last executing test programs: 5m17.029640389s ago: executing program 1 (id=487): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) rseq$auto(&(0x7f0000000000)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x7ffe, 0x0, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) munmap$auto(0x20001000, 0x2000000c) mmap$auto(0x0, 0x7fffffff, 0xdf, 0x9b72, 0x2, 0x8000) r0 = gettid() mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) process_vm_readv$auto(r0, &(0x7f0000000040)={0x0, 0x8}, 0x4, &(0x7f00000000c0)={0x0, 0x100000000000002}, 0x6, 0x0) 5m13.280294407s ago: executing program 1 (id=502): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = open(&(0x7f00000000c0)='./file0\x00', 0x2, 0x1a2) close_range$auto(r2, r3, 0x80000001) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x24, r0, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r4}, @NL80211_ATTR_WIPHY_RETRY_LONG={0x5, 0x3e, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x24048080}, 0x80) 5m12.829227496s ago: executing program 1 (id=507): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8, 0xdfc6, 0x29b72, 0xbc2a, 0x8000) prctl$auto(0x1000000003b, 0x1, 0xfff, 0x3, 0x7) sysfs$auto(0x2, 0xc, 0x0) fsopen$auto(0x0, 0x1) r1 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001340)=ANY=[@ANYBLOB="fc070bff", @ANYRES16=r1, @ANYBLOB="010028bd7000fbdbdf251400000004000700"], 0x18}, 0x1, 0x0, 0x0, 0x1}, 0x40) epoll_create$auto(0x8d) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r0) 5m11.960849533s ago: executing program 1 (id=511): r0 = socket(0x2, 0x2, 0xfffffffe) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) semtimedop$auto(0x7b9, 0x0, 0x14e, 0x0) execveat$auto(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) socket(0x2, 0x1, 0x106) splice$auto(r1, &(0x7f0000000040)=0x81, r0, &(0x7f0000000080)=0xf9b, 0x6, 0x9) connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="00000000f5ffffffffffffff00"}, 0x55) close_range$auto(0xffffffffffffffff, r1, 0x2) 5m9.334545705s ago: executing program 1 (id=521): r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x101400, 0x1}, 0x18) open_tree$auto(r0, &(0x7f0000000140)='/\x00\x80\x00\x00!\x1c\x00\x00\x00\x00\x00\x00\x96\x8e\xd3\xb6\a\x00\x00\x00\xb2Kv0\x12\xc2O\x04\xa9\xc3\xf5\xa7\x87<\x01\xc2\xa8Y\x8c-\xd9\xd9S\x15\xdf\xfb\\T\xe9\xbc\xd5\x05\xf1\n\x0f\xfd\xca\x01\x00'/69, 0x408001) socket(0x1a, 0x801, 0x84) bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_3={0x8, 0xffffffef, 0x18c, 0x6a, 0x0, 0x8, 0x3, 0x9, 0xfffffff8, "63acf0e05b2d33ebc15774e816ef77cf", 0x0, 0x541, 0x4, 0x7, 0x3, 0x1008, 0x4, 0x2, 0xe, 0x5, @attach_btf_obj_fd=0x3, 0x166, 0x7ff, 0x6, 0x6, 0x48000000, 0xa7c2}, 0x7) connect$auto(0x3, &(0x7f0000000000)={0x2, @sockaddr_1_1={"d9ef7f"}}, 0x55) listen$auto(0x3, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) mmap$auto(0x0, 0x45, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x11, 0x80003, 0x300) sendfile$auto(0x1, 0x3, 0x0, 0xc01) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x6, 0x100) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto(0x6, 0x40000000029, 0x46, 0xfffffffffffffffe, 0x0) r1 = socket(0xa, 0x1, 0x0) sendmsg$auto_NL80211_CMD_CHANNEL_SWITCH(r1, 0x0, 0x20008010) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) syz_genetlink_get_family_id$auto_ovs_ct_limit(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0x200007, 0x19) syz_genetlink_get_family_id$auto_nfsd(0x0, r1) ioperm$auto(0x7, 0x6, 0x2) shmat$auto(0x0, 0xfffffffffffffffd, 0x1ae1a4f4) msync$auto(0x1ffff000, 0x80100000000005, 0x400000004) socket$nl_generic(0x10, 0x3, 0x10) setresgid$auto(0x8, 0x7, 0x5) bind$auto(0x3, &(0x7f0000000040)={0x1, @sockaddr_1_1}, 0xd) close_range$auto(0x0, 0xfffffffffffff000, 0x0) write$auto(0x3, 0x0, 0x81) 5m0.611862094s ago: executing program 1 (id=569): rseq$auto(0xfffffffffffffffd, 0xc93, 0x3, 0x9) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000040), 0xffffffffffffffff) socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) shutdown$auto(r0, 0x3) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) open(0x0, 0x4e8401, 0xe) sendmsg$auto_TCP_METRICS_CMD_DEL(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x8004) 4m56.117271813s ago: executing program 2 (id=587): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x8, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff001, 0xfffffffe) socket(0x2, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000e00), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_NET_GET(r1, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000280)=ANY=[@ANYBLOB="98020000", @ANYRES16=r2, @ANYBLOB="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"], 0x298}, 0x1, 0x0, 0x0, 0x4000040}, 0x4040) mmap$auto(0xffffffffffffffff, 0x400008, 0xdf, 0x9b72, 0x8, 0x8000) read$auto(r0, 0x0, 0x9) landlock_create_ruleset$auto(&(0x7f00000007c0)={0x1}, 0x8, 0x0) r3 = socket(0x1e, 0x1, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/net\x00') socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0xa, 0x3, 0x73) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) close_range$auto(0x2, 0x8, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) unshare$auto(0x20000080) clone$auto(0x8001, 0x4000000000000a, 0xffffffffffffffff, 0xfffffffffffffffc, 0xc) clone$auto(0x5, 0x5, 0xfffffffffffffffe, 0xfffffffffffffffe, 0x81) open(0x0, 0x22040, 0x75) socket(0x840000000002, 0x3, 0xff) setsockopt$auto(r3, 0x11d7, 0x3c, 0x0, 0x4000005) connect$auto(0x3, &(0x7f0000000000)={0x2, @sa_data_min="0800e00000000000c1728d2af766"}, 0x55) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000001d40)={0x0, 0x0, &(0x7f0000001d00)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4d0000089985e923cfabffa4af28fd6a53e4ea848320", @ANYRESHEX], 0x40}, 0x1, 0x0, 0x0, 0x8000}, 0x80000) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000a80), 0xffffffffffffffff) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_GET_MPP(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000200)=ANY=[@ANYBLOB="2536f57462ab9ff29fce84a439a56fd407554b33b3a6841d2bd78f6993b81dc002f93e28d5234c7b8aff31373275eaee2c90b5eac8f8265bfbb3066e83", @ANYRES16=r5, @ANYBLOB="01032fbd7000fddbdf256b000000070026010c6c2100"], 0x1c}, 0x1, 0x0, 0x0, 0x200040c4}, 0x20000040) sendmsg$auto_NL80211_CMD_ADD_TX_TS(r4, 0x0, 0x40040) 4m55.042014235s ago: executing program 2 (id=591): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mbind$auto(0x0, 0x8, 0x6, &(0x7f0000000280)=0xff, 0xf8, 0x2) socket(0xa, 0x2, 0x73) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)={0x24, r0, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r2}, @NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000023}, 0x80) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) fchown$auto(0xffffffffffffffff, 0x5, 0x4) socket(0x22, 0x3, 0x656) socket(0x2b, 0x5, 0x0) mmap$auto(0xfffffffffffffffe, 0x2020009, 0xfffffffffffff7ff, 0x16d6, 0x8, 0x7ffc) rseq$auto(&(0x7f0000000040)={0xe, 0x401, 0xa5, 0x6, 0xffffffff, 0x2, "14b73734aa5acf83709db69d2aae61cc9d9d8b7f13b132acd4e97a183551f65c1ff0e7d4f3d0a1f18732a12340673a0ffacfb8cb3335352ae246238950031e82f8b4d82cc01b2e70a8"}, 0x7ffe, 0x0, 0x6) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) close_range$auto(0x2, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket(0x18, 0x5, 0x0) read$auto(0x3, 0x0, 0x80) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) userfaultfd$auto(0x1) syz_genetlink_get_family_id$auto_NLBL_CIPSOv4(&(0x7f0000000100), r1) connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x1}, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0x0) 4m51.496808309s ago: executing program 2 (id=596): mmap$auto(0x8, 0x2, 0x0, 0x80000011, 0x1, 0x7) socket(0x2, 0x2, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) connect$auto(0x3, &(0x7f0000000140)={0x2, @sa_data_min="6a2f7ff43519eb7100"}, 0x55) connect$auto(0x3, &(0x7f0000000000)={0x2, @sa_data_min="0800e00000000000c1728d2af766"}, 0x55) io_uring_setup$auto(0x6, 0x0) write$auto(0x3, 0x0, 0xfdef) 4m51.157575688s ago: executing program 2 (id=597): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async) bpf$auto(0x7, &(0x7f0000000b80)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x4fe, 0x2}, 0x800) (async) ioperm$auto(0x7, 0x6, 0x3) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7) (async) syz_clone(0x80004000, &(0x7f0000000000)="6a81eb09d36eda9a2b4bf766523d94699407c4b57b3cf7ac8ca43480613d92ba74961f2b37a7f7c430250d3ae35331e6bff4ff45d76c9540031ff1867cdd05fb21e37cdbd2b17058077d61bfe35b79ed46df1baf884a3f111f4c75c77459c0cbb0d9af42768628b26cbc096c4d2a5b58fbfd59f04f1d4df3", 0x78, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)="7ba8fbfb33cefb9ff02dd95e6890901eb419e4ea53474917e80954dbdd2ccbf77bec3131d425d5c7547667cbfcbd07a86638cf50fec5363442a212") (async) mlockall$auto(0x2) (async) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003340), 0xffffffffffffffff) 4m50.271062018s ago: executing program 2 (id=599): r0 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000800)={0x14, r0, 0x1, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4048000}, 0x4000000) r1 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0xfe) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x5, 0x1}, 0xb, &(0x7f0000000180)={0x7f, 0x3}, &(0x7f00000001c0)={0xfffffffffffffff5}, 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) tkill$auto(0x1, 0x7) io_uring_setup$auto(0xa1, &(0x7f0000000240)={0x0, 0x6, 0xf, 0xe, 0x8000, 0x1, r1, [0xffffffff, 0x1, 0x401c], {0x8, 0x6, 0x8, 0x8, 0x6, 0xe4, 0x10000, 0x3, 0x5}, {0x9, 0x3, 0x0, 0xb, 0x800002, 0x1, 0x200, 0x3, 0xf}}) splice$auto(r1, &(0x7f00000002c0)=0x5, r2, &(0x7f0000000200)=0x6, 0x3, 0x0) 4m46.639775907s ago: executing program 2 (id=607): r0 = socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'gre0\x00'}) r1 = socket(0x2a, 0x2, 0x6) ppoll$auto(&(0x7f00000000c0)={r1, 0x7, 0x7}, 0x3, &(0x7f00000001c0)={0xe, 0x7f}, &(0x7f0000000200)={0x100000000}, 0x1) connect$auto(r2, &(0x7f0000000180)={0x2a, @sa_data_min="9eabcd5d37ff568cdce3ac5be478"}, 0x51) io_uring_setup$auto(0x6, &(0x7f0000000040)={0x7, 0x7, 0x9, 0x6, 0x4, 0x0, r1, [0x0, 0x800, 0xff], {0x5, 0x8, 0x8, 0x1, 0x3, 0x1, 0x7, 0x0, 0x3}, {0x549, 0x1, 0xc69, 0x6, 0xd6, 0x7, 0x1, 0x9, 0x4}}) write$auto(r1, 0x0, 0x0) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x9) select$auto(0x3, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x0, 0xc, 0x8, 0x3, 0x6, 0x2, 0x9, 0x5e582970, 0x4000000000000000, 0x4, 0x4, 0x7, 0x8, 0x6]}, 0x0, 0x0) connect$auto(r0, &(0x7f0000000240)={0xa, @sockaddr_1_1={"7c9e5858588cf95f764359e2f586f69da80dc6b5dc980a6c056ac1ef3e4fdb47619d23f63e7cfad242381578f620c236804e7043157e4f17fdb28fbbec446caa570eec0b3064b1958b75ba7a45c973656c0209207f720452268a385f18a20217409f142ea8dbfa92c9e2bff8040be87326a6f46dba4fd1b8ca69864a6942861fbdd15048ef701dfd"}}, 0x55) write$auto(0x3, 0x0, 0xfdef) 4m46.513627415s ago: executing program 32 (id=607): r0 = socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'gre0\x00'}) r1 = socket(0x2a, 0x2, 0x6) ppoll$auto(&(0x7f00000000c0)={r1, 0x7, 0x7}, 0x3, &(0x7f00000001c0)={0xe, 0x7f}, &(0x7f0000000200)={0x100000000}, 0x1) connect$auto(r2, &(0x7f0000000180)={0x2a, @sa_data_min="9eabcd5d37ff568cdce3ac5be478"}, 0x51) io_uring_setup$auto(0x6, &(0x7f0000000040)={0x7, 0x7, 0x9, 0x6, 0x4, 0x0, r1, [0x0, 0x800, 0xff], {0x5, 0x8, 0x8, 0x1, 0x3, 0x1, 0x7, 0x0, 0x3}, {0x549, 0x1, 0xc69, 0x6, 0xd6, 0x7, 0x1, 0x9, 0x4}}) write$auto(r1, 0x0, 0x0) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x9) select$auto(0x3, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x0, 0xc, 0x8, 0x3, 0x6, 0x2, 0x9, 0x5e582970, 0x4000000000000000, 0x4, 0x4, 0x7, 0x8, 0x6]}, 0x0, 0x0) connect$auto(r0, &(0x7f0000000240)={0xa, @sockaddr_1_1={"7c9e5858588cf95f764359e2f586f69da80dc6b5dc980a6c056ac1ef3e4fdb47619d23f63e7cfad242381578f620c236804e7043157e4f17fdb28fbbec446caa570eec0b3064b1958b75ba7a45c973656c0209207f720452268a385f18a20217409f142ea8dbfa92c9e2bff8040be87326a6f46dba4fd1b8ca69864a6942861fbdd15048ef701dfd"}}, 0x55) write$auto(0x3, 0x0, 0xfdef) 4m45.331532721s ago: executing program 33 (id=569): rseq$auto(0xfffffffffffffffd, 0xc93, 0x3, 0x9) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000040), 0xffffffffffffffff) socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) shutdown$auto(r0, 