, @ANYBLOB="08002100050000000800160005000000"], 0x44}}, 0x859) ioctl$auto(0x1, 0x8983, 0x4) recvfrom$auto(0xffffffffffffffff, &(0x7f0000000040), 0x9, 0x3, 0x0, 0x0) mprotect$auto(0x49aa65ca, 0xa74d, 0x4) socketpair$auto(0xce, 0x8, 0x4, &(0x7f0000000080)=0x7) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f0000000040)={0x0, 0x34000}, 0x4, 0x0, 0x1}, 0xed7138c}, 0x2, 0x9) mmap$auto(0x0, 0x80000400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x10, 0x2, 0x300) open(0x0, 0xa240, 0x15e) socket(0xa, 0x3, 0x3a) statmount$auto(0x0, &(0x7f0000000180)={0x40008, 0x1, 0x9, 0x3, 0x40, 0x943, 0x1ffde, 0x3, 0x2000000000000006, 0x2, 0x9, 0x5, 0x2, 0x7, 0xffffffffffffffff, 0x9, 0xffff, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b40000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x8000000000000004, 0x0, 0x0, 0x0, 0x0, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x80]}, 0x1fe, 0x81) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) ioperm$auto(0x7, 0x6, 0x2) kcmp$auto(0x1, 0x1, 0x3, 0x85, 0x2) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 203.965109ms ago: executing program 1 (id=1236): r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r0, 0xc1105511, &(0x7f0000000080)={{0x0, 0x5, 0x6, 0x6, "3c675100301a21a5fdfc1f8de43460fd7a4e868f25391b0c50cb5656120aa04dec8c6e5b5ff0833e0bfe7f56"}, 0x0, 0x3, 0x7ff, 0x6, @integer={0x0, 0xb82c, 0x1000}, "ee04b82a71dfe2dacc04c30cd7f8b08ceeb4a7d0bd8865b0407c944718f4f5e0be675eff03000000000000ecfbaa2f4278d22bf2d253dce7a700"}) (async) getsockopt$auto(0xffffffffffffffff, 0x6, 0x18, &(0x7f0000000380)='\t\x00T\xce\xb3O1\xa8\x98HgGKt\xc1\x91Cy\n\x106\xe3\xd8\xf9\x7f`\x10\xbd\x06\xaf\x99gkP\xec\xab\xd8\xb7\xb5\x9eW\x10w\xf0\xbf\x86\xca\x8bii[6A%\xb8\x1cm\x89.\x1b\x02\xea\xd2P\x00\x00\xf7\xe0\x9e\x17\xd6$O\xea\xe5y\xba(\x9c\x00i\xdb\n\x91\x132\x87=7\xa8\x9f\xe3\x99\x8b]?\xdd\a\xb8\f\xbd\xbek\xadY\x8a\xe5\x90\xdc\xe1n\xadz\xa1\xb4\xe9\x10\xc3\xdeN\xe9\xaa\x10\xcc\xf4]\xcd\xd8\x01\xc3\xee\x96\xb61\xf4\xbe?\x80\x18e\x99\xdb\b\ap\x0f(>oW\xd2\xa4`V\xed9\xb1\x88\xc4\axDG}\x93\xaf\xe5\x83\x10\xcf\xf2\xcd\xfe\xa59o7\xd5n\x1b}\xc4\xb0\x89.uA8/\xfd\x12\x1e\xf4\xff\t', 0x0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1b004d"], 0x1ac}, 0x1, 0x0, 0x0, 0x4048811}, 0x40000) (async) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) (async) r1 = socket(0x10, 0x3, 0x6) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x50) (async, rerun: 32) mmap$auto(0x0, 0xf22f, 0xdf, 0x9b72, 0x2, 0x8000) (rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x3ff, 0x0) r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x40802, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000040), r3) (async) sendmsg$auto_MACSEC_CMD_UPD_RXSC(r3, 0x0, 0x20000000) r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001700), r3) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f00000017c0)={0x0, 0x0, &(0x7f0000001780)={&(0x7f0000001740)={0x1c, r4, 0x1, 0x70bd27, 0x25dfdbff, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4048980) (async) write$auto(r2, 0x0, 0xfec) (async) pipe$auto(&(0x7f0000000000)) (async) ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0) (async) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) (async) r5 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f00000028c0), 0x100, 0x0) ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(r5, 0x40095505, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x2b) 200.396541ms ago: executing program 3 (id=1237): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x3, 0x6) setsockopt$auto(0x3, 0x0, 0x29, 0x0, 0x28) r0 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) ppoll$auto(0x0, 0x7f, 0x0, 0x0, 0x8) r1 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f0000000100), 0x2200, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffbfffa, 0x8000) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0xf7}, 0x7) open(&(0x7f0000000000)='./file0\x00', 0x40, 0x20) close_range$auto(r2, 0x8, 0x0) openat$auto_fops_bool_file(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/failslab/ignore-gfp-wait\x00', 0x101382, 0x0) memfd_create$auto(&(0x7f0000000080)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5) gettid() mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x1e, 0x805, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) ioctl$auto(0x3, 0x40045532, 0x38) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x40, 0x0) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000002100), 0xffffffffffffffff) 0s ago: executing program 2 (id=1238): sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x2000c000) r0 = socket(0x25, 0x1, 0x0) connect$auto(r0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0) openat$auto_ftrace_formats_fops_trace_printk(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/printk_formats\x00', 0x381000, 0x0) read$auto_mISDN_fops_timerdev(r2, &(0x7f0000000040)=""/210, 0xd2) r3 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptywa\x00', 0x400, 0x0) ioctl$auto(r4, 0x540b, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x3, 0x6) r5 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0xc) socket(0x2, 0x1, 0x0) setsockopt$auto(0x6, 0x6, 0x14, &(0x7f0000000240)='ns/cgroup\x00', 0xc) r6 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r6) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/uprobe/format/ref_ctr_offset\x00', 0xa0000, 0x0) msgget$auto(0xa, 0x77d9) msgrcv$auto(0x0, 0x0, 0xffc, 0x1, 0xb1) msgctl$auto(0x0, 0x0, 0x0) r8 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/environ\x00', 0x800, 0x0) read$auto_proc_environ_operations_base(r8, &(0x7f0000000c40)=""/141, 0x8d) read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f00000020c0)=""/29, 0x1d) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_PNETID_GET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000005c0)=ANY=[@ANYRES64=r5, @ANYRES16=r3, @ANYBLOB="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"], 0x104}, 0x1, 0x0, 0x0, 0x400c804}, 0x20008800) r9 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000180), 0x800, 0x0) io_uring_setup$auto(0x5, &(0x7f0000000340)={0x2, 0x5, 0x6, 0xe566, 0x151, 0x7fff, r9, [0x8, 0xfffffffa, 0x6], {0x3, 0x5, 0xfffffffd, 0x5, 0x0, 0x5, 0x231, 0x1, 0xc}, {0x8b, 0x8, 0xe6, 0x7, 0x6, 0x3ff, 0x7, 0xfffffff8, 0xffa}}) kernel console output (not intermixed with test programs): DUID 00:04:b7:d5:f8:ee:8b:f8:ce:c6:f2:e0:c5:17:b2:3a:e2:85 forked to background, child pid 5496 [ 42.553167][ T5497] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.567100][ T5497] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.54' (ED25519) to the list of known hosts. syzkaller login: [ 63.584728][ T5815] cgroup: Unknown subsys name 'net' [ 63.721438][ T5815] cgroup: Unknown subsys name 'cpuset' [ 63.730247][ T5815] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 65.094690][ T5815] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 67.067766][ T5833] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 67.076511][ T5833] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 67.085634][ T5833] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 67.093750][ T5833] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 67.101999][ T5833] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 67.109640][ T5833] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 67.110788][ T5837] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 67.117643][ T5833] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 67.128774][ T5838] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 67.132953][ T5833] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 67.142914][ T5838] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 67.146102][ T5840] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 67.152953][ T5838] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 67.159152][ T5840] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 67.165521][ T5837] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 67.181731][ T5838] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 67.188535][ T5840] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 67.189445][ T5838] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 67.203812][ T5840] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 67.204675][ T5838] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 67.222669][ T5839] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 67.246709][ T5838] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 67.257857][ T5838] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 67.265182][ T5838] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 67.598879][ T5825] chnl_net:caif_netlink_parms(): no params data found [ 67.662128][ T5824] chnl_net:caif_netlink_parms(): no params data found [ 67.734554][ T5828] chnl_net:caif_netlink_parms(): no params data found [ 67.807985][ T5826] chnl_net:caif_netlink_parms(): no params data found [ 67.820388][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.828159][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.835476][ T5825] bridge_slave_0: entered allmulticast mode [ 67.842601][ T5825] bridge_slave_0: entered promiscuous mode [ 67.867780][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.874944][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state [ 67.882562][ T5825] bridge_slave_1: entered allmulticast mode [ 67.889900][ T5825] bridge_slave_1: entered promiscuous mode [ 67.972065][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 67.983850][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 67.993306][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.001258][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.008591][ T5824] bridge_slave_0: entered allmulticast mode [ 68.015099][ T5824] bridge_slave_0: entered promiscuous mode [ 68.030412][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.037794][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.044974][ T5828] bridge_slave_0: entered allmulticast mode [ 68.052088][ T5828] bridge_slave_0: entered promiscuous mode [ 68.086766][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.094215][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.101869][ T5824] bridge_slave_1: entered allmulticast mode [ 68.109529][ T5824] bridge_slave_1: entered promiscuous mode [ 68.116606][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.124346][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.131893][ T5828] bridge_slave_1: entered allmulticast mode [ 68.139772][ T5828] bridge_slave_1: entered promiscuous mode [ 68.161730][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.169063][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.176255][ T5826] bridge_slave_0: entered allmulticast mode [ 68.183596][ T5826] bridge_slave_0: entered promiscuous mode [ 68.201214][ T5825] team0: Port device team_slave_0 added [ 68.226440][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.235704][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.243022][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.250497][ T5826] bridge_slave_1: entered allmulticast mode [ 68.257486][ T5826] bridge_slave_1: entered promiscuous mode [ 68.265745][ T5825] team0: Port device team_slave_1 added [ 68.280503][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.323746][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.335307][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.355695][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.367674][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.377788][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.384736][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.411381][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.445282][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.452413][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.478581][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.505023][ T5828] team0: Port device team_slave_0 added [ 68.513677][ T5828] team0: Port device team_slave_1 added [ 68.529282][ T5826] team0: Port device team_slave_0 added [ 68.546538][ T5824] team0: Port device team_slave_0 added [ 68.555383][ T5824] team0: Port device team_slave_1 added [ 68.568941][ T5826] team0: Port device team_slave_1 added [ 68.626533][ T5825] hsr_slave_0: entered promiscuous mode [ 68.633345][ T5825] hsr_slave_1: entered promiscuous mode [ 68.655696][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.665265][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.691302][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.702809][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.710031][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.737019][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.755868][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.763039][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.789084][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.805743][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.813081][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.839091][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.851729][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.858775][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.885452][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.897509][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.904468][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.930432][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.991742][ T5824] hsr_slave_0: entered promiscuous mode [ 68.998392][ T5824] hsr_slave_1: entered promiscuous mode [ 69.004505][ T5824] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 69.012585][ T5824] Cannot create hsr debugfs directory [ 69.072705][ T5828] hsr_slave_0: entered promiscuous mode [ 69.080126][ T5828] hsr_slave_1: entered promiscuous mode [ 69.086120][ T5828] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 69.094082][ T5828] Cannot create hsr debugfs directory [ 69.102938][ T5826] hsr_slave_0: entered promiscuous mode [ 69.109340][ T5826] hsr_slave_1: entered promiscuous mode [ 69.115293][ T5826] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 69.122968][ T5826] Cannot create hsr debugfs directory [ 69.278237][ T5838] Bluetooth: hci0: command tx timeout [ 69.278270][ T5839] Bluetooth: hci1: command tx timeout [ 69.289556][ T5831] Bluetooth: hci2: command tx timeout [ 69.357173][ T5839] Bluetooth: hci3: command tx timeout [ 69.394944][ T5825] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 69.409432][ T5825] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 69.420487][ T5825] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 69.436142][ T5825] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 69.473723][ T5828] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 69.484563][ T5828] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 69.496682][ T5828] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 69.507888][ T5828] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 69.583072][ T5824] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 69.592527][ T5824] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 69.614722][ T5824] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 69.623437][ T5824] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 69.695887][ T5826] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 69.718820][ T5826] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 69.744046][ T5826] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 69.777599][ T5826] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 69.795183][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.823545][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.839995][ T5825] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.855539][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.863236][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.886491][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.893614][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.919694][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.953740][ T5824] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.981338][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.999243][ T54] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.006349][ T54] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.015631][ T54] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.022770][ T54] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.040251][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.047411][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.072283][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.079444][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.178049][ T5824] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 70.232994][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.309019][ T5826] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.325322][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.332508][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.375370][ T1152] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.382905][ T1152] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.403292][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.524017][ T5825] veth0_vlan: entered promiscuous mode [ 70.546631][ T5825] veth1_vlan: entered promiscuous mode [ 70.606109][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.632082][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.658367][ T5825] veth0_macvtap: entered promiscuous mode [ 70.672403][ T5825] veth1_macvtap: entered promiscuous mode [ 70.728969][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 70.753224][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 70.768818][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.782452][ T5828] veth0_vlan: entered promiscuous mode [ 70.812140][ T5828] veth1_vlan: entered promiscuous mode [ 70.823913][ T5825] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.836237][ T5825] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.845269][ T5825] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.854226][ T5825] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.864544][ T5824] veth0_vlan: entered promiscuous mode [ 70.899510][ T5824] veth1_vlan: entered promiscuous mode [ 70.941321][ T5826] veth0_vlan: entered promiscuous mode [ 70.954239][ T5826] veth1_vlan: entered promiscuous mode [ 70.995153][ T5828] veth0_macvtap: entered promiscuous mode [ 71.026825][ T5828] veth1_macvtap: entered promiscuous mode [ 71.042392][ T54] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.054396][ T54] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.092534][ T5826] veth0_macvtap: entered promiscuous mode [ 71.102648][ T5824] veth0_macvtap: entered promiscuous mode [ 71.120753][ T5826] veth1_macvtap: entered promiscuous mode [ 71.131151][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.139833][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.139860][ T5824] veth1_macvtap: entered promiscuous mode [ 71.157981][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.169192][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.180759][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.205466][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.216125][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.229038][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.257693][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.272234][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.283860][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.294859][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.305478][ T5825] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 71.306192][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.331454][ T5828] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.341044][ T5828] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.350718][ T5828] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.357323][ T5839] Bluetooth: hci1: command tx timeout [ 71.359968][ T5828] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.364819][ T5831] Bluetooth: hci2: command tx timeout [ 71.373703][ T5838] Bluetooth: hci0: command tx timeout [ 71.418696][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.437471][ T5838] Bluetooth: hci3: command tx timeout [ 71.449583][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.459777][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.471774][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.482569][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.494960][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.511738][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.521082][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.538357][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.560367][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.573753][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.585558][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.616059][ T5824] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.631071][ T5824] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.647227][ T5824] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.659435][ T5824] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.672415][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.693759][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.697528][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.704034][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.710888][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.731881][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.743404][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.759087][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.771072][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.840449][ T5826] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.851665][ T5826] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.861123][ T5826] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.877129][ T5826] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.931110][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.946597][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.011415][ T1152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.023257][ T1152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.093949][ T1152] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.121037][ T1152] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.137993][ T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.158443][ T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.205434][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.225327][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.283476][ T1152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.308380][ T1152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.421161][ T5908] netlink: 330 bytes leftover after parsing attributes in process `syz.2.6'. [ 73.437078][ T5838] Bluetooth: hci0: command tx timeout [ 73.439052][ T5839] Bluetooth: hci1: command tx timeout [ 73.458771][ T5831] Bluetooth: hci2: command tx timeout [ 73.502983][ T5908] mac80211_hwsim hwsim6 : renamed from wlan0 (while UP) [ 73.517457][ T5831] Bluetooth: hci3: command tx timeout [ 75.518184][ T5831] Bluetooth: hci1: command tx timeout [ 75.518204][ T5839] Bluetooth: hci2: command tx timeout [ 75.518241][ T5839] Bluetooth: hci0: command tx timeout [ 75.597443][ T5839] Bluetooth: hci3: command tx timeout [ 76.189763][ T5920] kexec: Could not allocate control_code_buffer [ 76.377841][ T5937] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13'. [ 76.977683][ T5947] netlink: 28 bytes leftover after parsing attributes in process `syz.0.16'. [ 77.016912][ T5947] macsec0: entered promiscuous mode [ 77.028181][ T5947] Zero length message leads to an empty skb [ 77.609039][ T5960] syz.0.19 uses obsolete (PF_INET,SOCK_PACKET) [ 79.060206][ T5982] netlink: 4 bytes leftover after parsing attributes in process `syz.3.25'. [ 79.734506][ T5991] netlink: 28 bytes leftover after parsing attributes in process `syz.0.28'. [ 82.030995][ T6021] netlink: 4 bytes leftover after parsing attributes in process `syz.0.35'. [ 82.969891][ T6034] netlink: 28 bytes leftover after parsing attributes in process `syz.1.38'. [ 82.999269][ T6034] macsec0: entered promiscuous mode [ 83.664588][ T6031] kexec: Could not allocate control_code_buffer [ 83.994812][ T6042] netlink: 330 bytes leftover after parsing attributes in process `syz.0.42'. [ 84.019172][ T6042] mac80211_hwsim hwsim2 : renamed from wlan0 (while UP) [ 84.268739][ T6053] netlink: 4 bytes leftover after parsing attributes in process `syz.3.46'. [ 84.937113][ T6068] netlink: 28 bytes leftover after parsing attributes in process `syz.0.50'. [ 85.930904][ T6072] netlink: 28 bytes leftover after parsing attributes in process `syz.0.60'. [ 86.207610][ T6081] netlink: 28 bytes leftover after parsing attributes in process `syz.0.63'. [ 86.643190][ T6091] netlink: 4 bytes leftover after parsing attributes in process `syz.2.57'. [ 87.044744][ T8] cfg80211: failed to load regulatory.db [ 87.488881][ T6079] kexec: Could not allocate control_code_buffer [ 88.051196][ T6102] netlink: 330 bytes leftover after parsing attributes in process `syz.1.62'. [ 88.106995][ T6102] mac80211_hwsim hwsim7 : renamed from wlan0 (while UP) [ 89.151420][ T6118] netlink: 28 bytes leftover after parsing attributes in process `syz.0.66'. [ 90.570541][ T6141] netlink: 4 bytes leftover after parsing attributes in process `syz.3.69'. [ 90.947773][ T6149] netlink: 28 bytes leftover after parsing attributes in process `syz.1.76'. [ 91.248035][ T6158] netlink: 334 bytes leftover after parsing attributes in process `syz.3.79'. [ 93.357850][ T6189] netlink: 342 bytes leftover after parsing attributes in process `syz.2.88'. [ 93.408816][ T6195] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 93.428540][ T6194] netlink: 28 bytes leftover after parsing attributes in process `syz.0.89'. [ 93.896416][ T6199] netlink: 28 bytes leftover after parsing attributes in process `syz.1.92'. [ 95.592312][ T6228] netlink: 28 bytes leftover after parsing attributes in process `syz.0.103'. [ 97.388173][ T6259] netlink: 28 bytes leftover after parsing attributes in process `syz.3.112'. [ 97.439058][ T6259] macsec0: entered promiscuous mode [ 99.305928][ T6297] netlink: 28 bytes leftover after parsing attributes in process `syz.1.125'. [ 