last executing test programs: 5.407119148s ago: executing program 3 (id=1610): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/asound/card0/pcm0c/sub2/info\x00', 0x400000, 0x0) 5.240012608s ago: executing program 3 (id=1613): r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptya1\x00', 0x4a401, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/nbd5/sched/dispatch0\x00', 0x60000, 0x0) pread64$auto(r1, 0x0, 0xf42d, 0x100) r2 = socket(0xa, 0x2, 0x73) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) sendto$auto(r2, 0x0, 0xf, 0x800e, &(0x7f00000004c0), 0x19) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000600), r0) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) lseek$auto(0x3, 0x7ffffffffffffffd, 0x2) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptya1\x00', 0x4a401, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/nbd5/sched/dispatch0\x00', 0x60000, 0x0) (async) pread64$auto(r1, 0x0, 0xf42d, 0x100) (async) socket(0xa, 0x2, 0x73) (async) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) (async) sendto$auto(r2, 0x0, 0xf, 0x800e, &(0x7f00000004c0), 0x19) (async) close_range$auto(0x2, 0x8, 0x0) (async) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000600), r0) (async) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) (async) lseek$auto(0x3, 0x7ffffffffffffffd, 0x2) (async) 4.740078097s ago: executing program 3 (id=1617): userfaultfd$auto(0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) close_range$auto(0x2, 0x8, 0x3000000) 4.179747654s ago: executing program 2 (id=1618): r0 = socket(0x11, 0x3, 0x6) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEC_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x70bd25, 0x25dfdbff, {}, [@ETHTOOL_A_FEC_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_FEC_AUTO={0x5, 0x3, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0xac8fe2812c61ec00) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x5, &(0x7f0000000140), 0x7, 0x1000}, 0x5}, 0xfffffff3, 0x100) r3 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsu\x00', 0x149000, 0x0) read$auto_vcs_fops_vc_screen(r3, &(0x7f0000000200)=""/4096, 0x1000) r4 = open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0) fanotify_mark$auto(0x0, 0x1, 0x9, r4, 0x0) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f0000001200)={0x2ec, r5, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@NL80211_ATTR_SCAN_SSIDS={0x245, 0x2d, 0x0, 0x1, [@typed={0x8, 0x145, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x35}}, @generic="0f274fea8ca5", @generic="090d3aa8aac106c3f0549d1f3eac606c8ab9187ff2d2df03173de13c79ed262ad07559a9941adf7607c73abe455b891344e56cb0c7f7ae0f611297b150c3bcfaf785323e801cbcf3e26422346a1ff6d6be50d8ffc4734179fa638abf8daf60f4ff036120d6371b9f87b31b5f660348f1faf54c6da5f4b0d72b66b80c8f9d8506799ff86456c93ce4f4d0602a1fd532bab1fa4d169cdd48a2419bfa97ed7012d274d1e0cdb55a13303dc25a67f67c1c1ef3de60f1acabf19375cefd9d4c95f5456d559914f8bab4d034fafc5c328bcec261b09f2eb5dce603800695f2c751e8ef6ab3808ee5665fda25f37bc666814c", @nested={0x137, 0xf1, 0x0, 0x1, [@generic="2d9293cb60d19e06d782f72dd92f713ef5e17908b382d4d917b581b463859f", @typed={0x7, 0xf2, 0x0, 0x0, @str='*$\x00'}, @nested={0x4, 0xca}, @generic="2c7897da90ff64d0e914d8e1a337aa6d829c4e37563abda17a54005ebe4fb631f5ade646e74e72b6a6ef1924f7cd6365a8ff96d960ecfeeb44541aeb756e1b356961dd5b1f9ba37ec04a8c66748d69354a8d1130e850520ee1338ff4572f038b", @nested={0x4, 0x10b}, @generic="4a9608009c6a6e4e577d024fb5cc16759d47fd85a5c7eac8f1710839570fe1188e45117d02ff035ce671b15bd1bc48fcc52f5b301552f1be8a12026b89441e0d9754458f00c73c021e394419d8add719de6b06191ed0f719c6ce4520f4bb1e5e82eef2ae1d79409224856e874259320b5023a68d892a3da5bbac8f53f32a99442250e8952335a89a5bada07350c92e030580a68a2870b695303f1a3016748542200f44d0"]}, @nested={0xc, 0xdd, 0x0, 0x1, [@nested={0x4, 0xa2}, @nested={0x4, 0xea}]}]}, @NL80211_ATTR_PREV_BSSID={0x8c, 0x4f, "2c92111ef833db01a82af33f6205b37e125f46fe82601bd511a452ceaa059157fbdc2a308861ba7dcc924da44435730467f9134e06c2db9ad6c06b1f352057c6f47154043f950b61bd40a56af604b66b14331abd8f41f3d2126ddf78c99d6ef1639f7e9e94bfb0756755cd99cb6682bcfbdb1d2e7fe0557e2befcf072c549e6521328e1f69c9176f"}, @NL80211_ATTR_CONTROL_PORT={0x4}]}, 0x2ec}, 0x1, 0x0, 0x0, 0x48801}, 0x4) 4.168055988s ago: executing program 3 (id=1628): mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) connect$auto(0x3, &(0x7f00000000c0), 0x55) sendto$auto(r0, &(0x7f0000000200), 0xb, 0x5, &(0x7f0000000240), 0xc8e) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) syz_genetlink_get_family_id$auto_ovs_meter(0x0, r0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) r1 = socket(0x15, 0x5, 0x0) bind$auto(r1, &(0x7f0000000300), 0x68) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), r0) write$auto(0x3, 0x0, 0xfffffdef) setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0xdf, 0x91, 0xfff, 0x8001) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) madvise$auto(0x0, 0xffffffffffff0001, 0x17) socket(0x26, 0xa, 0x0) process_mrelease$auto(0x24d, 0xd) mmap$auto(0x0, 0x1, 0x4000000000df, 0x44eb2, 0x3, 0x300000000000) mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000) mmap$auto(0x6, 0x100, 0xdf, 0x9b7e, 0x2, 0x7ffd) r2 = socket(0x11, 0x80003, 0x300) mincore$auto(0x1000, 0x8001, 0x0) setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x4) socket$nl_generic(0x10, 0x3, 0x10) 3.945759458s ago: executing program 2 (id=1619): mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) connect$auto(0x3, &(0x7f00000000c0), 0x55) sendto$auto(r0, &(0x7f0000000200), 0xb, 0x5, &(0x7f0000000240), 0xc8e) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) syz_genetlink_get_family_id$auto_ovs_meter(0x0, r0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) r1 = socket(0x15, 0x5, 0x0) bind$auto(r1, &(0x7f0000000300), 0x68) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000003240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40) write$auto(0x3, 0x0, 0xfffffdef) setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0xdf, 0x91, 0xfff, 0x8001) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) madvise$auto(0x0, 0xffffffffffff0001, 0x17) socket(0x26, 0xa, 0x0) process_mrelease$auto(0x24d, 0xd) mmap$auto(0x0, 0x1, 0x4000000000df, 0x44eb2, 0x3, 0x300000000000) mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000) mmap$auto(0x6, 0x100, 0xdf, 0x9b7e, 0x2, 0x7ffd) r2 = socket(0x11, 0x80003, 0x300) mincore$auto(0x1000, 0x8001, 0x0) setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x4) socket$nl_generic(0x10, 0x3, 0x10) 3.943012355s ago: executing program 1 (id=1620): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$auto_I2C_TENBIT(r0, 0x704, 0x3) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/misc\x00', 0x10b402, 0x0) pread64$auto(r1, &(0x7f0000000040)='/proc/scsi/sg/devices\x00', 0x100000001, 0x100) r2 = openat$auto_rfcomm_sock_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x200, 0x0) lseek$auto(r2, 0x8000, 0x0) close_range$auto(0x2, r2, 0x0) r3 = socket(0x2, 0x1, 0x0) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) sendmsg$auto_SMC_NETLINK_ADD_UEID(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x400c005) syz_genetlink_get_family_id$auto_batadv(0x0, r3) connect$auto(r3, &(0x7f0000000040)=@sco, 0x3) open(0x0, 0x22240, 0x155) socket(0x15, 0x5, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d64688be86d547a05c861"}, 0x55) getpeername$auto(0x3, 0x0, 0x0) r4 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0) read$auto_snd_ctl_f_ops_control(r4, &(0x7f0000001a80)=""/4096, 0xfffffea1) 3.645695603s ago: executing program 1 (id=1622): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) syz_open_procfs$namespace(0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x73) socket(0xa, 0x801, 0x84) clone$auto(0x20003b46, 0x1, 0x0, 0x0, 0x20000000020002) getsockopt$auto(0x6, 0x84, 0x7b, 0x0, &(0x7f00000000c0)=0x10000) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) read$auto(r0, &(0x7f0000000100)='nl80211\x00', 0xbe62) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000000000600010000000a0005000000000000000000b3fc010000000000000000000a0001000000000000000000060006000500000008000200", @ANYRES32=0x0, @ANYBLOB="080004000301"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) mount_setattr$auto(0x5, 0x0, 0x0, &(0x7f0000000640)={0x10000c, 0x7f, 0x0, @inferred=0xffffffffffffffff}, 0x283) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0_to_team\x00', 0x0}) recvfrom$auto(r1, &(0x7f0000000300)="4a8eba5d45f8c046035326c36ef8eb38ae67e1f01a83981414808355000fd9f0b8e2bb867507a70f816feba72a38600f6da259fdb87ef2830c7e8d7552033622450a40d9308ecab0bba366f1ecc0ec88383f8883d5d8403039260e63543db5db7a49526142847e928cc8a9c188ef08d3293601df429abeaa25168d5e28111ae743a860fb6044665216ad2cd32ce33e7f0533a0b3baf5bc6af450", 0x8, 0x5, &(0x7f0000000280)=@can={0x1d, r3}, &(0x7f00000003c0)=0x1000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.439617451s ago: executing program 0 (id=1624): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SETHMAC(r0, &(0x7f0000001440)={0x0, 0x900, &(0x7f0000001400)={&(0x7f0000000240)={0x34, r1, 0x6c5679fc7dece1a9, 0x70bd27, 0x25dfdbff, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x7}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x10001}, @SEG6_ATTR_SECRET={0x7, 0x4, "eb96e1"}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}]}, 0x34}, 0x1, 0xf0ffffffffffff, 0x0, 0x20000000}, 0x20008000) 3.253057179s ago: executing program 0 (id=1625): sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x14, 0x9, 0x63, 0x0, 0x0, 0x0, 0x0, 0x7, 0x800000000000007, 0x40000402, 0x9, 0x9, 0xffffffff80000000, 0x9, 0x7, 0x200000100103}) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) r1 = openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000300), 0x841, 0x0) write$auto_bm_register_operations_binfmt_misc(r1, &(0x7f0000000340)="4d96b15940349a69c8f63c", 0xb) 2.670844975s ago: executing program 2 (id=1626): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x103400, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/system/cpu/vulnerabilities/l1tf\x00', 0x0, 0x0) read$auto(r0, &(0x7f0000000200)='\x00', 0xb) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv6/conf/ip6tnl0/stable_secret\x00', 0x141241, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r1, &(0x7f0000000000)="9a", 0x1) 2.670475946s ago: executing program 3 (id=1629): mmap$auto(0x0, 0x2020009, 0xffff, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x1c8300, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x280, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x7, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r1, 0xae60, 0x0) pread64$auto(r0, 0x0, 0x8, 0x8) 2.670186276s ago: executing program 0 (id=1637): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) syz_open_procfs$namespace(0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x73) socket(0xa, 0x801, 0x84) clone$auto(0x20003b46, 0x1, 0x0, 0x0, 0x20000000020002) getsockopt$auto(0x6, 0x84, 0x7b, 0x0, &(0x7f00000000c0)=0x10000) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) read$auto(r0, &(0x7f0000000100)='nl80211\x00', 0xbe62) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000000000600010000000a0005000000000000000000b3fc010000000000000000000a0001000000000000000000060006000500000008000200", @ANYRES32=0x0, @ANYBLOB="080004000301"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) mount_setattr$auto(0x5, 0x0, 0x0, &(0x7f0000000640)={0x10000c, 0x7f, 0x0, @inferred=0xffffffffffffffff}, 0x283) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0_to_team\x00', 0x0}) recvfrom$auto(r1, &(0x7f0000000300)="4a8eba5d45f8c046035326c36ef8eb38ae67e1f01a83981414808355000fd9f0b8e2bb867507a70f816feba72a38600f6da259fdb87ef2830c7e8d7552033622450a40d9308ecab0bba366f1ecc0ec88383f8883d5d8403039260e63543db5db7a49526142847e928cc8a9c188ef08d3293601df429abeaa25168d5e28111ae743a860fb6044665216ad2cd32ce33e7f0533a0b3baf5bc6af450", 0x8, 0x5, &(0x7f0000000280)=@can={0x1d, r3}, &(0x7f00000003c0)=0x1000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.669891981s ago: executing program 1 (id=1638): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SETHMAC(r0, &(0x7f0000001440)={0x0, 0x900, &(0x7f0000001400)={&(0x7f0000000240)={0x34, r1, 0x6c5679fc7dece1a9, 0x70bd27, 0x25dfdbff, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x7}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x10001}, @SEG6_ATTR_SECRET={0x7, 0x4, "eb96e1"}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}]}, 0x34}, 0x1, 0xf0ffffffffffff, 0x0, 0x20000000}, 0x20008000) 2.431025104s ago: executing program 2 (id=1630): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) lseek$auto(0xffffffffffffffff, 0x0, 0x1) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x5, 0x25dfdbfb, {}, [@HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44004811}, 0x40000c0) ioctl$auto(0xffffffffffffffff, 0x9, 0x9) prctl$auto(0x7, 0x1, 0x800000004, 0xf7, 0x10004) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptys4\x00', 0x2, 0x0) r3 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) ioctl$auto_RTC_SET_TIME(r3, 0x4024700a, &(0x7f0000000040)={0x884, 0xffffffff, 0xfffffffe, 0x7, 0xfff, 0x55a6, 0xfffffffd, 0x10000, 0x5}) write$auto(r2, &(0x7f0000000040)='\x00', 0xdb01) ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/rpc/use-gss-proxy\x00', 0x0, 0x0) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000480), r0) sendmsg$auto_NL80211_CMD_SET_MULTICAST_TO_UNICAST(r0, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x4c, r5, 0x400, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_RECEIVE_MULTICAST={0x4}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x9}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x2}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x4}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x13, 0x13, "10e325ab9b812efb0e4d5614c7724e"}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x91}, 0x20048800) ppoll$auto(&(0x7f0000000180)={0xffffffffffffffff, 0x2, 0x3}, 0x2b3, &(0x7f0000000280)={0x7fffffffffffffff, 0x9}, &(0x7f0000000340)={0x7fff}, 0x8) poll$auto(&(0x7f0000000080)={r6, 0x8000, 0x10}, 0xb, 0xffffffff) read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000000)=""/223, 0xdf) read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000140)=""/25, 0x19) pipe$auto(&(0x7f0000000000)) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000080), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) rename$auto(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)='./file0\x00') setsockopt$auto(0x3, 0x0, 0x15, 0x0, 0x28) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0xd, 0x3}, 0x6f3) openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000380), 0x200, 0x0) 2.303787228s ago: executing program 1 (id=1632): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002f40), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_GET(r0, &(0x7f0000003080)={0x0, 0x0, &(0x7f0000003040)={&(0x7f0000001b00)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="ffff2b2c9e088fdbdf250b0000001800018014000200776731"], 0x2c}, 0x1, 0x0, 0x0, 0x20004800}, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x7f, 0x1, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f0000003b40)={0x0, 0x0, &(0x7f0000003b00)={&(0x7f0000000040)={0x14, 0x0, 0x1, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40080}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000"], 0x1ac}}, 0x40000) 2.277835728s ago: executing program 3 (id=1633): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$auto_I2C_TENBIT(r0, 0x704, 0x3) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/misc\x00', 0x10b402, 0x0) pread64$auto(r1, &(0x7f0000000040)='/proc/scsi/sg/devices\x00', 0x100000001, 0x100) r2 = openat$auto_rfcomm_sock_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x200, 0x0) lseek$auto(r2, 0x8000, 0x0) close_range$auto(0x2, r2, 0x0) r3 = socket(0x2, 0x1, 0x0) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) sendmsg$auto_SMC_NETLINK_ADD_UEID(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x400c005) syz_genetlink_get_family_id$auto_batadv(0x0, r3) connect$auto(r3, &(0x7f0000000040)=@sco, 0x3) open(0x0, 0x22240, 0x155) socket(0x15, 0x5, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d64688be86d547a05c861"}, 0x55) getpeername$auto(0x3, 0x0, 0x0) r4 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0) read$auto_snd_ctl_f_ops_control(r4, &(0x7f0000001a80)=""/4096, 0xfffffea1) 2.008583194s ago: executing program 0 (id=1634): openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video36\x00', 0x2a3c1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0xc0445624, 0x38) prctl$auto(0x23, 0x80000000000a, 0x80000001, 0x0, 0x0) r0 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/environ\x00', 0x2000, 0x0) read$auto_proc_environ_operations_base(r0, &(0x7f0000000240)=""/80, 0x50) r1 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000800)='/dev/dri/card0\x00', 0x20400, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f00000038c0), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_CAP_GET2(r2, &(0x7f0000003a00)={0x0, 0x0, &(0x7f00000039c0)={&(0x7f00000000c0)={0x1c, r3, 0x301, 0x70bd28, 