0x3) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) open(0x0, 0x4e8401, 0xe) sendmsg$auto_TCP_METRICS_CMD_DEL(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x8004) 4m24.825448602s ago: executing program 0 (id=635): mmap$auto(0x80000001, 0x7f, 0x1, 0x15, 0x9, 0x3d9) mmap$auto(0x3, 0xffffffff, 0xfffffffffffffffa, 0x15, 0xb482, 0x6) mmap$auto(0xe, 0x3e9d5912, 0x0, 0x16, 0x3, 0x1) mmap$auto(0x0, 0xcc1, 0x7, 0x19, 0xa00, 0x7) mmap$auto(0x4, 0x1000, 0x3fce, 0x7fff, 0x3cc6e063, 0x100) mmap$auto(0x0, 0x5, 0x1c, 0x12, 0x2000000000000, 0xc) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_IOAM6(&(0x7f0000000000), r0) mmap$auto(0x4, 0x401, 0x7fffffff, 0x7fff, 0x7, 0x4) r1 = socket(0x10, 0x4, 0x6) mmap$auto(0x2, 0x1, 0x8a34, 0x12, 0xe04, 0x0) mmap$auto(0x8, 0x6, 0x5, 0x1d, 0x8001, 0x5) mmap$auto(0x7fffffffffffffff, 0x5, 0x4, 0x12, 0xffffffffffffff81, 0x1373) mmap$auto(0x4, 0xffff, 0x101, 0x1ff, 0x3, 0x7) r2 = syz_genetlink_get_family_id$auto_SMC_GEN_NETLINK(&(0x7f0000000080), r1) sendmsg$auto_SMC_NETLINK_GET_LGR_SMCD(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r2, 0x100, 0x70bd25, 0x25dfdbfe, {}, [0x4, 0x4]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x404) mmap$auto(0x1f3c, 0x6, 0x5, 0xb5, 0xfffffffffffffffb, 0x2) syz_genetlink_get_family_id$auto_IPVS(&(0x7f0000000180), r1) mmap$auto(0x6, 0xf, 0x2, 0x10, 0x3, 0x2) mprotect$auto(0x4800000000, 0x1e4c00000000, 0xfffffffffffffffd) socketpair$auto(0x2d, 0xa79, 0x3, &(0x7f00000001c0)=0x3) mmap$auto(0xbcf8, 0x9, 0x4, 0x51, 0x3, 0x4) sysfs$auto(0xffffffff, 0x7, 0x2) sysfs$auto(0x4, 0x5, 0x9) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000200), r1) socket(0x26, 0x2, 0x1c) access$auto(&(0x7f0000000240)='\x18\'\x00', 0x10000) r3 = syz_genetlink_get_family_id$auto_802_15_4_MAC(&(0x7f00000002c0), r0) sendmsg$auto_IEEE802154_LLSEC_GETPARAMS(r0, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x68, r3, 0x200, 0x70bd29, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEST_HW_ADDR={0xc, 0xf, 0xe}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x3}, @IEEE802154_ATTR_BCN_ORD={0x5, 0x17, 0x94}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0x7}, @IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0xc}, @IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x1}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}, @IEEE802154_ATTR_CSMA_RETRIES={0x5, 0x25, 0x9}, @IEEE802154_ATTR_BCN_ORD={0x5, 0x17, 0x6}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x9}]}, 0x68}}, 0x80) stat$auto(&(0x7f0000000400)='\x00', &(0x7f0000000500)={0x2, 0x7da1e845, 0x2, 0xc, 0x0, 0x0, 0x0, 0x1, 0x6, 0x7, 0x8, 0xb, 0x7, 0x595, 0xfffffffffffffff7, 0x681, 0x1}) 4m24.251254662s ago: executing program 0 (id=638): r0 = socket(0xa, 0x2, 0x0) select$auto(0x3, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x0, 0xc, 0xa, 0x3, 0x6, 0x3, 0x9, 0x5e582970, 0x4000000000000000, 0x2, 0x4, 0x5, 0x8, 0x6]}, 0x0, 0x0) connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000300), r0) r3 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000040), r1) sendmsg$auto_NETDEV_CMD_QSTATS_GET(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x43edd5af46474c90}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x2c, r3, 0x2, 0x70bd25, 0x25dfdbfc, {}, [@NETDEV_A_QSTATS_SCOPE={0xc, 0x4, 0x2}, @NETDEV_A_QSTATS_SCOPE={0xc, 0x4, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40c0}, 0x4008000) sendmsg$auto_OVS_FLOW_CMD_NEW(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01012d860d335bdebd90a8bd7000fbdbdf250100000004000800"], 0x20}}, 0x4000) connect$auto(0x3, &(0x7f0000000180)={0x2, @sockaddr_1_1}, 0x55) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) clock_adjtime$auto(0x0, &(0x7f0000000100)={0xfff, 0x401, 0x0, 0x0, 0x6, 0x0, 0x45, 0x2, 0x8, 0x0, 0x1, {}, 0x0, 0x7, 0xc, 0x80, 0x4, 0x2, 0x2, 0x7ff}) setsockopt$auto(r0, 0x29, 0x37, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110) 4m24.03660409s ago: executing program 0 (id=640): mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket(0xa, 0x2, 0x1000087) close_range$auto(0x0, 0xffffeffe, 0x2) pipe$auto(0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x0, 0x0) fsopen$auto(0x0, 0x1) epoll_create$auto(0x4) close_range$auto(r0, r1, 0x0) epoll_create$auto(0x4) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r2) shutdown$auto(0x200000003, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) setfsgid$auto(0xee01) mbind$auto(0x5, 0xe, 0x80, &(0x7f0000000180)=0x6, 0x8, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4080}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="00ee92ceda826ce6f1af1e0400000000000000fedbdf250200000008000300080000000a000400282d3a9424000000080001000100008008000300080000000800020005000000080001006c04000006000400370000000d000493bfd4744b578b7b666a4da0f00a56a2c9bacc733c941f6c7b7dee0212106a76d9d6c59638bf33ebd8b4c258b0463b405611f13ff427312d4fae3d811e65330b9c9d884c2dad54e87f9c3302fb38045678306387c734cd44c3e7a83100f63c0d0a7851b638ad65142a01d9a2a3679e5168e7"], 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x24008000) 4m22.336445887s ago: executing program 0 (id=645): unshare$auto(0x40000080) mmap$auto(0x7ff, 0x400008, 0x1000df, 0x9b72, 0x2, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x0, 0x2000b, 0x2, 0xeb1, 0x3fe, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x0, 0x40, 0x0, 0x10001) 4m21.741997113s ago: executing program 0 (id=648): r0 = socket(0xa, 0x1, 0x84) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x1002}, 0x81, 0x4, 0x6) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_NET_SET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x18, r2, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8005}, 0x4004000) (async) sendmsg$auto_TIPC_NL_NET_SET(r0, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r2, @ANYRES32=r2], 0x1018}, 0x1, 0x0, 0x0, 0x4008811}, 0x40080) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64) prctl$auto(0x1000000003b, 0x1, 0x4000000004, 0x5, 0x3ff) (async, rerun: 64) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000) (async) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64) io_uring_setup$auto(0x6, 0x0) (async, rerun: 64) clone$auto(0x7, 0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) (async, rerun: 32) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async, rerun: 32) io_uring_setup$auto(0x1, 0x0) (async, rerun: 32) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x8) (async, rerun: 32) mmap$auto(0x0, 0x1004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) (async) io_submit$auto(0x5, 0x9, 0x0) tkill$auto(0x1, 0x7) (async) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) lchown$auto(&(0x7f0000000000)='.\x00', 0x0, 0x6) 4m17.025866377s ago: executing program 0 (id=665): r0 = socket(0x10, 0x2, 0xc) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x2000000) 4m16.848686703s ago: executing program 34 (id=665): r0 = socket(0x10, 0x2, 0xc) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x2000000) 24.136221226s ago: executing program 5 (id=1598): socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) mmap$auto(0x0, 0x9, 0x3ff57697, 0x9b72, 0x2, 0x8000000000008000) (async) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) (async) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) (async) socket(0xa, 0x801, 0x106) (async) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004) connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55) (async, rerun: 64) clone$auto(0x2020003b46, 0x2, 0x0, 0x0, 0x8000000000000001) (rerun: 64) setsockopt$auto(0x3, 0x1, 0x9, 0x0, 0x8) (async, rerun: 32) mmap$auto(0x0, 0x20009, 0x100df, 0xeb1, 0x40000000000a5, 0x8000) (async, rerun: 32) setsockopt$auto(0x3, 0x1, 0x9, 0x0, 0x8) (async) fallocate$auto(0x4, 0x9, 0x100000000, 0x24) 22.089609938s ago: executing program 5 (id=1599): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000080), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000000)={0x0, 0xe4, &(0x7f0000000d40)={&(0x7f0000000300)={0x94, r1, 0x8a00f4e9954364ed, 0x70bd29, 0x25dfdbfd, {}, [@HWSIM_ATTR_RADIO_NAME={0x7f, 0x11, '\xfd\xff\xff\xff\xff\xff\xff\xff-\x9c\xe4\xbe\x9e6y\x93\xd5\xbc\x9f\x8a\xf7\f\x01k\a\x86\xc1a\x12;\xab\xd7+\x99\xe71\x9b)p\x06\x02;/X\xfc+\x8b@\x90\xfc\x00\xbbNvh\x88\x10\x00\x00\f\x11\xe7\xd3:\x00\x00\x00\x00\x00\x00\x00?\x00\x00\x00\xec|\xfd+Q3y\xef\xf1\xb3\x9eI\xa2\x99_f\x0ej\xa7x\x13\x13%^3\x85O\xe2\xe1\x84\xcb\x86\xe6\x16\x9er\xdb[\x89\xb9\x06s\xa5\x1f\xfe\xdf4\x1c'}]}, 0x94}, 0x1, 0x0, 0x0, 0x84}, 0x24000054) 18.260966878s ago: executing program 5 (id=1605): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0xc, 0x202, 0x9, 0x71f9, 0x8, 0x10) mlock$auto(0x9, 0x6) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x80, 0x0, 0x8) select$auto(0x6d0c, 0x0, &(0x7f0000000100)={[0xd, 0x10000000200, 0x800000000000008, 0xc, 0x9, 0x3, 0x6, 0x1, 0x40009, 0x5e582971, 0x4000000000000000, 0x14, 0x93, 0x8, 0x8, 0x6]}, 0x0, 0x0) connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55) shutdown$auto(0x200000003, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) fanotify_init$auto(0x5, 0x2) lseek$auto(0x3, 0x7fffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB='$ \x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000f9dbdf250f00000008000300", @ANYRES32=r3, @ANYBLOB="08003400a3080000"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000) writev$auto(0x5, &(0x7f0000000040)={0x0, 0x400000040000fdea}, 0x2) syz_genetlink_get_family_id$auto_MAC80211_HWSIM(0x0, 0xffffffffffffffff) ppoll$auto(0x0, 0x9eba, &(0x7f0000000140)={0x5852, 0x1000}, 0x0, 0x3) mmap$auto(0x0, 0x3f3, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x6, 0x0) msync$auto(0x1ffff000, 0x80100000000005, 0x400000004) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20005811}, 0x4048040) socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x5, 0x0) move_pages$auto(0x3, 0x8, 0xfffffffffffffffe, 0xfffffffffffffffd, 0xfffffffffffffffe, 0x3) fanotify_init$auto(0x65, 0x2) 12.835666445s ago: executing program 6 (id=1616): socket(0xa, 0x5, 0x0) connect$auto(0x3, &(0x7f0000000080)={0xa, @sockaddr_1_1={"138a0bb65b60d0"}}, 0x52) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = gettid() readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x8}, 0x400) semctl$auto(0x7f, 0x7, 0x7, 0x3) r1 = socket(0xa, 0x3, 0xff) syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000180), r1) poll$auto(&(0x7f0000000000)={r1, 0x7f, 0x4}, 0x0, 0x8) kill$auto(r0, 0x7) 12.26457071s ago: executing program 5 (id=1617): sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041) r0 = socket(0x2, 0x1, 0x0) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) select$auto(0x3, 0x0, &(0x7f0000000100)={[0x80000003, 0x200, 0x0, 0xc, 0x8, 0x1, 0x6, 0x2, 0x81, 0x2, 0x4000000000000000, 0x5, 0x4, 0x0, 0x8, 0x6]}, 0x0, 0x0) connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) accept$auto(0x3, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) listen$auto(0x3, 0x0) connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55) bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) r1 = socket(0x10, 0x3, 0x6) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), 0xffffffffffffffff) setresuid$auto(0x0, 0x0, 0x4) setreuid$auto(0x0, 0x20000000004) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="d4000000", @ANYRES16=r2, @ANYBLOB="010028bd7000fedbdf2502000000ab0004002e2f495e004788adb030dafe9208964729b6b25a6d230be30ab81517e2387c46f3b42a27ef925cc4ae2127891b5bc8384d2bc744e315791e65a573c89d24ed7dd7f6ba1536655de7626b2ceffdb499d0a20cb8d88297a6ed9e680d290dae7f28b7479a39dd6dcf3ef49c3de381a7c2bb1623f37eb995e585db7188643065e972db042eb3d231f96d6dacc2ec5acbc8aacd9a1adfc3b2ef90994df2abe31a1a1b0c9d9450b77923000800010009000000090004006e66736400000000"], 0xd4}, 0x1, 0x0, 0x0, 0x20004011}, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2c0000008a02c0fbdb485b6ad1ac92b9224a525247b52b8c80924f0a66af64c8ec2cac36d94bfa3bf4bc2d717ab5cf1496fa6a52ee0d8af4c615427c41824f6408655732b52e25443545bc1b6617937e82045e847fd06345941b9c1e6cdf474b113dce02cba34e0975949e0bdbca0ba4cad91d604a3a93752089a74ec4e41ee4f673529887b6f5753584fea11e96f59c321a2265b4a7fa51036416c0b7a7f57e2a4b881c2bde03fb15fa7120d3b442f8", @ANYRES16=r2, @ANYBLOB="00012cbd7000fbdbdf250200000008000100e4080000060004000300000008000200f55d0000"], 0x2c}, 0x1, 