100.991270][ T6324] netlink: 28 bytes leftover after parsing attributes in process `syz.1.136'. [ 101.007432][ T6326] netlink: 12 bytes leftover after parsing attributes in process `syz.0.135'. [ 101.044529][ T6326] HfR: entered promiscuous mode [ 101.078772][ T6327] netlink: 16 bytes leftover after parsing attributes in process `syz.0.135'. [ 103.553428][ T6365] netlink: 4 bytes leftover after parsing attributes in process `syz.0.145'. [ 103.871199][ T6371] netlink: 28 bytes leftover after parsing attributes in process `syz.2.147'. [ 103.958205][ T6371] macsec0: entered promiscuous mode [ 104.197249][ T6376] netlink: 16 bytes leftover after parsing attributes in process `syz.3.149'. [ 106.059204][ T6410] netlink: 4 bytes leftover after parsing attributes in process `syz.2.156'. [ 106.731048][ T6422] netlink: 28 bytes leftover after parsing attributes in process `syz.2.160'. [ 108.072315][ T6450] netlink: 4 bytes leftover after parsing attributes in process `syz.3.168'. [ 108.724507][ T6465] netlink: 28 bytes leftover after parsing attributes in process `syz.2.172'. [ 109.057509][ T29] audit: type=1800 audit(1734337873.942:2): pid=6482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.178" name="features" dev="configfs" ino=10424 res=0 errno=0 [ 109.117028][ T29] audit: type=1800 audit(1734337873.992:3): pid=6482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.178" name="dbroot" dev="configfs" ino=9421 res=0 errno=0 [ 109.964848][ T6515] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 109.984112][ T6518] netlink: 28 bytes leftover after parsing attributes in process `syz.0.189'. [ 109.994164][ T6515] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 111.150225][ T6545] netlink: 28 bytes leftover after parsing attributes in process `syz.0.199'. [ 111.759414][ T6576] netlink: 8 bytes leftover after parsing attributes in process `syz.0.206'. [ 112.327891][ T6588] netlink: 28 bytes leftover after parsing attributes in process `syz.0.210'. [ 112.347140][ T6588] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 112.355746][ T6588] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 112.385541][ T6588] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 112.393165][ T6588] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 112.539117][ T6592] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec"[6592] [ 112.740493][ T6594] netlink: 28 bytes leftover after parsing attributes in process `syz.2.212'. [ 113.077605][ T6600] netlink: 4 bytes leftover after parsing attributes in process `syz.0.214'. [ 113.702804][ T6611] ima: Unable to open file: / (-2) [ 113.726443][ T6611] binder: 6609:6611 ioctl 40044900 800000000000003 returned -22 [ 113.769817][ T6611] ima: policy update failed [ 113.786893][ T29] audit: type=1802 audit(1734337878.672:4): pid=6611 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.220" res=0 errno=0 [ 114.337648][ T6630] netlink: 28 bytes leftover after parsing attributes in process `syz.1.222'. [ 114.548454][ T6636] netlink: 4 bytes leftover after parsing attributes in process `syz.2.226'. [ 115.496214][ T6673] netlink: 16 bytes leftover after parsing attributes in process `syz.0.233'. [ 116.162530][ T6680] netlink: 28 bytes leftover after parsing attributes in process `syz.1.235'. [ 116.390128][ T6685] netlink: 4 bytes leftover after parsing attributes in process `syz.3.237'. [ 116.806319][ T6705] netlink: 64 bytes leftover after parsing attributes in process `syz.1.244'. [ 117.023524][ T6713] netlink: 28 bytes leftover after parsing attributes in process `syz.1.246'. [ 117.994622][ T6748] netlink: 4 bytes leftover after parsing attributes in process `syz.2.251'. [ 118.954758][ T6766] netlink: 28 bytes leftover after parsing attributes in process `syz.0.256'. [ 119.745751][ T6783] netlink: 4 bytes leftover after parsing attributes in process `syz.3.261'. [ 120.587901][ T6803] netlink: 28 bytes leftover after parsing attributes in process `syz.2.267'. [ 121.011271][ T6812] netlink: 4 bytes leftover after parsing attributes in process `syz.3.270'. [ 121.376014][ T6821] block nbd0: not configured, cannot reconfigure [ 121.827742][ T6831] netlink: 8 bytes leftover after parsing attributes in process `syz.3.275'. [ 121.847119][ T6828] netlink: 8 bytes leftover after parsing attributes in process `syz.3.275'. [ 122.274368][ T6845] netlink: 28 bytes leftover after parsing attributes in process `syz.3.279'. [ 122.378673][ T6851] netlink: 4 bytes leftover after parsing attributes in process `syz.0.282'. [ 122.937866][ T6874] FAULT_INJECTION: forcing a failure. [ 122.937866][ T6874] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 123.036275][ T6874] CPU: 0 UID: 0 PID: 6874 Comm: syz.3.288 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 123.046945][ T6874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 123.057041][ T6874] Call Trace: [ 123.060433][ T6874] [ 123.063390][ T6874] dump_stack_lvl+0x16c/0x1f0 [ 123.068124][ T6874] should_fail_ex+0x497/0x5b0 [ 123.072847][ T6874] _copy_from_user+0x2e/0xd0 [ 123.077475][ T6874] copy_msghdr_from_user+0x99/0x160 [ 123.082713][ T6874] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 123.088579][ T6874] ___sys_sendmsg+0xff/0x1e0 [ 123.093213][ T6874] ? __pfx____sys_sendmsg+0x10/0x10 [ 123.098461][ T6874] ? __pfx_lock_release+0x10/0x10 [ 123.103512][ T6874] ? trace_lock_acquire+0x14e/0x1f0 [ 123.108753][ T6874] ? __fget_files+0x206/0x3a0 [ 123.113465][ T6874] __sys_sendmsg+0x16e/0x220 [ 123.118089][ T6874] ? __pfx___sys_sendmsg+0x10/0x10 [ 123.123272][ T6874] do_syscall_64+0xcd/0x250 [ 123.127811][ T6874] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.133734][ T6874] RIP: 0033:0x7faffc585d19 [ 123.138172][ T6874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 123.157801][ T6874] RSP: 002b:00007faffa3f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 123.166226][ T6874] RAX: ffffffffffffffda RBX: 00007faffc775fa0 RCX: 00007faffc585d19 [ 123.174214][ T6874] RDX: 0000000000040084 RSI: 00000000200001c0 RDI: 0000000000000004 [ 123.182184][ T6874] RBP: 00007faffa3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 123.190160][ T6874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 123.198138][ T6874] R13: 0000000000000000 R14: 00007faffc775fa0 R15: 00007ffea574d268 [ 123.206129][ T6874] [ 123.459322][ T6883] netlink: 4 bytes leftover after parsing attributes in process `syz.1.292'. [ 123.689491][ T6888] netlink: 28 bytes leftover after parsing attributes in process `syz.2.291'. [ 124.293868][ T6894] netlink: 4 bytes leftover after parsing attributes in process `syz.2.295'. [ 124.665089][ T6905] netlink: 130 bytes leftover after parsing attributes in process `syz.2.299'. [ 124.917810][ T6913] FAULT_INJECTION: forcing a failure. [ 124.917810][ T6913] name failslab, interval 1, probability 0, space 0, times 1 [ 124.945010][ T6912] netlink: 4 bytes leftover after parsing attributes in process `syz.2.302'. [ 124.957565][ T6913] CPU: 1 UID: 0 PID: 6913 Comm: syz.3.301 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 124.968209][ T6913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 124.978295][ T6913] Call Trace: [ 124.981605][ T6913] [ 124.984576][ T6913] dump_stack_lvl+0x16c/0x1f0 [ 124.989311][ T6913] should_fail_ex+0x497/0x5b0 [ 124.994002][ T6913] ? fs_reclaim_acquire+0xae/0x150 [ 124.999126][ T6913] should_failslab+0xc2/0x120 [ 125.003816][ T6913] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 125.009632][ T6913] ? __alloc_skb+0x2b3/0x380 [ 125.014244][ T6913] __alloc_skb+0x2b3/0x380 [ 125.018667][ T6913] ? __pfx___alloc_skb+0x10/0x10 [ 125.023613][ T6913] ? lock_acquire+0x2f/0xb0 [ 125.028123][ T6913] netlink_alloc_large_skb+0x69/0x130 [ 125.033514][ T6913] netlink_sendmsg+0x689/0xd70 [ 125.038300][ T6913] ? __pfx_netlink_sendmsg+0x10/0x10 [ 125.043609][ T6913] ____sys_sendmsg+0x9ae/0xb40 [ 125.048384][ T6913] ? copy_msghdr_from_user+0x10b/0x160 [ 125.053859][ T6913] ? __pfx_____sys_sendmsg+0x10/0x10 [ 125.059168][ T6913] ___sys_sendmsg+0x135/0x1e0 [ 125.063874][ T6913] ? __pfx____sys_sendmsg+0x10/0x10 [ 125.069184][ T6913] ? __pfx_lock_release+0x10/0x10 [ 125.074206][ T6913] ? trace_lock_acquire+0x14e/0x1f0 [ 125.079436][ T6913] ? __fget_files+0x206/0x3a0 [ 125.084156][ T6913] __sys_sendmsg+0x16e/0x220 [ 125.088771][ T6913] ? __pfx___sys_sendmsg+0x10/0x10 [ 125.093941][ T6913] do_syscall_64+0xcd/0x250 [ 125.098496][ T6913] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.104421][ T6913] RIP: 0033:0x7faffc585d19 [ 125.108845][ T6913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.128463][ T6913] RSP: 002b:00007faffa3f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 125.136968][ T6913] RAX: ffffffffffffffda RBX: 00007faffc775fa0 RCX: 00007faffc585d19 [ 125.144939][ T6913] RDX: 0000000000040084 RSI: 00000000200001c0 RDI: 0000000000000004 [ 125.152910][ T6913] RBP: 00007faffa3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 125.160882][ T6913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 125.168855][ T6913] R13: 0000000000000000 R14: 00007faffc775fa0 R15: 00007ffea574d268 [ 125.176839][ T6913] [ 125.179995][ C1] vkms_vblank_simulate: vblank timer overrun [ 125.491517][ T6923] netlink: 28 bytes leftover after parsing attributes in process `syz.3.304'. [ 125.552022][ T6925] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 125.586110][ T6925] ======================================================= [ 125.586110][ T6925] WARNING: The mand mount option has been deprecated and [ 125.586110][ T6925] and is ignored by this kernel. Remove the mand [ 125.586110][ T6925] option from the mount to silence this warning. [ 125.586110][ T6925] ======================================================= [ 125.754188][ T6931] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 126.984930][ T6966] __nla_validate_parse: 1 callbacks suppressed [ 126.984950][ T6966] netlink: 4 bytes leftover after parsing attributes in process `syz.1.314'. [ 127.121706][ T6968] netlink: 28 bytes leftover after parsing attributes in process `syz.0.315'. [ 128.074826][ T7005] FAULT_INJECTION: forcing a failure. [ 128.074826][ T7005] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 128.091753][ T7005] CPU: 0 UID: 0 PID: 7005 Comm: syz.2.324 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 128.102400][ T7005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 128.112485][ T7005] Call Trace: [ 128.115789][ T7005] [ 128.118754][ T7005] dump_stack_lvl+0x16c/0x1f0 [ 128.123473][ T7005] should_fail_ex+0x497/0x5b0 [ 128.128197][ T7005] _copy_from_iter+0x29b/0x1400 [ 128.133091][ T7005] ? trace_lock_acquire+0x14e/0x1f0 [ 128.138329][ T7005] ? __alloc_skb+0x200/0x380 [ 128.140196][ T6997] mmap: syz.0.323 (6997) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 128.142944][ T7005] ? __pfx__copy_from_iter+0x10/0x10 [ 128.160068][ T7005] ? __virt_addr_valid+0x1a4/0x590 [ 128.165220][ T7005] ? __virt_addr_valid+0x5e/0x590 [ 128.170285][ T7005] ? __phys_addr_symbol+0x30/0x80 [ 128.175361][ T7005] ? __check_object_size+0x488/0x710 [ 128.180695][ T7005] netlink_sendmsg+0x813/0xd70 [ 128.185498][ T7005] ? __pfx_netlink_sendmsg+0x10/0x10 [ 128.190840][ T7005] ____sys_sendmsg+0x9ae/0xb40 [ 128.195730][ T7005] ? copy_msghdr_from_user+0x10b/0x160 [ 128.201230][ T7005] ? __pfx_____sys_sendmsg+0x10/0x10 [ 128.206579][ T7005] ___sys_sendmsg+0x135/0x1e0 [ 128.211293][ T7005] ? __pfx____sys_sendmsg+0x10/0x10 [ 128.216549][ T7005] ? __pfx_lock_release+0x10/0x10 [ 128.221601][ T7005] ? trace_lock_acquire+0x14e/0x1f0 [ 128.226846][ T7005] ? __fget_files+0x206/0x3a0 [ 128.231568][ T7005] __sys_sendmsg+0x16e/0x220 [ 128.236277][ T7005] ? __pfx___sys_sendmsg+0x10/0x10 [ 128.241467][ T7005] do_syscall_64+0xcd/0x250 [ 128.246010][ T7005] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.251937][ T7005] RIP: 0033:0x7f7802785d19 [ 128.256382][ T7005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.276026][ T7005] RSP: 002b:00007f780369d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 128.284481][ T7005] RAX: ffffffffffffffda RBX: 00007f7802975fa0 RCX: 00007f7802785d19 [ 128.292484][ T7005] RDX: 0000000000040084 RSI: 00000000200001c0 RDI: 0000000000000004 [ 128.300508][ T7005] RBP: 00007f780369d090 R08: 0000000000000000 R09: 0000000000000000 [ 128.308507][ T7005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 128.316507][ T7005] R13: 0000000000000000 R14: 00007f7802975fa0 R15: 00007fff325fb318 [ 128.324529][ T7005] [ 128.515111][ T7011] netlink: 28 bytes leftover after parsing attributes in process `syz.2.326'. [ 128.610235][ T7013] netlink: 4 bytes leftover after parsing attributes in process `syz.0.327'. [ 129.166363][ T7038] FAULT_INJECTION: forcing a failure. [ 129.166363][ T7038] name failslab, interval 1, probability 0, space 0, times 0 [ 129.183021][ T7038] CPU: 1 UID: 0 PID: 7038 Comm: syz.1.335 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 129.193664][ T7038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 129.203749][ T7038] Call Trace: [ 129.207052][ T7038] [ 129.210001][ T7038] dump_stack_lvl+0x16c/0x1f0 [ 129.214718][ T7038] should_fail_ex+0x497/0x5b0 [ 129.219440][ T7038] should_failslab+0xc2/0x120 [ 129.224164][ T7038] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 129.229582][ T7038] ? skb_clone+0x190/0x3f0 [ 129.234042][ T7038] skb_clone+0x190/0x3f0 [ 129.238322][ T7038] netlink_deliver_tap+0xafd/0xca0 [ 129.243459][ T7038] netlink_unicast+0x5e1/0x7f0 [ 129.248246][ T7038] ? __pfx_netlink_unicast+0x10/0x10 [ 129.253539][ T7038] ? __phys_addr_symbol+0x30/0x80 [ 129.258583][ T7038] ? __check_object_size+0x488/0x710 [ 129.263895][ T7038] netlink_sendmsg+0x8b8/0xd70 [ 129.268678][ T7038] ? __pfx_netlink_sendmsg+0x10/0x10 [ 129.273986][ T7038] ____sys_sendmsg+0x9ae/0xb40 [ 129.278766][ T7038] ? copy_msghdr_from_user+0x10b/0x160 [ 129.284242][ T7038] ? __pfx_____sys_sendmsg+0x10/0x10 [ 129.289546][ T7038] ___sys_sendmsg+0x135/0x1e0 [ 129.294240][ T7038] ? __pfx____sys_sendmsg+0x10/0x10 [ 129.299478][ T7038] ? __pfx_lock_release+0x10/0x10 [ 129.304509][ T7038] ? trace_lock_acquire+0x14e/0x1f0 [ 129.309722][ T7038] ? __fget_files+0x206/0x3a0 [ 129.314410][ T7038] __sys_sendmsg+0x16e/0x220 [ 129.319011][ T7038] ? __pfx___sys_sendmsg+0x10/0x10 [ 129.324146][ T7038] do_syscall_64+0xcd/0x250 [ 129.328660][ T7038] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.334558][ T7038] RIP: 0033:0x7fe2ab985d19 [ 129.338973][ T7038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 129.358586][ T7038] RSP: 002b:00007fe2ac882038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 129.367002][ T7038] RAX: ffffffffffffffda RBX: 00007fe2abb75fa0 RCX: 00007fe2ab985d19 [ 129.375234][ T7038] RDX: 0000000000040084 RSI: 00000000200001c0 RDI: 0000000000000004 [ 129.383209][ T7038] RBP: 00007fe2ac882090 R08: 0000000000000000 R09: 0000000000000000 [ 129.391180][ T7038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 129.399158][ T7038] R13: 0000000000000000 R14: 00007fe2abb75fa0 R15: 00007fff64d01408 [ 129.407147][ T7038] [ 129.468018][ T7045] netlink: 28 bytes leftover after parsing attributes in process `syz.2.338'. [ 129.618154][ T7047] netlink: 4 bytes leftover after parsing attributes in process `syz.0.339'. [ 130.706424][ T7078] netlink: 342 bytes leftover after parsing attributes in process `syz.2.346'. [ 131.004367][ T7091] FAULT_INJECTION: forcing a failure. [ 131.004367][ T7091] name failslab, interval 1, probability 0, space 0, times 0 [ 131.062218][ T7091] CPU: 1 UID: 0 PID: 7091 Comm: syz.1.350 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 131.072886][ T7091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 131.082972][ T7091] Call Trace: [ 131.086274][ T7091] [ 131.089226][ T7091] dump_stack_lvl+0x16c/0x1f0 [ 131.093941][ T7091] should_fail_ex+0x497/0x5b0 [ 131.098665][ T7091] ? fs_reclaim_acquire+0xae/0x150 [ 131.103816][ T7091] should_failslab+0xc2/0x120 [ 131.108536][ T7091] __kmalloc_cache_noprof+0x68/0x420 [ 131.113849][ T7091] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 131.121239][ T7091] genl_start+0x1e7/0x960 [ 131.125583][ T7091] __netlink_dump_start+0x615/0x980 [ 131.130787][ T7091] genl_family_rcv_msg_dumpit+0x1e1/0x2e0 [ 131.136515][ T7091] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 131.142781][ T7091] ? __pfx_genl_get_cmd+0x10/0x10 [ 131.148021][ T7091] ? __pfx_genl_start+0x10/0x10 [ 131.152891][ T7091] ? __pfx_genl_dumpit+0x10/0x10 [ 131.157852][ T7091] ? __pfx_genl_done+0x10/0x10 [ 131.162633][ T7091] ? __radix_tree_lookup+0x21f/0x2c0 [ 131.167933][ T7091] genl_rcv_msg+0x470/0x800 [ 131.172463][ T7091] ? __pfx_genl_rcv_msg+0x10/0x10 [ 131.177505][ T7091] ? __pfx_devlink_nl_info_get_dumpit+0x10/0x10 [ 131.183778][ T7091] netlink_rcv_skb+0x165/0x410 [ 131.188551][ T7091] ? __pfx_genl_rcv_msg+0x10/0x10 [ 131.193605][ T7091] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 131.198927][ T7091] ? down_read+0xc9/0x330 [ 131.203278][ T7091] ? __pfx_down_read+0x10/0x10 [ 131.208061][ T7091] ? netlink_deliver_tap+0x1ae/0xca0 [ 131.213366][ T7091] genl_rcv+0x28/0x40 [ 131.217364][ T7091] netlink_unicast+0x53c/0x7f0 [ 131.222136][ T7091] ? __pfx_netlink_unicast+0x10/0x10 [ 131.227426][ T7091] ? __phys_addr_symbol+0x30/0x80 [ 131.232459][ T7091] ? __check_object_size+0x488/0x710 [ 131.237759][ T7091] netlink_sendmsg+0x8b8/0xd70 [ 131.242551][ T7091] ? __pfx_netlink_sendmsg+0x10/0x10 [ 131.247872][ T7091] ____sys_sendmsg+0x9ae/0xb40 [ 131.252738][ T7091] ? copy_msghdr_from_user+0x10b/0x160 [ 131.258228][ T7091] ? __pfx_____sys_sendmsg+0x10/0x10 [ 131.263546][ T7091] ___sys_sendmsg+0x135/0x1e0 [ 131.268246][ T7091] ? __pfx____sys_sendmsg+0x10/0x10 [ 131.273471][ T7091] ? __pfx_lock_release+0x10/0x10 [ 131.278500][ T7091] ? trace_lock_acquire+0x14e/0x1f0 [ 131.283718][ T7091] ? __fget_files+0x206/0x3a0 [ 131.288409][ T7091] __sys_sendmsg+0x16e/0x220 [ 131.293101][ T7091] ? __pfx___sys_sendmsg+0x10/0x10 [ 131.298237][ T7091] do_syscall_64+0xcd/0x250 [ 131.302751][ T7091] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.308653][ T7091] RIP: 0033:0x7fe2ab985d19 [ 131.313069][ T7091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.332684][ T7091] RSP: 002b:00007fe2ac882038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 131.341105][ T7091] RAX: ffffffffffffffda RBX: 00007fe2abb75fa0 RCX: 00007fe2ab985d19 [ 131.349086][ T7091] RDX: 0000000000040084 RSI: 00000000200001c0 RDI: 0000000000000004 [ 131.357059][ T7091] RBP: 00007fe2ac882090 R08: 0000000000000000 R09: 0000000000000000 [ 131.365037][ T7091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 131.373010][ T7091] R13: 0000000000000000 R14: 00007fe2abb75fa0 R15: 00007fff64d01408 [ 131.380996][ T7091] [ 131.432846][ T7093] netlink: 28 bytes leftover after parsing attributes in process `syz.2.351'. [ 131.596731][ T7097] netlink: 4 bytes leftover after parsing attributes in process `syz.1.352'. [ 132.329358][ T7124] FAULT_INJECTION: forcing a failure. [ 132.329358][ T7124] name failslab, interval 1, probability 0, space 0, times 0 [ 132.354594][ T7124] CPU: 0 UID: 0 PID: 7124 Comm: syz.2.360 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 132.365256][ T7124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 132.375349][ T7124] Call Trace: [ 132.378659][ T7124] [ 132.381619][ T7124] dump_stack_lvl+0x16c/0x1f0 [ 132.386347][ T7124] should_fail_ex+0x497/0x5b0 [ 132.391064][ T7124] ? fs_reclaim_acquire+0xae/0x150 [ 132.396221][ T7124] should_failslab+0xc2/0x120 [ 132.400947][ T7124] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 132.406800][ T7124] ? __alloc_skb+0x2b3/0x380 [ 132.411433][ T7124] ? genl_start+0x1e7/0x960 [ 132.415981][ T7124] __alloc_skb+0x2b3/0x380 [ 132.420442][ T7124] ? __pfx___alloc_skb+0x10/0x10 [ 132.425419][ T7124] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.431552][ T7124] netlink_dump+0x699/0xd00 [ 132.436118][ T7124] ? __pfx_netlink_dump+0x10/0x10 [ 132.441208][ T7124] ? kasan_save_track+0x14/0x30 [ 132.446123][ T7124] ? __kasan_kmalloc+0xaa/0xb0 [ 132.450939][ T7124] ? genl_start+0x67d/0x960 [ 132.455505][ T7124] __netlink_dump_start+0x6d9/0x980 [ 132.460752][ T7124] genl_family_rcv_msg_dumpit+0x1e1/0x2e0 [ 132.466515][ T7124] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 132.472781][ T7124] ? __pfx_genl_get_cmd+0x10/0x10 [ 132.477821][ T7124] ? __pfx_genl_start+0x10/0x10 [ 132.482680][ T7124] ? __pfx_genl_dumpit+0x10/0x10 [ 132.487626][ T7124] ? __pfx_genl_done+0x10/0x10 [ 132.492401][ T7124] ? __radix_tree_lookup+0x21f/0x2c0 [ 132.497700][ T7124] genl_rcv_msg+0x470/0x800 [ 132.502217][ T7124] ? __pfx_genl_rcv_msg+0x10/0x10 [ 132.507259][ T7124] ? __pfx_devlink_nl_info_get_dumpit+0x10/0x10 [ 132.513535][ T7124] netlink_rcv_skb+0x165/0x410 [ 132.518310][ T7124] ? __pfx_genl_rcv_msg+0x10/0x10 [ 132.523346][ T7124] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 132.528649][ T7124] ? down_read+0xc9/0x330 [ 132.532991][ T7124] ? __pfx_down_read+0x10/0x10 [ 132.537767][ T7124] ? netlink_deliver_tap+0x1ae/0xca0 [ 132.543075][ T7124] genl_rcv+0x28/0x40 [ 132.547065][ T7124] netlink_unicast+0x53c/0x7f0 [ 132.551841][ T7124] ? __pfx_netlink_unicast+0x10/0x10 [ 132.557146][ T7124] ? __phys_addr_symbol+0x30/0x80 [ 132.562201][ T7124] ? __check_object_size+0x488/0x710 [ 132.567523][ T7124] netlink_sendmsg+0x8b8/0xd70 [ 132.572301][ T7124] ? __pfx_netlink_sendmsg+0x10/0x10 [ 132.577604][ T7124] ____sys_sendmsg+0x9ae/0xb40 [ 132.582376][ T7124] ? copy_msghdr_from_user+0x10b/0x160 [ 132.587849][ T7124] ? __pfx_____sys_sendmsg+0x10/0x10 [ 132.593163][ T7124] ___sys_sendmsg+0x135/0x1e0 [ 132.597855][ T7124] ? __pfx____sys_sendmsg+0x10/0x10 [ 132.603081][ T7124] ? __pfx_lock_release+0x10/0x10 [ 132.608115][ T7124] ? trace_lock_acquire+0x14e/0x1f0 [ 132.613345][ T7124] ? __fget_files+0x206/0x3a0 [ 132.618047][ T7124] __sys_sendmsg+0x16e/0x220 [ 132.622650][ T7124] ? __pfx___sys_sendmsg+0x10/0x10 [ 132.627790][ T7124] do_syscall_64+0xcd/0x250 [ 132.632304][ T7124] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.638205][ T7124] RIP: 0033:0x7f7802785d19 [ 132.642625][ T7124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 132.662260][ T7124] RSP: 002b:00007f780369d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 132.670682][ T7124] RAX: ffffffffffffffda RBX: 00007f7802975fa0 RCX: 00007f7802785d19 [ 132.678661][ T7124] RDX: 0000000000040084 RSI: 00000000200001c0 RDI: 0000000000000004 [ 132.686655][ T7124] RBP: 00007f780369d090 R08: 0000000000000000 R09: 0000000000000000 [ 132.694649][ T7124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 132.702634][ T7124] R13: 0000000000000000 R14: 00007f7802975fa0 R15: 00007fff325fb318 [ 132.710625][ T7124] [ 132.713744][ C0] vkms_vblank_simulate: vblank timer overrun [ 133.008660][ T7128] netlink: 'syz.2.361': attribute type 33 has an invalid length. [ 133.067113][ T7128] netlink: 322 bytes leftover after parsing attributes in process `syz.2.361'. [ 133.121233][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.152386][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.391855][ T7133] netlink: 28 bytes leftover after parsing attributes in process `syz.0.362'. [ 133.498240][ T7136] netlink: 4 bytes leftover after parsing attributes in process `syz.2.364'. [ 133.924114][ T7140] netlink: 12 bytes leftover after parsing attributes in process `syz.0.366'. [ 134.423169][ T7175] netlink: 8 bytes leftover after parsing attributes in process `syz.2.372'. [ 134.536962][ T7180] netlink: 330 bytes leftover after parsing attributes in process `syz.0.373'. [ 134.847376][ T7184] netlink: 28 bytes leftover after parsing attributes in process `syz.2.375'. [ 134.900025][ T7186] netlink: 4 bytes leftover after parsing attributes in process `syz.0.376'. [ 135.633083][ T7208] netlink: 28 bytes leftover after parsing attributes in process `syz.2.385'. [ 135.910746][ T7214] netlink: 4 bytes leftover after parsing attributes in process `syz.0.386'. [ 136.431294][ T7233] FAULT_INJECTION: forcing a failure. [ 136.431294][ T7233] name failslab, interval 1, probability 0, space 0, times 0 [ 136.475404][ T7233] CPU: 0 UID: 0 PID: 7233 Comm: syz.1.382 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 136.486095][ T7233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 136.496277][ T7233] Call Trace: [ 136.499590][ T7233] [ 136.502571][ T7233] dump_stack_lvl+0x16c/0x1f0 [ 136.507307][ T7233] should_fail_ex+0x497/0x5b0 [ 136.512046][ T7233] should_failslab+0xc2/0x120 [ 136.516775][ T7233] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 136.522214][ T7233] ? skb_clone+0x190/0x3f0 [ 136.526688][ T7233] skb_clone+0x190/0x3f0 [ 136.531076][ T7233] netlink_deliver_tap+0xafd/0xca0 [ 136.536254][ T7233] netlink_dump+0xb60/0xd00 [ 136.540810][ T7233] ? __pfx_netlink_dump+0x10/0x10 [ 136.545893][ T7233] ? kasan_save_track+0x14/0x30 [ 136.550806][ T7233] ? __kasan_kmalloc+0xaa/0xb0 [ 136.555625][ T7233] ? genl_start+0x67d/0x960 [ 136.560179][ T7233] __netlink_dump_start+0x6d9/0x980 [ 136.565517][ T7233] genl_family_rcv_msg_dumpit+0x1e1/0x2e0 [ 136.571293][ T7233] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 136.577594][ T7233] ? __pfx_genl_get_cmd+0x10/0x10 [ 136.582659][ T7233] ? __pfx_genl_start+0x10/0x10 [ 136.587549][ T7233] ? __pfx_genl_dumpit+0x10/0x10 [ 136.592576][ T7233] ? __pfx_genl_done+0x10/0x10 [ 136.597391][ T7233] ? __radix_tree_lookup+0x21f/0x2c0 [ 136.602735][ T7233] genl_rcv_msg+0x470/0x800 [ 136.607285][ T7233] ? __pfx_genl_rcv_msg+0x10/0x10 [ 136.612359][ T7233] ? __pfx_devlink_nl_info_get_dumpit+0x10/0x10 [ 136.618666][ T7233] netlink_rcv_skb+0x165/0x410 [ 136.623477][ T7233] ? __pfx_genl_rcv_msg+0x10/0x10 [ 136.628549][ T7233] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 136.633885][ T7233] ? down_read+0xc9/0x330 [ 136.638258][ T7233] ? __pfx_down_read+0x10/0x10 [ 136.643068][ T7233] ? netlink_deliver_tap+0x1ae/0xca0 [ 136.648411][ T7233] genl_rcv+0x28/0x40 [ 136.652438][ T7233] netlink_unicast+0x53c/0x7f0 [ 136.657239][ T7233] ? __pfx_netlink_unicast+0x10/0x10 [ 136.662561][ T7233] ? __phys_addr_symbol+0x30/0x80 [ 136.667623][ T7233] ? __check_object_size+0x488/0x710 [ 136.672962][ T7233] netlink_sendmsg+0x8b8/0xd70 [ 136.677776][ T7233] ? __pfx_netlink_sendmsg+0x10/0x10 [ 136.683113][ T7233] ____sys_sendmsg+0x9ae/0xb40 [ 136.687915][ T7233] ? copy_msghdr_from_user+0x10b/0x160 [ 136.693426][ T7233] ? __pfx_____sys_sendmsg+0x10/0x10 [ 136.698769][ T7233] ___sys_sendmsg+0x135/0x1e0 [ 136.703488][ T7233] ? __pfx____sys_sendmsg+0x10/0x10 [ 136.708744][ T7233] ? __pfx_lock_release+0x10/0x10 [ 136.713801][ T7233] ? trace_lock_acquire+0x14e/0x1f0 [ 136.719059][ T7233] ? __fget_files+0x206/0x3a0 [ 136.723787][ T7233] __sys_sendmsg+0x16e/0x220 [ 136.728463][ T7233] ? __pfx___sys_sendmsg+0x10/0x10 [ 136.733665][ T7233] do_syscall_64+0xcd/0x250 [ 136.738212][ T7233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.744144][ T7233] RIP: 0033:0x7fe2ab985d19 [ 136.748593][ T7233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 136.768329][ T7233] RSP: 002b:00007fe2ac882038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 136.776784][ T7233] RAX: ffffffffffffffda RBX: 00007fe2abb75fa0 RCX: 00007fe2ab985d19 [ 136.784786][ T7233] RDX: 0000000000040084 RSI: 00000000200001c0 RDI: 0000000000000004 [ 136.792792][ T7233] RBP: 00007fe2ac882090 R08: 0000000000000000 R09: 0000000000000000 [ 136.800794][ T7233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 136.808794][ T7233] R13: 0000000000000000 R14: 00007fe2abb75fa0 R15: 00007fff64d01408 [ 136.816816][ T7233] [ 137.645779][ T7274] FAULT_INJECTION: forcing a failure. [ 137.645779][ T7274] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 137.696883][ T7274] CPU: 0 UID: 0 PID: 7274 Comm: syz.2.403 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 137.707542][ T7274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 137.717627][ T7274] Call Trace: [ 137.720930][ T7274] [ 137.723883][ T7274] dump_stack_lvl+0x16c/0x1f0 [ 137.728599][ T7274] should_fail_ex+0x497/0x5b0 [ 137.733315][ T7274] _copy_to_user+0x32/0xd0 [ 137.737771][ T7274] simple_read_from_buffer+0xd0/0x160 [ 137.743197][ T7274] proc_fail_nth_read+0x198/0x270 [ 137.748269][ T7274] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 137.753867][ T7274] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 137.759472][ T7274] vfs_read+0x1df/0xbe0 [ 137.763670][ T7274] ? __fget_files+0x1fc/0x3a0 [ 137.768381][ T7274] ? __pfx___mutex_lock+0x10/0x10 [ 137.773455][ T7274] ? __pfx_vfs_read+0x10/0x10 [ 137.778181][ T7274] ? __fget_files+0x206/0x3a0 [ 137.782904][ T7274] ksys_read+0x12b/0x250 [ 137.787192][ T7274] ? __pfx_ksys_read+0x10/0x10 [ 137.792006][ T7274] do_syscall_64+0xcd/0x250 [ 137.796565][ T7274] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 137.802505][ T7274] RIP: 0033:0x7f780278472c [ 137.806951][ T7274] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 137.826593][ T7274] RSP: 002b:00007f780369d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 137.835015][ T7274] RAX: ffffffffffffffda RBX: 00007f7802975fa0 RCX: 00007f780278472c [ 137.842991][ T7274] RDX: 000000000000000f RSI: 00007f780369d0a0 RDI: 0000000000000006 [ 137.850967][ T7274] RBP: 00007f780369d090 R08: 0000000000000000 R09: 0000000000000000 [ 137.858941][ T7274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 137.866912][ T7274] R13: 0000000000000000 R14: 00007f7802975fa0 R15: 00007fff325fb318 [ 137.874896][ T7274] [ 138.051908][ T7281] bridge0: port 3(hsr0) entered blocking state [ 138.058333][ T7281] bridge0: port 3(hsr0) entered disabled state [ 138.065133][ T7281] hsr0: entered allmulticast mode [ 138.070618][ T7281] hsr_slave_0: entered allmulticast mode [ 138.076849][ T7281] hsr_slave_1: entered allmulticast mode [ 138.083857][ T7281] hsr0: entered promiscuous mode [ 138.089800][ T7281] bridge0: port 3(hsr0) entered blocking state [ 138.097159][ T7281] bridge0: port 3(hsr0) entered forwarding state [ 138.460337][ T7294] __nla_validate_parse: 2 callbacks suppressed [ 138.460358][ T7294] netlink: 28 bytes leftover after parsing attributes in process `syz.2.408'. [ 138.473649][ T7296] netlink: 4 bytes leftover after parsing attributes in process `syz.1.409'. [ 138.814315][ T7316] QAT: Device 5 not found [ 139.176359][ T7332] netlink: 28 bytes leftover after parsing attributes in process `syz.0.421'. [ 139.254858][ T7335] netlink: 4 bytes leftover after parsing attributes in process `syz.2.422'. [ 139.446674][ T7341] [U] [ 139.449594][ T7341] [U] [ 139.452323][ T7341] [U] [ 139.455052][ T7341] [U] [ 139.499014][ T7341] [U] [ 139.501789][ T7341] [U] [ 139.504522][ T7341] [U] [ 139.507271][ T7341] [U] [ 139.529584][ T7341] [U] [ 139.532358][ T7341] [U] [ 139.535092][ T7341] [U] [ 139.537835][ T7341] [U] [ 139.543293][ T7341] [U] [ 139.546044][ T7341] [U] [ 139.548775][ T7341] [U] [ 139.551514][ T7341] [U] [ 139.554669][ T7341] [U] [ 139.557404][ T7341] [U] [ 139.560115][ T7341] [U] [ 139.562820][ T7341] [U] [ 139.574114][ T7341] [U] [ 139.576886][ T7341] [U] [ 139.579639][ T7341] [U] [ 139.582379][ T7341] [U] [ 139.590721][ T7341] [U] [ 139.593480][ T7341] [U] [ 139.596184][ T7341] [U] [ 139.598966][ T7341] [U] [ 139.604132][ T7341] [U] [ 139.606888][ T7341] [U] [ 139.609617][ T7341] [U] [ 139.612351][ T7341] [U] [ 139.615497][ T7341] [U] [ 139.618245][ T7341] [U] [ 139.620972][ T7341] [U] [ 139.623704][ T7341] [U] [ 139.627489][ T7341] [U] [ 139.630252][ T7341] [U] [ 139.632982][ T7341] [U] [ 139.635711][ T7341] [U] [ 139.642549][ T7341] [U] [ 139.645309][ T7341] [U] [ 139.648045][ T7341] [U] [ 139.650787][ T7341] [U] [ 139.654430][ T7341] [U] [ 139.657222][ T7341] [U] [ 139.659949][ T7341] [U] [ 139.662684][ T7341] [U] [ 139.666738][ T7341] [U] [ 139.669477][ T7341] [U] [ 139.672204][ T7341] [U] [ 139.674935][ T7341] [U] [ 139.678077][ T7341] [U] [ 139.680838][ T7341] [U] [ 139.683565][ T7341] [U] [ 139.686285][ T7341] [U] [ 139.690055][ T7341] [U] [ 139.692795][ T7341] [U] [ 139.695519][ T7341] [U] [ 139.698240][ T7341] [U] [ 139.701244][ T7341] [U] [ 139.703979][ T7341] [U] [ 139.706707][ T7341] [U] [ 139.709426][ T7341] [U] [ 139.728760][ T7341] [U] [ 139.731531][ T7341] [U] [ 139.734275][ T7341] [U] [ 139.737009][ T7341] [U] [ 139.744274][ T7341] [U] [ 139.747045][ T7341] [U] [ 139.749769][ T7341] [U] [ 139.752494][ T7341] [U] [ 139.760956][ T7341] [U] [ 139.763718][ T7341] [U] [ 139.766435][ T7341] [U] [ 139.769149][ T7341] [U] [ 139.779789][ T7341] [U] [ 139.782551][ T7341] [U] [ 139.785282][ T7341] [U] [ 139.788016][ T7341] [U] [ 139.795262][ T7344] [U] [ 140.129182][ T7359] netlink: 28 bytes leftover after parsing attributes in process `syz.2.431'. [ 140.234079][ T7364] netlink: 4 bytes leftover after parsing attributes in process `syz.1.433'. [ 141.570105][ T7396] tipc: Started in network mode [ 141.575131][ T7396] tipc: Node identity ffffffff, cluster identity 4711 [ 141.606914][ T7396] tipc: Node number set to 4294967295 [ 141.637615][ T7400] netlink: 'syz.2.441': attribute type 11 has an invalid length. [ 141.658864][ T7400] netlink: 8 bytes leftover after parsing attributes in process `syz.2.441'. [ 141.724775][ T7406] netlink: 28 bytes leftover after parsing attributes in process `syz.1.443'. [ 141.863694][ T7408] netlink: 4 bytes leftover after parsing attributes in process `syz.3.444'. [ 142.971053][ T7462] netlink: 28 bytes leftover after parsing attributes in process `syz.2.455'. [ 142.971447][ T7447] ima: policy update failed [ 143.005296][ T29] audit: type=1802 audit(1734337907.892:5): pid=7447 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.439" res=0 errno=0 [ 144.027953][ T7490] __nla_validate_parse: 1 callbacks suppressed [ 144.027974][ T7490] netlink: 28 bytes leftover after parsing attributes in process `syz.2.465'. [ 144.083227][ T7493] netlink: 4 bytes leftover after parsing attributes in process `syz.3.466'. [ 144.543337][ T7509] Process accounting resumed [ 144.561155][ T7509] netlink: 28 bytes leftover after parsing attributes in process `syz.3.472'. [ 144.576943][ T7509] mac80211_hwsim hwsim4 wlan0: entered promiscuous mode [ 144.594303][ T7509] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode [ 145.379337][ T7535] netlink: 334 bytes leftover after parsing attributes in process `syz.2.476'. [ 145.431027][ T7533] netlink: 28 bytes leftover after parsing attributes in process `syz.3.477'. [ 145.546166][ T7538] netlink: 4 bytes leftover after parsing attributes in process `syz.1.478'. [ 147.542871][ T7581] netlink: 28 bytes leftover after parsing attributes in process `syz.1.488'. [ 147.697300][ T7584] netlink: 4 bytes leftover after parsing attributes in process `syz.2.489'. [ 148.718232][ T7615] netlink: 28 bytes leftover after parsing attributes in process `syz.3.498'. [ 149.111722][ T7627] ICMPv6: process `syz.0.492' is using deprecated sysctl (syscall) net.ipv6.neigh.virt_wifi0.retrans_time - use net.ipv6.neigh.virt_wifi0.retrans_time_ms instead [ 149.134071][ T7632] netlink: 4 bytes leftover after parsing attributes in process `syz.2.501'. [ 149.254207][ T7639] netlink: 28 bytes leftover after parsing attributes in process `syz.1.504'. [ 149.270660][ T7639] netlink: 28 bytes leftover after parsing attributes in process `syz.1.504'. [ 149.694410][ T7651] netlink: 16 bytes leftover after parsing attributes in process `syz.0.506'. [ 149.868228][ T7653] netlink: 28 bytes leftover after parsing attributes in process `syz.0.507'. [ 150.131488][ T7663] netlink: 4 bytes leftover after parsing attributes in process `syz.3.511'. [ 150.421394][ T7668] netlink: 12 bytes leftover after parsing attributes in process `syz.3.512'. [ 150.687549][ T7686] netlink: 28 bytes leftover after parsing attributes in process `syz.1.518'. [ 150.796131][ T7691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.520'. [ 151.425105][ C1] sd 0:0:1:0: [sda] tag#3727 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 151.435577][ C1] sd 0:0:1:0: [sda] tag#3727 CDB: Read(6) 08 00 00 00 10 00 00 00 00 00 00 00 [ 151.670307][ T7734] netlink: 28 bytes leftover after parsing attributes in process `syz.3.529'. [ 156.579224][ T7835] __nla_validate_parse: 6 callbacks suppressed [ 156.579244][ T7835] netlink: 28 bytes leftover after parsing attributes in process `syz.3.560'. [ 156.811707][ T7851] netlink: 4 bytes leftover after parsing attributes in process `syz.0.561'. [ 156.916893][ T7860] syz.1.565(7860): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 157.211924][ T7862] netlink: 28 bytes leftover after parsing attributes in process `syz.3.564'. [ 157.367495][ T7862] vcan0: entered promiscuous mode [ 157.824077][ T7891] netlink: 28 bytes leftover after parsing attributes in process `syz.3.573'. [ 157.942624][ T7894] netlink: 4 bytes leftover after parsing attributes in process `syz.0.574'. [ 158.274486][ T7901] lo: entered allmulticast mode [ 158.285511][ T7901] netlink: 28 bytes leftover after parsing attributes in process `syz.0.576'. [ 158.431013][ T7901] lo: left allmulticast mode [ 159.155753][ T7940] netlink: 28 bytes leftover after parsing attributes in process `syz.1.584'. [ 159.179512][ T7942] netlink: 4 bytes leftover after parsing attributes in process `syz.2.585'. [ 160.155243][ T7981] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2]. [ 160.192032][ T7981] sctp: [Deprecated]: syz.3.592 (pid 7981) Use of int in max_burst socket option deprecated. [ 160.192032][ T7981] Use struct sctp_assoc_value instead [ 160.389675][ T7986] netlink: 28 bytes leftover after parsing attributes in process `syz.3.595'. [ 160.510687][ T7993] zram: Added device: zram1 [ 160.622811][ T7998] netlink: 4 bytes leftover after parsing attributes in process `syz.3.597'. [ 161.781404][ T8046] __nla_validate_parse: 1 callbacks suppressed [ 161.781425][ T8046] netlink: 4 bytes leftover after parsing attributes in process `syz.2.610'. [ 162.363658][ T8061] netlink: 28 bytes leftover after parsing attributes in process `syz.2.615'. [ 163.180882][ T8086] netlink: 4 bytes leftover after parsing attributes in process `syz.0.621'. [ 163.514378][ T8102] netlink: 330 bytes leftover after parsing attributes in process `syz.1.626'. [ 163.559760][ T8104] netlink: 330 bytes leftover after parsing attributes in process `syz.1.626'. [ 163.754045][ T8109] netlink: 28 bytes leftover after parsing attributes in process `syz.1.627'. [ 164.179231][ T8129] netlink: 4 bytes leftover after parsing attributes in process `syz.2.632'. [ 164.995707][ T8150] netlink: 28 bytes leftover after parsing attributes in process `syz.2.639'. [ 165.214401][ T8160] netlink: 4 bytes leftover after parsing attributes in process `syz.3.642'. [ 165.447034][ T8164] netlink: 28 bytes leftover after parsing attributes in process `syz.3.644'. [ 165.456061][ T8164] team_slave_0: entered allmulticast mode [ 167.818398][ T8233] __nla_validate_parse: 2 callbacks suppressed [ 167.818419][ T8233] netlink: 28 bytes leftover after parsing attributes in process `syz.1.661'. [ 167.928103][ T8235] netlink: 4 bytes leftover after parsing attributes in process `syz.0.662'. [ 168.271461][ T8244] netlink: 350 bytes leftover after parsing attributes in process `syz.1.666'. [ 168.461104][ T8251] netlink: 28 bytes leftover after parsing attributes in process `syz.1.668'. [ 168.486644][ T8251] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 168.505125][ T8251] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 168.521406][ T8251] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 168.542580][ T8251] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 169.561190][ T8272] netlink: 4 bytes leftover after parsing attributes in process `syz.3.673'. [ 169.608102][ T8274] netlink: 28 bytes leftover after parsing attributes in process `syz.0.672'. [ 170.088810][ T8283] netlink: 330 bytes leftover after parsing attributes in process `syz.3.677'. [ 171.161324][ T8306] netlink: 4 bytes leftover after parsing attributes in process `syz.0.683'. [ 171.270017][ T8308] netlink: 28 bytes