0x25dfdbff, {}, [@NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r5}]}, 0x1c}}, 0x2) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'veth0_to_team\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'gre0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'veth1_to_hsr\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'dvmrp0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_GET2(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000229bd7000fddbdf250100000008000800", @ANYRES32=r6, @ANYBLOB='\b\x00\b\x00', @ANYRES32=r7, @ANYBLOB='\b\x00\b\x00', @ANYRES32=r8, @ANYBLOB='\b\x00\b\x00', @ANYRES32=r9, @ANYBLOB="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"], 0x34}, 0x1, 0x0, 0x0, 0x400c0}, 0x40) 1.661895488s ago: executing program 0 (id=1635): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) newfstatat$auto(r0, &(0x7f0000000580), 0x0, 0x1000) r1 = syz_genetlink_get_family_id$auto_hsr(&(0x7f0000000180), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(r0, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r1, 0x4, 0x70bd26, 0x25dfdbfd, {}, [@HSR_A_IFINDEX={0x8, 0x2, r2}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @random="f213fcd70562"}, @HSR_A_IF2_AGE={0x8, 0x4, 0xff}, @HSR_A_IF1_AGE={0x8, 0x3, 0x1}, @HSR_A_IF1_SEQ={0x6, 0x6, 0xb}, @HSR_A_IF1_AGE={0x8, 0x3, 0x7a5a}, @HSR_A_NODE_ADDR={0xa, 0x1, @link_local}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x40) ppoll$auto(&(0x7f0000000040)={r0, 0x2, 0x6}, 0x4, &(0x7f0000000080)={0x2, 0xc178}, &(0x7f00000000c0)={0xfffffffffffffffd}, 0x8) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/pagemap\x00', 0x74b800, 0x0) 1.277564325s ago: executing program 2 (id=1636): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/bluetooth/hci2/hci2:200/power/control\x00', 0xa08180, 0x0) socket(0x2, 0x3, 0x1) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)={0x30, r1, 0x1, 0x74bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_TX={0x5, 0x18, 0x1}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_HIGH={0x8, 0x16, 0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x48c1}, 0x0) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto(0x3, 0x89e0, 0x91) bpf$auto(0x2, &(0x7f00000001c0)=@batch={0x8000000000009, 0x80000001, 0x10008, 0x8250, 0xa6d5, 0xffffffffffffffff, 0x7, 0x6}, 0x103) sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d8010000", @ANYRES16, @ANYBLOB="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"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) r3 = socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) 1.077411543s ago: executing program 2 (id=1639): mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) connect$auto(0x3, &(0x7f00000000c0), 0x55) sendto$auto(r0, &(0x7f0000000200), 0xb, 0x5, &(0x7f0000000240), 0xc8e) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) syz_genetlink_get_family_id$auto_ovs_meter(0x0, r0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) r1 = socket(0x15, 0x5, 0x0) bind$auto(r1, &(0x7f0000000300), 0x68) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), r0) write$auto(0x3, 0x0, 0xfffffdef) setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0xdf, 0x91, 0xfff, 0x8001) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) madvise$auto(0x0, 0xffffffffffff0001, 0x17) socket(0x26, 0xa, 0x0) process_mrelease$auto(0x24d, 0xd) mmap$auto(0x0, 0x1, 0x4000000000df, 0x44eb2, 0x3, 0x300000000000) mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000) mmap$auto(0x6, 0x100, 0xdf, 0x9b7e, 0x2, 0x7ffd) r2 = socket(0x11, 0x80003, 0x300) mincore$auto(0x1000, 0x8001, 0x0) setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x4) socket$nl_generic(0x10, 0x3, 0x10) 1.076215979s ago: executing program 1 (id=1640): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002f40), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_GET(r0, &(0x7f0000003080)={0x0, 0x0, &(0x7f0000003040)={&(0x7f0000001b00)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="ffff2b2c9e088fdbdf250b0000001800018014000200776731"], 0x2c}, 0x1, 0x0, 0x0, 0x20004800}, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x28, 0x1, 0x0) socket(0x2b, 0x1, 0x1) listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) mmap$auto(0x0, 0x7f, 0x1, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f0000003b40)={0x0, 0x0, &(0x7f0000003b00)={&(0x7f0000000040)={0x14, 0x0, 0x1, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40080}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000"], 0x1ac}}, 0x40000) 568.379485ms ago: executing program 0 (id=1641): mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) connect$auto(0x3, &(0x7f00000000c0), 0x55) sendto$auto(r0, &(0x7f0000000200), 0xb, 0x5, &(0x7f0000000240), 0xc8e) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) syz_genetlink_get_family_id$auto_ovs_meter(0x0, r0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) r1 = socket(0x15, 0x5, 0x0) bind$auto(r1, &(0x7f0000000300), 0x68) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000003240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40) write$auto(0x3, 0x0, 0xfffffdef) setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0xdf, 0x91, 0xfff, 0x8001) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) madvise$auto(0x0, 0xffffffffffff0001, 0x17) socket(0x26, 0xa, 0x0) process_mrelease$auto(0x24d, 0xd) mmap$auto(0x0, 0x1, 0x4000000000df, 0x44eb2, 0x3, 0x300000000000) mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000) mmap$auto(0x6, 0x100, 0xdf, 0x9b7e, 0x2, 0x7ffd) r2 = socket(0x11, 0x80003, 0x300) mincore$auto(0x1000, 0x8001, 0x0) setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x4) socket$nl_generic(0x10, 0x3, 0x10) 0s ago: executing program 1 (id=1642): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x801, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x3, 0x1, 0x4, 0x7, 0x1d8f) r1 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000), 0x60840, 0x0) read$auto(r1, 0x0, 0x80000000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0xf000, 0x1, 0x1, 0x0, 0x7fff, 0x2) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) madvise$auto(0x0, 0xffffffffffff0005, 0x19) kernel console output (not intermixed with test programs): going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.412637][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 69.426491][ T5831] team0: Port device team_slave_0 added [ 69.437452][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 69.444796][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.472414][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 69.489962][ T5831] team0: Port device team_slave_1 added [ 69.518384][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.525750][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.533500][ T5833] bridge_slave_0: entered allmulticast mode [ 69.540915][ T5833] bridge_slave_0: entered promiscuous mode [ 69.576573][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.583836][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.591808][ T5833] bridge_slave_1: entered allmulticast mode [ 69.598350][ T5833] bridge_slave_1: entered promiscuous mode [ 69.614868][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 69.621875][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.648008][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 69.681560][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 69.688544][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.714507][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 69.745384][ T5829] hsr_slave_0: entered promiscuous mode [ 69.755843][ T5829] hsr_slave_1: entered promiscuous mode [ 69.782077][ T5827] hsr_slave_0: entered promiscuous mode [ 69.788256][ T5827] hsr_slave_1: entered promiscuous mode [ 69.794812][ T5827] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 69.802933][ T5827] Cannot create hsr debugfs directory [ 69.811231][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 69.835940][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 69.902241][ T5833] team0: Port device team_slave_0 added [ 69.924625][ T5831] hsr_slave_0: entered promiscuous mode [ 69.930835][ T5831] hsr_slave_1: entered promiscuous mode [ 69.936774][ T5831] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 69.945057][ T5831] Cannot create hsr debugfs directory [ 69.952344][ T5833] team0: Port device team_slave_1 added [ 70.028652][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.038022][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.064067][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.093893][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.101438][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.127909][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.200979][ T5833] hsr_slave_0: entered promiscuous mode [ 70.207124][ T5833] hsr_slave_1: entered promiscuous mode [ 70.214643][ T5833] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 70.222794][ T5833] Cannot create hsr debugfs directory [ 70.309618][ T5839] Bluetooth: hci3: command tx timeout [ 70.309625][ T5830] Bluetooth: hci1: command tx timeout [ 70.309950][ T5830] Bluetooth: hci0: command tx timeout [ 70.342140][ T5829] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 70.375699][ T5829] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 70.386332][ T5829] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 70.389345][ T5830] Bluetooth: hci2: command tx timeout [ 70.411258][ T5829] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 70.434473][ T5827] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 70.464655][ T5827] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 70.474113][ T5827] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 70.484356][ T5827] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 70.560211][ T5831] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 70.574487][ T5831] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 70.584048][ T5831] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 70.607156][ T5831] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 70.672842][ T5833] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 70.683033][ T5833] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 70.702834][ T5833] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 70.713199][ T5833] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 70.782592][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.837091][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.855632][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.875983][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.917485][ T61] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.925411][ T61] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.935517][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.942685][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.965937][ T61] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.973049][ T61] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.985542][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0 [ 71.010610][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.017725][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 71.037833][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0 [ 71.086240][ T5833] 8021q: adding VLAN 0 to HW filter on device team0 [ 71.105045][ T5831] 8021q: adding VLAN 0 to HW filter on device team0 [ 71.124580][ T484] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.131853][ T484] bridge0: port 1(bridge_slave_0) entered forwarding state [ 71.155123][ T484] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.162361][ T484] bridge0: port 2(bridge_slave_1) entered forwarding state [ 71.177576][ T484] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.184790][ T484] bridge0: port 1(bridge_slave_0) entered forwarding state [ 71.228257][ T484] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.235454][ T484] bridge0: port 2(bridge_slave_1) entered forwarding state [ 71.338592][ T5831] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 71.349947][ T5831] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 71.364567][ T5833] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 71.392757][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 71.472143][ T5829] veth0_vlan: entered promiscuous mode [ 71.492172][ T5829] veth1_vlan: entered promiscuous mode [ 71.531240][ T5829] veth0_macvtap: entered promiscuous mode [ 71.557372][ T5829] veth1_macvtap: entered promiscuous mode [ 71.597122][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 71.626562][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.650578][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.674421][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.681058][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.726338][ T5827] veth0_vlan: entered promiscuous mode [ 71.733710][ T5829] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.743726][ T5829] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.753673][ T5829] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.762744][ T5829] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.784393][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 71.826369][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 71.841678][ T5827] veth1_vlan: entered promiscuous mode [ 71.925020][ T5831] veth0_vlan: entered promiscuous mode [ 71.935727][ T5833] veth0_vlan: entered promiscuous mode [ 71.943361][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.957764][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.974710][ T5831] veth1_vlan: entered promiscuous mode [ 71.992930][ T5833] veth1_vlan: entered promiscuous mode [ 72.021229][ T5827] veth0_macvtap: entered promiscuous mode [ 72.034758][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.045741][ T5833] veth0_macvtap: entered promiscuous mode [ 72.053703][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.061604][ T5827] veth1_macvtap: entered promiscuous mode [ 72.082364][ T5833] veth1_macvtap: entered promiscuous mode [ 72.092556][ T5831] veth0_macvtap: entered promiscuous mode [ 72.125806][ T5831] veth1_macvtap: entered promiscuous mode [ 72.145207][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.157298][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.171119][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.187590][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.199392][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.209400][ T5829] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 72.210208][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.235167][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.245997][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.256936][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.268392][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.278592][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.289657][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.299563][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.311165][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.322208][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.338490][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.353560][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.365188][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 72.392920][ T5830] Bluetooth: hci0: command tx timeout [ 72.392942][ T5837] Bluetooth: hci3: command tx timeout [ 72.398338][ T5830] Bluetooth: hci1: command tx timeout [ 72.408551][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.423264][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.434275][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.445979][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.457634][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 72.470579][ T5830] Bluetooth: hci2: command tx timeout [ 72.479690][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.490538][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.500544][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.511260][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.521366][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.532044][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.543227][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 72.554442][ T5833] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.563844][ T5833] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.572798][ T5833] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.581672][ T5833] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.592552][ T5827] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.601561][ T5827] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.611602][ T5827] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.620447][ T5827] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.647477][ T5831] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.657755][ T5831] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.666781][ T5831] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.676055][ T5831] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.857889][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.888582][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.912022][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.932971][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.997380][ T3507] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.026254][ T3507] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.091370][ T3507] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.109458][ T3507] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.172551][ T4541] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.187019][ T484] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.199806][ T4541] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.207051][ T484] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.240688][ T29] audit: type=1800 audit(1734583019.906:2): pid=5890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2" name="dbroot" dev="configfs" ino=6541 res=0 errno=0 [ 73.295841][ T5890] db_root: cannot open: initcall:initcall_finish [ 73.295841][ T5890] initcall:initcall_start [ 73.295841][ T5890] initcall:initcall_level [ 73.295841][ T5890] vsyscall:emulate_vsyscall [ 73.295841][ T5890] kvm:kvm_test_age_hva [ 73.295841][ T5890] kvm:kvm_age_hva [ 73.295841][ T5890] kvm:kvm_unmap_hva_range [ 73.295841][ T5890] kvm:kvm_dirty_ring_exit [ 73.295841][ T5890] kvm:kvm_dirty_ring_reset [ 73.295841][ T5890] kvm:kvm_dirty_ring_push [ 73.295841][ T5890] kvm:kvm_halt_poll_ns [ 73.295841][ T5890] kvm:kvm_async_pf_completed [ 73.295841][ T5890] kvm:kvm_async_pf_ready [ 73.295841][ T5890] kvm:kvm_async_pf_not_present [ 73.295841][ T5890] kvm:kvm_async_pf_repeated_fault [ 73.295841][ T5890] kvm:kvm_try_async_get_page [ 73.295841][ T5890] kvm:kvm_fpu [ 73.295841][ T5890] kvm:kvm_iocsr [ 73.295841][ T5890] kvm:kvm_mmio [ 73.295841][ T5890] kvm:kvm_ack_irq [ 73.295841][ T5890] kvm:kvm_msi_set_irq [ 73.295841][ T5890] kvm:kvm_ioapic_delayed_eoi_inj [ 73.295841][ T5890] kvm:kvm_ioapic_set_irq [ 73.295841][ T5890] kvm:kvm_set_irq [ 73.295841][ T5890] kvm:kvm_vcpu_wakeup [ 73.295841][ T5890] kvm:kvm_userspace_exit [ 73.295841][ T5890] kvm:kvm_rmp_fault [ 73.295841][ T5890] kvm:kvm_vmgexit_msr_protocol_exit [ 73.295841][ T5890] kvm:kvm_vmgexit_msr_protocol_enter [ 73.295841][ T5890] kvm:kvm_vmgexit_exit [ 73.295841][ T5890] kvm:kvm_vmgexit_enter [ 73.295841][ T5890] kvm:kvm_hv_syndbg_get_msr [ 73.295841][ T5890] kvm:kvm_hv_syndbg_set_msr [ 73.295841][ T5890] kvm:kvm_nested_vmenter_failed [ 73.295841][ T5890] kvm:kvm_pv_tlb_flush [ 73.295841][ T5890] kvm:kvm_hv_send_ipi_ex [ 73.295841][ T5890] kvm:kvm_hv_send_ipi [ 73.295841][ T5890] kvm:kvm_hv_flush_tlb_ex [ 73.295841][ T5890] kvm:kvm_hv_flush_tlb [ 73.295841][ T5890] kvm:kvm_hv_timer_state [ 73.295841][ T5890] kvm:kvm_avic_doorbell [ 73.295841][ T5890] kvm:kvm_avic_kick_vcpu_slowpath [ 73.295841][ T5890] kvm:kvm_avic_ga_log [ 73.295841][ T5890] k [ 73.461241][ T5898] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 74.010714][ T5898] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 74.233295][ T5912] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8'. [ 74.485676][ T5830] Bluetooth: hci1: command tx timeout [ 74.485697][ T5837] Bluetooth: hci3: command tx timeout [ 74.485743][ T5830] Bluetooth: hci0: command tx timeout [ 74.548922][ T5830] Bluetooth: hci2: command tx timeout [ 74.576080][ T29] audit: type=1800 audit(1734583021.246:3): pid=5925 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.11" name="discovery_nqn" dev="configfs" ino=7944 res=0 errno=0 [ 75.020743][ T5934] Zero length message leads to an empty skb [ 75.063951][ T5933] netlink: 252 bytes leftover after parsing attributes in process `syz.3.13'. [ 75.777771][ T5948] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 75.835629][ T29] audit: type=1800 audit(1734583022.506:4): pid=5956 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.20" name="members" dev="configfs" ino=8098 res=0 errno=0 [ 76.399057][ T29] audit: type=1800 audit(1734583023.056:5): pid=5952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.18" name="dbroot" dev="configfs" ino=6776 res=0 errno=0 [ 76.442809][ T5952] db_root: cannot open: initcall:initcall_finish [ 76.442809][ T5952] initcall:initcall_start [ 76.442809][ T5952] initcall:initcall_level [ 76.442809][ T5952] vsyscall:emulate_vsyscall [ 76.442809][ T5952] kvm:kvm_test_age_hva [ 76.442809][ T5952] kvm:kvm_age_hva [ 76.442809][ T5952] kvm:kvm_unmap_hva_range [ 76.442809][ T5952] kvm:kvm_dirty_ring_exit [ 76.442809][ T5952] kvm:kvm_dirty_ring_reset [ 76.442809][ T5952] kvm:kvm_dirty_ring_push [ 76.442809][ T5952] kvm:kvm_halt_poll_ns [ 76.442809][ T5952] kvm:kvm_async_pf_completed [ 76.442809][ T5952] kvm:kvm_async_pf_ready [ 76.442809][ T5952] kvm:kvm_async_pf_not_present [ 76.442809][ T5952] kvm:kvm_async_pf_repeated_fault [ 76.442809][ T5952] kvm:kvm_try_async_get_page [ 76.442809][ T5952] kvm:kvm_fpu [ 76.442809][ T5952] kvm:kvm_iocsr [ 76.442809][ T5952] kvm:kvm_mmio [ 76.442809][ T5952] kvm:kvm_ack_irq [ 76.442809][ T5952] kvm:kvm_msi_set_irq [ 76.442809][ T5952] kvm:kvm_ioapic_delayed_eoi_inj [ 76.442809][ T5952] kvm:kvm_ioapic_set_irq [ 76.442809][ T5952] kvm:kvm_set_irq [ 76.442809][ T5952] kvm:kvm_vcpu_wakeup [ 76.442809][ T5952] kvm:kvm_userspace_exit [ 76.442809][ T5952] kvm:kvm_rmp_fault [ 76.442809][ T5952] kvm:kvm_vmgexit_msr_protocol_exit [ 76.442809][ T5952] kvm:kvm_vmgexit_msr_protocol_enter [ 76.442809][ T5952] kvm:kvm_vmgexit_exit [ 76.442809][ T5952] kvm:kvm_vmgexit_enter [ 76.442809][ T5952] kvm:kvm_hv_syndbg_get_msr [ 76.442809][ T5952] kvm:kvm_hv_syndbg_set_msr [ 76.442809][ T5952] kvm:kvm_nested_vmenter_failed [ 76.442809][ T5952] kvm:kvm_pv_tlb_flush [ 76.442809][ T5952] kvm:kvm_hv_send_ipi_ex [ 76.442809][ T5952] kvm:kvm_hv_send_ipi [ 76.442809][ T5952] kvm:kvm_hv_flush_tlb_ex [ 76.442809][ T5952] kvm:kvm_hv_flush_tlb [ 76.442809][ T5952] kvm:kvm_hv_timer_state [ 76.442809][ T5952] kvm:kvm_avic_doorbell [ 76.442809][ T5952] kvm:kvm_avic_kick_vcpu_slowpath [ 76.442809][ T5952] kvm:kvm_avic_ga_log [ 76.442809][ T5952] k [ 76.549699][ T5830] Bluetooth: hci3: command tx timeout [ 76.550038][ T5837] Bluetooth: hci0: command tx timeout [ 76.743596][ T5830] Bluetooth: hci1: command tx timeout [ 76.744706][ T5839] Bluetooth: hci2: command tx timeout [ 77.694467][ T5995] FAULT_INJECTION: forcing a failure. [ 77.694467][ T5995] name failslab, interval 1, probability 0, space 0, times 1 [ 77.722125][ T5995] CPU: 1 UID: 0 PID: 5995 Comm: syz.0.30 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 77.732690][ T5995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 77.742785][ T5995] Call Trace: [ 77.746087][ T5995] [ 77.749040][ T5995] dump_stack_lvl+0x16c/0x1f0 [ 77.753755][ T5995] should_fail_ex+0x497/0x5b0 [ 77.758468][ T5995] ? fs_reclaim_acquire+0xae/0x150 [ 77.763630][ T5995] should_failslab+0xc2/0x120 [ 77.768369][ T5995] __kmalloc_cache_noprof+0x68/0x420 [ 77.773690][ T5995] ? __mutex_trylock_common+0xea/0x250 [ 77.779183][ T5995] snd_pcm_oss_change_params_locked+0x1d6/0x3a50 [ 77.785549][ T5995] ? rcu_is_watching+0x12/0xc0 [ 77.790355][ T5995] ? trace_contention_end+0xee/0x140 [ 77.795668][ T5995] ? __mutex_lock+0x1cc/0xa60 [ 77.800379][ T5995] ? __pfx___lock_acquire+0x10/0x10 [ 77.805620][ T5995] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 77.812424][ T5995] ? __pfx___mutex_lock+0x10/0x10 [ 77.817494][ T5995] ? __might_fault+0x13b/0x190 [ 77.822304][ T5995] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 77.827618][ T5995] snd_pcm_oss_set_trigger.isra.0+0x32/0x6b0 [ 77.833621][ T5995] snd_pcm_oss_ioctl+0x1d00/0x3780 [ 77.838758][ T5995] ? trace_lock_acquire+0x14e/0x1f0 [ 77.844062][ T5995] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 77.849535][ T5995] ? __fget_files+0x206/0x3a0 [ 77.854221][ T5995] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 77.859699][ T5995] __x64_sys_ioctl+0x190/0x200 [ 77.864478][ T5995] do_syscall_64+0xcd/0x250 [ 77.868995][ T5995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.874903][ T5995] RIP: 0033:0x7f8a07f85d29 [ 77.879406][ T5995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 77.899027][ T5995] RSP: 002b:00007f8a08e4d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 77.907558][ T5995] RAX: ffffffffffffffda RBX: 00007f8a08176080 RCX: 00007f8a07f85d29 [ 77.915546][ T5995] RDX: 0000000020000040 RSI: 0000000040045010 RDI: 0000000000000003 [ 77.923531][ T5995] RBP: 00007f8a08e4d090 R08: 0000000000000000 R09: 0000000000000000 [ 77.931511][ T5995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 77.939486][ T5995] R13: 0000000000000001 R14: 00007f8a08176080 R15: 00007ffe359fb708 [ 77.947473][ T5995] [ 77.964506][ T29] audit: type=1800 audit(1734583024.476:6): pid=5991 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.27" name="lu_gp_id" dev="configfs" ino=6800 res=0 errno=0 [ 79.229956][ T29] audit: type=1800 audit(1734583025.906:7): pid=6024 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.37" name="dbroot" dev="configfs" ino=6865 res=0 errno=0 [ 79.242206][ T6024] db_root: cannot open: initcall:initcall_finish [ 79.242206][ T6024] initcall:initcall_start [ 79.242206][ T6024] initcall:initcall_level [ 79.242206][ T6024] vsyscall:emulate_vsyscall [ 79.242206][ T6024] kvm:kvm_test_age_hva [ 79.242206][ T6024] kvm:kvm_age_hva [ 79.242206][ T6024] kvm:kvm_unmap_hva_range [ 79.242206][ T6024] kvm:kvm_dirty_ring_exit [ 79.242206][ T6024] kvm:kvm_dirty_ring_reset [ 79.242206][ T6024] kvm:kvm_dirty_ring_push [ 79.242206][ T6024] kvm:kvm_halt_poll_ns [ 79.242206][ T6024] kvm:kvm_async_pf_completed [ 79.242206][ T6024] kvm:kvm_async_pf_ready [ 79.242206][ T6024] kvm:kvm_async_pf_not_present [ 79.242206][ T6024] kvm:kvm_async_pf_repeated_fault [ 79.242206][ T6024] kvm:kvm_try_async_get_page [ 79.242206][ T6024] kvm:kvm_fpu [ 79.242206][ T6024] kvm:kvm_iocsr [ 79.242206][ T6024] kvm:kvm_mmio [ 79.242206][ T6024] kvm:kvm_ack_irq [ 79.242206][ T6024] kvm:kvm_msi_set_irq [ 79.242206][ T6024] kvm:kvm_ioapic_delayed_eoi_inj [ 79.242206][ T6024] kvm:kvm_ioapic_set_irq [ 79.242206][ T6024] kvm:kvm_set_irq [ 79.242206][ T6024] kvm:kvm_vcpu_wakeup [ 79.242206][ T6024] kvm:kvm_userspace_exit [ 79.242206][ T6024] kvm:kvm_rmp_fault [ 79.242206][ T6024] kvm:kvm_vmgexit_msr_protocol_exit [ 79.242206][ T6024] kvm:kvm_vmgexit_msr_protocol_enter [ 79.242206][ T6024] kvm:kvm_vmgexit_exit [ 79.242206][ T6024] kvm:kvm_vmgexit_enter [ 79.242206][ T6024] kvm:kvm_hv_syndbg_get_msr [ 79.242206][ T6024] kvm:kvm_hv_syndbg_set_msr [ 79.242206][ T6024] kvm:kvm_nested_vmenter_failed [ 79.242206][ T6024] kvm:kvm_pv_tlb_flush [ 79.242206][ T6024] kvm:kvm_hv_send_ipi_ex [ 79.242206][ T6024] kvm:kvm_hv_send_ipi [ 79.242206][ T6024] kvm:kvm_hv_flush_tlb_ex [ 79.242206][ T6024] kvm:kvm_hv_flush_tlb [ 79.242206][ T6024] kvm:kvm_hv_timer_state [ 79.242206][ T6024] kvm:kvm_avic_doorbell [ 79.242206][ T6024] kvm:kvm_avic_kick_vcpu_slowpath [ 79.242206][ T6024] kvm:kvm_avic_ga_log [ 79.242206][ T6024] k [ 80.316596][ T6053] netlink: 'syz.2.46': attribute type 1 has an invalid length. [ 81.701486][ T6082] Format for adding new device is "id port_count num_queues" (uint uint unit). [ 82.830499][ T25] cfg80211: failed to load regulatory.db [ 83.320692][ T6118] Process accounting resumed [ 85.974317][ T6206] netlink: 28 bytes leftover after parsing attributes in process `syz.0.89'. [ 85.999223][ T6206] macsec0: entered allmulticast mode [ 86.018900][ T6206] veth1_macvtap: entered allmulticast mode [ 87.515739][ T6269] openvswitch: netlink: nsh attr 160 is out of range max 3 [ 87.544351][ T6269] nvme_fabrics: unknown parameter or missing value '7' in ctrl creation request [ 88.472310][ T6300] netlink: 326 bytes leftover after parsing attributes in process `syz.0.117'. [ 88.837088][ T6311] netlink: 4 bytes leftover after parsing attributes in process `syz.3.121'. [ 89.024945][ T6323] sp0: Synchronizing with TNC [ 89.249918][ T6334] ACPI: Can not change Invalid GPE/Fixed Event status [ 89.473576][ T6325] netlink: 4 bytes leftover after parsing attributes in process `syz.1.123'. [ 90.368144][ T5839] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 90.377056][ T5839] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 90.391804][ T5839] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 90.401210][ T5839] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 90.411928][ T5839] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 90.419298][ T5839] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 90.801613][ T6359] chnl_net:caif_netlink_parms(): no params data found [ 90.975131][ T6359] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.988408][ T6359] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.007128][ T6359] bridge_slave_0: entered allmulticast mode [ 91.017297][ T6359] bridge_slave_0: entered promiscuous mode [ 91.033038][ T6359] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.066020][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 91.147989][ T6359] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.174881][ T6359] bridge_slave_1: entered allmulticast mode [ 91.229995][ T6359] bridge_slave_1: entered promiscuous mode [ 91.332593][ T6359] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.360414][ T6359] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.414331][ T6359] team0: Port device team_slave_0 added [ 91.423828][ T6359] team0: Port device team_slave_1 added [ 91.525117][ T6359] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 91.534993][ T6359] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.608127][ T6359] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 91.642896][ T6359] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 91.657575][ T6359] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.694221][ T6359] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 91.764887][ T6359] hsr_slave_0: entered promiscuous mode [ 91.784188][ T6359] hsr_slave_1: entered promiscuous mode [ 91.799265][ T6359] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 91.814669][ T6359] Cannot create hsr debugfs directory [ 91.931560][ T6389] syz.3.142 uses obsolete (PF_INET,SOCK_PACKET) [ 92.055025][ T6359] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 92.211855][ T6359] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 92.268019][ T6397] netlink: 342 bytes leftover after parsing attributes in process `syz.2.144'. [ 92.310614][ T6359] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 92.336338][ T6397] netlink: 274 bytes leftover after parsing attributes in process `syz.2.144'. [ 92.418062][ T6359] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 92.469248][ T5837] Bluetooth: hci0: command tx timeout [ 92.702737][ T6359] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 92.787412][ T6359] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 92.831014][ T6359] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 92.874010][ T6359] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 93.287362][ T6359] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.383206][ T6359] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.417462][ T61] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.424648][ T61] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.457747][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.464924][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 93.640950][ T6359] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 94.166666][ T6359] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 94.285407][ T6359] veth0_vlan: entered promiscuous mode [ 94.324839][ T6359] veth1_vlan: entered promiscuous mode [ 94.437865][ T6427] netlink: 8 bytes leftover after parsing attributes in process `syz.3.152'. [ 94.464459][ T6359] veth0_macvtap: entered promiscuous mode [ 94.485982][ T6359] veth1_macvtap: entered promiscuous mode [ 94.555462][ T5837] Bluetooth: hci0: command tx timeout [ 94.970293][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 94.997367][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.018319][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 95.029994][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.040142][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 95.050969][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.065205][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 95.085930][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.120007][ T6359] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.146715][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 95.174526][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.198884][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 95.219145][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.239095][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 95.269173][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.288771][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 95.308787][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.319789][ T6359] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.356963][ T6359] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.405055][ T6359] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.428899][ T6359] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.437813][ T6359] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.645840][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.655129][ T4515] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.691261][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.704073][ T4515] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.648898][ T5837] Bluetooth: hci0: command tx timeout [ 97.320168][ T6480] process 'syz.2.165' launched ':,' with NULL argv: empty string added [ 97.652215][ T6488] netlink: 93 bytes leftover after parsing attributes in process `syz.3.166'. [ 97.756032][ T6481] netlink: 93 bytes leftover after parsing attributes in process `syz.3.166'. [ 98.078025][ T6503] netlink: 93 bytes leftover after parsing attributes in process `syz.2.170'. [ 98.137548][ T6498] netlink: 93 bytes leftover after parsing attributes in process `syz.2.170'. [ 98.495832][ T6515] netlink: 306 bytes leftover after parsing attributes in process `syz.0.173'. [ 98.709071][ T5837] Bluetooth: hci0: command tx timeout [ 99.565984][ T4541] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.855631][ T4541] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.902235][ T5839] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 99.912933][ T5839] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 99.926161][ T5839] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 99.934669][ T5839] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 99.942492][ T5839] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 99.950397][ T5839] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 100.155087][ T4541] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.271485][ T6537] netlink: 242 bytes leftover after parsing attributes in process `syz.1.180'. [ 100.554947][ T4541] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.765915][ T6556] netlink: 334 bytes leftover after parsing attributes in process `syz.0.185'. [ 100.801352][ T6534] chnl_net:caif_netlink_parms(): no params data found [ 101.797923][ T6534] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.815651][ T6534] bridge0: port 1(bridge_slave_0) entered disabled state [ 101.846618][ T6573] netlink: 93 bytes leftover after parsing attributes in process `syz.0.189'. [ 101.866811][ T6534] bridge_slave_0: entered allmulticast mode [ 101.896657][ T6534] bridge_slave_0: entered promiscuous mode [ 101.941292][ T4541] bridge_slave_1: left allmulticast mode [ 101.947209][ T4541] bridge_slave_1: left promiscuous mode [ 101.961621][ T4541] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.023087][ T5837] Bluetooth: hci2: command tx timeout [ 102.199735][ T4541] bridge_slave_0: left allmulticast mode [ 102.205443][ T4541] bridge_slave_0: left promiscuous mode [ 102.229032][ T4541] bridge0: port 1(bridge_slave_0) entered disabled state [ 103.309948][ T4541] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 103.349604][ T4541] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 103.375877][ T4541] bond0 (unregistering): Released all slaves [ 103.406468][ T6534] bridge0: port 2(bridge_slave_1) entered blocking state [ 103.438960][ T6534] bridge0: port 2(bridge_slave_1) entered disabled state [ 103.456835][ T6534] bridge_slave_1: entered allmulticast mode [ 103.480903][ T6534] bridge_slave_1: entered promiscuous mode [ 103.621266][ T6595] netlink: 206 bytes leftover after parsing attributes in process `syz.3.191'. [ 103.867535][ T6534] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 103.897553][ T6534] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 104.042769][ T6534] team0: Port device team_slave_0 added [ 104.070085][ T5837] Bluetooth: hci2: command tx timeout [ 104.087549][ T6534] team0: Port device team_slave_1 added [ 104.372100][ T6534] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 104.404385][ T6534] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 104.470843][ T6534] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 104.650576][ T4541] hsr_slave_0: left promiscuous mode [ 104.701075][ T4541] hsr_slave_1: left promiscuous mode [ 104.746187][ T4541] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 104.769274][ T4541] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 104.830631][ T4541] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 104.858919][ T4541] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 104.960870][ T4541] veth1_macvtap: left promiscuous mode [ 104.982680][ T4541] veth0_macvtap: left promiscuous mode [ 104.999860][ T4541] veth1_vlan: left promiscuous mode [ 105.005476][ T4541] veth0_vlan: left promiscuous mode [ 105.019399][ T6635] random: crng reseeded on system resumption [ 105.133077][ T6639] netlink: 20 bytes leftover after parsing attributes in process `syz.3.201'. [ 106.152540][ T5837] Bluetooth: hci2: command tx timeout [ 106.214809][ T4541] team0 (unregistering): Port device team_slave_1 removed [ 106.294489][ T4541] team0 (unregistering): Port device team_slave_0 removed [ 106.736431][ T6534] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.744039][ T6534] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.773658][ T6534] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 107.035518][ T6534] hsr_slave_0: entered promiscuous mode [ 107.049985][ T6534] hsr_slave_1: entered promiscuous mode [ 107.068845][ T6534] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 107.076634][ T6534] Cannot create hsr debugfs directory [ 107.667508][ T6682] netlink: 338 bytes leftover after parsing attributes in process `syz.3.212'. [ 107.749792][ T6687] Process accounting resumed [ 108.239156][ T5837] Bluetooth: hci2: command tx timeout [ 108.246266][ T29] audit: type=1800 audit(6029550350.918:8): pid=6703 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.216" name="discovery_nqn" dev="configfs" ino=11737 res=0 errno=0 [ 108.324928][ T6707] sd 0:0:1:0: PR command failed: 1026 [ 108.339706][ T6707] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 108.346888][ T6707] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 108.599621][ T6534] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 108.632203][ T6534] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 108.848928][ T6534] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 108.867940][ T6534] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 109.237027][ T6734] binder: 6731:6734 ioctl c0105512 1 returned -22 [ 109.385425][ T6534] 8021q: adding VLAN 0 to HW filter on device bond0 [ 109.453068][ T6534] 8021q: adding VLAN 0 to HW filter on device team0 [ 109.472558][ T4541] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.479739][ T4541] bridge0: port 1(bridge_slave_0) entered forwarding state [ 109.524696][ T4541] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.531883][ T4541] bridge0: port 2(bridge_slave_1) entered forwarding state [ 109.649924][ T6534] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 109.711951][ T6534] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 110.609435][ T6534] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 110.694638][ T6534] veth0_vlan: entered promiscuous mode [ 110.764230][ T6534] veth1_vlan: entered promiscuous mode [ 110.865826][ T6534] veth0_macvtap: entered promiscuous mode [ 110.895456][ T6534] veth1_macvtap: entered promiscuous mode [ 110.959724][ T6534] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 110.988814][ T6534] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.998665][ T6534] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.029320][ T6534] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.049201][ T6534] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.078792][ T6534] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.088648][ T6534] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.118781][ T6534] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.139860][ T6534] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 111.258799][ T6534] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 111.269460][ T6534] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.279625][ T6534] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 111.290362][ T6534] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.300947][ T6534] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 111.311632][ T6534] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.321719][ T6534] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 111.332388][ T6534] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.344474][ T6534] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 111.355986][ T6534] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.364875][ T6534] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.373682][ T6534] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.382469][ T6534] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.756160][ T4515] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.770741][ T4515] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.968114][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.977356][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.624171][ T6778] mmap: syz.1.227 (6778) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 115.885724][ T6884] Process accounting resumed [ 115.922399][ T6884] kernel write not supported for file /error_log (pid: 6884 comm: syz.0.244) [ 116.031303][ T6904] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 116.069908][ T6904] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 116.092216][ T6903] netlink: 4 bytes leftover after parsing attributes in process `syz.2.249'. [ 116.716314][ T6909] kernel write not supported for file /error_log (pid: 6909 comm: syz.0.252) [ 116.909145][ T6922] netlink: 334 bytes leftover after parsing attributes in process `syz.1.254'. [ 118.152890][ T6927] netlink: 28 bytes leftover after parsing attributes in process `syz.0.255'. [ 118.586712][ T6957] netlink: 314 bytes leftover after parsing attributes in process `syz.3.263'. [ 118.606598][ T6927] team0: Port device team_slave_1 removed [ 118.943914][ T6725] kernel write not supported for file /error_log (pid: 6725 comm: syz.0.218) [ 119.245315][ T6927] kernel write not supported for file /error_log (pid: 6927 comm: syz.0.255) [ 119.310900][ T6962] FAULT_INJECTION: forcing a failure. [ 119.310900][ T6962] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 119.398875][ T6962] CPU: 1 UID: 0 PID: 6962 Comm: syz.3.265 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 119.409530][ T6962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 119.419610][ T6962] Call Trace: [ 119.422909][ T6962] [ 119.425863][ T6962] dump_stack_lvl+0x16c/0x1f0 [ 119.430579][ T6962] should_fail_ex+0x497/0x5b0 [ 119.435295][ T6962] ? fs_reclaim_acquire+0xae/0x150 [ 119.440440][ T6962] should_fail_alloc_page+0xe7/0x130 [ 119.445762][ T6962] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 119.451955][ T6962] __alloc_pages_noprof+0x190/0x25b0 [ 119.457276][ T6962] ? mark_lock+0xb5/0xc60 [ 119.461644][ T6962] ? hlock_class+0x4e/0x130 [ 119.466178][ T6962] ? mark_lock+0xb5/0xc60 [ 119.470542][ T6962] ? mark_lock+0xb5/0xc60 [ 119.474902][ T6962] ? __pfx_mark_lock+0x10/0x10 [ 119.479708][ T6962] ? mark_lock+0xb5/0xc60 [ 119.484071][ T6962] ? __pfx_mark_lock+0x10/0x10 [ 119.488876][ T6962] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 119.494642][ T6962] ? hlock_class+0x4e/0x130 [ 119.499187][ T6962] ? hlock_class+0x4e/0x130 [ 119.503724][ T6962] ? __lock_acquire+0xcc5/0x3c40 [ 119.508701][ T6962] ? hlock_class+0x4e/0x130 [ 119.513225][ T6962] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 119.519135][ T6962] ? policy_nodemask+0xea/0x4e0 [ 119.524007][ T6962] alloc_pages_mpol_noprof+0x2c9/0x610 [ 119.529487][ T6962] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 119.535487][ T6962] ? __pfx___lock_acquire+0x10/0x10 [ 119.540703][ T6962] ? __lock_acquire+0xcc5/0x3c40 [ 119.545676][ T6962] pte_alloc_one+0x20/0x390 [ 119.550188][ T6962] do_pte_missing+0x1ae7/0x3e00 [ 119.555671][ T6962] __handle_mm_fault+0x103c/0x2a40 [ 119.560804][ T6962] ? __pfx___handle_mm_fault+0x10/0x10 [ 119.566274][ T6962] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 119.571924][ T6962] ? find_vma+0xc0/0x140 [ 119.576173][ T6962] ? __pfx_find_vma+0x10/0x10 [ 119.580859][ T6962] handle_mm_fault+0x3fa/0xaa0 [ 119.585646][ T6962] do_user_addr_fault+0x7a3/0x13f0 [ 119.590768][ T6962] exc_page_fault+0x5c/0xc0 [ 119.595278][ T6962] asm_exc_page_fault+0x26/0x30 [ 119.600137][ T6962] RIP: 0010:rep_movs_alternative+0x13/0x70 [ 119.605959][ T6962] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f [ 119.625572][ T6962] RSP: 0018:ffffc900046175d0 EFLAGS: 00050202 [ 119.631657][ T6962] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000002 [ 119.639631][ T6962] RDX: fffff520008c2f1e RSI: 0000000000000000 RDI: ffffc900046178ec [ 119.647609][ T6962] RBP: ffffc90004617d60 R08: 0000000000000001 R09: fffff520008c2f1d [ 119.655585][ T6962] R10: ffffc900046178ed R11: 0000000000000000 R12: 0000000000000002 [ 119.663563][ T6962] R13: 00007ffffffff000 R14: ffffc900046178ec R15: 0000000000000002 [ 119.671560][ T6962] _copy_from_iter+0x384/0x1400 [ 119.676434][ T6962] ? find_held_lock+0x2d/0x110 [ 119.681212][ T6962] ? __pfx__copy_from_iter+0x10/0x10 [ 119.686506][ T6962] ? rawv6_sendmsg+0x9f3/0x4450 [ 119.691360][ T6962] ? __pfx_lock_release+0x10/0x10 [ 119.696389][ T6962] ? trace_lock_acquire+0x14e/0x1f0 [ 119.701610][ T6962] rawv6_sendmsg+0x2375/0x4450 [ 119.706376][ T6962] ? __lock_acquire+0xcc5/0x3c40 [ 119.711334][ T6962] ? __pfx_rawv6_sendmsg+0x10/0x10 [ 119.716450][ T6962] ? __lock_acquire+0x15a9/0x3c40 [ 119.721507][ T6962] ? __pfx___might_resched+0x10/0x10 [ 119.726804][ T6962] ? __pfx_aa_sk_perm+0x10/0x10 [ 119.731670][ T6962] ? __pfx_rawv6_sendmsg+0x10/0x10 [ 119.736789][ T6962] ? inet_sendmsg+0x119/0x140 [ 119.741730][ T6962] inet_sendmsg+0x119/0x140 [ 119.746240][ T6962] ____sys_sendmsg+0x907/0xb40 [ 119.751011][ T6962] ? copy_msghdr_from_user+0x10b/0x160 [ 119.756478][ T6962] ? __pfx_____sys_sendmsg+0x10/0x10 [ 119.761766][ T6962] ? __lock_acquire+0xcc5/0x3c40 [ 119.766728][ T6962] ___sys_sendmsg+0x135/0x1e0 [ 119.771419][ T6962] ? __pfx____sys_sendmsg+0x10/0x10 [ 119.776644][ T6962] ? trace_lock_acquire+0x14e/0x1f0 [ 119.781869][ T6962] __sys_sendmmsg+0x201/0x420 [ 119.786561][ T6962] ? __pfx___sys_sendmmsg+0x10/0x10 [ 119.791960][ T6962] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 119.797957][ T6962] ? fput+0x67/0x440 [ 119.801865][ T6962] ? ksys_write+0x1ba/0x250 [ 119.806374][ T6962] ? __pfx_ksys_write+0x10/0x10 [ 119.811235][ T6962] __x64_sys_sendmmsg+0x9c/0x100 [ 119.816185][ T6962] ? lockdep_hardirqs_on+0x7c/0x110 [ 119.821390][ T6962] do_syscall_64+0xcd/0x250 [ 119.825901][ T6962] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.831802][ T6962] RIP: 0033:0x7ff3cc585d29 [ 119.836221][ T6962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 119.855836][ T6962] RSP: 002b:00007ff3ca3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 119.864259][ T6962] RAX: ffffffffffffffda RBX: 00007ff3cc775fa0 RCX: 00007ff3cc585d29 [ 119.872329][ T6962] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003 [ 119.880312][ T6962] RBP: 00007ff3ca3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 119.888340][ T6962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 119.896309][ T6962] R13: 0000000000000000 R14: 00007ff3cc775fa0 R15: 00007ffdd47e12a8 [ 119.904294][ T6962] [ 121.996362][ T6989] ICMPv6: process `syz.3.272' is using deprecated sysctl (syscall) net.ipv6.neigh.virt_wifi0.retrans_time - use net.ipv6.neigh.virt_wifi0.retrans_time_ms instead [ 122.249981][ T6998] Process accounting resumed [ 122.529885][ T6966] kernel write not supported for file /error_log (pid: 6966 comm: syz.0.266) [ 124.434868][ T7011] kernel write not supported for file /error_log (pid: 7011 comm: syz.0.275) [ 126.273215][ T6885] kernel write not supported for file /error_log (pid: 6885 comm: syz.0.244) [ 126.483717][ T7043] kernel write not supported for file /error_log (pid: 7043 comm: syz.0.280) [ 127.606292][ T7062] kernel write not supported for file /error_log (pid: 7062 comm: syz.0.285) [ 128.659886][ T7085] kernel write not supported for file /error_log (pid: 7085 comm: syz.0.290) [ 128.862599][ T7100] kernel write not supported for file /error_log (pid: 7100 comm: syz.0.294) [ 128.880885][ T7095] netlink: 28 bytes leftover after parsing attributes in process `syz.3.293'. [ 129.066532][ T7105] kernel write not supported for file /error_log (pid: 7105 comm: syz.0.295) [ 129.200811][ T484] failed while handling packet from 1:16384 [ 129.547350][ T7120] Process accounting resumed [ 129.696415][ T7114] kernel write not supported for file /error_log (pid: 7114 comm: syz.0.296) [ 130.640207][ T7126] kernel write not supported for file /error_log (pid: 7126 comm: syz.0.302) [ 131.165179][ T5837] Bluetooth: hci3: SCO packet for unknown connection handle 0 [ 131.746735][ T7164] Invalid ELF header magic: != ELF [ 132.060383][ T7151] kernel write not supported for