0x0, 0x0, 0x40844}, 0x8000) connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55) semget$auto(0x0, 0x6, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) setsockopt$auto(r0, 0x4, 0x8001, 0x0, 0x4) unshare$auto(0x40000080) gettid() mmap$auto(0x0, 0x400008, 0x5d71, 0x9b72, 0x2, 0x8000) 9.233571687s ago: executing program 4 (id=1621): bpf$auto(0x8000000000000020, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x11, 0x80003, 0x300) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0x7ffffffffffffffc, 0xc) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="28aaae80751f044287", @ANYRES16=r3, @ANYBLOB="010329bd7000ffdbdf250a00000008000a00070000000b0002005449504376320000"], 0x28}, 0x1, 0x0, 0x0, 0xe0db2389416cc6ce}, 0xc040810) sendmsg$auto_ETHTOOL_MSG_RSS_GET(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, r1, 0x201, 0x70bd27, 0x25dfdbfb, {}, [@ETHTOOL_A_RSS_START_CONTEXT={0x8, 0x7, 0x80000001}, @ETHTOOL_A_RSS_CONTEXT={0x8, 0x2, 0x8001}, @ETHTOOL_A_RSS_HEADER={0x7, 0x1, "eb94cb"}, @ETHTOOL_A_RSS_CONTEXT={0x8, 0x2, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0) setsockopt$auto(r0, 0x107, 0xc, 0x0, 0x8) mmap$auto(0x9, 0x3, 0x4, 0x17, 0xfffffffffffff6af, 0x9) write$auto(r2, &(0x7f00000001c0)='MAC80211_HWSIM\x00', 0xfffffffffffffff0) syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000640), 0xffffffffffffffff) 8.880867435s ago: executing program 6 (id=1623): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) mmap$auto(0xfffff000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/ipc\x00') setns(r0, 0x0) setresuid$auto(0x0, 0xffffffff, 0x9) mmap$auto(0x3, 0x4, 0x40, 0x15, 0x2, 0x2) socket(0xa, 0x801, 0x84) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55) select$auto(0xa, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x5, 0x3, 0x5, 0x2000000000000002, 0x9, 0x8, 0xff, 0xa, 0x4, 0xaab, 0x5, 0x4006]}, 0x0, 0x0) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r1, 0x100, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x8040}, 0x0) connect$auto(r2, &(0x7f0000000140)={0x400a, @sa_data_min="c400000000201000"}, 0x55) shutdown$auto(0x200000003, 0x2) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f0000000040)={0x0, 0x34000}, 0x4, 0x0, 0x1}, 0xed7138c}, 0x2, 0x9) clone$auto(0x40000, 0x8, 0xfffffffffffffffe, 0xfffffffffffffffe, 0x8) mmap$auto(0x80000001, 0x7, 0x7, 0x13, 0x235b, 0x2) ppoll$auto(&(0x7f0000000000)={0xffffffffffffffff, 0xe69e, 0x9}, 0x2fe, &(0x7f0000000040)={0x5, 0x2}, &(0x7f0000000080)={0x2}, 0x552d7141) io_uring_setup$auto(0x7, &(0x7f00000000c0)={0x9, 0x7, 0xfffffffd, 0x2, 0xfff, 0x3, r0, [0x80000000, 0xed58a885, 0x3], {0x7, 0x0, 0x7fffffff, 0x8, 0x3, 0x109d, 0x2, 0xb, 0x7}, {0x400, 0xe, 0x0, 0x800, 0x6, 0x4005, 0x3, 0xff}}) 6.965219976s ago: executing program 6 (id=1626): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000040), 0xffffffffffffffff) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) pidfd_open$auto(0x1, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') socket(0x10, 0x2, 0x0) prctl$auto(0x23, 0x4, 0x2008, 0x0, 0x0) socket(0xa, 0x5, 0x0) mmap$auto(0x0, 0xb, 0x6, 0xeb1, 0x3ff, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) sendmsg$auto_TCP_METRICS_CMD_DEL(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2162bc4d3b4ee37cae3b", @ANYRES16=r1, @ANYBLOB="01002bbd7000fedbdf2502001f0008000b00ac1414aa04001900"], 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x8080) 6.617559276s ago: executing program 5 (id=1627): r0 = socket(0x2, 0x3, 0x1) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(r0, &(0x7f0000000000)={0x2, @sa_data_min="0800e00000010000c1728d2af766"}, 0x55) sendmsg$auto_IPVS_CMD_SET_DEST(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040000}, 0x4000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x0, 0x21, 0x0, 0x28) sendmmsg$auto(0x3, &(0x7f0000000040)={{0x0, 0x2, &(0x7f0000000080)={0x0, 0x1}, 0x10a, 0x0, 0x0, 0x3ff}, 0xed7138c}, 0x200, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x2d, 0xfffffffffffffffe, 0x0) open$dir(&(0x7f00000001c0)='./file1\x00', 0x80900, 0x0) fanotify_init$auto(0x200, 0x2010000000000) io_setup$auto(0x2, &(0x7f0000000140)=0x80000000) socket(0x26, 0x80805, 0x0) mmap$auto(0xb193, 0x8, 0x9, 0x18, 0xc, 0x80) open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98) memfd_create$auto(0x0, 0x7) adjtimex$auto(&(0x7f0000000040)={0x2, 0x0, 0xe, 0x1, 0x100, 0x9, 0x3, 0x0, 0x1f, 0x1, 0xee, {0x2, 0x993}, 0x74, 0x0, 0x80, 0x7fff, 0x0, 0x0, 0x4, 0x81, 0x6, 0x1c4fa23e, 0x3}) fanotify_mark$auto(0x0, 0x1, 0x4, 0x3, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) io_setup$auto(0x10000, &(0x7f0000000180)=0x893f) 6.238003935s ago: executing program 4 (id=1628): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r0, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) socket(0x2, 0x801, 0x84) bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_3={0x8, 0xffffffef, 0x18c, 0x6a, 0x0, 0x8, 0x3, 0x9, 0xfffffff8, "63acf0e05b2d33ebc15774e816ef77cf", 0x0, 0x541, 0x4, 0x7, 0x6d, 0x1008, 0x4, 0x2, 0xe, 0x5, @attach_btf_obj_fd=0x3, 0x166, 0x7ff, 0x6, 0x6, 0x48000000, 0xa7c2}, 0x7) connect$auto(0x3, &(0x7f0000000000)={0x2, @sockaddr_1_1={"d9ef7f"}}, 0x55) setsockopt$auto(r2, 0x4, 0xa0, &(0x7f0000000100)='batadv\x00', 0xfff) listen$auto(0x3, 0x9) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000640), r3) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000005c0)=ANY=[@ANYBLOB="2e000000e5f8d75c834a9260727df27eb8e5857d8cb9cd8e91c9b07f76f73d02ac0ecfe836449a4518505ceeebabea91a38480e6f92a2f856a67e1463b3cfd8e2aaf859c6d4c7b371fd6fde7", @ANYRES16=r4, @ANYBLOB="010025bd7000fcdbdf250400000006000b00245c0000"], 0x1c}, 0x1, 0x0, 0x0, 0x20004084}, 0x48000) r5 = syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000640), 0xffffffffffffffff) ppoll$auto(0x0, 0x9eba, &(0x7f0000000140)={0x5852, 0x1000}, &(0x7f00000001c0)={0xfffffffffffffffc}, 0x1) r6 = syz_genetlink_get_family_id$auto_IPVS(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000002c0)={&(0x7f00000003c0)={0x15c, r6, 0x100, 0x70bd29, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7fff}, @IPVS_CMD_ATTR_DEST={0xbc, 0x2, "a182572a47a26ec74e1ec9d4b67f46216ffbe58c4cf648b9461dc952988d325c1fca8119d621e9cfffd62f4b379066c399b37e9137cf5ba72eea8da08bf2d800e2e30c6723979c81414a508705e07594721a854c88f8bd10e4763dc15edb39544c5d9bc33f9f577d75c9b36a08766b15f850f0e67a8467fdbb2a6b7eb15f90f0dc3d10619f182399750dbfc931413754a55b03b6a3b91d0a44398ca94a390f2485b57b4df2f3b278150e0cc8aceedc01f41308e8c8a1f60c"}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2}, @IPVS_CMD_ATTR_SERVICE={0x7a, 0x1, "8f988b0add7eaeefbb2ad9a66f7427a42615e39d97057d0ce535163719bc2a40321972f6dbcf664360ab5ecb9e7345e67131d887df8cdf69f8b1a960372b3eab1015b7c472838474859f1be18c63859403cfa8cf840eff781595f3a0d45cf6961a9e7736adefa2a767b9bbb73cb36390ee027216b3e7"}]}, 0x15c}, 0x1, 0x0, 0x0, 0x8080}, 0x1) r7 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setrlimit$auto(0x1000000007, 0x0) timerfd_create$auto(0x9, 0x0) io_uring_setup$auto(0x6, 0x0) msync$auto(0x1ffff000, 0x80100000000005, 0x400000004) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r7, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x60, r5, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@HWSIM_ATTR_REG_STRICT_REG={0x4}, @HWSIM_ATTR_ADDR_RECEIVER={0x19, 0x1, "59ca93e9ec0a0a335797010099a4fee023a134f7be"}, @HWSIM_ATTR_USE_CHANCTX={0x4}, @HWSIM_ATTR_RADIO_NAME={0x5, 0x11, '.'}, @HWSIM_ATTR_ADDR_TRANSMITTER={0x1f, 0x2, "a310e2f4d070ee770d2d53225b7f8f2050f235c2e28617594a305e"}]}, 0x60}, 0x1, 0x0, 0x0, 0x20005811}, 0x4048040) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000900), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) 6.19110778s ago: executing program 6 (id=1629): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000080), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000300)={0x94, r1, 0x8a00f4e9954364ed, 0x70bd29, 0x25dfdbfd, {}, [@HWSIM_ATTR_RADIO_NAME={0x7f, 0x11, '\xfd\xff\xff\xff\xff\xff\xff\xff-\x9c\xe4\xbe\x9e6y\x93\xd5\xbc\x9f\x8a\xf7\f\x01k\a\x86\xc1a\x12;\xab\xd7+\x99\xe71\x9b)p\x06\x02;/X\xfc+\x8b@\x90\xfc\x00\xbbNvh\x88\x10\x00\x00\f\x11\xe7\xd3:\x00\x00\x00\x00\x00\x00\xe4\x00\x00\x00\x00\xec|\xfd+Q3y\xef\xf1\xb3\x9eI\xa2\x99_f\x0ej\xa7x\x13\x13%^3\x85O\xe2\xe1\x84\xcb\x86\xe6\x16\x9er\xdb[\x89\xb9\x06s\xa5\x1f\xfe\xdf4\x1c'}]}, 0x94}, 0x1, 0x0, 0x0, 0x84}, 0x24000054) 6.111625441s ago: executing program 3 (id=1630): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x106) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000000), r0) io_uring_setup$auto(0x6, 0x0) epoll_create$auto(0x4) r1 = socket$nl_generic(0x10, 0x3, 0x10) fsopen$auto(0x0, 0x4) epoll_ctl$auto(0x5, 0x1, r1, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x100, 0x4}, 0x77, 0x0, 0x0, 0x62bd) bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x15, 0x8}, 0x7) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) bpf$auto(0x0, &(0x7f0000000000)=@link_create={@map_fd=0x6, @target_fd=0x2, 0x7, 0x10005, @netfilter={0x568, 0x10000, 0x4, 0x1ff}}, 0xa3) mprotect$auto(0x24b4, 0x4, 0xfff) bpf$auto(0x15, 0x0, 0x0) select$auto(0x7f, &(0x7f00000000c0)={[0x0, 0x9, 0x101, 0x4, 0x3, 0xffffffffffffffc6, 0x1, 0x1157, 0x3, 0xffff, 0x2, 0xfad2, 0x0, 0x0, 0xb1, 0x5]}, &(0x7f0000000140)={[0x6000000000000000, 0x3ff, 0x3ff, 0x8, 0xffffffffffffff7f, 0x3, 0x7, 0x659f, 0x5, 0x6, 0x100000001, 0x0, 0xfffffffffffffffc, 0x3, 0x5, 0x39900000]}, &(0x7f00000001c0)={[0x0, 0x7, 0xd55, 0x8, 0xe, 0x4, 0x8001, 0x6, 0x5, 0x2, 0x8000000000000001, 0x7, 0x8, 0x2, 0x8, 0x4]}, &(0x7f0000000240)={0x8, 0x10000}) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) 5.934411341s ago: executing program 3 (id=1631): kcmp$auto(0x1, 0x100000001, 0x5, 0x8f0, 0x24000) lstat$auto(&(0x7f0000000040)='.\x00', &(0x7f0000000080)={0xce71, 0x6, 0x4, 0x2, 0x1, 0xfffffff7, 0x0, 0x8000000000000001, 0x0, 0x7, 0x6, 0xf45, 0x6, 0xd0da, 0x35, 0x4, 0xfffffffffffffff9}) unshare$auto(0x40000080) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000580), r0) sendmsg$auto_ETHTOOL_MSG_WOL_GET(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="01072abd7000ffdbdf250d"], 0x14}, 0x1, 0x0, 0x0, 0x4040052}, 0x400) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) setrlimit$auto(0x1000000007, 0x0) io_uring_setup$auto(0x4, 0x0) futex$auto(&(0x7f0000000180)=0x2948, 0x0, 0x2948, &(0x7f00000000c0)={0x225c17d03}, 0x0, 0x5) mprotect$auto(0x1ffff000, 0x7fffffff, 0x0) shmctl$auto(0x9, 0x9aa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) 5.365862796s ago: executing program 3 (id=1632): sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010026bd7020f8dbdf250100000008000200", @ANYRES32=0x4, @ANYBLOB="080001004866520008003734", @ANYRES32=0x9, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80) r0 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_DP_CMD_DEL(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002abd70"], 0x38}, 0x1, 0x0, 0x0, 0x20040011}, 0x20000000) mknod$auto(&(0x7f0000000140)='}[,&*}\x00\xa7\xfd\x1fd\x8c3\xc5P\xc7\xc0>\xb0\xe9\x14\xdd#\x95lQ[\xa2\xf8b\x06\xc7\x96\xbcD\x99\a\xaa\xe0me\xa3\xf6\xbb\x94\xa10=\x02\xd1\xcfh\x9bVu\xd3\xb6Y\xd2\x00'/73, 0x0, 0x8) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) memfd_create$auto(&(0x7f00000002c0)='IPVS\x00', 0x1) mmap$auto(0x1, 0x2, 0xfcdc, 0x13d9, 0x6, 0x5) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x1d, 0x2, 0x6) bpf$auto(0x6, &(0x7f0000000000)=@prog_bind_map={0xffffffffffffffff, r2, 0x8}, 0x463) close_range$auto(0x2, 0x8000, 0x0) open(0x0, 0x22240, 0x154) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, 0x0, 0x4004810) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x11, 0x8, 0x8000) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x88d0}, 0x2000c041) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x23, 0x6, 0x4af) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b) connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x17d, 0x0, 0xfffffffffffffffd) socket$nl_generic(0x10, 0x3, 0x10) socket(0x840000000002, 0x3, 0xff) 4.43832675s ago: executing program 3 (id=1633): madvise$auto(0x0, 0x2000040080000004, 0x2) r0 = socket(0x29, 0x2, 0x0) munmap$auto(0x1000000, 0x2000000c) madvise$auto(0x800, 0xffffffffffff0001, 0x9) mlockall$auto(0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x20008000) r1 = socket(0x11, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8905, 0x0) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r0) sendmsg$auto_ETHTOOL_MSG_FEC_SET(r1, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x84421044}, 0xc, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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", @ANYRES16=r2, @ANYBLOB="01002abd7000fbdbdf251e000000070001005f9a3500d40002007ef77e98c28c5b8419bd64508e2aa1818a8303a07537c3df064697729d8cf3e444e377f72f7496567cb3d818486ff9223c964af39eb5089518d8a9fb0de22f507a82e78c7d02b75502fbac4705dc7a660f6a72e1389297574931cb3e2f8e8ec68ac0ada846877a1ec2c07234dab2deb803995bf80d1311b9795d0b7bd8a52b877f8119c77e2996b846f9dffeb4f7ba96978c635f42e14a2c981c99328553072d53a2ac7c76b92f0fbe76807ad8fc2a6c861d3209f82592f1fc325e6fb69dc21a7955c35b70b657203f93fee5010ae99a0e000200f56aa1101dc4a59d32fd000024000200e783d65d9f77b33742cbb1c5f0a03613e50b66097be37fda837a121c7dfa94d0c80002009c13ff75e9f27902079873e1896232c195c5d76a6e8ca1f97f5335c9060f7e17f85040f2a11f11b6e36c4aea6eb07faa6db86b451203189421120f2c30d186d59c6c61f743bf75c2bc7260edc76da6434ee5513cd1ff018e485d712752c6d790fcb29599875559d60d471b80fd2c16d259bf949903da1540139268dd425596e5485a834dcd80630dca0edbfd58935ba7233864d4c06ec5d2a43ebe90e5eb2a7fe58d55f7f3c57ef642749d8ddada056fad8ef9f10b16add668d85b9e643bd9f86af871f8070001009f6e7a00"], 0x1f4}, 0x1, 0x0, 0x0, 0x4000}, 0x854) socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b) connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55) socket(0x21, 0x2, 0xa) sendmmsg$auto(0x6, 0x0, 0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) mlockall$auto(0x7) madvise$auto(0x4, 0x0, 0x6) munmap$auto(0x4, 0xb) memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4) socket$nl_generic(0x10, 0x3, 0x10) 4.17442893s ago: executing program 4 (id=1634): timer_create$auto(0x5, 0x0, &(0x7f0000000280)=0x801) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r0) (async) mmap$auto(0x7, 0xfff, 0x3, 0xeb1, 0xfffffffffffffff8, 0x8000) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) mmap$auto(0x80000080000001, 0x20009, 0x81, 0x15, 0xd, 0x8002) (async) mlock$auto(0x9, 0x6) (async) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x80040000c, 0xdf, 0xfffffffffffffffe, 0x2, 0x8000) (async) socketpair$auto(0x1, 0x4, 0xfffffffd, 0x0) (async) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) (async) setsockopt$auto(0x3, 0x10000000084, 0x80, 0x0, 0x8) (async) select$auto(0x3, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x800000000000008, 0xc, 0x9, 0x3, 0x7f, 0xfffffffffffffffd, 0x40009, 0x5e582972, 0x4000000000000040, 0x10, 0xe, 0x8, 0x8, 0x6]}, 0x0, 0x0) (async) connect$auto(0x3, 0x0, 0x55) (async) shutdown$auto(r0, 0x2) (async) madvise$auto(0x8000000, 0x2, 0x15) (async) mmap$auto(0x0, 0x401, 0xdf, 0x9b72, 0x4, 0x8000) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000040000fdef}, 0x1) (async) syz_genetlink_get_family_id$auto_MAC80211_HWSIM(0x0, 0xffffffffffffffff) (async) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, 0x0, 0x48000) (async) syz_genetlink_get_family_id$auto_MAC80211_HWSIM(0x0, 0xffffffffffffffff) (async) ppoll$auto(0x0, 0x9eba, &(0x7f0000000140)={0x5852, 0x1000}, 0x0, 0x1) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x1, 0x8000) io_uring_setup$auto(0x6, 0x0) (async) msync$auto(0x1ffff000, 0x0, 0x400000004) (async) socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x5, 0x0) fanotify_init$auto(0xfffffffe, 0xfffffffd) (async) dup2$auto(0x5, 0x4) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) 3.899452244s ago: executing program 6 (id=1635): ioperm$auto(0x7, 0x6, 0x2) (async) socket(0x2c, 0x3, 0x73) (async) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) connect$auto(0x3, 0x0, 0x55) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x200004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) (async) mlockall$auto(0x7) (async) mprotect$auto(0x0, 0x8000000000000001, 0x6) (async) getrandom$auto(0x0, 0x5fffffc, 0x3) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) (async) bpf$auto(0x5, &(0x7f0000003c80)=@bpf_attr_7={@map_id=0x8, 0x81, 0xf}, 0x5) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) (async) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) (async) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) (async) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) inotify_init1$auto(0x3000000000000) ioctl$auto(0x3, 0x80000541b, 0x38) memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x4) fallocate$auto(0x3, 0x0, 0xe, 0x8ec5) (async) mlockall$auto(0x7) (async) mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) name_to_handle_at$auto(0x1010, &(0x7f00000001c0)='/\x00', &(0x7f0000000000)={0xc, 0x75c0237c, "6d962c000400003344980946"}, 0x0, 0x200) (async) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) stat$auto(&(0x7f0000000000)='..\x00\x00', 0x0) (async) ioctl$auto(0xc8, 0x5452, 0x0) 3.741565655s ago: executing program 4 (id=1636): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0xa, 0x2, 0x0) socket(0x840000000002, 0x3, 0xff) socket(0xa, 0x3, 0x6) mq_open$auto(&(0x7f0000000080)='.\xf1e4\xdf\xc5}l\xb6\xc8!\xeb\xbe\x01:\xda0B^`\x81\xcc2\x94\xe4\x1bg\xda}\xc0\aa\x90\xe9\xd7\xcb', 0x57e, 0x59, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) pipe2$auto(&(0x7f0000000040)=0x8, 0x4800) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x1e, 0x4, 0x0) r2 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14) ioctl$auto(r1, 0x2, 0x6) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) sendmsg$auto_NETDEV_CMD_QUEUE_GET(r0, 0x0, 0x4000) mq_timedreceive$auto(0x8, 0x0, 0xfffffffd, 0x0, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x0) 3.569895044s ago: executing program 4 (id=1637): r0 = socket(0xa, 0x5, 0x0) connect$auto(r0, &(0x7f0000000000)={0x0, @sa_data_min="fa8264a9d3bdbfffe9eb7213bbe7"}, 0x5) (async) r1 = syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000080), r0) sendmsg$auto_HANDSHAKE_CMD_ACCEPT(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, r1, 0x4, 0x70bd26, 0x25dfdbfc, {}, [@HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0xa}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0xb}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x800}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0xffffffff}]}, 0x44}}, 0x0) (async, rerun: 64) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (rerun: 64) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) (async) bpf$auto(0x4, &(0x7f00000001c0)=@bpf_attr_1={0x3, 0xca99, @value=0x5, 0xa}, 0xc) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ppoll$auto(0x0, 0x0, 0x0, 0x0, 0x8) epoll_create$auto(0x4) (async, rerun: 64) semctl$auto(0x1ff, 0x2, 0x13, 0x1) (rerun: 64) ioctl$auto(0x3, 0xffffffff40088a01, 0x1) (async, rerun: 64) clone$auto(0xc2e, 0x6, 0x0, 0xffffffffffffffff, 0x7fffffff) (async, rerun: 64) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0x8) 2.756012714s ago: executing program 4 (id=1638): r0 = gettid() mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x2, 0x808, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f4) syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff) kill$auto(r0, 0x7) syz_clone(0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_open_procfs$namespace(r0, 0x0) 2.430117775s ago: executing program 3 (id=1639): madvise$auto(0x0, 0x2000040080000004, 0xd) r0 = socket(0x23, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x2) syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff) socket(0xa, 0x2, 0x73) setsockopt$auto(0x4, 0x29, 0x13, 0x0, 0x200577) poll$auto(&(0x7f0000000040)={r0, 0x8001, 0x9}, 0x6, 0x40) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) unshare$auto(0x8000400) unshare$auto(0x8000400) sendmsg$auto_NL80211_CMD_SET_PMK(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8004}, 0x4008001) sendmmsg$auto(0x3, 0x0, 0x200, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x1ffff000, 0x5510, 0x8) 2.073592081s ago: executing program 6 (id=1640): socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) shutdown$auto(0x200000003, 0x2) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) 606.345727ms ago: executing program 3 (id=1641): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000080), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000000)={0x0, 0xe4, &(0x7f0000000d40)={&(0x7f0000000300)={0x94, r1, 0x8a00f4e9954364ed, 0x70bd29, 0x25dfdbfd, {}, [@HWSIM_ATTR_RADIO_NAME={0x7f, 0x11, '\xfd\xff\xff\xff\xff\xff\xff\xff-\x9c\xe4\xbe\x9e6y\x93\xd5\xbc\x9f\x8a\xf7\f\x01k\a\x86\xc1a\x12;\xab\xd7+\x99\xe71\x9b)p\x06\x02;/X\xfc+\x8b@\x90\xfc\x00\xbbNvh\x88\x10\x00\x00\f\x11\xe7\xd3:\x00\x00\x00\x00\x00\x00\x00\xfd\x00\x00\x00\xec|\xfd+Q3y\xef\xf1\xb3\x9eI\xa2\x99_f\x0ej\xa7x\x13\x13%^3\x85O\xe2\xe1\x84\xcb\x86\xe6\x16\x9er\xdb[\x89\xb9\x06s\xa5\x1f\xfe\xdf4\x1c'}]}, 0x94}, 0x1, 0x0, 0x0, 0x84}, 0x24000054) 0s ago: executing program 5 (id=1642): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) clone$auto(0x200, 0x8000, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x5) keyctl$auto(0x10, 0x4, 0x5cd, 0x6, 0x1) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x5, 0xfffffffffffffe01, 0x8011, 0x3, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x0, 0x5, 0x0, 0x28) close_range$auto(0x2, 0x5, 0x0) mmap$auto(0x0, 0x8, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) madvise$auto(0x0, 0xffffffffffff0004, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) connect$auto(0x3, 0x0, 0x55) prctl$auto(0x7, 0x2, 0x1, 0x3b70, 0x2) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) memfd_create$auto(&(0x7f0000000000)='\x00', 0xe) mlockall$auto(0x7) open_tree$auto(0x80000000, &(0x7f00000000c0)='/\x00\x80\x00\x00\x00\x00\x00\x00@\x00\x00\x00\x96\x8e\xd3\xb2\x03\xc4\xa6\xd4\xb6Kv0\x12\xc2O\x04\xa9\xc3\xf5\xa7\x87<\x01\xc2\xa8Y\x8c-\xd9\xd9syDZ\\\x91\x94\xd3\x18w<\x15\xdf\xfb\\T\xe9\xbc\xd5\x05\xf1\n\x0f', 0x8001) close_range$auto(0x2, 0x8, 0x0) kernel console output (not intermixed with test programs): : 0 PID: 11472 Comm: syz.6.1182 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 343.688673][T11472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 343.698773][T11472] Call Trace: [ 343.702077][T11472] [ 343.705037][T11472] dump_stack_lvl+0x16c/0x1f0 [ 343.709776][T11472] sysfs_warn_dup+0x7f/0xa0 [ 343.714340][T11472] sysfs_do_create_link_sd+0x124/0x140 [ 343.719870][T11472] sysfs_create_link+0x61/0xc0 [ 343.724694][T11472] device_add+0x62e/0x1a70 [ 343.729167][T11472] ? __pfx_device_add+0x10/0x10 [ 343.734066][T11472] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 343.740023][T11472] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 343.746064][T11472] wiphy_register+0x20d7/0x2d30 [ 343.750980][T11472] ? __pfx_wiphy_register+0x10/0x10 [ 343.756253][T11472] ieee80211_register_hw+0x2959/0x3fb0 [ 343.761756][T11472] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 343.767769][T11472] ? rcu_is_watching+0x12/0xc0 [ 343.772625][T11472] ? trace_hrtimer_init+0x19d/0x220 [ 343.777880][T11472] ? __hrtimer_init+0x106/0x2c0 [ 343.783069][T11472] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 343.789054][T11472] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 343.795177][T11472] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 343.801823][T11472] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 343.807164][T11472] hwsim_new_radio_nl+0xb42/0x12b0 [ 343.812428][T11472] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 343.818046][T11472] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 343.825475][T11472] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 343.832921][T11472] genl_family_rcv_msg_doit+0x202/0x2f0 [ 343.838524][T11472] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 343.844656][T11472] ? bpf_lsm_capable+0x9/0x10 [ 343.849382][T11472] ? security_capable+0x7e/0x260 [ 343.854397][T11472] ? ns_capable+0xd7/0x110 [ 343.858859][T11472] genl_rcv_msg+0x565/0x800 [ 343.863427][T11472] ? __pfx_genl_rcv_msg+0x10/0x10 [ 343.868595][T11472] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 343.874204][T11472] netlink_rcv_skb+0x165/0x410 [ 343.879022][T11472] ? __pfx_genl_rcv_msg+0x10/0x10 [ 343.884109][T11472] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 