leftover after parsing attributes in process `syz.3.684'. [ 173.649542][ T8346] netlink: 4 bytes leftover after parsing attributes in process `syz.3.694'. [ 174.349612][ T8358] netlink: 28 bytes leftover after parsing attributes in process `syz.0.696'. [ 175.274342][ T8389] netlink: 4 bytes leftover after parsing attributes in process `syz.3.704'. [ 175.643183][ T8397] netlink: 28 bytes leftover after parsing attributes in process `syz.3.706'. [ 176.094382][ T8411] netlink: 342 bytes leftover after parsing attributes in process `syz.1.709'. [ 176.669283][ T8426] netlink: 4 bytes leftover after parsing attributes in process `syz.1.714'. [ 176.866614][ T8432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.716'. [ 177.110564][ T8437] netlink: 28 bytes leftover after parsing attributes in process `syz.1.718'. [ 178.191184][ T8456] netlink: 28 bytes leftover after parsing attributes in process `syz.1.726'. [ 178.284631][ T8462] netlink: 4 bytes leftover after parsing attributes in process `syz.0.724'. [ 178.901426][ T8484] netlink: 8 bytes leftover after parsing attributes in process `syz.2.735'. [ 179.217786][ T8479] GUP no longer grows the stack in syz.3.734 (8479): 14000-401000 (4000) [ 179.244000][ T8479] CPU: 0 UID: 0 PID: 8479 Comm: syz.3.734 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 179.254675][ T8479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 179.264796][ T8479] Call Trace: [ 179.268112][ T8479] [ 179.271080][ T8479] dump_stack_lvl+0x16c/0x1f0 [ 179.275827][ T8479] gup_vma_lookup+0x1d2/0x220 [ 179.280562][ T8479] __get_user_pages+0x236/0x3b50 [ 179.285562][ T8479] ? hlock_class+0x4e/0x130 [ 179.290119][ T8479] ? __lock_acquire+0x15a9/0x3c40 [ 179.295381][ T8479] ? __pfx___get_user_pages+0x10/0x10 [ 179.300827][ T8479] __gup_longterm_locked+0x211/0x1870 [ 179.306248][ T8479] ? __pfx___lock_acquire+0x10/0x10 [ 179.311489][ T8479] ? __pfx___gup_longterm_locked+0x10/0x10 [ 179.317316][ T8479] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 179.322954][ T8479] ? rwsem_read_trylock+0x12d/0x250 [ 179.328653][ T8479] ? __pfx_rwsem_read_trylock+0x10/0x10 [ 179.334204][ T8479] ? process_vm_rw_core.constprop.0+0x3ff/0x9c0 [ 179.340475][ T8479] pin_user_pages_remote+0xee/0x150 [ 179.345688][ T8479] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 179.351515][ T8479] ? down_read+0xc9/0x330 [ 179.355868][ T8479] process_vm_rw_core.constprop.0+0x42b/0x9c0 [ 179.361966][ T8479] ? futex_wait_queue+0x101/0x1f0 [ 179.367011][ T8479] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 179.373643][ T8479] process_vm_rw+0x301/0x360 [ 179.378264][ T8479] ? __pfx_process_vm_rw+0x10/0x10 [ 179.383398][ T8479] ? up_write+0x1b2/0x520 [ 179.387747][ T8479] ? __pfx___do_sys_mremap+0x10/0x10 [ 179.393064][ T8479] ? xfd_validate_state+0x5d/0x180 [ 179.398547][ T8479] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 179.404733][ T8479] __x64_sys_process_vm_readv+0xe2/0x1c0 [ 179.410386][ T8479] ? syscall_trace_enter+0x5e/0x260 [ 179.415610][ T8479] do_syscall_64+0xcd/0x250 [ 179.420143][ T8479] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.426050][ T8479] RIP: 0033:0x7faffc585d19 [ 179.430471][ T8479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.450094][ T8479] RSP: 002b:00007faffa3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136 [ 179.458522][ T8479] RAX: ffffffffffffffda RBX: 00007faffc775fa0 RCX: 00007faffc585d19 [ 179.466497][ T8479] RDX: 0000000000000004 RSI: 0000000020000040 RDI: 0000000000000268 [ 179.474471][ T8479] RBP: 00007faffc601a20 R08: 0000000000000006 R09: 0000000000000000 [ 179.482452][ T8479] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000000 [ 179.490428][ T8479] R13: 0000000000000000 R14: 00007faffc775fa0 R15: 00007ffea574d268 [ 179.498418][ T8479] [ 179.593803][ T8490] netlink: 4 bytes leftover after parsing attributes in process `syz.3.737'. [ 179.908745][ T8494] netlink: 28 bytes leftover after parsing attributes in process `syz.3.740'. [ 180.588389][ T8528] netlink: 4 bytes leftover after parsing attributes in process `syz.1.749'. [ 180.690501][ T8531] netlink: 4 bytes leftover after parsing attributes in process `syz.0.751'. [ 180.742559][ T8534] FAULT_INJECTION: forcing a failure. [ 180.742559][ T8534] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 180.786945][ T8534] CPU: 1 UID: 0 PID: 8534 Comm: syz.0.751 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 180.797603][ T8534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 180.808125][ T8534] Call Trace: [ 180.811430][ T8534] [ 180.814389][ T8534] dump_stack_lvl+0x16c/0x1f0 [ 180.819112][ T8534] should_fail_ex+0x497/0x5b0 [ 180.823835][ T8534] _copy_from_user+0x2e/0xd0 [ 180.828480][ T8534] copy_msghdr_from_user+0x99/0x160 [ 180.833723][ T8534] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 180.839588][ T8534] ___sys_sendmsg+0xff/0x1e0 [ 180.844224][ T8534] ? __pfx____sys_sendmsg+0x10/0x10 [ 180.849481][ T8534] ? __pfx_lock_release+0x10/0x10 [ 180.854536][ T8534] ? trace_lock_acquire+0x14e/0x1f0 [ 180.859792][ T8534] ? __fget_files+0x206/0x3a0 [ 180.864516][ T8534] __sys_sendmsg+0x16e/0x220 [ 180.868239][ T8536] netlink: 28 bytes leftover after parsing attributes in process `syz.1.752'. [ 180.869130][ T8534] ? __pfx___sys_sendmsg+0x10/0x10 [ 180.869183][ T8534] do_syscall_64+0xcd/0x250 [ 180.887636][ T8534] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.893564][ T8534] RIP: 0033:0x7f6285b85d19 [ 180.898007][ T8534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.917730][ T8534] RSP: 002b:00007f62869cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 180.926177][ T8534] RAX: ffffffffffffffda RBX: 00007f6285d76080 RCX: 00007f6285b85d19 [ 180.934182][ T8534] RDX: 0000000000040000 RSI: 0000000020000240 RDI: 0000000000000004 [ 180.942185][ T8534] RBP: 00007f62869cf090 R08: 0000000000000000 R09: 0000000000000000 [ 180.950191][ T8534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 180.958194][ T8534] R13: 0000000000000000 R14: 00007f6285d76080 R15: 00007ffe8f539768 [ 180.966216][ T8534] [ 181.032512][ T8539] netlink: 4 bytes leftover after parsing attributes in process `syz.1.753'. [ 181.063230][ T8539] lo: entered allmulticast mode [ 181.358948][ T8540] lo: left allmulticast mode [ 181.830767][ T8563] netlink: 28 bytes leftover after parsing attributes in process `syz.3.761'. [ 182.011243][ T8571] netlink: 4 bytes leftover after parsing attributes in process `syz.3.763'. [ 182.244544][ T8579] netlink: 4 bytes leftover after parsing attributes in process `syz.1.764'. [ 182.310898][ T8579] FAULT_INJECTION: forcing a failure. [ 182.310898][ T8579] name failslab, interval 1, probability 0, space 0, times 0 [ 182.479035][ T8579] CPU: 0 UID: 0 PID: 8579 Comm: syz.1.764 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 182.489692][ T8579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 182.499781][ T8579] Call Trace: [ 182.503093][ T8579] [ 182.506053][ T8579] dump_stack_lvl+0x16c/0x1f0 [ 182.510771][ T8579] should_fail_ex+0x497/0x5b0 [ 182.515493][ T8579] ? fs_reclaim_acquire+0xae/0x150 [ 182.520649][ T8579] should_failslab+0xc2/0x120 [ 182.525374][ T8579] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 182.531224][ T8579] ? __alloc_skb+0x2b3/0x380 [ 182.535865][ T8579] __alloc_skb+0x2b3/0x380 [ 182.540859][ T8579] ? __pfx___alloc_skb+0x10/0x10 [ 182.545870][ T8579] netlink_alloc_large_skb+0x69/0x130 [ 182.551269][ T8579] netlink_sendmsg+0x689/0xd70 [ 182.556051][ T8579] ? __pfx_netlink_sendmsg+0x10/0x10 [ 182.561354][ T8579] ____sys_sendmsg+0x9ae/0xb40 [ 182.566127][ T8579] ? copy_msghdr_from_user+0x10b/0x160 [ 182.571597][ T8579] ? __pfx_____sys_sendmsg+0x10/0x10 [ 182.576899][ T8579] ___sys_sendmsg+0x135/0x1e0 [ 182.581587][ T8579] ? __pfx____sys_sendmsg+0x10/0x10 [ 182.586812][ T8579] ? __pfx_lock_release+0x10/0x10 [ 182.591844][ T8579] ? trace_lock_acquire+0x14e/0x1f0 [ 182.597056][ T8579] ? __fget_files+0x206/0x3a0 [ 182.601745][ T8579] __sys_sendmsg+0x16e/0x220 [ 182.606349][ T8579] ? __pfx___sys_sendmsg+0x10/0x10 [ 182.611500][ T8579] do_syscall_64+0xcd/0x250 [ 182.616012][ T8579] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.621913][ T8579] RIP: 0033:0x7fe2ab985d19 [ 182.626334][ T8579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 182.645952][ T8579] RSP: 002b:00007fe2ac882038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 182.654377][ T8579] RAX: ffffffffffffffda RBX: 00007fe2abb75fa0 RCX: 00007fe2ab985d19 [ 182.662355][ T8579] RDX: 0000000000040000 RSI: 0000000020000240 RDI: 0000000000000004 [ 182.670329][ T8579] RBP: 00007fe2ac882090 R08: 0000000000000000 R09: 0000000000000000 [ 182.678300][ T8579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 182.686272][ T8579] R13: 0000000000000000 R14: 00007fe2abb75fa0 R15: 00007fff64d01408 [ 182.694290][ T8579] [ 183.496948][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 184.068541][ T8630] __nla_validate_parse: 3 callbacks suppressed [ 184.068564][ T8630] netlink: 4 bytes leftover after parsing attributes in process `syz.2.780'. [ 184.337474][ T8638] netlink: 4 bytes leftover after parsing attributes in process `syz.3.783'. [ 184.405654][ T8640] netlink: 4 bytes leftover after parsing attributes in process `syz.3.784'. [ 184.479571][ T8643] netlink: 'syz.2.782': attribute type 1 has an invalid length. [ 184.520612][ T8644] netlink: 138 bytes leftover after parsing attributes in process `syz.3.786'. [ 184.842910][ T8664] netlink: 4 bytes leftover after parsing attributes in process `syz.1.791'. [ 184.957767][ T8667] process 'syz.2.792' launched ':,' with NULL argv: empty string added [ 185.165465][ T8672] netlink: 4 bytes leftover after parsing attributes in process `syz.2.793'. [ 185.478376][ T8679] netlink: 4 bytes leftover after parsing attributes in process `syz.3.795'. [ 186.266671][ T8709] netlink: 342 bytes leftover after parsing attributes in process `syz.0.803'. [ 186.587549][ T8721] netlink: 4 bytes leftover after parsing attributes in process `syz.2.805'. [ 186.747643][ T8730] netlink: 4 bytes leftover after parsing attributes in process `syz.3.810'. [ 186.933773][ T8717] HfR: entered promiscuous mode [ 186.962388][ T8717] HfR: left promiscuous mode [ 187.029955][ T8735] ALSA: mixer_oss: invalid OSS volume '' [ 189.450074][ T8810] __nla_validate_parse: 5 callbacks suppressed [ 189.450095][ T8810] netlink: 4 bytes leftover after parsing attributes in process `syz.0.833'. [ 189.468291][ T8810] netlink: 4 bytes leftover after parsing attributes in process `syz.0.833'. [ 189.481676][ T8809] ima: policy update failed [ 189.496834][ T29] audit: type=1802 audit(2060.960:6): pid=8809 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.833" res=0 errno=0 [ 189.544327][ T8812] netlink: 4 bytes leftover after parsing attributes in process `syz.0.834'. [ 189.750340][ T8817] nfs: Unknown parameter '+ԯ o͍- ˁ' [ 189.993461][ T8832] netlink: 28 bytes leftover after parsing attributes in process `syz.1.839'. [ 190.181657][ T8842] netlink: 4 bytes leftover after parsing attributes in process `syz.1.843'. [ 190.300270][ T8849] netlink: 4 bytes leftover after parsing attributes in process `syz.0.845'. [ 190.780692][ T8868] netlink: 28 bytes leftover after parsing attributes in process `syz.2.849'. [ 190.834767][ T8868] veth0_macvtap: left promiscuous mode [ 191.135638][ T8885] netlink: 4 bytes leftover after parsing attributes in process `syz.1.855'. [ 191.358564][ T8893] netlink: 4 bytes leftover after parsing attributes in process `syz.3.858'. [ 191.547051][ T5142] Bluetooth: hci2: command 0x0406 tx timeout [ 191.557793][ T5142] Bluetooth: hci3: command 0x0406 tx timeout [ 191.565295][ T5142] Bluetooth: hci0: command 0x0406 tx timeout [ 191.571714][ T5142] Bluetooth: hci1: command 0x0406 tx timeout [ 191.633047][ T8902] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 191.703861][ T8904] netlink: 44 bytes leftover after parsing attributes in process `syz.3.862'. [ 192.833814][ T8949] bond0: (slave bond_slave_0): Releasing backup interface [ 194.564771][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.578888][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.932206][ T9003] __nla_validate_parse: 7 callbacks suppressed [ 194.932229][ T9003] netlink: 4 bytes leftover after parsing attributes in process `syz.1.889'. [ 195.110610][ T9006] netlink: 4 bytes leftover after parsing attributes in process `syz.2.892'. [ 195.649179][ T9028] netlink: 'syz.0.900': attribute type 64 has an invalid length. [ 195.660953][ T9028] netlink: 74 bytes leftover after parsing attributes in process `syz.0.900'. [ 195.801401][ T9033] netlink: 4 bytes leftover after parsing attributes in process `syz.0.903'. [ 196.199387][ T9045] netlink: 4 bytes leftover after parsing attributes in process `syz.0.906'. [ 196.760828][ T9061] netlink: 'syz.1.912': attribute type 11 has an invalid length. [ 196.822031][ T9065] netlink: 4 bytes leftover after parsing attributes in process `syz.0.913'. [ 197.245161][ T9087] netlink: 4 bytes leftover after parsing attributes in process `syz.0.917'. [ 197.709353][ T9099] netlink: 4 bytes leftover after parsing attributes in process `syz.3.924'. [ 197.943528][ T9115] netlink: 12 bytes leftover after parsing attributes in process `syz.2.926'. [ 198.017041][ T9115] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 