file /error_log (pid: 7151 comm: syz.0.306) [ 132.199788][ T7179] tty tty31: ldisc open failed (-12), clearing slot 30 [ 132.909061][ T7189] kernel write not supported for file /error_log (pid: 7189 comm: syz.0.313) [ 133.114809][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.121231][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 134.085745][ T7207] kernel write not supported for file /error_log (pid: 7207 comm: syz.0.322) [ 134.361078][ T7226] kernel write not supported for file /error_log (pid: 7226 comm: syz.0.329) [ 134.554701][ T7235] binder: 7234:7235 ioctl c0105512 1 returned -22 [ 134.561881][ T7235] binder: 7234:7235 ioctl c0306201 9 returned -14 [ 134.765343][ T7241] netlink: 330 bytes leftover after parsing attributes in process `syz.3.334'. [ 134.884427][ T7236] kernel write not supported for file /error_log (pid: 7236 comm: syz.0.332) [ 135.143856][ T7245] kernel write not supported for file /error_log (pid: 7245 comm: syz.0.335) [ 135.504636][ T7259] Invalid ELF header magic: != ELF [ 135.665656][ T7252] kernel write not supported for file /error_log (pid: 7252 comm: syz.0.337) [ 135.980889][ T7269] HfR: entered promiscuous mode [ 136.070466][ T7266] kernel write not supported for file /error_log (pid: 7266 comm: syz.0.340) [ 136.194673][ T7274] kernel write not supported for file /error_log (pid: 7274 comm: syz.0.342) [ 136.350494][ T7282] kernel write not supported for file /error_log (pid: 7282 comm: syz.0.344) [ 136.473767][ T7285] openvswitch: netlink: Key type 154 is out of range max 32 [ 136.562050][ T7288] Process accounting resumed [ 137.397835][ T7304] kernel write not supported for file /error_log (pid: 7304 comm: syz.0.349) [ 138.269937][ T7319] kernel write not supported for file /error_log (pid: 7319 comm: syz.0.358) [ 138.751813][ T7331] kernel write not supported for file /error_log (pid: 7331 comm: syz.0.361) [ 139.080542][ T7337] kernel write not supported for file /error_log (pid: 7337 comm: syz.0.363) [ 140.467856][ T7367] netlink: 342 bytes leftover after parsing attributes in process `syz.1.372'. [ 140.849719][ T7373] netlink: 342 bytes leftover after parsing attributes in process `syz.2.374'. [ 140.885706][ T7373] QAT: Stopping all acceleration devices. [ 140.889395][ T7378] netlink: 330 bytes leftover after parsing attributes in process `syz.3.377'. [ 141.342778][ T7386] nvme_fabrics: missing parameter 'transport=%s' [ 141.359650][ T7386] nvme_fabrics: missing parameter 'nqn=%s' [ 141.399483][ T7380] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 141.722503][ T7350] kernel write not supported for file /error_log (pid: 7350 comm: syz.0.366) [ 141.747963][ T7397] FAULT_INJECTION: forcing a failure. [ 141.747963][ T7397] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 141.768618][ T7397] CPU: 1 UID: 0 PID: 7397 Comm: syz.3.383 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 141.779263][ T7397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 141.789336][ T7397] Call Trace: [ 141.792618][ T7397] [ 141.795547][ T7397] dump_stack_lvl+0x16c/0x1f0 [ 141.800235][ T7397] should_fail_ex+0x497/0x5b0 [ 141.804921][ T7397] _copy_to_iter+0x29b/0x1400 [ 141.809609][ T7397] ? trace_lock_acquire+0x14e/0x1f0 [ 141.814816][ T7397] ? __pfx__copy_to_iter+0x10/0x10 [ 141.819934][ T7397] ? __virt_addr_valid+0x1a4/0x590 [ 141.825058][ T7397] ? __virt_addr_valid+0x5e/0x590 [ 141.830089][ T7397] ? __phys_addr_symbol+0x30/0x80 [ 141.835130][ T7397] ? __check_object_size+0x488/0x710 [ 141.840428][ T7397] seq_read_iter+0x725/0x12b0 [ 141.845554][ T7397] kernfs_fop_read_iter+0x414/0x580 [ 141.850760][ T7397] ? rw_verify_area+0xd0/0x700 [ 141.855532][ T7397] vfs_read+0x87f/0xbe0 [ 141.859699][ T7397] ? __pfx_vfs_read+0x10/0x10 [ 141.864394][ T7397] ? lock_acquire+0x2f/0xb0 [ 141.868905][ T7397] ? __fget_files+0x40/0x3a0 [ 141.873527][ T7397] __x64_sys_pread64+0x1f6/0x250 [ 141.878472][ T7397] ? __pfx___x64_sys_pread64+0x10/0x10 [ 141.883951][ T7397] do_syscall_64+0xcd/0x250 [ 141.888467][ T7397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.894370][ T7397] RIP: 0033:0x7ff3cc585d29 [ 141.898786][ T7397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 141.918392][ T7397] RSP: 002b:00007ff3ca3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 141.926808][ T7397] RAX: ffffffffffffffda RBX: 00007ff3cc775fa0 RCX: 00007ff3cc585d29 [ 141.934781][ T7397] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000003 [ 141.942752][ T7397] RBP: 00007ff3ca3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 141.950725][ T7397] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000001 [ 141.958696][ T7397] R13: 0000000000000000 R14: 00007ff3cc775fa0 R15: 00007ffdd47e12a8 [ 141.966690][ T7397] [ 142.053417][ T7399] netlink: 4 bytes leftover after parsing attributes in process `syz.2.384'. [ 142.460628][ T7400] kernel write not supported for file /error_log (pid: 7400 comm: syz.0.385) [ 142.761029][ T7418] binder: 7417:7418 ioctl c0105512 1 returned -22 [ 142.896647][ T7418] netlink: 338 bytes leftover after parsing attributes in process `syz.0.391'. [ 143.031746][ T7418] bridge0: port 2(bridge_slave_1) entered disabled state [ 143.042877][ T7418] bridge0: port 1(bridge_slave_0) entered disabled state [ 143.057586][ T29] audit: type=1800 audit(6029550385.728:9): pid=7428 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.395" name="discovery_nqn" dev="configfs" ino=15530 res=0 errno=0 [ 143.459265][ T7424] kernel write not supported for file /error_log (pid: 7424 comm: syz.0.391) [ 144.012310][ T7445] kernel write not supported for file /error_log (pid: 7445 comm: syz.0.400) [ 144.235248][ T7305] kernel write not supported for file /error_log (pid: 7305 comm: syz.0.349) [ 144.363572][ T7456] Process accounting resumed [ 144.605388][ T7458] bridge0: port 3(team0) entered blocking state [ 144.707900][ T7458] bridge0: port 3(team0) entered disabled state [ 144.782505][ T7458] team0: entered allmulticast mode [ 144.851594][ T7458] team_slave_0: entered allmulticast mode [ 144.922742][ T7458] team0: entered promiscuous mode [ 144.964734][ T7458] team_slave_0: entered promiscuous mode [ 145.219506][ T7472] FAULT_INJECTION: forcing a failure. [ 145.219506][ T7472] name failslab, interval 1, probability 0, space 0, times 0 [ 145.248680][ T7472] CPU: 0 UID: 0 PID: 7472 Comm: syz.2.410 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 145.259328][ T7472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 145.269423][ T7472] Call Trace: [ 145.272724][ T7472] [ 145.275676][ T7472] dump_stack_lvl+0x16c/0x1f0 [ 145.280402][ T7472] should_fail_ex+0x497/0x5b0 [ 145.285116][ T7472] ? fs_reclaim_acquire+0xae/0x150 [ 145.290258][ T7472] should_failslab+0xc2/0x120 [ 145.294971][ T7472] __kmalloc_noprof+0xce/0x4f0 [ 145.299771][ T7472] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 145.305430][ T7472] ? tomoyo_realpath_from_path+0xbf/0x710 [ 145.311185][ T7472] tomoyo_realpath_from_path+0xbf/0x710 [ 145.316766][ T7472] ? tomoyo_path_number_perm+0x235/0x5b0 [ 145.322442][ T7472] tomoyo_path_number_perm+0x248/0x5b0 [ 145.327943][ T7472] ? tomoyo_path_number_perm+0x235/0x5b0 [ 145.333618][ T7472] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 145.339671][ T7472] ? __pfx_lock_release+0x10/0x10 [ 145.344719][ T7472] ? trace_lock_acquire+0x14e/0x1f0 [ 145.349961][ T7472] ? lock_acquire+0x2f/0xb0 [ 145.354184][ T7457] kernel write not supported for file /error_log (pid: 7457 comm: syz.0.403) [ 145.354472][ T7472] ? __fget_files+0x40/0x3a0 [ 145.367833][ T7472] ? __fget_files+0x206/0x3a0 [ 145.372546][ T7472] security_file_ioctl+0x9b/0x240 [ 145.377600][ T7472] __x64_sys_ioctl+0xb7/0x200 [ 145.382308][ T7472] do_syscall_64+0xcd/0x250 [ 145.386859][ T7472] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.392787][ T7472] RIP: 0033:0x7f68c9985d29 [ 145.397224][ T7472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 145.416861][ T7472] RSP: 002b:00007f68ca78f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 145.425311][ T7472] RAX: ffffffffffffffda RBX: 00007f68c9b75fa0 RCX: 00007f68c9985d29 [ 145.433308][ T7472] RDX: 0000000000000000 RSI: 0000000040047451 RDI: 0000000000000003 [ 145.441302][ T7472] RBP: 00007f68ca78f090 R08: 0000000000000000 R09: 0000000000000000 [ 145.449297][ T7472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 145.457294][ T7472] R13: 0000000000000000 R14: 00007f68c9b75fa0 R15: 00007fff19245398 [ 145.465319][ T7472] [ 145.488541][ T7472] ERROR: Out of memory at tomoyo_realpath_from_path. [ 145.676083][ T7481] kernel write not supported for file /error_log (pid: 7481 comm: syz.0.412) [ 147.615743][ T7507] Process accounting paused [ 149.704140][ T5887] smpboot: CPU 0 is now offline [ 152.231162][ T7627] netlink: 28 bytes leftover after parsing attributes in process `syz.0.452'. [ 152.327609][ T7632] Invalid ELF header magic: != ELF [ 153.451238][ T7627] team_slave_0 (unregistering): left promiscuous mode [ 153.466142][ T7639] netlink: 28 bytes leftover after parsing attributes in process `syz.3.456'. [ 153.558363][ T7627] team_slave_0 (unregistering): left allmulticast mode [ 153.760309][ T7627] team0: Port device team_slave_0 removed [ 156.009628][ T7692] Setting dangerous option i915.request_timeout_ms - tainting kernel [ 156.195289][ T7670] Process accounting resumed [ 159.053455][ T7696] syz.2.474: vmalloc error: size 3641344, failed to allocated page array size 7112, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 159.158952][ T7696] CPU: 1 UID: 0 PID: 7696 Comm: syz.2.474 Tainted: G U 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 159.171061][ T7696] Tainted: [U]=USER [ 159.174864][ T7696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 159.184922][ T7696] Call Trace: [ 159.188193][ T7696] [ 159.191113][ T7696] dump_stack_lvl+0x16c/0x1f0 [ 159.195787][ T7696] warn_alloc+0x24d/0x3a0 [ 159.200113][ T7696] ? __pfx_warn_alloc+0x10/0x10 [ 159.205137][ T7696] ? __get_vm_area_node+0x1b0/0x2f0 [ 159.210325][ T7696] ? __get_vm_area_node+0x1dc/0x2f0 [ 159.215533][ T7696] __vmalloc_node_range_noprof+0x1105/0x1530 [ 159.221534][ T7696] ? ip_set_sockfn_get+0x185/0xc50 [ 159.226643][ T7696] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 159.232969][ T7696] ? __get_vm_area_node+0x1b0/0x2f0 [ 159.238180][ T7696] ? __get_vm_area_node+0x1dc/0x2f0 [ 159.243374][ T7696] __vmalloc_node_range_noprof+0xd85/0x1530 [ 159.249260][ T7696] ? ip_set_sockfn_get+0x185/0xc50 [ 159.254369][ T7696] ? __pfx___lock_acquire+0x10/0x10 [ 159.259569][ T7696] ? ip_set_sockfn_get+0x185/0xc50 [ 159.264709][ T7696] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 159.271036][ T7696] ? apparmor_capable+0x114/0x1d0 [ 159.276075][ T7696] ? ip_set_sockfn_get+0x185/0xc50 [ 159.281181][ T7696] vmalloc_noprof+0x6b/0x90 [ 159.285682][ T7696] ? ip_set_sockfn_get+0x185/0xc50 [ 159.290783][ T7696] ip_set_sockfn_get+0x185/0xc50 [ 159.295711][ T7696] ? __pfx_lock_release+0x10/0x10 [ 159.300725][ T7696] ? __pfx_ip_set_sockfn_get+0x10/0x10 [ 159.306175][ T7696] ? nf_sockopt_find.constprop.0+0x221/0x290 [ 159.312158][ T7696] nf_getsockopt+0x79/0xe0 [ 159.316576][ T7696] ip_getsockopt+0x18e/0x1e0 [ 159.321161][ T7696] ? __pfx_ip_getsockopt+0x10/0x10 [ 159.326271][ T7696] ? __schedule+0xe60/0x5ad0 [ 159.330867][ T7696] ? __pfx___lock_acquire+0x10/0x10 [ 159.336067][ T7696] ipv6_getsockopt+0x230/0x280 [ 159.340841][ T7696] ? __pfx_ipv6_getsockopt+0x10/0x10 [ 159.346118][ T7696] ? __pfx_mark_lock+0x10/0x10 [ 159.350886][ T7696] sctp_getsockopt+0x1d2/0x7ae0 [ 159.355733][ T7696] ? hlock_class+0x4e/0x130 [ 159.360228][ T7696] ? mark_lock+0xb5/0xc60 [ 159.364552][ T7696] ? aa_label_sk_perm+0x19d/0x5a0 [ 159.369574][ T7696] ? __pfx_sctp_getsockopt+0x10/0x10 [ 159.374857][ T7696] ? __lock_acquire+0x15a9/0x3c40 [ 159.379884][ T7696] ? __pfx___lock_acquire+0x10/0x10 [ 159.385083][ T7696] ? find_held_lock+0x2d/0x110 [ 159.389844][ T7696] ? __might_fault+0x13b/0x190 [ 159.394605][ T7696] ? __pfx_lock_release+0x10/0x10 [ 159.399625][ T7696] ? trace_lock_acquire+0x14e/0x1f0 [ 159.404818][ T7696] ? lock_acquire+0x2f/0xb0 [ 159.409311][ T7696] ? __might_fault+0xe3/0x190 [ 159.414003][ T7696] ? __might_fault+0xe3/0x190 [ 159.418676][ T7696] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 159.424558][ T7696] ? do_sock_getsockopt+0x3fe/0x870 [ 159.429745][ T7696] do_sock_getsockopt+0x3fe/0x870 [ 159.434760][ T7696] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 159.440294][ T7696] ? lock_acquire+0x2f/0xb0 [ 159.444786][ T7696] ? __fget_files+0x40/0x3a0 [ 159.449373][ T7696] ? __fget_files+0x206/0x3a0 [ 159.454043][ T7696] __sys_getsockopt+0x12f/0x260 [ 159.458905][ T7696] __x64_sys_getsockopt+0xbd/0x160 [ 159.464013][ T7696] ? do_syscall_64+0x91/0x250 [ 159.468683][ T7696] ? lockdep_hardirqs_on+0x7c/0x110 [ 159.473875][ T7696] do_syscall_64+0xcd/0x250 [ 159.478378][ T7696] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 159.484277][ T7696] RIP: 0033:0x7f68c9985d29 [ 159.488681][ T7696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 159.508363][ T7696] RSP: 002b:00007f68ca78f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 159.516764][ T7696] RAX: ffffffffffffffda RBX: 00007f68c9b75fa0 RCX: 00007f68c9985d29 [ 159.524723][ T7696] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000000000002 [ 159.532681][ T7696] RBP: 00007f68c9a01a20 R08: 0000000020000040 R09: 0000000000000000 [ 159.540654][ T7696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 159.548612][ T7696] R13: 0000000000000000 R14: 00007f68c9b75fa0 R15: 00007fff19245398 [ 159.556594][ T7696] [ 159.851662][ T7750] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 160.686848][ T7696] Mem-Info: [ 160.709329][ T7696] active_anon:55786 inactive_anon:0 isolated_anon:0 [ 160.709329][ T7696] active_file:3327 inactive_file:49937 isolated_file:0 [ 160.709329][ T7696] unevictable:12863 dirty:211 writeback:0 [ 160.709329][ T7696] slab_reclaimable:10332 slab_unreclaimable:97109 [ 160.709329][ T7696] mapped:42814 shmem:49185 pagetables:789 [ 160.709329][ T7696] sec_pagetables:0 bounce:0 [ 160.709329][ T7696] kernel_misc_reclaimable:0 [ 160.709329][ T7696] free:1218248 free_pcp:4802 free_cma:0 [ 160.901657][ T7696] Node 0 active_anon:214060kB inactive_anon:0kB active_file:13308kB inactive_file:210604kB unevictable:37176kB isolated(anon):2028kB isolated(file):0kB mapped:162224kB dirty:168kB writeback:0kB shmem:188928kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10832kB pagetables:3208kB sec_pagetables:0kB all_unreclaimable? no [ 161.032264][ T7696] Node 1 active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:116kB unevictable:1536kB isolated(anon):1664kB isolated(file):0kB mapped:36kB dirty:104kB writeback:0kB shmem:1572kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 161.148244][ T7696] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 161.248348][ T7696] lowmem_reserve[]: 0 2465 2466 0 0 [ 161.268035][ T7696] Node 0 DMA32 free:977212kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:214768kB inactive_anon:0kB active_file:13308kB inactive_file:217304kB unevictable:15268kB writepending:976kB present:3129332kB managed:2551336kB mlocked:4168kB bounce:0kB free_pcp:6736kB local_pcp:6736kB free_cma:0kB [ 161.385319][ T7696] lowmem_reserve[]: 0 0 0 0 0 [ 161.404717][ T7696] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:832kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 161.532540][ T7696] lowmem_reserve[]: 0 0 0 0 0 [ 161.555791][ T7696] Node 1 Normal free:3892044kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:4kB inactive_anon:0kB active_file:0kB inactive_file:1972kB unevictable:1536kB writepending:1804kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:17580kB local_pcp:17580kB free_cma:0kB [ 161.706678][ T7696] lowmem_reserve[]: 0 0 0 0 0 [ 161.747655][ T7696] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 161.801472][ T7696] Node 0 DMA32: 4085*4kB (UM) 1016*8kB (UME) 590*16kB (UME) 344*32kB (UME) 207*64kB (UME) 440*128kB (UME) 235*256kB (ME) 65*512kB (UME) 14*1024kB (M) 6*2048kB (ME) 188*4096kB (M) = 1004596kB [ 161.900935][ T7696] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 161.998331][ T7696] Node 1 Normal: 15*4kB (UM) 8*8kB (ME) 13*16kB (UM) 92*32kB (UM) 98*64kB (UM) 36*128kB (UM) 14*256kB (UM) 17*512kB (UME) 10*1024kB (UME) 7*2048kB (UME) 937*4096kB (M) = 3888972kB [ 162.084139][ T7696] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 162.128515][ T7696] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=1 hugepages_size=2048kB [ 162.175727][ T7696] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 162.229063][ T7696] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 162.276873][ T7696] 98550 total pagecache pages [ 162.308519][ T7696] 0 pages in swap cache [ 162.337077][ T7696] Free swap = 124824kB [ 162.341524][ T7773] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 162.361918][ T7696] Total swap = 124996kB [ 162.391725][ T7696] 2097051 pages RAM [ 162.409657][ T7696] 0 pages HighMem/MovableOnly [ 162.416384][ T7773] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 162.435041][ T7696] 427367 pages reserved [ 162.481395][ T7696] 0 pages cma reserved [ 162.616656][ T7773] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 162.701071][ T7773] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 162.759097][ T7773] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 162.846659][ T7773] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 163.013706][ T7773] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 163.073930][ T7773] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 163.232290][ T7773] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 163.378070][ T7773] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 163.431556][ T7773] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 163.666282][ T7773] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 163.794343][ T7773] CPU0 is offline. [ 164.312803][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 164.714292][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 165.029725][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 165.429282][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 166.393715][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 166.789516][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 166.914603][ T7859] Invalid ELF header magic: != ELF [ 166.941838][ T7858] Invalid ELF header magic: != ELF [ 167.109650][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 167.203583][ T7864] netlink: 'syz.1.521': attribute type 12 has an invalid length. [ 167.252313][ T7864] netlink: 252 bytes leftover after parsing attributes in process `syz.1.521'. [ 167.446771][ T7830] Process accounting paused [ 167.508872][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 167.984935][ T7894] ICMPv6: process `syz.3.528' is using deprecated sysctl (syscall) net.ipv6.neigh.virt_wifi0.retrans_time - use net.ipv6.neigh.virt_wifi0.retrans_time_ms instead [ 168.468957][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 168.868825][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 168.899449][ T7916] netlink: 32 bytes leftover after parsing attributes in process `syz.2.534'. [ 168.910588][ T7922] netlink: 4 bytes leftover after parsing attributes in process `syz.1.536'. [ 169.011991][ T7924] sctp: [Deprecated]: syz.0.537 (pid 7924) Use of int in max_burst socket option deprecated. [ 169.011991][ T7924] Use struct sctp_assoc_value instead [ 169.189617][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 169.589140][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 170.229684][ T7938] netlink: 334 bytes leftover after parsing attributes in process `syz.3.541'. [ 172.187574][ T7979] Process accounting resumed [ 172.616160][ T7986] Process accounting resumed [ 172.626249][ T7985] netlink: 28 bytes leftover after parsing attributes in process `syz.1.557'. [ 172.712065][ T7985] bridge_slave_1: left allmulticast mode [ 172.778522][ T7985] bridge_slave_1: left promiscuous mode [ 172.862134][ T7985] bridge0: port 2(bridge_slave_1) entered disabled state [ 172.968518][ T7985] bridge_slave_0: left allmulticast mode [ 173.047503][ T7985] bridge_slave_0: left promiscuous mode [ 173.100452][ T7985] bridge0: port 1(bridge_slave_0) entered disabled state [ 176.190357][ T8039] FAULT_INJECTION: forcing a failure. [ 176.190357][ T8039] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 176.258989][ T8039] CPU: 1 UID: 0 PID: 8039 Comm: syz.2.571 Tainted: G U 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 176.271127][ T8039] Tainted: [U]=USER [ 176.274919][ T8039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 176.284964][ T8039] Call Trace: [ 176.288250][ T8039] [ 176.291176][ T8039] dump_stack_lvl+0x16c/0x1f0 [ 176.295853][ T8039] should_fail_ex+0x497/0x5b0 [ 176.300532][ T8039] _copy_to_iter+0x4a5/0x1400 [ 176.305214][ T8039] ? __pfx__copy_to_iter+0x10/0x10 [ 176.310320][ T8039] ? __virt_addr_valid+0x1a4/0x590 [ 176.315430][ T8039] ? __virt_addr_valid+0x5e/0x590 [ 176.320448][ T8039] ? __phys_addr_symbol+0x30/0x80 [ 176.325489][ T8039] ? __check_object_size+0x488/0x710 [ 176.330771][ T8039] seq_read_iter+0xd00/0x12b0 [ 176.335446][ T8039] seq_read+0x39f/0x4e0 [ 176.339604][ T8039] ? __pfx_seq_read+0x10/0x10 [ 176.344283][ T8039] ? __pfx_seq_read+0x10/0x10 [ 176.348964][ T8039] vfs_read+0x1df/0xbe0 [ 176.353113][ T8039] ? __fget_files+0x1fc/0x3a0 [ 176.357784][ T8039] ? __pfx___mutex_lock+0x10/0x10 [ 176.362799][ T8039] ? __pfx_vfs_read+0x10/0x10 [ 176.367469][ T8039] ? __fget_files+0x206/0x3a0 [ 176.372140][ T8039] ksys_read+0x12b/0x250 [ 176.376414][ T8039] ? __pfx_ksys_read+0x10/0x10 [ 176.381190][ T8039] do_syscall_64+0xcd/0x250 [ 176.385705][ T8039] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.391600][ T8039] RIP: 0033:0x7f68c9985d29 [ 176.396023][ T8039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.415618][ T8039] RSP: 002b:00007f68ca78f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 176.424020][ T8039] RAX: ffffffffffffffda RBX: 00007f68c9b75fa0 RCX: 00007f68c9985d29 [ 176.431982][ T8039] RDX: 0000000000001000 RSI: 00000000200010c0 RDI: 0000000000000004 [ 176.439961][ T8039] RBP: 00007f68ca78f090 R08: 0000000000000000 R09: 0000000000000000 [ 176.447920][ T8039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 176.455907][ T8039] R13: 0000000000000000 R14: 00007f68c9b75fa0 R15: 00007fff19245398 [ 176.463877][ T8039] [ 176.629931][ T8031] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[8031] [ 178.817943][ T8082] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 178.824756][ T8082] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 179.158675][ T8085] netlink: 246 bytes leftover after parsing attributes in process `syz.3.585'. [ 179.656448][ T8100] netlink: 'syz.0.591': attribute type 2 has an invalid length. [ 180.213490][ T29] audit: type=1804 audit(6029550422.888:10): pid=8092 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.587" name="/newroot/sys/kernel/tracing/set_event_pid" dev="tracefs" ino=1062 res=1 errno=0 [ 180.671433][ T8120] netlink: zone id is out of range [ 180.671460][ T8120] netlink: del zone limit has 4 unknown bytes [ 183.233339][ T8155] netlink: 56 bytes leftover after parsing attributes in process `syz.3.604'. [ 183.788298][ T8168] netlink: 'syz.3.608': attribute type 10 has an invalid length. [ 183.868873][ T8168] netlink: 230 bytes leftover after parsing attributes in process `syz.3.608'. [ 183.947090][ T8175] binder: BINDER_SET_CONTEXT_MGR already set [ 183.985441][ T8171] can: request_module (can-proto-5) failed. [ 184.014584][ T8175] binder: 8170:8175 ioctl 4018620d 9 returned -16 [ 184.029456][ T8168] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 184.667735][ T8184] Process accounting resumed [ 186.204777][ T8207] FAULT_INJECTION: forcing a failure. [ 186.204777][ T8207] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 186.268595][ T8207] CPU: 1 UID: 0 PID: 8207 Comm: syz.0.620 Tainted: G U 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 186.280684][ T8207] Tainted: [U]=USER [ 186.284471][ T8207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 186.294516][ T8207] Call Trace: [ 186.297797][ T8207] [ 186.300714][ T8207] dump_stack_lvl+0x16c/0x1f0 [ 186.305386][ T8207] should_fail_ex+0x497/0x5b0 [ 186.310055][ T8207] _copy_from_user+0x2e/0xd0 [ 186.314641][ T8207] copy_msghdr_from_user+0x99/0x160 [ 186.319834][ T8207] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 186.325641][ T8207] ___sys_sendmsg+0xff/0x1e0 [ 186.330230][ T8207] ? __pfx____sys_sendmsg+0x10/0x10 [ 186.335431][ T8207] ? __pfx_lock_release+0x10/0x10 [ 186.340450][ T8207] ? trace_lock_acquire+0x14e/0x1f0 [ 186.345647][ T8207] ? __fget_files+0x206/0x3a0 [ 186.350336][ T8207] __sys_sendmsg+0x16e/0x220 [ 186.354920][ T8207] ? __pfx___sys_sendmsg+0x10/0x10 [ 186.360077][ T8207] do_syscall_64+0xcd/0x250 [ 186.364594][ T8207] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.370491][ T8207] RIP: 0033:0x7f6249d85d29 [ 186.374900][ T8207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.394495][ T8207] RSP: 002b:00007f624aafd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 186.402894][ T8207] RAX: ffffffffffffffda RBX: 00007f6249f75fa0 RCX: 00007f6249d85d29 [ 186.410853][ T8207] RDX: 0000000000040000 RSI: 0000000020000640 RDI: 0000000000000003 [ 186.418811][ T8207] RBP: 00007f624aafd090 R08: 0000000000000000 R09: 0000000000000000 [ 186.426776][ T8207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 186.434906][ T8207] R13: 0000000000000000 R14: 00007f6249f75fa0 R15: 00007ffca33ae858 [ 186.442877][ T8207] [ 188.739131][ T8237] ima: policy update failed [ 188.756664][ T29] audit: type=1802 audit(6029550431.418:11): pid=8237 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.630" res=0 errno=0 [ 189.130961][ T8246] Process accounting resumed [ 189.767195][ T8270] netlink: 4 bytes leftover after parsing attributes in process `syz.0.633'. [ 189.839282][ T8271] netlink: 'syz.2.635': attribute type 2 has an invalid length. [ 190.224340][ T8252] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 190.265223][ T8252] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 190.287196][ T8252] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 190.333576][ T8252] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 190.360059][ T8252] CPU0 is offline. [ 190.413044][ T8284] netlink: 330 bytes leftover after parsing attributes in process `syz.3.639'. [ 191.108938][ T8303] netlink: 146 bytes leftover after parsing attributes in process `syz.1.646'. [ 191.588976][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 192.309255][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 192.315358][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 192.388973][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 193.134309][ T8370] netlink: 28 bytes leftover after parsing attributes in process `syz.0.665'. [ 193.383126][ T8360] FAULT_INJECTION: forcing a failure. [ 193.383126][ T8360] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 193.486563][ T8370] bond0: (slave bond_slave_1): Releasing backup interface [ 193.497500][ T8360] CPU: 1 UID: 0 PID: 8360 Comm: syz.3.660 Tainted: G U 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 193.509573][ T8360] Tainted: [U]=USER [ 193.513363][ T8360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 193.523404][ T8360] Call Trace: [ 193.526672][ T8360] [ 193.529591][ T8360] dump_stack_lvl+0x16c/0x1f0 [ 193.534265][ T8360] should_fail_ex+0x497/0x5b0 [ 193.538939][ T8360] _copy_to_user+0x32/0xd0 [ 193.543367][ T8360] read_page_owner+0x11c6/0x1bb0 [ 193.548302][ T8360] ? __pfx_read_page_owner+0x10/0x10 [ 193.553594][ T8360] full_proxy_read+0xfb/0x1b0 [ 193.558262][ T8360] ? __pfx_full_proxy_read+0x10/0x10 [ 193.563537][ T8360] vfs_read+0x1df/0xbe0 [ 193.567682][ T8360] ? __fget_files+0x1fc/0x3a0 [ 193.572349][ T8360] ? __pfx___mutex_lock+0x10/0x10 [ 193.577367][ T8360] ? __pfx_vfs_read+0x10/0x10 [ 193.582038][ T8360] ? __fget_files+0x206/0x3a0 [ 193.586707][ T8360] ksys_read+0x12b/0x250 [ 193.590938][ T8360] ? __pfx_ksys_read+0x10/0x10 [ 193.595694][ T8360] do_syscall_64+0xcd/0x250 [ 193.600190][ T8360] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.606083][ T8360] RIP: 0033:0x7ff3cc585d29 [ 193.610508][ T8360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.630120][ T8360] RSP: 002b:00007ff3ca3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 193.638518][ T8360] RAX: ffffffffffffffda RBX: 00007ff3cc775fa0 RCX: 00007ff3cc585d29 [ 193.646478][ T8360] RDX: 000000000000ffb8 RSI: 0000000000000000 RDI: 0000000000000006 [ 193.654434][ T8360] RBP: 00007ff3ca3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 193.662394][ T8360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 193.670350][ T8360] R13: 0000000000000000 R14: 00007ff3cc775fa0 R15: 00007ffdd47e12a8 [ 193.678318][ T8360] [ 193.968394][ T8377] netlink: 'syz.1.666': attribute type 21 has an invalid length. [ 194.004031][ T8377] netlink: 334 bytes leftover after parsing attributes in process `syz.1.666'. [ 194.554305][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.561348][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.576462][ T8389] netlink: 4 bytes leftover after parsing attributes in process `syz.0.671'. [ 195.485078][ T8407] netlink: 28 bytes leftover after parsing attributes in process `syz.1.678'. [ 196.188796][ T8427] netlink: 334 bytes leftover after parsing attributes in process `syz.0.681'. [ 196.336508][ T8424] netlink: 334 bytes leftover after parsing attributes in process `syz.0.681'. [ 196.664029][ T29] audit: type=1804 audit(6029747047.337:12): pid=8440 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.688" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/inject" dev="tracefs" ino=19680823 res=1 errno=0 [ 196.996119][ T8448] netlink: 334 bytes leftover after parsing attributes in process `syz.3.690'. [ 197.064756][ T8448] netlink: 334 bytes leftover after parsing attributes in process `syz.3.690'. [ 197.887896][ T8471] Process accounting resumed [ 198.619677][ T8491] nbd: illegal input index -33554433 [ 199.578008][ T8509] block nbd0: not configured, cannot reconfigure [ 199.791460][ T8512] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 199.860438][ T8507] could not allocate digest TFM handle [ 199.897031][ T8512] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 200.023616][ T8519] block nbd0: not configured, cannot reconfigure [ 200.460137][ T8527] could not allocate digest TFM handle [ 201.690361][ T8550] binder: 8549:8550 ioctl c00c620f 9 returned -22 [ 202.380966][ T8573] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 203.214734][ T8593] : entered promiscuous mode [ 203.574564][ T8597] erspan0: entered allmulticast mode [ 206.614433][ T8654] openvswitch: netlink: Missing valid actions attribute. [ 207.431724][ T8671] netlink: 334 bytes leftover after parsing attributes in process `syz.1.753'. [ 207.657831][ T8674] netlink: 330 bytes leftover after parsing attributes in process `syz.1.755'. [ 207.929293][ T8682] Scaler: ================= START STATUS ================= [ 208.012181][ T8682] Scaler: ================== END STATUS ================== [ 208.228612][ T8687] can: request_module (can-proto-0) failed. [ 210.856813][ T8752] mkiss: ax0: crc mode is auto. [ 212.457912][ T8776] mkiss: ax0: crc mode is auto. [ 216.072271][ T8819] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[8819] [ 216.265159][ T8823] netlink: 28 bytes leftover after parsing attributes in process `syz.1.795'. [ 217.469258][ T8823] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 217.603075][ T8823] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 217.668262][ T8823] bond0 (unregistering): Released all slaves [ 217.688445][ T8842] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd31 [ 217.817344][ T29] audit: type=1800 audit(6029747068.487:13): pid=8842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.798" name="members" dev="configfs" ino=20947 res=0 errno=0 [ 217.998033][ T8846] netlink: 4 bytes leftover after parsing attributes in process `syz.1.799'. [ 218.046608][ T8846] netlink: 4 bytes leftover after parsing attributes in process `syz.1.799'. [ 221.814460][ T8920] binder: 8913:8920 ioctl 400c620e 9 returned -22 [ 221.943976][ T8923] netlink: 330 bytes leftover after parsing attributes in process `syz.1.820'. [ 223.240400][ T8943] Process accounting resumed [ 227.015026][ T9006] netlink: 28 bytes leftover after parsing attributes in process `syz.3.844'. [ 227.438502][ T9006] bond0: (slave bond_slave_0): Releasing backup interface [ 228.647975][ T9028] openvswitch: netlink: Multiple metadata blocks provided [ 229.012764][ T9037] netlink: 342 bytes leftover after parsing attributes in process `syz.1.852'. [ 229.270603][ T9043] openvswitch: netlink: Key 23 has unexpected len 0 expected 2 [ 229.379573][ T9043] netlink: 4 bytes leftover after parsing attributes in process `syz.0.856'. [ 233.494149][ T29] audit: type=1800 audit(6029747084.167:14): pid=9144 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.883" name="discovery_nqn" dev="configfs" ino=22093 res=0 errno=0 [ 233.547817][ T9138] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 233.602156][ T9141] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 234.251348][ T9159] netlink: 28 bytes leftover after parsing attributes in process `syz.3.888'. [ 235.724700][ T9194] FAULT_INJECTION: forcing a failure. [ 235.724700][ T9194] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 235.877984][ T9194] CPU: 1 UID: 0 PID: 9194 Comm: syz.3.897 Tainted: G U 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 235.890337][ T9194] Tainted: [U]=USER [ 235.894129][ T9194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 235.904167][ T9194] Call Trace: [ 235.907431][ T9194] [ 235.910353][ T9194] dump_stack_lvl+0x16c/0x1f0 [ 235.915046][ T9194] should_fail_ex+0x497/0x5b0 [ 235.919716][ T9194] _copy_to_user+0x32/0xd0 [ 235.924126][ T9194] simple_read_from_buffer+0xd0/0x160 [ 235.929497][ T9194] proc_fail_nth_read+0x198/0x270 [ 235.934517][ T9194] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 235.940056][ T9194] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 235.945595][ T9194] vfs_read+0x1df/0xbe0 [ 235.949763][ T9194] ? __fget_files+0x1fc/0x3a0 [ 