343.889549][T11472] ? down_read+0xc9/0x330 [ 343.893934][T11472] ? __pfx_down_read+0x10/0x10 [ 343.898829][T11472] ? netlink_deliver_tap+0x1ae/0xcf0 [ 343.904171][T11472] genl_rcv+0x28/0x40 [ 343.908299][T11472] netlink_unicast+0x53c/0x7f0 [ 343.913114][T11472] ? __pfx_netlink_unicast+0x10/0x10 [ 343.918448][T11472] ? __phys_addr_symbol+0x30/0x80 [ 343.923522][T11472] ? __check_object_size+0x488/0x710 [ 343.928861][T11472] netlink_sendmsg+0x8b8/0xd70 [ 343.933680][T11472] ? __pfx_netlink_sendmsg+0x10/0x10 [ 343.939027][T11472] ____sys_sendmsg+0x9ae/0xb40 [ 343.943839][T11472] ? copy_msghdr_from_user+0x10b/0x160 [ 343.949349][T11472] ? __pfx_____sys_sendmsg+0x10/0x10 [ 343.954698][T11472] ? __pfx___lock_acquire+0x10/0x10 [ 343.959971][T11472] ___sys_sendmsg+0x135/0x1e0 [ 343.964695][T11472] ? __pfx____sys_sendmsg+0x10/0x10 [ 343.969960][T11472] ? lock_acquire+0x2f/0xb0 [ 343.974500][T11472] ? __fget_files+0x40/0x3f0 [ 343.979167][T11472] ? fdget+0x176/0x210 [ 343.983283][T11472] __sys_sendmsg+0x117/0x1f0 [ 343.987928][T11472] ? __pfx___sys_sendmsg+0x10/0x10 [ 343.993087][T11472] ? __x64_sys_futex+0x1e1/0x4c0 [ 343.998114][T11472] do_syscall_64+0xcd/0x250 [ 344.002761][T11472] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 344.008710][T11472] RIP: 0033:0x7f3e1c97e719 [ 344.013188][T11472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 344.032941][T11472] RSP: 002b:00007f3e1d6f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 344.041637][T11472] RAX: ffffffffffffffda RBX: 00007f3e1cb35f80 RCX: 00007f3e1c97e719 [ 344.049757][T11472] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 344.057768][T11472] RBP: 00007f3e1c9f1616 R08: 0000000000000000 R09: 0000000000000000 [ 344.065877][T11472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 344.073908][T11472] R13: 0000000000000000 R14: 00007f3e1cb35f80 R15: 00007ffe37349688 [ 344.081952][T11472] [ 345.510893][ T5850] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 345.520446][ T5850] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 345.528857][ T5850] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 345.541583][ T5850] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 345.549618][ T5850] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 345.557032][ T5850] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 345.623970][ T35] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 345.958138][ T35] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 346.179186][ T35] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 346.465967][ T35] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 346.949433][ T35] bridge_slave_1: left allmulticast mode [ 346.956522][ T35] bridge_slave_1: left promiscuous mode [ 346.980508][ T35] bridge0: port 2(bridge_slave_1) entered disabled state [ 347.037207][ T35] bridge_slave_0: left allmulticast mode [ 347.062912][ T35] bridge_slave_0: left promiscuous mode [ 347.073256][ T35] bridge0: port 1(bridge_slave_0) entered disabled state [ 347.594112][ T5840] Bluetooth: hci3: command tx timeout [ 347.757933][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 347.769901][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 347.790043][ T35] bond0 (unregistering): Released all slaves [ 347.808697][T11530] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 347.822765][T11530] CPU: 0 UID: 0 PID: 11530 Comm: syz.3.1196 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 347.833649][T11530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 347.843716][T11530] Call Trace: [ 347.847001][T11530] [ 347.850372][T11530] dump_stack_lvl+0x16c/0x1f0 [ 347.855355][T11530] sysfs_warn_dup+0x7f/0xa0 [ 347.860055][T11530] sysfs_do_create_link_sd+0x124/0x140 [ 347.865557][T11530] sysfs_create_link+0x61/0xc0 [ 347.870364][T11530] device_add+0x62e/0x1a70 [ 347.874845][T11530] ? __pfx_device_add+0x10/0x10 [ 347.879828][T11530] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 347.886760][T11530] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 347.892856][T11530] wiphy_register+0x20d7/0x2d30 [ 347.897783][T11530] ? __pfx_wiphy_register+0x10/0x10 [ 347.903003][T11530] ieee80211_register_hw+0x2959/0x3fb0 [ 347.908669][T11530] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 347.914504][T11530] ? rcu_is_watching+0x12/0xc0 [ 347.919916][T11530] ? trace_hrtimer_init+0x19d/0x220 [ 347.925142][T11530] ? __hrtimer_init+0x106/0x2c0 [ 347.930060][T11530] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 347.935829][T11530] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 347.941999][T11530] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 347.948618][T11530] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 347.953922][T11530] hwsim_new_radio_nl+0xb42/0x12b0 [ 347.959061][T11530] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 347.964660][T11530] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 347.972338][T11530] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 347.979874][T11530] genl_family_rcv_msg_doit+0x202/0x2f0 [ 347.985460][T11530] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 347.991562][T11530] ? bpf_lsm_capable+0x9/0x10 [ 347.996505][T11530] ? security_capable+0x7e/0x260 [ 348.001568][T11530] ? ns_capable+0xd7/0x110 [ 348.006052][T11530] genl_rcv_msg+0x565/0x800 [ 348.010565][T11530] ? __pfx_genl_rcv_msg+0x10/0x10 [ 348.015689][T11530] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 348.021264][T11530] netlink_rcv_skb+0x165/0x410 [ 348.026137][T11530] ? __pfx_genl_rcv_msg+0x10/0x10 [ 348.031181][T11530] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 348.036521][T11530] ? down_read+0xc9/0x330 [ 348.040955][T11530] ? __pfx_down_read+0x10/0x10 [ 348.045729][T11530] ? netlink_deliver_tap+0x1ae/0xcf0 [ 348.051074][T11530] genl_rcv+0x28/0x40 [ 348.055171][T11530] netlink_unicast+0x53c/0x7f0 [ 348.059957][T11530] ? __pfx_netlink_unicast+0x10/0x10 [ 348.065361][T11530] ? __phys_addr_symbol+0x30/0x80 [ 348.070501][T11530] ? __check_object_size+0x488/0x710 [ 348.075801][T11530] netlink_sendmsg+0x8b8/0xd70 [ 348.080688][T11530] ? __pfx_netlink_sendmsg+0x10/0x10 [ 348.085993][T11530] ____sys_sendmsg+0x9ae/0xb40 [ 348.090794][T11530] ? copy_msghdr_from_user+0x10b/0x160 [ 348.096401][T11530] ? __pfx_____sys_sendmsg+0x10/0x10 [ 348.101968][T11530] ? netlink_recvmsg+0x81c/0xf30 [ 348.106949][T11530] ? __pfx___lock_acquire+0x10/0x10 [ 348.112344][T11530] ___sys_sendmsg+0x135/0x1e0 [ 348.117120][T11530] ? __pfx____sys_sendmsg+0x10/0x10 [ 348.122421][T11530] ? lock_acquire+0x2f/0xb0 [ 348.126928][T11530] ? __fget_files+0x40/0x3f0 [ 348.131543][T11530] ? fdget+0x176/0x210 [ 348.135611][T11530] __sys_sendmsg+0x117/0x1f0 [ 348.140202][T11530] ? __pfx___sys_sendmsg+0x10/0x10 [ 348.145377][T11530] ? __x64_sys_futex+0x1e1/0x4c0 [ 348.150349][T11530] do_syscall_64+0xcd/0x250 [ 348.154879][T11530] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 348.160838][T11530] RIP: 0033:0x7f030137e719 [ 348.165260][T11530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 348.185901][T11530] RSP: 002b:00007f030210f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 348.194723][T11530] RAX: ffffffffffffffda RBX: 00007f0301535f80 RCX: 00007f030137e719 [ 348.203544][T11530] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 348.211539][T11530] RBP: 00007f03013f1616 R08: 0000000000000000 R09: 0000000000000000 [ 348.219521][T11530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 348.227620][T11530] R13: 0000000000000000 R14: 00007f0301535f80 R15: 00007ffe05a62b48 [ 348.235635][T11530] [ 348.263324][T11541] lo: entered promiscuous mode [ 348.277409][T11541] lo: left promiscuous mode [ 348.327026][T11509] chnl_net:caif_netlink_parms(): no params data found [ 349.254144][ T35] hsr_slave_0: left promiscuous mode [ 349.322980][ T35] hsr_slave_1: left promiscuous mode [ 349.335649][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 349.374143][ T35] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 349.406477][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 349.448761][ T35] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 349.555517][ T35] veth1_macvtap: left promiscuous mode [ 349.561108][ T35] veth0_macvtap: left promiscuous mode [ 349.591058][ T35] veth1_vlan: left promiscuous mode [ 349.602869][ T35] veth0_vlan: left promiscuous mode [ 349.674467][ T5850] Bluetooth: hci3: command tx timeout [ 350.326833][ T5850] Bluetooth: hci0: command 0x0406 tx timeout [ 350.603017][ T35] team0 (unregistering): Port device team_slave_1 removed [ 350.650484][ T35] team0 (unregistering): Port device team_slave_0 removed [ 351.148685][T11509] bridge0: port 1(bridge_slave_0) entered blocking state [ 351.158760][T11509] bridge0: port 1(bridge_slave_0) entered disabled state [ 351.167501][T11509] bridge_slave_0: entered allmulticast mode [ 351.174584][T11509] bridge_slave_0: entered promiscuous mode [ 351.187482][T11597] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 351.200258][T11597] CPU: 0 UID: 0 PID: 11597 Comm: syz.6.1211 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 351.211101][T11597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 351.221165][T11597] Call Trace: [ 351.224491][T11597] [ 351.227436][T11597] dump_stack_lvl+0x16c/0x1f0 [ 351.232211][T11597] sysfs_warn_dup+0x7f/0xa0 [ 351.236720][T11597] sysfs_do_create_link_sd+0x124/0x140 [ 351.242223][T11597] sysfs_create_link+0x61/0xc0 [ 351.247125][T11597] device_add+0x62e/0x1a70 [ 351.251723][T11597] ? __pfx_device_add+0x10/0x10 [ 351.256590][T11597] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 351.262517][T11597] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 351.268533][T11597] wiphy_register+0x20d7/0x2d30 [ 351.273432][T11597] ? __pfx_wiphy_register+0x10/0x10 [ 351.278668][T11597] ieee80211_register_hw+0x2959/0x3fb0 [ 351.284161][T11597] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 351.290080][T11597] ? rcu_is_watching+0x12/0xc0 [ 351.294857][T11597] ? trace_hrtimer_init+0x19d/0x220 [ 351.300194][T11597] ? __hrtimer_init+0x106/0x2c0 [ 351.305068][T11597] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 351.310852][T11597] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 351.316978][T11597] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 351.323588][T11597] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 351.328891][T11597] hwsim_new_radio_nl+0xb42/0x12b0 [ 351.334038][T11597] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 351.339627][T11597] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 351.347020][T11597] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 351.354769][T11597] genl_family_rcv_msg_doit+0x202/0x2f0 [ 351.360347][T11597] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 351.366445][T11597] ? bpf_lsm_capable+0x9/0x10 [ 351.371232][T11597] ? security_capable+0x7e/0x260 [ 351.376279][T11597] ? ns_capable+0xd7/0x110 [ 351.380966][T11597] genl_rcv_msg+0x565/0x800 [ 351.385492][T11597] ? __pfx_genl_rcv_msg+0x10/0x10 [ 351.390535][T11597] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 351.396102][T11597] netlink_rcv_skb+0x165/0x410 [ 351.400970][T11597] ? __pfx_genl_rcv_msg+0x10/0x10 [ 351.406011][T11597] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 351.411453][T11597] ? down_read+0xc9/0x330 [ 351.415797][T11597] ? __pfx_down_read+0x10/0x10 [ 351.420573][T11597] ? netlink_deliver_tap+0x1ae/0xcf0 [ 351.425918][T11597] genl_rcv+0x28/0x40 [ 351.429960][T11597] netlink_unicast+0x53c/0x7f0 [ 351.434762][T11597] ? __pfx_netlink_unicast+0x10/0x10 [ 351.440243][T11597] ? __phys_addr_symbol+0x30/0x80 [ 351.445282][T11597] ? __check_object_size+0x488/0x710 [ 351.450619][T11597] netlink_sendmsg+0x8b8/0xd70 [ 351.455422][T11597] ? __pfx_netlink_sendmsg+0x10/0x10 [ 351.460853][T11597] ____sys_sendmsg+0x9ae/0xb40 [ 351.465642][T11597] ? copy_msghdr_from_user+0x10b/0x160 [ 351.471137][T11597] ? __pfx_____sys_sendmsg+0x10/0x10 [ 351.476448][T11597] ? __pfx___lock_acquire+0x10/0x10 [ 351.481769][T11597] ___sys_sendmsg+0x135/0x1e0 [ 351.486463][T11597] ? __pfx____sys_sendmsg+0x10/0x10 [ 351.491688][T11597] ? lock_acquire+0x2f/0xb0 [ 351.496209][T11597] ? __fget_files+0x40/0x3f0 [ 351.500817][T11597] ? fdget+0x176/0x210 [ 351.504903][T11597] __sys_sendmsg+0x117/0x1f0 [ 