198.387697][ T9127] netlink: 4 bytes leftover after parsing attributes in process `syz.1.930'. [ 200.456479][ T9181] __nla_validate_parse: 2 callbacks suppressed [ 200.456501][ T9181] netlink: 28 bytes leftover after parsing attributes in process `syz.1.947'. [ 200.617425][ T9185] netlink: 4 bytes leftover after parsing attributes in process `syz.2.948'. [ 201.128405][ T9204] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 201.153359][ T9204] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 201.342859][ T9222] netlink: 4 bytes leftover after parsing attributes in process `syz.3.959'. [ 201.786926][ T9223] Invalid ELF header magic: != ELF [ 201.887655][ T9241] netlink: 206 bytes leftover after parsing attributes in process `syz.1.964'. [ 202.332620][ T9259] netlink: 4 bytes leftover after parsing attributes in process `syz.2.970'. [ 202.413241][ T9264] netlink: 4 bytes leftover after parsing attributes in process `syz.2.972'. [ 202.423529][ T9264] netlink: 4 bytes leftover after parsing attributes in process `syz.2.972'. [ 202.630243][ T9277] netlink: 4 bytes leftover after parsing attributes in process `syz.2.977'. [ 202.762896][ T9287] Invalid ELF header magic: != ELF [ 202.892392][ T9295] netlink: 4 bytes leftover after parsing attributes in process `syz.1.981'. syzkaller syzkaller login: [ 204.214567][ T9332] netlink: 4 bytes leftover after parsing attributes in process `syz.3.988'. [ 204.326262][ T9335] Process accounting resumed [ 205.106824][ T9359] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2]. [ 205.534797][ T9377] openvswitch: netlink: VXLAN extension message has 4 unknown bytes. [ 205.778498][ T9382] __nla_validate_parse: 1 callbacks suppressed [ 205.778519][ T9382] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1005'. [ 206.439188][ T9394] raw_sendmsg: syz.3.1009 forgot to set AF_INET. Fix it! [ 206.929188][ T29] audit: type=1800 audit(2078.410:7): pid=9416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1013" name="dbroot" dev="configfs" ino=22957 res=0 errno=0 [ 207.137484][ T9428] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1016'. [ 207.741474][ T9442] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1020'. [ 208.781265][ T9460] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1025'. [ 209.028180][ T9464] netlink: 290 bytes leftover after parsing attributes in process `syz.2.1026'. [ 209.165104][ T9474] netlink: 290 bytes leftover after parsing attributes in process `syz.2.1026'. [ 209.553103][ T9488] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1032'. [ 209.720084][ T9492] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1035'. [ 210.944850][ T9521] Process accounting resumed [ 211.105535][ T9525] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1044'. [ 211.237364][ T9527] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1046'. [ 211.738150][ T9529] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1045'. [ 212.642229][ T29] audit: type=1800 audit(2084.120:8): pid=9547 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1057" name="features" dev="configfs" ino=23279 res=0 errno=0 [ 213.602740][ T9563] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1056'. [ 214.183213][ T9576] netlink: 16372 bytes leftover after parsing attributes in process `syz.3.1062'. [ 214.500653][ T9585] netlink: 'syz.3.1064': attribute type 2 has an invalid length. [ 215.640406][ T9587] kexec: Could not allocate control_code_buffer [ 215.728975][ T9603] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1068'. [ 215.867771][ T9607] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1070'. [ 216.584942][ T9623] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1079'. [ 216.750878][ T9627] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1080'. [ 216.891688][ T9630] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1081'. [ 217.413680][ T9643] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1085'. [ 217.587616][ T9645] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1086'. [ 218.365428][ T9672] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1090'. [ 218.774518][ T9685] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1095'. [ 219.124088][ T9703] FAULT_INJECTION: forcing a failure. [ 219.124088][ T9703] name failslab, interval 1, probability 0, space 0, times 0 [ 219.151389][ T9703] CPU: 1 UID: 0 PID: 9703 Comm: syz.0.1099 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 219.162136][ T9703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 219.172225][ T9703] Call Trace: [ 219.175530][ T9703] [ 219.178486][ T9703] dump_stack_lvl+0x16c/0x1f0 [ 219.183210][ T9703] should_fail_ex+0x497/0x5b0 [ 219.187927][ T9703] ? fs_reclaim_acquire+0xae/0x150 [ 219.193193][ T9703] should_failslab+0xc2/0x120 [ 219.193231][ T9703] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 219.193264][ T9703] ? getname_flags.part.0+0x4c/0x550 [ 219.208772][ T9703] ? vfs_write+0x306/0x1150 [ 219.213319][ T9703] getname_flags.part.0+0x4c/0x550 [ 219.218478][ T9703] getname+0x8d/0xe0 [ 219.222406][ T9703] do_sys_openat2+0x104/0x1e0 [ 219.227132][ T9703] ? __pfx_do_sys_openat2+0x10/0x10 [ 219.232392][ T9703] ? __fget_files+0x206/0x3a0 [ 219.237112][ T9703] __x64_sys_openat+0x175/0x210 [ 219.242003][ T9703] ? __pfx___x64_sys_openat+0x10/0x10 [ 219.247413][ T9703] ? ksys_write+0x1ba/0x250 [ 219.251963][ T9703] do_syscall_64+0xcd/0x250 [ 219.256521][ T9703] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.262452][ T9703] RIP: 0033:0x7f6285b85d19 [ 219.266895][ T9703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 219.286534][ T9703] RSP: 002b:00007f62869cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 219.294995][ T9703] RAX: ffffffffffffffda RBX: 00007f6285d76080 RCX: 00007f6285b85d19 [ 219.303002][ T9703] RDX: 0000000000000040 RSI: 00000000200000c0 RDI: ffffffffffffff9c [ 219.311010][ T9703] RBP: 00007f62869cf090 R08: 0000000000000000 R09: 0000000000000000 [ 219.319025][ T9703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 219.327030][ T9703] R13: 0000000000000000 R14: 00007f6285d76080 R15: 00007ffe8f539768 [ 219.335050][ T9703] [ 220.074249][ T9726] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1105'. [ 221.849051][ T9746] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1111'. [ 222.220247][ T9756] FAULT_INJECTION: forcing a failure. [ 222.220247][ T9756] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 222.256821][ T9756] CPU: 0 UID: 0 PID: 9756 Comm: syz.0.1115 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 222.267580][ T9756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 222.277667][ T9756] Call Trace: [ 222.280991][ T9756] [ 222.283947][ T9756] dump_stack_lvl+0x16c/0x1f0 [ 222.288665][ T9756] should_fail_ex+0x497/0x5b0 [ 222.293384][ T9756] strncpy_from_user+0x3b/0x2d0 [ 222.298280][ T9756] getname_flags.part.0+0x8f/0x550 [ 222.303437][ T9756] getname+0x8d/0xe0 [ 222.307379][ T9756] do_sys_openat2+0x104/0x1e0 [ 222.312102][ T9756] ? __pfx_do_sys_openat2+0x10/0x10 [ 222.317350][ T9756] ? __fget_files+0x206/0x3a0 [ 222.322070][ T9756] __x64_sys_openat+0x175/0x210 [ 222.326946][ T9756] ? __pfx___x64_sys_openat+0x10/0x10 [ 222.332336][ T9756] ? ksys_write+0x1ba/0x250 [ 222.336856][ T9756] do_syscall_64+0xcd/0x250 [ 222.341373][ T9756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.347276][ T9756] RIP: 0033:0x7f6285b85d19 [ 222.351695][ T9756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.371323][ T9756] RSP: 002b:00007f62869cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 222.379754][ T9756] RAX: ffffffffffffffda RBX: 00007f6285d76080 RCX: 00007f6285b85d19 [ 222.387731][ T9756] RDX: 0000000000000040 RSI: 00000000200000c0 RDI: ffffffffffffff9c [ 222.395704][ T9756] RBP: 00007f62869cf090 R08: 0000000000000000 R09: 0000000000000000 [ 222.403762][ T9756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 222.411734][ T9756] R13: 0000000000000000 R14: 00007f6285d76080 R15: 00007ffe8f539768 [ 222.419738][ T9756] [ 223.173562][ T9775] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1120'. [ 223.352780][ T9778] FAULT_INJECTION: forcing a failure. [ 223.352780][ T9778] name failslab, interval 1, probability 0, space 0, times 0 [ 223.389137][ T9778] CPU: 0 UID: 0 PID: 9778 Comm: syz.1.1128 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 223.399874][ T9778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 223.409967][ T9778] Call Trace: [ 223.413266][ T9778] [ 223.416214][ T9778] dump_stack_lvl+0x16c/0x1f0 [ 223.420933][ T9778] should_fail_ex+0x497/0x5b0 [ 223.425651][ T9778] ? fs_reclaim_acquire+0xae/0x150 [ 223.430809][ T9778] should_failslab+0xc2/0x120 [ 223.435522][ T9778] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 223.441025][ T9778] ? alloc_empty_file+0x73/0x1e0 [ 223.446011][ T9778] alloc_empty_file+0x73/0x1e0 [ 223.450825][ T9778] path_openat+0xe1/0x2d60 [ 223.455276][ T9778] ? hlock_class+0x4e/0x130 [ 223.459816][ T9778] ? __lock_acquire+0x15a9/0x3c40 [ 223.464898][ T9778] ? __pfx_path_openat+0x10/0x10 [ 223.469874][ T9778] ? __pfx___lock_acquire+0x10/0x10 [ 223.475120][ T9778] ? lock_acquire.part.0+0x11b/0x380 [ 223.480443][ T9778] ? find_held_lock+0x2d/0x110 [ 223.485256][ T9778] do_filp_open+0x20c/0x470 [ 223.489809][ T9778] ? __pfx_do_filp_open+0x10/0x10 [ 223.494881][ T9778] ? find_held_lock+0x2d/0x110 [ 223.499721][ T9778] ? alloc_fd+0x41f/0x760 [ 223.504102][ T9778] do_sys_openat2+0x17a/0x1e0 [ 223.508822][ T9778] ? __pfx_do_sys_openat2+0x10/0x10 [ 223.514070][ T9778] ? __fget_files+0x206/0x3a0 [ 223.518797][ T9778] __x64_sys_openat+0x175/0x210 [ 223.523689][ T9778] ? __pfx___x64_sys_openat+0x10/0x10 [ 223.529109][ T9778] ? ksys_write+0x1ba/0x250 [ 223.533658][ T9778] do_syscall_64+0xcd/0x250 [ 223.538215][ T9778] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.544147][ T9778] RIP: 0033:0x7fe2ab985d19 [ 223.548593][ T9778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 223.568245][ T9778] RSP: 002b:00007fe2ac861038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 223.576707][ T9778] RAX: ffffffffffffffda RBX: 00007fe2abb76080 RCX: 00007fe2ab985d19 [ 223.584726][ T9778] RDX: 0000000000000040 RSI: 00000000200000c0 RDI: ffffffffffffff9c [ 223.592735][ T9778] RBP: 00007fe2ac861090 R08: 0000000000000000 R09: 0000000000000000 [ 223.600741][ T9778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 223.608746][ T9778] R13: 0000000000000000 R14: 00007fe2abb76080 R15: 00007fff64d01408 [ 223.616767][ T9778] [ 223.670137][ T9781] Process accounting resumed [ 223.683536][ T9781] kernel write not supported for file /tomoyo/query (pid: 9781 comm: syz.3.1121) [ 223.991119][ T9795] kernel write not supported for file /tomoyo/query (pid: 9795 comm: syz.3.1122) [ 224.183698][ T9797] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1124'. [ 224.221475][ T9796] kernel write not supported for file /tomoyo/query (pid: 9796 comm: syz.3.1124) [ 224.665554][ T9809] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 225.258404][ T9802] kernel write not supported for file /tomoyo/query (pid: 9802 comm: syz.3.1125) [ 225.426356][ T9822] kernel write not supported for file /tomoyo/query (pid: 9822 comm: syz.3.1131) [ 225.923173][ T9826] kernel write not supported for file /tomoyo/query (pid: 9826 comm: syz.3.1133) [ 226.138632][ T9832] FAULT_INJECTION: forcing a failure. [ 226.138632][ T9832] name failslab, interval 1, probability 0, space 0, times 0 [ 226.173698][ T9832] CPU: 0 UID: 0 PID: 9832 Comm: syz.3.1135 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 226.184434][ T9832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 226.194517][ T9832] Call Trace: [ 226.197810][ T9832] [ 226.200754][ T9832] dump_stack_lvl+0x16c/0x1f0 [ 226.205479][ T9832] should_fail_ex+0x497/0x5b0 [ 226.210199][ T9832] ? fs_reclaim_acquire+0xae/0x150 [ 226.215349][ T9832] should_failslab+0xc2/0x120 [ 226.220064][ T9832] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 226.225470][ T9832] ? security_file_alloc+0x34/0x2b0 [ 226.230702][ T9832] security_file_alloc+0x34/0x2b0 [ 226.235757][ T9832] init_file+0x93/0x480 [ 226.239944][ T9832] alloc_empty_file+0x91/0x1e0 [ 226.244743][ T9832] path_openat+0xe1/0x2d60 [ 226.249181][ T9832] ? hlock_class+0x4e/0x130 [ 226.253713][ T9832] ? __lock_acquire+0x15a9/0x3c40 [ 226.258779][ T9832] ? __pfx_path_openat+0x10/0x10 [ 226.263742][ T9832] ? __pfx___lock_acquire+0x10/0x10 [ 226.268981][ T9832] ? lock_acquire.part.0+0x11b/0x380 [ 226.274295][ T9832] ? find_held_lock+0x2d/0x110 [ 226.279102][ T9832] do_filp_open+0x20c/0x470 [ 226.283638][ T9832] ? __pfx_do_filp_open+0x10/0x10 [ 226.288686][ T9832] ? find_held_lock+0x2d/0x110 [ 226.293509][ T9832] ? alloc_fd+0x41f/0x760 [ 226.297877][ T9832] do_sys_openat2+0x17a/0x1e0 [ 226.302590][ T9832] ? __pfx_do_sys_openat2+0x10/0x10 [ 226.307918][ T9832] ? __fget_files+0x206/0x3a0 [ 226.312629][ T9832] __x64_sys_openat+0x175/0x210 [ 226.317514][ T9832] ? __pfx___x64_sys_openat+0x10/0x10 [ 226.322923][ T9832] ? ksys_write+0x1ba/0x250 [ 226.327464][ T9832] do_syscall_64+0xcd/0x250 [ 226.331997][ T9832] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.337919][ T9832] RIP: 0033:0x7faffc585d19 [ 226.342352][ T9832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.361988][ T9832] RSP: 002b:00007faffa3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 