235.954435][ T9194] ? __pfx___mutex_lock+0x10/0x10 [ 235.959472][ T9194] ? __pfx_vfs_read+0x10/0x10 [ 235.964151][ T9194] ? __fget_files+0x206/0x3a0 [ 235.968843][ T9194] ksys_read+0x12b/0x250 [ 235.973094][ T9194] ? __pfx_ksys_read+0x10/0x10 [ 235.977862][ T9194] do_syscall_64+0xcd/0x250 [ 235.982390][ T9194] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 235.988315][ T9194] RIP: 0033:0x7ff3cc58473c [ 235.992724][ T9194] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 236.012362][ T9194] RSP: 002b:00007ff3ca3f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 236.020782][ T9194] RAX: ffffffffffffffda RBX: 00007ff3cc775fa0 RCX: 00007ff3cc58473c [ 236.028773][ T9194] RDX: 000000000000000f RSI: 00007ff3ca3f60a0 RDI: 0000000000000004 [ 236.036737][ T9194] RBP: 00007ff3ca3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 236.044717][ T9194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 236.052697][ T9194] R13: 0000000000000000 R14: 00007ff3cc775fa0 R15: 00007ffdd47e12a8 [ 236.060669][ T9194] [ 236.446911][ T9212] FAULT_INJECTION: forcing a failure. [ 236.446911][ T9212] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 236.474280][ T9213] netlink: 4 bytes leftover after parsing attributes in process `syz.0.901'. [ 236.498335][ T9213] netlink: 'syz.0.901': attribute type 27 has an invalid length. [ 236.509949][ T9212] CPU: 1 UID: 0 PID: 9212 Comm: syz.2.902 Tainted: G U 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 236.522023][ T9212] Tainted: [U]=USER [ 236.525814][ T9212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 236.535885][ T9212] Call Trace: [ 236.539158][ T9212] [ 236.542084][ T9212] dump_stack_lvl+0x16c/0x1f0 [ 236.546757][ T9212] should_fail_ex+0x497/0x5b0 [ 236.551430][ T9212] core_sys_select+0x886/0xa10 [ 236.556185][ T9212] ? __pfx_core_sys_select+0x10/0x10 [ 236.561491][ T9212] ? __pfx_lock_release+0x10/0x10 [ 236.566509][ T9212] ? proc_fail_nth_write+0xa0/0x250 [ 236.571717][ T9212] ? do_sys_openat2+0xb1/0x1e0 [ 236.576496][ T9212] ? __pfx_do_sys_openat2+0x10/0x10 [ 236.581696][ T9212] kern_select+0x15e/0x1e0 [ 236.586105][ T9212] ? __pfx_kern_select+0x10/0x10 [ 236.591034][ T9212] ? __pfx_ksys_write+0x10/0x10 [ 236.595883][ T9212] __x64_sys_select+0xbd/0x160 [ 236.600635][ T9212] ? do_syscall_64+0x91/0x250 [ 236.605326][ T9212] ? lockdep_hardirqs_on+0x7c/0x110 [ 236.610609][ T9212] do_syscall_64+0xcd/0x250 [ 236.615126][ T9212] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 236.621011][ T9212] RIP: 0033:0x7f68c9985d29 [ 236.625419][ T9212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 236.645016][ T9212] RSP: 002b:00007f68ca78f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 236.653417][ T9212] RAX: ffffffffffffffda RBX: 00007f68c9b75fa0 RCX: 00007f68c9985d29 [ 236.661376][ T9212] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000004 [ 236.669334][ T9212] RBP: 00007f68ca78f090 R08: 0000000000000000 R09: 0000000000000000 [ 236.677295][ T9212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 236.685253][ T9212] R13: 0000000000000000 R14: 00007f68c9b75fa0 R15: 00007fff19245398 [ 236.693222][ T9212] [ 236.707400][ T9214] netlink: 'syz.0.901': attribute type 27 has an invalid length. [ 236.725358][ T9213] netlink: 334 bytes leftover after parsing attributes in process `syz.0.901'. [ 236.744496][ T9214] netlink: 334 bytes leftover after parsing attributes in process `syz.0.901'. [ 237.700929][ T9229] nvme_fabrics: missing parameter 'transport=%s' [ 237.795260][ T9229] nvme_fabrics: missing parameter 'nqn=%s' [ 237.949184][ T9229] Process accounting resumed [ 238.013990][ T9229] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 9229 comm: syz.3.907) [ 238.124587][ T9236] netlink: 4 bytes leftover after parsing attributes in process `syz.0.910'. [ 238.189609][ T9236] nbd: must specify a size in bytes for the device [ 238.806046][ T9249] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 9249 comm: syz.3.911) [ 239.370120][ T9263] block nbd4: NBD_DISCONNECT [ 240.061528][ T9265] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 9265 comm: syz.3.915) [ 240.076340][ T9274] bdi 31:0: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead. [ 240.486086][ T9285] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 9285 comm: syz.3.920) [ 240.684076][ T9286] Process accounting resumed [ 240.692447][ T29] audit: type=1800 audit(6029747091.367:15): pid=9267 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.917" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 243.091434][ T9312] FAULT_INJECTION: forcing a failure. [ 243.091434][ T9312] name failslab, interval 1, probability 0, space 0, times 0 [ 243.164206][ T9312] CPU: 1 UID: 0 PID: 9312 Comm: syz.2.926 Tainted: G U 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 243.176293][ T9312] Tainted: [U]=USER [ 243.180079][ T9312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 243.190119][ T9312] Call Trace: [ 243.193397][ T9312] [ 243.196331][ T9312] dump_stack_lvl+0x16c/0x1f0 [ 243.201013][ T9312] should_fail_ex+0x497/0x5b0 [ 243.205680][ T9312] ? fs_reclaim_acquire+0xae/0x150 [ 243.210782][ T9312] should_failslab+0xc2/0x120 [ 243.215454][ T9312] __kmalloc_cache_noprof+0x68/0x420 [ 243.220750][ T9312] ? __mutex_trylock_common+0xea/0x250 [ 243.226298][ T9312] snd_pcm_oss_change_params_locked+0x1d6/0x3a50 [ 243.232620][ T9312] ? rcu_is_watching+0x12/0xc0 [ 243.237378][ T9312] ? trace_contention_end+0xee/0x140 [ 243.242648][ T9312] ? __mutex_lock+0x1cc/0xa60 [ 243.247332][ T9312] ? __pfx___lock_acquire+0x10/0x10 [ 243.252523][ T9312] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 243.259298][ T9312] ? __pfx___mutex_lock+0x10/0x10 [ 243.264335][ T9312] ? snd_pcm_stream_unlock_irq+0x90/0xb0 [ 243.269985][ T9312] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 243.275265][ T9312] snd_pcm_oss_set_trigger.isra.0+0x211/0x6b0 [ 243.281329][ T9312] ? lockdep_hardirqs_on+0x7c/0x110 [ 243.286524][ T9312] snd_pcm_oss_poll+0x51f/0xac0 [ 243.291372][ T9312] ? __pfx___pollwait+0x10/0x10 [ 243.296215][ T9312] ? __pfx_snd_pcm_oss_poll+0x10/0x10 [ 243.301584][ T9312] ? __pfx_snd_pcm_oss_poll+0x10/0x10 [ 243.306949][ T9312] do_sys_poll+0x524/0xde0 [ 243.311381][ T9312] ? __pfx_mark_lock+0x10/0x10 [ 243.316148][ T9312] ? __pfx_do_sys_poll+0x10/0x10 [ 243.321092][ T9312] ? __pfx___pollwait+0x10/0x10 [ 243.325934][ T9312] ? __pfx_pollwake+0x10/0x10 [ 243.330632][ T9312] ? __pfx_timespec64_add_safe+0x10/0x10 [ 243.336255][ T9312] ? ktime_get_ts64+0x2d4/0x400 [ 243.341102][ T9312] ? read_tsc+0x9/0x20 [ 243.345163][ T9312] ? ktime_get_ts64+0x256/0x400 [ 243.350016][ T9312] __x64_sys_poll+0x1a8/0x450 [ 243.354689][ T9312] ? __pfx___x64_sys_poll+0x10/0x10 [ 243.359900][ T9312] do_syscall_64+0xcd/0x250 [ 243.364397][ T9312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.370282][ T9312] RIP: 0033:0x7f68c9985d29 [ 243.374706][ T9312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 243.394355][ T9312] RSP: 002b:00007f68ca78f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 243.402765][ T9312] RAX: ffffffffffffffda RBX: 00007f68c9b75fa0 RCX: 00007f68c9985d29 [ 243.410735][ T9312] RDX: 000000000000ff2f RSI: 000000000000000a RDI: 0000000020000140 [ 243.418695][ T9312] RBP: 00007f68ca78f090 R08: 0000000000000000 R09: 0000000000000000 [ 243.426654][ T9312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 243.434618][ T9312] R13: 0000000000000000 R14: 00007f68c9b75fa0 R15: 00007fff19245398 [ 243.442631][ T9312] [ 246.657880][ T9394] Invalid ELF header magic: != ELF [ 250.804939][ T9473] can: request_module (can-proto-0) failed. [ 251.485563][ T9490] ecryptfs_miscdev_write: Invalid packet size [192] [ 251.840663][ T9499] Process accounting resumed [ 252.131014][ T9506] sctp: [Deprecated]: syz.2.974 (pid 9506) Use of struct sctp_assoc_value in delayed_ack socket option. [ 252.131014][ T9506] Use struct sctp_sack_info instead [ 252.163100][ T9504] nvme_fabrics: missing parameter 'transport=%s' [ 252.205819][ T9504] nvme_fabrics: missing parameter 'nqn=%s' [ 252.387589][ T9513] netlink: 330 bytes leftover after parsing attributes in process `syz.2.975'. [ 252.467204][ T9513] : renamed from bond_slave_1 (while UP) [ 253.529333][ T9550] Process accounting paused [ 253.694602][ T9557] netlink: 342 bytes leftover after parsing attributes in process `syz.0.986'. [ 254.005305][ T9565] netlink: 28 bytes leftover after parsing attributes in process `syz.0.989'. [ 254.097747][ T9565] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 254.181028][ T9565] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 254.252529][ T9565] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 254.289313][ T9565] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 255.098162][ T9601] ======================================================= [ 255.098162][ T9601] WARNING: The mand mount option has been deprecated and [ 255.098162][ T9601] and is ignored by this kernel. Remove the mand [ 255.098162][ T9601] option from the mount to silence this warning. [ 255.098162][ T9601] ======================================================= [ 255.992873][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.003142][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 257.686331][ T9640] ptrace attach of "./syz-executor exec"[6534] was attempted by "./syz-executor exec"[9640] [ 260.053306][ T9675] can0: slcan on ptm0. [ 260.321051][ T9674] can0 (unregistered): slcan off ptm0. [ 260.551384][ T9689] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1021'. [ 261.200005][ T9715] netlink: 66 bytes leftover after parsing attributes in process `syz.0.1026'. [ 262.228561][ T29] audit: type=1800 audit(6029747112.897:16): pid=9742 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1029" name="members" dev="configfs" ino=24311 res=0 errno=0 [ 262.248756][ C1] vkms_vblank_simulate: vblank timer overrun [ 264.862769][ T9774] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1039'. [ 264.895917][ T9774] netdevsim netdevsim0 netdevsim2: entered allmulticast mode [ 267.029852][ T29] audit: type=1800 audit(6029747117.697:17): pid=9814 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1051" name="members" dev="configfs" ino=24695 res=0 errno=0 [ 269.105935][ T9860] mkiss: ax0: crc mode is auto. [ 270.517106][ T9885] Process accounting resumed [ 277.914317][T10035] FAULT_INJECTION: forcing a failure. [ 277.914317][T10035] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 277.992767][T10035] CPU: 1 UID: 0 PID: 10035 Comm: syz.3.1113 Tainted: G U 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 278.005041][T10035] Tainted: [U]=USER [ 278.008840][T10035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 278.019244][T10035] Call Trace: [ 278.022514][T10035] [ 278.025432][T10035] dump_stack_lvl+0x16c/0x1f0 [ 278.030106][T10035] should_fail_ex+0x497/0x5b0 [ 278.034782][T10035] _copy_from_iter+0x29b/0x1400 [ 278.039632][T10035] ? trace_lock_acquire+0x14e/0x1f0 [ 278.044839][T10035] ? __alloc_skb+0x200/0x380 [ 278.049421][T10035] ? __pfx__copy_from_iter+0x10/0x10 [ 278.054712][T10035] ? __virt_addr_valid+0x1a4/0x590 [ 278.059828][T10035] ? __virt_addr_valid+0x5e/0x590 [ 278.064844][T10035] ? __phys_addr_symbol+0x30/0x80 [ 278.069861][T10035] ? __check_object_size+0x488/0x710 [ 278.075140][T10035] netlink_sendmsg+0x813/0xd70 [ 278.079893][T10035] ? __pfx_netlink_sendmsg+0x10/0x10 [ 278.085171][T10035] ____sys_sendmsg+0x9ae/0xb40 [ 278.089928][T10035] ? copy_msghdr_from_user+0x10b/0x160 [ 278.095381][T10035] ? __pfx_____sys_sendmsg+0x10/0x10 [ 278.100667][T10035] ___sys_sendmsg+0x135/0x1e0 [ 278.105365][T10035] ? __pfx____sys_sendmsg+0x10/0x10 [ 278.110563][T10035] ? __pfx_lock_release+0x10/0x10 [ 278.115574][T10035] ? trace_lock_acquire+0x14e/0x1f0 [ 278.120769][T10035] ? __fget_files+0x206/0x3a0 [ 278.125445][T10035] __sys_sendmsg+0x16e/0x220 [ 278.130030][T10035] ? __pfx___sys_sendmsg+0x10/0x10 [ 278.135146][T10035] do_syscall_64+0xcd/0x250 [ 278.139642][T10035] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.145525][T10035] RIP: 0033:0x7ff3cc585d29 [ 278.149930][T10035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 278.169523][T10035] RSP: 002b:00007ff3ca3f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 278.177933][T10035] RAX: ffffffffffffffda RBX: 00007ff3cc775fa0 RCX: 00007ff3cc585d29 [ 278.185887][T10035] RDX: 0000000000040000 RSI: 0000000020001240 RDI: 0000000000000003 [ 278.193844][T10035] RBP: 00007ff3ca3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 278.201798][T10035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 278.209754][T10035] R13: 0000000000000000 R14: 00007ff3cc775fa0 R15: 00007ffdd47e12a8 [ 278.217726][T10035] [ 278.220837][ C1] vkms_vblank_simulate: vblank timer overrun [ 281.647799][T10095] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1129'. [ 282.128082][T10091] ACPI: Can not change Invalid GPE/Fixed Event status [ 284.128574][T10120] Process accounting resumed [ 286.456552][T10152] ACPI: Can not change Invalid GPE/Fixed Event status [ 286.484318][ T5837] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 286.495176][ T5837] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 286.505012][ T5837] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 286.514657][ T5837] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 286.523018][ T5837] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 286.530668][ T5837] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 286.925989][T10153] chnl_net:caif_netlink_parms(): no params data found [ 287.094919][T10153] bridge0: port 1(bridge_slave_0) entered blocking state [ 287.127157][T10153] bridge0: port 1(bridge_slave_0) entered disabled state [ 287.152217][T10153] bridge_slave_0: entered allmulticast mode [ 287.179329][T10153] bridge_slave_0: entered promiscuous mode [ 287.201867][T10153] bridge0: port 2(bridge_slave_1) entered blocking state [ 287.231868][T10153] bridge0: port 2(bridge_slave_1) entered disabled state [ 287.258873][T10153] bridge_slave_1: entered allmulticast mode [ 287.291303][T10153] bridge_slave_1: entered promiscuous mode [ 287.352882][T10153] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 287.394371][T10153] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 287.491244][T10153] team0: Port device team_slave_0 added [ 287.514500][T10153] team0: Port device team_slave_1 added [ 287.581363][T10153] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 287.608844][T10153] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 287.703296][T10153] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 287.743407][T10153] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 287.780085][T10153] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 287.805994][ C1] vkms_vblank_simulate: vblank timer overrun [ 287.896413][T10153] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 288.002574][T10153] hsr_slave_0: entered promiscuous mode [ 288.029848][T10153] hsr_slave_1: entered promiscuous mode [ 288.053002][T10153] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 288.081835][T10153] Cannot create hsr debugfs directory [ 288.378152][T10153] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 288.522952][T10153] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 288.629041][ T5839] Bluetooth: hci3: command tx timeout [ 288.642742][T10153] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 288.745528][T10153] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 288.999847][T10153] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 289.043571][T10153] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 289.072196][T10153] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 289.104477][T10153] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 289.276825][T10153] 8021q: adding VLAN 0 to HW filter on device bond0 [ 289.335604][T10153] 8021q: adding VLAN 0 to HW filter on device team0 [ 289.386724][ T9344] bridge0: port 1(bridge_slave_0) entered blocking state [ 289.393897][ T9344] bridge0: port 1(bridge_slave_0) entered forwarding state [ 289.443536][ T9344] bridge0: port 2(bridge_slave_1) entered blocking state [ 289.450695][ T9344] bridge0: port 2(bridge_slave_1) entered forwarding state [ 289.768027][T10153] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 289.841182][T10153] veth0_vlan: entered promiscuous mode [ 289.867160][T10153] veth1_vlan: entered promiscuous mode [ 289.918958][T10153] veth0_macvtap: entered promiscuous mode [ 289.941225][T10153] veth1_macvtap: entered promiscuous mode [ 289.975016][T10153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.004594][T10153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.032873][T10153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.056874][T10153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.082355][T10153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.108321][T10153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.132458][T10153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.157796][T10153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.184494][T10153] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 290.212954][T10153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 