351.509509][T11597] ? __pfx___sys_sendmsg+0x10/0x10 [ 351.514721][T11597] ? __x64_sys_futex+0x1e1/0x4c0 [ 351.519709][T11597] do_syscall_64+0xcd/0x250 [ 351.524254][T11597] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 351.530179][T11597] RIP: 0033:0x7f3e1c97e719 [ 351.534614][T11597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 351.554270][T11597] RSP: 002b:00007f3e1d6f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 351.562697][T11597] RAX: ffffffffffffffda RBX: 00007f3e1cb35f80 RCX: 00007f3e1c97e719 [ 351.570676][T11597] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 351.578656][T11597] RBP: 00007f3e1c9f1616 R08: 0000000000000000 R09: 0000000000000000 [ 351.586634][T11597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 351.594609][T11597] R13: 0000000000000000 R14: 00007f3e1cb35f80 R15: 00007ffe37349688 [ 351.602603][T11597] [ 351.647122][T11509] bridge0: port 2(bridge_slave_1) entered blocking state [ 351.654406][T11509] bridge0: port 2(bridge_slave_1) entered disabled state [ 351.661647][T11509] bridge_slave_1: entered allmulticast mode [ 351.668889][T11509] bridge_slave_1: entered promiscuous mode [ 351.798360][ T5840] Bluetooth: hci3: command tx timeout [ 351.800775][T11509] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 351.862065][T11618] netlink: 342 bytes leftover after parsing attributes in process `syz.6.1216'. [ 351.922384][T11509] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 352.120452][T11509] team0: Port device team_slave_0 added [ 352.184467][T11509] team0: Port device team_slave_1 added [ 352.317482][T11509] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 352.338654][T11509] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 352.392491][T11509] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 352.437590][T11509] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 352.449416][T11509] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 352.482771][T11509] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 352.678148][T11509] hsr_slave_0: entered promiscuous mode [ 352.692173][T11509] hsr_slave_1: entered promiscuous mode [ 352.726274][T11509] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 352.776613][T11509] Cannot create hsr debugfs directory [ 353.466979][T11734] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 353.491962][T11734] CPU: 1 UID: 0 PID: 11734 Comm: syz.4.1223 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 353.502928][T11734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 353.513033][T11734] Call Trace: [ 353.516341][T11734] [ 353.519302][T11734] dump_stack_lvl+0x16c/0x1f0 [ 353.524459][T11734] sysfs_warn_dup+0x7f/0xa0 [ 353.529017][T11734] sysfs_do_create_link_sd+0x124/0x140 [ 353.534537][T11734] sysfs_create_link+0x61/0xc0 [ 353.539455][T11734] device_add+0x62e/0x1a70 [ 353.543936][T11734] ? __pfx_device_add+0x10/0x10 [ 353.548843][T11734] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 353.554812][T11734] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 353.560863][T11734] wiphy_register+0x20d7/0x2d30 [ 353.565794][T11734] ? __pfx_wiphy_register+0x10/0x10 [ 353.571690][T11734] ieee80211_register_hw+0x2959/0x3fb0 [ 353.577227][T11734] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 353.583101][T11734] ? rcu_is_watching+0x12/0xc0 [ 353.587950][T11734] ? trace_hrtimer_init+0x19d/0x220 [ 353.593207][T11734] ? __hrtimer_init+0x106/0x2c0 [ 353.598194][T11734] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 353.603987][T11734] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 353.610094][T11734] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 353.616714][T11734] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 353.622020][T11734] hwsim_new_radio_nl+0xb42/0x12b0 [ 353.627186][T11734] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 353.632875][T11734] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 353.640271][T11734] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 353.647680][T11734] genl_family_rcv_msg_doit+0x202/0x2f0 [ 353.653256][T11734] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 353.659357][T11734] ? bpf_lsm_capable+0x9/0x10 [ 353.664078][T11734] ? security_capable+0x7e/0x260 [ 353.669142][T11734] ? ns_capable+0xd7/0x110 [ 353.673583][T11734] genl_rcv_msg+0x565/0x800 [ 353.678396][T11734] ? __pfx_genl_rcv_msg+0x10/0x10 [ 353.683485][T11734] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 353.689067][T11734] netlink_rcv_skb+0x165/0x410 [ 353.693958][T11734] ? __pfx_genl_rcv_msg+0x10/0x10 [ 353.699021][T11734] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 353.704346][T11734] ? down_read+0xc9/0x330 [ 353.708821][T11734] ? __pfx_down_read+0x10/0x10 [ 353.713598][T11734] ? netlink_deliver_tap+0x1ae/0xcf0 [ 353.718916][T11734] genl_rcv+0x28/0x40 [ 353.722922][T11734] netlink_unicast+0x53c/0x7f0 [ 353.727717][T11734] ? __pfx_netlink_unicast+0x10/0x10 [ 353.733031][T11734] ? __phys_addr_symbol+0x30/0x80 [ 353.738070][T11734] ? __check_object_size+0x488/0x710 [ 353.743464][T11734] netlink_sendmsg+0x8b8/0xd70 [ 353.748252][T11734] ? __pfx_netlink_sendmsg+0x10/0x10 [ 353.753569][T11734] ____sys_sendmsg+0x9ae/0xb40 [ 353.758352][T11734] ? copy_msghdr_from_user+0x10b/0x160 [ 353.763881][T11734] ? __pfx_____sys_sendmsg+0x10/0x10 [ 353.769224][T11734] ? netlink_recvmsg+0x81c/0xf30 [ 353.774266][T11734] ? __pfx___lock_acquire+0x10/0x10 [ 353.779494][T11734] ___sys_sendmsg+0x135/0x1e0 [ 353.784621][T11734] ? __pfx____sys_sendmsg+0x10/0x10 [ 353.790057][T11734] ? lock_acquire+0x2f/0xb0 [ 353.794617][T11734] ? __fget_files+0x40/0x3f0 [ 353.799326][T11734] ? fdget+0x176/0x210 [ 353.803506][T11734] __sys_sendmsg+0x117/0x1f0 [ 353.808130][T11734] ? __pfx___sys_sendmsg+0x10/0x10 [ 353.813253][T11734] ? __x64_sys_futex+0x1e1/0x4c0 [ 353.818246][T11734] do_syscall_64+0xcd/0x250 [ 353.822818][T11734] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 353.828741][T11734] RIP: 0033:0x7f7d5517e719 [ 353.833179][T11734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 353.852983][T11734] RSP: 002b:00007f7d55f00038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 353.861413][T11734] RAX: ffffffffffffffda RBX: 00007f7d55335f80 RCX: 00007f7d5517e719 [ 353.869395][T11734] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 353.877561][T11734] RBP: 00007f7d551f1616 R08: 0000000000000000 R09: 0000000000000000 [ 353.885639][T11734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 353.893885][T11734] R13: 0000000000000000 R14: 00007f7d55335f80 R15: 00007ffeb0f2c0a8 [ 353.901899][T11734] [ 353.920528][ T5840] Bluetooth: hci3: command tx timeout [ 354.192589][T11747] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 354.225310][T11747] CPU: 0 UID: 0 PID: 11747 Comm: syz.3.1225 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 354.236153][T11747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 354.246260][T11747] Call Trace: [ 354.249549][T11747] [ 354.252496][T11747] dump_stack_lvl+0x16c/0x1f0 [ 354.257197][T11747] sysfs_warn_dup+0x7f/0xa0 [ 354.261743][T11747] sysfs_do_create_link_sd+0x124/0x140 [ 354.267241][T11747] sysfs_create_link+0x61/0xc0 [ 354.272037][T11747] device_add+0x62e/0x1a70 [ 354.276566][T11747] ? __pfx_device_add+0x10/0x10 [ 354.281449][T11747] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 354.287463][T11747] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 354.293481][T11747] wiphy_register+0x20d7/0x2d30 [ 354.298456][T11747] ? __pfx_wiphy_register+0x10/0x10 [ 354.303782][T11747] ieee80211_register_hw+0x2959/0x3fb0 [ 354.309276][T11747] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 354.315109][T11747] ? rcu_is_watching+0x12/0xc0 [ 354.319890][T11747] ? trace_hrtimer_init+0x19d/0x220 [ 354.326150][T11747] ? __hrtimer_init+0x106/0x2c0 [ 354.331028][T11747] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 354.336790][T11747] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 354.342881][T11747] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 354.349490][T11747] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 354.354791][T11747] hwsim_new_radio_nl+0xb42/0x12b0 [ 354.360010][T11747] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 354.365682][T11747] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 354.373170][T11747] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 354.381013][T11747] genl_family_rcv_msg_doit+0x202/0x2f0 [ 354.386583][T11747] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 354.392675][T11747] ? bpf_lsm_capable+0x9/0x10 [ 354.397399][T11747] ? security_capable+0x7e/0x260 [ 354.402353][T11747] ? ns_capable+0xd7/0x110 [ 354.406783][T11747] genl_rcv_msg+0x565/0x800 [ 354.411328][T11747] ? __pfx_genl_rcv_msg+0x10/0x10 [ 354.416396][T11747] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 354.421976][T11747] netlink_rcv_skb+0x165/0x410 [ 354.426945][T11747] ? __pfx_genl_rcv_msg+0x10/0x10 [ 354.431999][T11747] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 354.437325][T11747] ? down_read+0xc9/0x330 [ 354.441772][T11747] ? __pfx_down_read+0x10/0x10 [ 354.446580][T11747] ? netlink_deliver_tap+0x1ae/0xcf0 [ 354.451897][T11747] genl_rcv+0x28/0x40 [ 354.455907][T11747] netlink_unicast+0x53c/0x7f0 [ 354.460779][T11747] ? __pfx_netlink_unicast+0x10/0x10 [ 354.466206][T11747] ? __phys_addr_symbol+0x30/0x80 [ 354.471242][T11747] ? __check_object_size+0x488/0x710 [ 354.476552][T11747] netlink_sendmsg+0x8b8/0xd70 [ 354.481432][T11747] ? __pfx_netlink_sendmsg+0x10/0x10 [ 354.486744][T11747] ____sys_sendmsg+0x9ae/0xb40 [ 354.491631][T11747] ? copy_msghdr_from_user+0x10b/0x160 [ 354.497282][T11747] ? __pfx_____sys_sendmsg+0x10/0x10 [ 354.502599][T11747] ? __pfx___lock_acquire+0x10/0x10 [ 354.507839][T11747] ___sys_sendmsg+0x135/0x1e0 [ 354.512622][T11747] ? __pfx____sys_sendmsg+0x10/0x10 [ 354.518199][T11747] ? lock_acquire+0x2f/0xb0 [ 354.522722][T11747] ? __fget_files+0x40/0x3f0 [ 354.527348][T11747] ? fdget+0x176/0x210 [ 354.531428][T11747] __sys_sendmsg+0x117/0x1f0 [ 354.536033][T11747] ? __pfx___sys_sendmsg+0x10/0x10 [ 354.541161][T11747] ? __x64_sys_futex+0x1e1/0x4c0 [ 354.546131][T11747] do_syscall_64+0xcd/0x250 [ 354.550649][T11747] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 354.556564][T11747] RIP: 0033:0x7f030137e719 [ 354.560997][T11747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 354.580708][T11747] RSP: 002b:00007f030210f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 354.589136][T11747] RAX: ffffffffffffffda RBX: 00007f0301535f80 RCX: 00007f030137e719 [ 354.597203][T11747] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 354.605183][T11747] RBP: 00007f03013f1616 R08: 0000000000000000 R09: 0000000000000000 [ 354.613865][T11747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 354.622569][T11747] R13: 0000000000000000 R14: 00007f0301535f80 R15: 00007ffe05a62b48 [ 354.630599][T11747] [ 354.929206][T11509] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 354.943351][T11509] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 354.978106][T11509] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 355.053390][T11509] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 355.137829][T11509] 8021q: adding VLAN 0 to HW filter on device bond0 [ 355.154767][T11509] 8021q: adding VLAN 0 to HW filter on device team0 [ 355.207680][T11509] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 355.218119][T11509] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 355.237186][ T7394] bridge0: port 1(bridge_slave_0) entered blocking state [ 355.244521][ T7394] bridge0: port 1(bridge_slave_0) entered forwarding state [ 355.277641][ T7394] bridge0: port 2(bridge_slave_1) entered blocking state [ 355.284817][ T7394] bridge0: port 2(bridge_slave_1) entered forwarding state [ 355.564349][T11509] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 355.990788][T11509] veth0_vlan: entered promiscuous mode [ 356.018827][T11509] veth1_vlan: entered promiscuous mode [ 356.071488][T11509] veth0_macvtap: entered promiscuous mode [ 356.111728][T11509] veth1_macvtap: entered promiscuous mode [ 356.147224][T11509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 356.174253][T11509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 356.189078][T11509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 