226.370437][ T9832] RAX: ffffffffffffffda RBX: 00007faffc775fa0 RCX: 00007faffc585d19 [ 226.378447][ T9832] RDX: 0000000000000040 RSI: 00000000200000c0 RDI: ffffffffffffff9c [ 226.386442][ T9832] RBP: 00007faffa3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 226.394461][ T9832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 226.402542][ T9832] R13: 0000000000000000 R14: 00007faffc775fa0 R15: 00007ffea574d268 [ 226.410555][ T9832] [ 226.864438][ T9836] kernel write not supported for file /tomoyo/query (pid: 9836 comm: syz.3.1135) [ 226.984563][ T9847] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1136'. [ 227.187759][ T9855] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1139'. [ 227.469630][ T9861] HfR: entered promiscuous mode [ 227.583666][ T9865] Process accounting resumed [ 228.614090][ T9842] kernel write not supported for file /tomoyo/query (pid: 9842 comm: syz.3.1136) [ 229.334417][ T9902] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1157'. [ 229.391647][ T9900] kernel write not supported for file /tomoyo/query (pid: 9900 comm: syz.3.1149) [ 229.403059][ T9904] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1150'. [ 229.417556][ T9900] Process accounting resumed [ 229.539881][ T29] audit: type=1800 audit(8277292042.770:9): pid=9911 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1152" name="discovery_nqn" dev="configfs" ino=24419 res=0 errno=0 [ 232.282395][ T9951] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1163'. [ 232.422843][ T9955] CIFS: VFS: Unsupported security flags: 0x20 [ 233.808023][ T29] audit: type=1800 audit(8277292047.040:10): pid=9989 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1171" name="discovery_nqn" dev="configfs" ino=24574 res=0 errno=0 [ 234.977586][T10010] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1178'. [ 237.700320][T10047] CIFS: VFS: Unsupported security flags: 0x20 [ 237.917689][T10053] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1192'. [ 238.074832][ T29] audit: type=1800 audit(8277292051.300:11): pid=10057 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1193" name="discovery_nqn" dev="configfs" ino=25293 res=0 errno=0 [ 238.894543][T10071] sp0: Synchronizing with TNC [ 239.143214][T10080] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1199'. [ 239.274473][T10088] netlink: 'syz.1.1199': attribute type 46 has an invalid length. [ 239.999773][T10097] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1204'. [ 240.033030][T10101] CIFS: VFS: Unsupported security flags: 0x20 [ 240.163882][T10107] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1214'. [ 240.176569][T10109] netlink: 124 bytes leftover after parsing attributes in process `syz.0.1214'. [ 240.748987][T10136] kernel read not supported for file /#)-\&[} (pid: 10136 comm: syz.2.1221) [ 240.796577][ T29] audit: type=1800 audit(8277292054.020:12): pid=10136 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1221" name="#)-\&[}" dev="mqueue" ino=12451 res=0 errno=0 [ 241.000516][T10146] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1213'. [ 241.033167][T10149] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1216'. [ 241.059646][T10146] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 241.102692][T10144] netlink: 'syz.2.1213': attribute type 46 has an invalid length. [ 241.148758][T10146] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 241.587787][T10165] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1223'. [ 241.670847][T10165] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[10165] [ 242.257746][T10199] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1229'. [ 242.552727][T10205] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 242.567021][T10205] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 242.638963][T10205] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 242.645030][T10205] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 242.677944][T10207] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1230'. [ 242.705268][T10207] mac80211_hwsim hwsim7 : entered promiscuous mode [ 242.728671][T10207] mac80211_hwsim hwsim7 : entered allmulticast mode [ 242.774262][T10205] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 242.841334][T10213] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 242.849305][T10205] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 242.863188][T10213] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 242.883677][T10205] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 242.890392][T10205] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 242.890839][T10213] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 242.904690][T10213] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 242.980600][T10216] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[10216] [ 243.133934][T10220] __nla_validate_parse: 1 callbacks suppressed [ 243.133954][T10220] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1235'. [ 243.177632][T10218] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1234'. [ 243.364844][T10226] netlink: 'syz.0.1234': attribute type 46 has an invalid length. [ 243.384205][T10227] netlink: 178 bytes leftover after parsing attributes in process `syz.1.1236'. [ 243.438264][T10227] netlink: 178 bytes leftover after parsing attributes in process `syz.1.1236'. [ 243.507832][T10227] netlink: 178 bytes leftover after parsing attributes in process `syz.1.1236'. [ 243.546896][T10227] netlink: 178 bytes leftover after parsing attributes in process `syz.1.1236'. [ 243.556139][T10227] netlink: 178 bytes leftover after parsing attributes in process `syz.1.1236'. [ 243.568631][T10223] [ 243.570996][T10223] ====================================================== [ 243.578025][T10223] WARNING: possible circular locking dependency detected [ 243.585060][T10223] 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 Not tainted [ 243.592195][T10223] ------------------------------------------------------ [ 243.596866][T10227] netlink: 178 bytes leftover after parsing attributes in process `syz.1.1236'. [ 243.599213][T10223] syz.3.1237/10223 is trying to acquire lock: [ 243.599226][T10223] ffff888034d73198 (sk_lock-AF_INET){+.+.}-{0:0}, at: sockopt_lock_sock+0x54/0x70 [ 243.615224][T10227] netlink: 178 bytes leftover after parsing attributes in process `syz.1.1236'. [ 243.623566][T10223] [ 243.623566][T10223] but task is already holding lock: [ 243.623575][T10223] ffffffff8fabf288 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_setsockopt+0xf9/0x38c0 [ 243.623633][T10223] [ 243.623633][T10223] which lock already depends on the new lock. [ 243.623633][T10223] [ 243.638293][T10227] netlink: 178 bytes leftover after parsing attributes in process `syz.1.1236'. [ 243.639987][T10223] [ 243.639987][T10223] the existing dependency chain (in reverse order) is: [ 243.639996][T10223] [ 243.639996][T10223] -> #2 (rtnl_mutex){+.+.}-{4:4}: [ 243.684550][T10223] __mutex_lock+0x19b/0xa60 [ 243.689614][T10223] do_ip_setsockopt+0xf9/0x38c0 [ 243.695037][T10223] ip_setsockopt+0x59/0xf0 [ 243.695373][T10241] caif:caif_disconnect_client(): nothing to disconnect [ 243.699986][T10223] tcp_setsockopt+0xa4/0x100 [ 243.700018][T10223] smc_setsockopt+0x1b4/0xc00 [ 243.700049][T10223] do_sock_setsockopt+0x222/0x480 [ 243.700080][T10223] __sys_setsockopt+0x1a0/0x230 [ 243.700106][T10223] __x64_sys_setsockopt+0xbd/0x160 [ 243.700135][T10223] do_syscall_64+0xcd/0x250 [ 243.700163][T10223] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.700194][T10223] [ 243.700194][T10223] -> #1 (&smc->clcsock_release_lock){+.+.}-{4:4}: [ 243.700232][T10223] __mutex_lock+0x19b/0xa60 [ 243.700265][T10223] smc_switch_to_fallback+0x2d/0xa00 [ 243.700296][T10223] smc_sendmsg+0x13d/0x520 [ 243.769749][T10223] ____sys_sendmsg+0x9ae/0xb40 [ 243.775079][T10223] ___sys_sendmsg+0x135/0x1e0 [ 243.780314][T10223] __sys_sendmsg+0x16e/0x220 [ 243.785461][T10223] do_syscall_64+0xcd/0x250 [ 243.790519][T10223] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.796972][T10223] [ 243.796972][T10223] -> #0 (sk_lock-AF_INET){+.+.}-{0:0}: [ 243.804659][T10223] __lock_acquire+0x249e/0x3c40 [ 243.810081][T10223] lock_acquire.part.0+0x11b/0x380 [ 243.815760][T10223] lock_sock_nested+0x3a/0xf0 [ 243.820998][T10223] sockopt_lock_sock+0x54/0x70 [ 243.826321][T10223] do_ip_setsockopt+0x101/0x38c0 [ 243.831811][T10223] ip_setsockopt+0x59/0xf0 [ 243.836783][T10223] raw_setsockopt+0xb8/0x290 [ 243.841916][T10223] do_sock_setsockopt+0x222/0x480 [ 243.847505][T10223] __sys_setsockopt+0x1a0/0x230 [ 243.852916][T10223] __x64_sys_setsockopt+0xbd/0x160 [ 243.858587][T10223] do_syscall_64+0xcd/0x250 [ 243.863653][T10223] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.870103][T10223] [ 243.870103][T10223] other info that might help us debug this: [ 243.870103][T10223] [ 243.880359][T10223] Chain exists of: [ 243.880359][T10223] sk_lock-AF_INET --> &smc->clcsock_release_lock --> rtnl_mutex [ 243.880359][T10223] [ 243.893970][T10223] Possible unsafe locking scenario: [ 243.893970][T10223] [ 243.901449][T10223] CPU0 CPU1 [ 243.906834][T10223] ---- ---- [ 243.912221][T10223] lock(rtnl_mutex); [ 243.916236][T10223] lock(&smc->clcsock_release_lock); [ 243.924160][T10223] lock(rtnl_mutex); [ 243.930705][T10223] lock(sk_lock-AF_INET); [ 243.935171][T10223] [ 243.935171][T10223] *** DEADLOCK *** [ 243.935171][T10223] [ 243.943329][T10223] 1 lock held by syz.3.1237/10223: [ 243.948464][T10223] #0: ffffffff8fabf288 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_setsockopt+0xf9/0x38c0 [ 243.957835][T10223] [ 243.957835][T10223] stack backtrace: [ 243.963743][T10223] CPU: 0 UID: 0 PID: 10223 Comm: syz.3.1237 Not tainted 6.13.0-rc2-syzkaller-00382-gdccbe2047a5b #0 [ 243.974544][T10223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 243.984679][T10223] Call Trace: [ 243.987982][T10223] [ 243.990937][T10223] dump_stack_lvl+0x116/0x1f0 [ 243.995653][T10223] print_circular_bug+0x41c/0x610 [ 244.000729][T10223] check_noncircular+0x31a/0x400 [ 244.005715][T10223] ? __pfx_check_noncircular+0x10/0x10 [ 244.011218][T10223] ? hlock_class+0x4e/0x130 [ 244.015762][T10223] ? lockdep_lock+0xc6/0x200 [ 244.020395][T10223] ? __pfx_lockdep_lock+0x10/0x10 [ 244.025476][T10223] __lock_acquire+0x249e/0x3c40 [ 244.030386][T10223] ? __pfx___lock_acquire+0x10/0x10 [ 244.035649][T10223] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 244.041498][T10223] ? lockdep_hardirqs_on+0x7c/0x110 [ 244.046735][T10223] lock_acquire.part.0+0x11b/0x380 [ 244.051878][T10223] ? sockopt_lock_sock+0x54/0x70 [ 244.056858][T10223] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 244.062536][T10223] ? rcu_is_watching+0x12/0xc0 [ 244.067339][T10223] ? trace_lock_acquire+0x14e/0x1f0 [ 244.072576][T10223] ? mark_lock+0xb5/0xc60 [ 244.076945][T10223] ? sockopt_lock_sock+0x54/0x70 [ 244.081928][T10223] ? lock_acquire+0x2f/0xb0 [ 244.086467][T10223] ? sockopt_lock_sock+0x54/0x70 [ 244.091531][T10223] lock_sock_nested+0x3a/0xf0 [ 244.096242][T10223] ? sockopt_lock_sock+0x54/0x70 [ 244.101213][T10223] sockopt_lock_sock+0x54/0x70 [ 244.106008][T10223] do_ip_setsockopt+0x101/0x38c0 [ 244.111055][T10223] ? __pfx___futex_wait+0x10/0x10 [ 244.116104][T10223] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 244.121514][T10223] ip_setsockopt+0x59/0xf0 [ 244.125956][T10223] raw_setsockopt+0xb8/0x290 [ 244.130571][T10223] ? __pfx_raw_setsockopt+0x10/0x10 [ 244.135796][T10223] ? sock_common_setsockopt+0x2e/0xf0 [ 244.141193][T10223] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 244.147113][T10223] do_sock_setsockopt+0x222/0x480 [ 244.152181][T10223] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 244.157839][T10223] ? lock_acquire+0x2f/0xb0 [ 244.162380][T10223] __sys_setsockopt+0x1a0/0x230 [ 244.167274][T10223] __x64_sys_setsockopt+0xbd/0x160 [ 244.172427][T10223] ? do_syscall_64+0x91/0x250 [ 244.177145][T10223] ? lockdep_hardirqs_on+0x7c/0x110 [ 244.182371][T10223] do_syscall_64+0xcd/0x250 [ 244.186914][T10223] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.192847][T10223] RIP: 0033:0x7faffc585d19 [ 244.197289][T10223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.216931][T10223] RSP: 002b:00007faffa3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 244.225377][T10223] RAX: ffffffffffffffda RBX: 00007faffc775fa0 RCX: 00007faffc585d19 [ 244.233391][T10223] RDX: 0000000000000029 RSI: 0000000000000000 RDI: 0000000000000003 [ 244.241403][T10223] RBP: 00007faffc601a20 R08: 0000000000000028 R09: 0000000000000000 [ 244.249422][T10223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 244.257428][T10223] R13: 0000000000000000 R14: 00007faffc775fa0 R15: 00007ffea574d268 [ 244.265437][T10223] [ 244.285951][T10217] caif:caif_disconnect_client(): nothing to disconnect [ 244.556817][ T53] Bluetooth: hci2: command 0x0406 tx timeout [ 244.716811][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 244.796827][ T53] Bluetooth: hci3: command 0x0406 tx timeout [ 244.966777][ T53] Bluetooth: hci1: command 0x0406 tx timeout [ 246.636783][ T53] Bluetooth: hci2: command 0x0406 tx timeout [ 246.796833][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 246.876853][ T53] Bluetooth: hci3: command 0x0406 tx timeout [ 247.036780][ T53] Bluetooth: hci1: command 0x0406 tx timeout