290.246008][T10153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.271393][T10153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 290.297404][T10153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.317853][T10153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 290.346829][T10153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.369942][T10153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 290.399037][T10153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.424669][T10153] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 290.462860][T10153] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.487782][T10153] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.506804][T10153] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.525814][T10153] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.656403][ T9344] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 290.689401][ T9344] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 290.709967][ T5839] Bluetooth: hci3: command tx timeout [ 290.723769][ T9344] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 290.747836][ T9344] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 290.917875][T10166] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1142'. [ 292.306479][T10194] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1151'. [ 292.342970][T10194] macsec0: entered allmulticast mode [ 292.379280][T10194] veth1_macvtap: entered allmulticast mode [ 292.788824][ T5839] Bluetooth: hci3: command tx timeout [ 294.253874][T10217] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1158'. [ 294.471248][T10202] kexec: Could not allocate control_code_buffer [ 294.869229][ T5839] Bluetooth: hci3: command tx timeout [ 295.389320][T10240] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1165'. [ 296.594639][T10253] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000010006 [ 298.632218][T10288] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1180'. [ 299.774907][T10296] netlink: 93 bytes leftover after parsing attributes in process `syz.1.1182'. [ 301.061402][T10321] ACPI: Can not change Invalid GPE/Fixed Event status [ 301.768226][T10335] netlink: 242 bytes leftover after parsing attributes in process `syz.3.1192'. [ 303.236449][T10344] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1195'. [ 305.217546][T10368] netlink: 93 bytes leftover after parsing attributes in process `syz.0.1201'. [ 306.804609][T10392] netlink: 242 bytes leftover after parsing attributes in process `syz.0.1207'. [ 308.744155][T10424] netlink: 93 bytes leftover after parsing attributes in process `syz.2.1220'. [ 308.796907][T10423] netlink: 93 bytes leftover after parsing attributes in process `syz.2.1220'. [ 309.539096][T10432] netlink: 242 bytes leftover after parsing attributes in process `syz.2.1221'. [ 311.472075][T10460] ACPI: Can not change Invalid GPE/Fixed Event status [ 313.140599][T10491] erspan0: entered allmulticast mode [ 315.376196][T10500] Process accounting paused [ 317.437236][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.443793][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 319.738530][ T29] audit: type=1800 audit(6029747170.407:18): pid=10569 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1260" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 319.758982][ C1] vkms_vblank_simulate: vblank timer overrun [ 320.182932][T10574] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1261'. [ 328.458205][T10646] netlink: 'syz.0.1279': attribute type 11 has an invalid length. [ 329.499312][T10651] ICMPv6: process `syz.0.1281' is using deprecated sysctl (syscall) net.ipv6.neigh.virt_wifi0.retrans_time - use net.ipv6.neigh.virt_wifi0.retrans_time_ms instead [ 334.325756][T10702] ACPI: Can not change Invalid GPE/Fixed Event status [ 340.512962][T10750] ICMPv6: process `syz.2.1305' is using deprecated sysctl (syscall) net.ipv6.neigh.virt_wifi0.retrans_time - use net.ipv6.neigh.virt_wifi0.retrans_time_ms instead [ 344.187565][T10788] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1319'. [ 344.245634][T10788] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1319'. [ 346.268109][T10740] Process accounting resumed [ 346.398729][T10805] ICMPv6: process `syz.0.1332' is using deprecated sysctl (syscall) net.ipv6.neigh.virt_wifi0.retrans_time - use net.ipv6.neigh.virt_wifi0.retrans_time_ms instead [ 349.976596][T10862] Invalid ELF header magic: != ELF [ 350.987095][T10868] HfR: entered promiscuous mode [ 353.309675][T10895] Invalid ELF header magic: != ELF [ 356.111234][T10923] HfR: entered promiscuous mode [ 356.697819][T10934] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1361'. [ 357.118378][T10945] Invalid ELF header magic: != ELF [ 360.534952][T10994] HfR: entered promiscuous mode [ 360.594103][T10994] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1373'. [ 361.307070][T11015] Invalid ELF header magic: != ELF [ 362.167325][T11025] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1387'. [ 362.249098][T11025] QAT: Stopping all acceleration devices. [ 363.107333][T11033] openvswitch: netlink: VXLAN extension message has 4 unknown bytes. [ 364.529651][T11054] openvswitch: netlink: VXLAN extension message has 4 unknown bytes. [ 365.856922][T11090] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1402'. [ 367.016850][T11110] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 370.283181][T11141] Process accounting resumed [ 370.471448][T11153] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1417'. [ 370.661742][T11144] QAT: Stopping all acceleration devices. [ 371.482821][T11176] bridge0: port 3(team0) entered blocking state [ 371.529002][T11176] bridge0: port 3(team0) entered disabled state [ 371.556941][T11176] team0: entered allmulticast mode [ 371.601869][T11176] team_slave_0: entered allmulticast mode [ 371.644026][T11176] team_slave_1: entered allmulticast mode [ 371.680271][T11182] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1430'. [ 371.700226][T11176] team0: entered promiscuous mode [ 371.727149][T11176] team_slave_0: entered promiscuous mode [ 371.752524][T11176] team_slave_1: entered promiscuous mode [ 371.768393][T11176] bridge0: port 3(team0) entered blocking state [ 371.774803][T11176] bridge0: port 3(team0) entered forwarding state [ 371.838252][T11182] syz.0.1430 (11182) used greatest stack depth: 20832 bytes left [ 372.207653][T11191] Process accounting resumed [ 373.945726][T11228] bridge0: port 3(team0) entered blocking state [ 374.020647][T11228] bridge0: port 3(team0) entered disabled state [ 374.075410][T11228] team0: entered allmulticast mode [ 374.125418][T11228] team_slave_0: entered allmulticast mode [ 374.155716][T11228] team_slave_1: entered allmulticast mode [ 374.184036][T11228] team0: entered promiscuous mode [ 374.209598][T11228] team_slave_0: entered promiscuous mode [ 374.237556][T11228] team_slave_1: entered promiscuous mode [ 374.254225][T11228] bridge0: port 3(team0) entered blocking state [ 374.260589][T11228] bridge0: port 3(team0) entered forwarding state [ 374.388354][T11235] Process accounting resumed [ 375.571130][T11269] netlink: 252 bytes leftover after parsing attributes in process `syz.3.1459'. [ 375.622970][T11271] netlink: 252 bytes leftover after parsing attributes in process `syz.3.1459'. [ 378.555375][T11312] Invalid ELF header magic: != ELF [ 378.871374][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.882874][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.227325][T11323] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 379.876464][T11333] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1473'. [ 380.245334][T11320] kexec: Could not allocate control_code_buffer [ 383.053424][T11380] Invalid ELF header magic: != ELF [ 383.345145][T11365] Process accounting resumed [ 383.863040][T11384] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1491'. [ 385.909519][T11378] Process accounting resumed [ 385.956974][T11378] Console: switching to colour VGA+ 80x25 [ 388.762424][T11437] Process accounting resumed [ 390.347873][T11461] Invalid ELF header magic: != ELF [ 392.117804][T11470] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1511'. [ 393.666092][T11491] Invalid ELF header magic: != ELF [ 394.523022][T11495] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1530'. [ 403.810013][T11622] HfR: entered promiscuous mode [ 411.671015][T11688] Bluetooth: hci3: command 0x0406 tx timeout [ 416.293758][T11724] Process accounting paused [ 416.407741][T11739] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 416.414201][T11739] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 418.635761][T11789] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 418.642213][T11789] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 421.763111][T11777] Process accounting paused [ 421.908956][T11800] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1611'. [ 421.973643][T11803] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(1869770799.1752444771.1684104562), cmd(17) [ 423.131683][T11830] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 423.138111][T11830] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 423.692539][T11843] netlink: 'syz.1.1622': attribute type 10 has an invalid length. [ 423.766263][T11843] netlink: 230 bytes leftover after parsing attributes in process `syz.1.1622'. [ 423.887026][T11843] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 424.724935][T11856] netlink: 'syz.0.1637': attribute type 10 has an invalid length. [ 424.808780][T11856] netlink: 230 bytes leftover after parsing attributes in process `syz.0.1637'. [ 424.995514][T11856] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 425.992012][T11868] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888034eb1100 pfn:0x34eb0 [ 426.088769][T11868] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 426.137030][T11868] page_type: f0(buddy) [ 426.168168][T11868] raw: 00fff00000000000 ffffea00020ca208 ffffea000190ca08 0000000000000000 [ 426.206098][T11868] raw: ffff888034eb1100 0000000000000003 00000000f0000000 0000000000000000 [ 426.251524][T11868] page dumped because: VM_BUG_ON_FOLIO(!folio_test_large(folio)) [ 426.292977][T11868] page_owner tracks the page as allocated [ 426.319470][T11868] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 11770, tgid 11770 (kworker/u8:26), ts 426038996275, free_ts 426020554686 [ 426.427241][T11868] post_alloc_hook+0x2d1/0x350 [ 426.450495][T11868] get_page_from_freelist+0xfce/0x2f80 [ 426.476712][T11868] __alloc_pages_noprof+0x223/0x25b0 [ 426.512201][T11868] alloc_pages_mpol_noprof+0x2c9/0x610 [ 426.535694][T11868] new_slab+0x2c9/0x410 [ 426.559865][T11868] ___slab_alloc+0xce2/0x1650 [ 426.579813][T11868] __slab_alloc.constprop.0+0x56/0xb0 [ 426.605468][T11868] __kmalloc_node_track_caller_noprof+0x2ee/0x520 [ 426.642794][T11868] kmalloc_reserve+0xef/0x2c0 [ 426.665090][T11868] __alloc_skb+0x164/0x380 [ 426.691117][T11868] nsim_dev_trap_report_work+0x2af/0xd20 [ 426.727660][T11868] process_one_work+0x958/0x1b30 [ 426.747862][T11868] worker_thread+0x6c8/0xf00 [ 426.772754][T11868] kthread+0x2c1/0x3a0 [ 426.788489][T11868] ret_from_fork+0x45/0x80 [ 426.821306][T11868] ret_from_fork_asm+0x1a/0x30 [ 426.839445][T11868] page last free pid 11879 tgid 11879 stack trace: [ 426.873939][T11868] free_unref_page+0x661/0x1080 [ 426.899991][T11868] __folio_put+0x32a/0x450 [ 426.917551][T11868] put_page+0x21e/0x280 [ 426.936476][T11868] skb_release_data+0x4d7/0x730 [ 426.955111][T11868] napi_consume_skb+0x1b7/0x220 [ 426.976003][T11868] __free_old_xmit+0x18b/0x650 [ 426.994826][T11868] free_old_xmit+0xbf/0x1b0 [ 427.012099][T11868] virtnet_poll_tx+0xee2/0x14f0 [ 427.032503][T11868] __napi_poll.constprop.0+0xb7/0x550 [ 427.054354][T11868] net_rx_action+0xa94/0x1010 [ 427.071739][T11868] handle_softirqs+0x213/0x8f0 [ 427.093467][T11868] __irq_exit_rcu+0x109/0x170 [ 427.098178][T11868] irq_exit_rcu+0x9/0x30 [ 427.128124][T11868] common_interrupt+0xbf/0xe0 [ 427.149061][T11868] asm_common_interrupt+0x26/0x40 [ 427.168975][T11868] ------------[ cut here ]------------ [ 427.174491][T11868] kernel BUG at ./include/linux/mm.h:1221! [ 427.228121][T11868] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI [ 427.235091][T11868] CPU: 1 UID: 0 PID: 11868 Comm: syz.3.1633 Tainted: G U 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 427.247325][T11868] Tainted: [U]=USER [ 427.251111][T11868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 427.261237][T11868] RIP: 0010:kpagecount_read+0x477/0x570 [ 427.266805][T11868] Code: 31 ff 49 29 c4 48 8b 44 24 08 4c 01 20 e8 41 77 61 ff eb 92 e8 ca 74 61 ff 48 8b 3c 24 48 c7 c6 20 eb 61 8b e8 6a 34 a8 ff 90 <0f> 0b 4c 89 ff e8 ef de c3 ff e9 5a ff ff ff e8 a5 74 61 ff 48 8b [ 427.286403][T11868] RSP: 0018:ffffc9000ca57ca0 EFLAGS: 00010246 [ 427.292456][T11868] RAX: 0000000000080000 RBX: 0000000000000000 RCX: ffffc9000d719000 [ 427.300447][T11868] RDX: 0000000000080000 RSI: ffffffff8237da36 RDI: ffff888035460444 [ 427.308436][T11868] RBP: 0000000001058a80 R08: 0000000000000001 R09: fffffbfff2d36daf [ 427.316402][T11868] R10: ffffffff969b6d7f R11: 0000000000000004 R12: 00000000201a9000 [ 427.324360][T11868] R13: 0000000000034eb0 R14: dffffc0000000000 R15: 0000000000000000 [ 427.332314][T11868] FS: 00007f56afbaa6c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 427.341235][T11868] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 427.347822][T11868] CR2: 0000000002669000 CR3: 000000006b460000 CR4: 00000000003526f0 [ 427.355795][T11868] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 427.363768][T11868] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 427.371733][T11868] Call Trace: [ 427.375003][T11868] [ 427.377926][T11868] ? die+0x31/0x80 [ 427.381644][T11868] ? do_trap+0x232/0x430 [ 427.385902][T11868] ? kpagecount_read+0x477/0x570 [ 427.390861][T11868] ? kpagecount_read+0x477/0x570 [ 427.395805][T11868] ? do_error_trap+0xf4/0x230 [ 427.400494][T11868] ? kpagecount_read+0x477/0x570 [ 427.405465][T11868] ? handle_invalid_op+0x34/0x40 [ 427.410406][T11868] ? kpagecount_read+0x477/0x570 [ 427.415346][T11868] ? exc_invalid_op+0x2e/0x50 [ 427.420025][T11868] ? asm_exc_invalid_op+0x1a/0x20 [ 427.425065][T11868] ? kpagecount_read+0x476/0x570 [ 427.430023][T11868] ? kpagecount_read+0x477/0x570 [ 427.434964][T11868] ? __pfx_kpagecount_read+0x10/0x10 [ 427.440256][T11868] proc_reg_read+0x11d/0x330 [ 427.444847][T11868] ? rw_verify_area+0xd0/0x700 [ 427.449595][T11868] ? __pfx_proc_reg_read+0x10/0x10 [ 427.454697][T11868] vfs_read+0x1df/0xbe0 [ 427.458842][T11868] ? __fget_files+0x1fc/0x3a0 [ 427.463526][T11868] ? __pfx___mutex_lock+0x10/0x10 [ 427.468544][T11868] ? __pfx_vfs_read+0x10/0x10 [ 427.473208][T11868] ? __fget_files+0x206/0x3a0 [ 427.477877][T11868] ksys_read+0x12b/0x250 [ 427.482106][T11868] ? __pfx_ksys_read+0x10/0x10 [ 427.486867][T11868] do_syscall_64+0xcd/0x250 [ 427.491360][T11868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 427.497242][T11868] RIP: 0033:0x7f56aed85d29 [ 427.501644][T11868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 427.521237][T11868] RSP: 002b:00007f56afbaa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 427.529636][T11868] RAX: ffffffffffffffda RBX: 00007f56aef75fa0 RCX: 00007f56aed85d29 [ 427.537591][T11868] RDX: 00000000fffffea1 RSI: 0000000020001a80 RDI: 0000000000000005 [ 427.545579][T11868] RBP: 00007f56aee01a20 R08: 0000000000000000 R09: 0000000000000000 [ 427.553642][T11868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 427.561597][T11868] R13: 0000000000000000 R14: 00007f56aef75fa0 R15: 00007ffc1f509908 [ 427.569553][T11868] [ 427.572553][T11868] Modules linked in: [ 427.576504][ C1] vkms_vblank_simulate: vblank timer overrun [ 427.583204][T11868] ---[ end trace 0000000000000000 ]--- [ 428.417929][T11868] RIP: 0010:kpagecount_read+0x477/0x570 [ 428.441712][T11868] Code: 31 ff 49 29 c4 48 8b 44 24 08 4c 01 20 e8 41 77 61 ff eb 92 e8 ca 74 61 ff 48 8b 3c 24 48 c7 c6 20 eb 61 8b e8 6a 34 a8 ff 90 <0f> 0b 4c 89 ff e8 ef de c3 ff e9 5a ff ff ff e8 a5 74 61 ff 48 8b [ 428.523202][T11868] RSP: 0018:ffffc9000ca57ca0 EFLAGS: 00010246 [ 428.544438][T11868] RAX: 0000000000080000 RBX: 0000000000000000 RCX: ffffc9000d719000 [ 428.571389][T11868] RDX: 0000000000080000 RSI: ffffffff8237da36 RDI: ffff888035460444 [ 428.598445][T11868] RBP: 0000000001058a80 R08: 0000000000000001 R09: fffffbfff2d36daf [ 428.624988][T11868] R10: ffffffff969b6d7f R11: 0000000000000004 R12: 00000000201a9000 [ 428.642906][T11868] R13: 0000000000034eb0 R14: dffffc0000000000 R15: 0000000000000000 [ 428.660590][T11868] FS: 00007f56afbaa6c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 428.679970][T11868] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 428.694256][T11868] CR2: 000000000370e000 CR3: 000000006b460000 CR4: 00000000003526f0 [ 428.714567][T11868] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 428.734330][T11868] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 428.751575][T11868] Kernel panic - not syncing: Fatal exception [ 428.757707][T11868] Kernel Offset: disabled [ 428.762015][T11868] Rebooting in 86400 seconds..