356.200222][T11509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 356.210562][T11509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 356.221509][T11509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 356.233190][T11509] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 356.257637][T11509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 356.283863][T11509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 356.303855][T11509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 356.318865][T11509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 356.329227][T11509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 356.340172][T11509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 356.352044][T11509] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 356.378003][T11509] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 356.406219][T11509] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 356.433965][T11509] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 356.451127][T11509] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 357.085429][ T8931] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 357.142454][ T8931] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 357.328522][ T7404] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 357.362880][ T7404] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 357.805389][T11831] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 357.936338][T11831] CPU: 0 UID: 0 PID: 11831 Comm: syz.6.1235 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 357.947613][T11831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 357.958452][T11831] Call Trace: [ 357.961779][T11831] [ 357.964759][T11831] dump_stack_lvl+0x16c/0x1f0 [ 357.969518][T11831] sysfs_warn_dup+0x7f/0xa0 [ 357.974081][T11831] sysfs_do_create_link_sd+0x124/0x140 [ 357.979600][T11831] sysfs_create_link+0x61/0xc0 [ 357.984416][T11831] device_add+0x62e/0x1a70 [ 357.988891][T11831] ? __pfx_device_add+0x10/0x10 [ 357.993794][T11831] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 357.999739][T11831] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 358.005778][T11831] wiphy_register+0x20d7/0x2d30 [ 358.010784][T11831] ? __pfx_wiphy_register+0x10/0x10 [ 358.016063][T11831] ieee80211_register_hw+0x2959/0x3fb0 [ 358.021594][T11831] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 358.027455][T11831] ? rcu_is_watching+0x12/0xc0 [ 358.032271][T11831] ? trace_hrtimer_init+0x19d/0x220 [ 358.037697][T11831] ? __hrtimer_init+0x106/0x2c0 [ 358.042602][T11831] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 358.048409][T11831] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 358.054534][T11831] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 358.061176][T11831] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 358.066521][T11831] hwsim_new_radio_nl+0xb42/0x12b0 [ 358.071774][T11831] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 358.077378][T11831] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 358.085096][T11831] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 358.092808][T11831] genl_family_rcv_msg_doit+0x202/0x2f0 [ 358.098424][T11831] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 358.104559][T11831] ? bpf_lsm_capable+0x9/0x10 [ 358.109374][T11831] ? security_capable+0x7e/0x260 [ 358.114389][T11831] ? ns_capable+0xd7/0x110 [ 358.118854][T11831] genl_rcv_msg+0x565/0x800 [ 358.123429][T11831] ? __pfx_genl_rcv_msg+0x10/0x10 [ 358.128686][T11831] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 358.134293][T11831] netlink_rcv_skb+0x165/0x410 [ 358.139112][T11831] ? __pfx_genl_rcv_msg+0x10/0x10 [ 358.144292][T11831] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 358.149661][T11831] ? down_read+0xc9/0x330 [ 358.154054][T11831] ? __pfx_down_read+0x10/0x10 [ 358.158865][T11831] ? netlink_deliver_tap+0x1ae/0xcf0 [ 358.164472][T11831] genl_rcv+0x28/0x40 [ 358.168595][T11831] netlink_unicast+0x53c/0x7f0 [ 358.173421][T11831] ? __pfx_netlink_unicast+0x10/0x10 [ 358.179211][T11831] ? __phys_addr_symbol+0x30/0x80 [ 358.184305][T11831] ? __check_object_size+0x488/0x710 [ 358.189651][T11831] netlink_sendmsg+0x8b8/0xd70 [ 358.194752][T11831] ? __pfx_netlink_sendmsg+0x10/0x10 [ 358.200193][T11831] ____sys_sendmsg+0x9ae/0xb40 [ 358.205133][T11831] ? copy_msghdr_from_user+0x10b/0x160 [ 358.210642][T11831] ? __pfx_____sys_sendmsg+0x10/0x10 [ 358.216266][T11831] ? __pfx___lock_acquire+0x10/0x10 [ 358.221531][T11831] ___sys_sendmsg+0x135/0x1e0 [ 358.226272][T11831] ? __pfx____sys_sendmsg+0x10/0x10 [ 358.231534][T11831] ? lock_acquire+0x2f/0xb0 [ 358.236284][T11831] ? __fget_files+0x40/0x3f0 [ 358.241763][T11831] ? fdget+0x176/0x210 [ 358.246151][T11831] __sys_sendmsg+0x117/0x1f0 [ 358.250815][T11831] ? __pfx___sys_sendmsg+0x10/0x10 [ 358.256013][T11831] ? __x64_sys_futex+0x1e1/0x4c0 [ 358.261380][T11831] do_syscall_64+0xcd/0x250 [ 358.266022][T11831] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 358.271972][T11831] RIP: 0033:0x7f3e1c97e719 [ 358.276433][T11831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 358.296089][T11831] RSP: 002b:00007f3e1d6f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 358.304564][T11831] RAX: ffffffffffffffda RBX: 00007f3e1cb35f80 RCX: 00007f3e1c97e719 [ 358.313025][T11831] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 358.321040][T11831] RBP: 00007f3e1c9f1616 R08: 0000000000000000 R09: 0000000000000000 [ 358.329141][T11831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 358.337159][T11831] R13: 0000000000000000 R14: 00007f3e1cb35f80 R15: 00007ffe37349688 [ 358.345199][T11831] [ 364.474105][T12004] svc: failed to register nfsdv3 RPC service (errno 111). [ 364.531763][T12004] svc: failed to register nfsaclv3 RPC service (errno 111). [ 364.805592][ T29] audit: type=1326 audit(11870.659:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12006 comm="syz.4.1271" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7d5517e719 code=0x0 [ 364.870783][T12010] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1270'. [ 365.454127][T12029] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1275'. [ 366.578277][T12059] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1285'. [ 367.685263][T12090] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1295'. [ 372.205085][T12198] netlink: 288 bytes leftover after parsing attributes in process `syz.6.1321'. [ 372.223963][T12196] netlink: 288 bytes leftover after parsing attributes in process `syz.6.1321'. [ 372.646656][T12200] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1320'. [ 377.811483][T12336] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 378.878656][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.891258][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 386.415400][T12462] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 386.454592][T12469] debugfs: Directory '-侞6yռ ka;+1)p;!X+@' with parent 'ieee80211' already present! [ 386.944927][T12482] netlink: 'syz.5.1384': attribute type 58 has an invalid length. [ 388.143568][T12282] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 388.500913][T12282] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 388.554765][ T5850] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 388.564964][ T5850] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 388.573439][ T5850] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 388.582703][ T5850] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 388.591698][ T5850] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 388.599930][ T5850] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 388.944582][T12282] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 389.351776][T12282] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 389.597557][T12520] chnl_net:caif_netlink_parms(): no params data found [ 390.088017][T12520] bridge0: port 1(bridge_slave_0) entered blocking state [ 390.109672][T12520] bridge0: port 1(bridge_slave_0) entered disabled state [ 390.128580][T12520] bridge_slave_0: entered allmulticast mode [ 390.147148][T12520] bridge_slave_0: entered promiscuous mode [ 390.165884][T12520] bridge0: port 2(bridge_slave_1) entered blocking state [ 390.173034][T12520] bridge0: port 2(bridge_slave_1) entered disabled state [ 390.194050][T12520] bridge_slave_1: entered allmulticast mode [ 390.215565][T12520] bridge_slave_1: entered promiscuous mode [ 390.412342][T12520] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 390.487700][T12520] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 390.619256][T12282] bridge_slave_1: left allmulticast mode [ 390.631903][T12282] bridge_slave_1: left promiscuous mode [ 390.642387][T12282] bridge0: port 2(bridge_slave_1) entered disabled state [ 390.644020][ T5840] Bluetooth: hci1: command tx timeout [ 390.674695][T12282] bridge_slave_0: left allmulticast mode [ 390.680420][T12282] bridge_slave_0: left promiscuous mode [ 390.720451][T12282] bridge0: port 1(bridge_slave_0) entered disabled state [ 392.603582][T12282] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 392.632853][T12282] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 392.690426][T12282] bond0 (unregistering): Released all slaves [ 392.716369][ T5840] Bluetooth: hci1: command tx timeout [ 392.829543][T12520] team0: Port device team_slave_0 added [ 392.877699][T12520] team0: Port device team_slave_1 added [ 393.008424][T12520] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 393.044037][T12520] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 393.159018][T12520] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 393.210984][T12520] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 393.224854][T12520] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 393.312009][T12520] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 393.572783][T12520] hsr_slave_0: entered promiscuous mode [ 393.627830][T12520] hsr_slave_1: entered promiscuous mode [ 393.652710][T12520] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 393.693914][T12520] Cannot create hsr debugfs directory [ 394.794794][ T5840] Bluetooth: hci1: command tx timeout [ 394.907237][T12520] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 394.949273][T12520] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 394.998990][T12520] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 395.045827][T12520] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 395.183035][T12520] bridge0: port 2(bridge_slave_1) entered blocking state [ 395.190656][T12520] bridge0: port 2(bridge_slave_1) entered forwarding state [ 395.199225][T12520] bridge0: port 1(bridge_slave_0) entered blocking state [ 395.207339][T12520] bridge0: port 1(bridge_slave_0) entered forwarding state [ 395.731308][T12520] 8021q: adding VLAN 0 to HW filter on device bond0 [ 395.811679][T12520] 8021q: adding VLAN 0 to HW filter on device team0 [ 396.430142][T12520] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 396.873917][ T5840] Bluetooth: hci1: command tx timeout [ 397.092450][T12520] veth0_vlan: entered promiscuous mode [ 397.142919][T12520] veth1_vlan: entered promiscuous mode [ 397.232419][T12520] veth0_macvtap: entered promiscuous mode [ 397.263544][T12520] veth1_macvtap: entered promiscuous mode [ 397.336852][T12520] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 397.373866][T12520] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.402786][T12520] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 397.436711][T12520] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.470081][T12520] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 397.501336][T12520] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.536138][T12520] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 397.574455][T12520] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.605924][T12520] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 397.632005][T12520] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 397.673415][T12520] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.696940][T12520] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 397.736450][T12520] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.760970][T12520] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 397.792035][T12520] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.822533][T12520] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 397.853912][T12520] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.883282][T12520] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 397.915267][T12520] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 397.949998][T12520] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 397.980147][T12520] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 398.004146][T12520] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 398.606309][T11743] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 398.642729][T11743] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 398.741768][T11743] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 398.770469][T11743] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 398.824193][T12646] cgroup: fork rejected by pids controller in /syz3 [ 400.201723][T12705] cifs: Unknown parameter '?Rr/YCB@k1ĂrDۏop8@<'CJ`*!Zh' [ 400.298859][T12282] HfR: left promiscuous mode [ 400.539050][T12705] netlink: 342 bytes leftover after parsing attributes in process `syz.6.1417'. [ 402.778020][ T5850] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 402.788083][ T5850] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 402.796796][ T5850] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 402.806202][ T5850] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 402.813904][ T5850] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 402.821358][ T5850] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 402.833585][T12282] hsr_slave_0: left promiscuous mode [ 402.884200][T12282] hsr_slave_1: left promiscuous mode [ 402.910795][T12282] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 402.919404][ T5850] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 402.929599][T12282] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 402.930903][ T5850] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 402.948015][ T5850] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 402.965314][T12282] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 402.965760][ T5850] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 402.972757][T12282] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 402.993623][ T5850] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 403.007862][ T5850] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 403.090633][T12282] veth1_macvtap: left promiscuous mode [ 403.098095][T12282] veth0_macvtap: left promiscuous mode [ 403.108824][T12282] veth1_vlan: left promiscuous mode [ 403.141590][T12282] veth0_vlan: left promiscuous mode [ 404.559355][T12282] team0 (unregistering): Port device team_slave_1 removed [ 404.724839][T12282] team0 (unregistering): Port device team_slave_0 removed [ 404.874347][ T5840] Bluetooth: hci2: command tx timeout [ 405.124605][ T5840] Bluetooth: hci3: command tx timeout [ 406.103548][T12771] chnl_net:caif_netlink_parms(): no params data found [ 406.490314][T12282] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 406.544805][T12766] chnl_net:caif_netlink_parms(): no params data found [ 406.607509][T12805] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 406.621911][T12805] CPU: 0 UID: 0 PID: 12805 Comm: syz.6.1434 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 406.632844][T12805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 406.642948][T12805] Call Trace: [ 406.646268][T12805] [ 406.649229][T12805] dump_stack_lvl+0x16c/0x1f0 [ 406.653952][T12805] sysfs_warn_dup+0x7f/0xa0 [ 406.658500][T12805] sysfs_do_create_link_sd+0x124/0x140 [ 406.664106][T12805] sysfs_create_link+0x61/0xc0 [ 406.668932][T12805] device_add+0x62e/0x1a70 [ 406.673589][T12805] ? __pfx_device_add+0x10/0x10 [ 406.678496][T12805] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 406.684626][T12805] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 406.690785][T12805] wiphy_register+0x20d7/0x2d30 [ 406.695749][T12805] ? __pfx_wiphy_register+0x10/0x10 [ 406.701023][T12805] ieee80211_register_hw+0x2959/0x3fb0 [ 406.706572][T12805] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 406.712441][T12805] ? rcu_is_watching+0x12/0xc0 [ 406.717248][T12805] ? trace_hrtimer_init+0x19d/0x220 [ 406.722582][T12805] ? __hrtimer_init+0x106/0x2c0 [ 406.727606][T12805] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 406.733471][T12805] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 406.739824][T12805] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 406.746446][T12805] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 406.751754][T12805] hwsim_new_radio_nl+0xb42/0x12b0 [ 406.756880][T12805] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 406.762724][T12805] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 406.770117][T12805] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 406.777517][T12805] genl_family_rcv_msg_doit+0x202/0x2f0 [ 406.783097][T12805] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 406.789282][T12805] ? bpf_lsm_capable+0x9/0x10 [ 406.793980][T12805] ? security_capable+0x7e/0x260 [ 406.798947][T12805] ? ns_capable+0xd7/0x110 [ 406.803376][T12805] genl_rcv_msg+0x565/0x800 [ 406.807907][T12805] ? __pfx_genl_rcv_msg+0x10/0x10 [ 406.812952][T12805] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 406.818524][T12805] netlink_rcv_skb+0x165/0x410 [ 406.823307][T12805] ? __pfx_genl_rcv_msg+0x10/0x10 [ 406.828380][T12805] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 406.833755][T12805] ? down_read+0xc9/0x330 [ 406.838105][T12805] ? __pfx_down_read+0x10/0x10 [ 406.842887][T12805] ? netlink_deliver_tap+0x1ae/0xcf0 [ 406.848282][T12805] genl_rcv+0x28/0x40 [ 406.852283][T12805] netlink_unicast+0x53c/0x7f0 [ 406.857068][T12805] ? __pfx_netlink_unicast+0x10/0x10 [ 406.862382][T12805] ? __phys_addr_symbol+0x30/0x80 [ 406.867437][T12805] ? __check_object_size+0x488/0x710 [ 406.872749][T12805] netlink_sendmsg+0x8b8/0xd70 [ 406.877572][T12805] ? __pfx_netlink_sendmsg+0x10/0x10 [ 406.882891][T12805] ____sys_sendmsg+0x9ae/0xb40 [ 406.887686][T12805] ? copy_msghdr_from_user+0x10b/0x160 [ 406.893247][T12805] ? __pfx_____sys_sendmsg+0x10/0x10 [ 406.898556][T12805] ? netlink_recvmsg+0x81c/0xf30 [ 406.903514][T12805] ? __pfx___lock_acquire+0x10/0x10 [ 406.908737][T12805] ___sys_sendmsg+0x135/0x1e0 [ 406.913432][T12805] ? __pfx____sys_sendmsg+0x10/0x10 [ 406.918657][T12805] ? lock_acquire+0x2f/0xb0 [ 406.923179][T12805] ? __fget_files+0x40/0x3f0 [ 406.927798][T12805] ? fdget+0x176/0x210 [ 406.931881][T12805] __sys_sendmsg+0x117/0x1f0 [ 406.936484][T12805] ? __pfx___sys_sendmsg+0x10/0x10 [ 406.941616][T12805] ? __x64_sys_futex+0x1e1/0x4c0 [ 406.946597][T12805] do_syscall_64+0xcd/0x250 [ 406.951130][T12805] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 406.957046][T12805] RIP: 0033:0x7f3e1c97e719 [ 406.961521][T12805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 406.981261][T12805] RSP: 002b:00007f3e1d6f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 406.989785][T12805] RAX: ffffffffffffffda RBX: 00007f3e1cb35f80 RCX: 00007f3e1c97e719 [ 406.997766][T12805] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 407.005752][T12805] RBP: 00007f3e1c9f1616 R08: 0000000000000000 R09: 0000000000000000 [ 407.013734][T12805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 407.021718][T12805] R13: 0000000000000000 R14: 00007f3e1cb35f80 R15: 00007ffe37349688 [ 407.029746][T12805] [ 407.052557][ T5840] Bluetooth: hci2: command tx timeout [ 407.200192][ T5840] Bluetooth: hci3: command tx timeout [ 407.268717][T12282] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 407.371115][T12771] bridge0: port 1(bridge_slave_0) entered blocking state [ 407.394277][T12771] bridge0: port 1(bridge_slave_0) entered disabled state [ 407.430485][T12771] bridge_slave_0: entered allmulticast mode [ 407.457581][T12771] bridge_slave_0: entered promiscuous mode [ 407.537914][T12282] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 407.624968][T12771] bridge0: port 2(bridge_slave_1) entered blocking state [ 407.632168][T12771] bridge0: port 2(bridge_slave_1) entered disabled state [ 407.655472][T12771] bridge_slave_1: entered allmulticast mode [ 407.663122][T12771] bridge_slave_1: entered promiscuous mode [ 407.745956][T12282] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 407.815347][T12766] bridge0: port 1(bridge_slave_0) entered blocking state [ 407.822494][T12766] bridge0: port 1(bridge_slave_0) entered disabled state [ 407.829930][T12766] bridge_slave_0: entered allmulticast mode [ 407.845113][T12766] bridge_slave_0: entered promiscuous mode [ 407.877338][T12766] bridge0: port 2(bridge_slave_1) entered blocking state [ 407.893924][T12766] bridge0: port 2(bridge_slave_1) entered disabled state [ 407.901385][T12766] bridge_slave_1: entered allmulticast mode [ 407.913464][T12766] bridge_slave_1: entered promiscuous mode [ 408.013693][T12771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 408.030394][T12766] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 408.057057][T12771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 408.081779][T12766] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 408.230340][T12766] team0: Port device team_slave_0 added [ 408.242928][T12771] team0: Port device team_slave_0 added [ 408.298266][T12766] team0: Port device team_slave_1 added [ 408.345618][T12771] team0: Port device team_slave_1 added [ 408.436284][T12766] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 408.443288][T12766] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 408.503455][T12766] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 408.619793][T12282] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 408.672645][T12832] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1439'. [ 408.713432][T12771] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 408.744669][T12771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 408.796263][T12771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 408.818785][T12766] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 408.833975][T12766] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 408.906758][T12766] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 409.031772][T12282] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 409.115415][ T5840] Bluetooth: hci2: command tx timeout [ 409.268065][T12771] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 409.283973][ T5840] Bluetooth: hci3: command tx timeout [ 409.307198][T12771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 409.402386][T12771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 409.518414][T12282] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 409.769265][T12771] hsr_slave_0: entered promiscuous mode [ 409.794685][T12771] hsr_slave_1: entered promiscuous mode [ 409.823070][T12771] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 409.844107][T12771] Cannot create hsr debugfs directory [ 409.874816][T12282] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 409.958311][T12766] hsr_slave_0: entered promiscuous mode [ 409.980074][T12766] hsr_slave_1: entered promiscuous mode [ 410.006821][T12766] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 410.023909][T12766] Cannot create hsr debugfs directory [ 410.526726][T12282] bridge_slave_1: left allmulticast mode [ 410.532953][T12282] bridge_slave_1: left promiscuous mode [ 410.544159][T12282] bridge0: port 2(bridge_slave_1) entered disabled state [ 410.620039][T12282] bridge_slave_0: left allmulticast mode [ 410.626101][T12282] bridge_slave_0: left promiscuous mode [ 410.631853][T12282] bridge0: port 1(bridge_slave_0) entered disabled state [ 410.679334][T12282] bridge_slave_1: left allmulticast mode [ 410.685954][T12282] bridge_slave_1: left promiscuous mode [ 410.691871][T12282] bridge0: port 2(bridge_slave_1) entered disabled state [ 410.824348][T12282] bridge_slave_0: left allmulticast mode [ 410.830292][T12282] bridge_slave_0: left promiscuous mode [ 410.836140][T12282] bridge0: port 1(bridge_slave_0) entered disabled state [ 411.194585][ T5840] Bluetooth: hci2: command tx timeout [ 411.359831][ T5840] Bluetooth: hci3: command tx timeout [ 411.899901][ T29] audit: type=1326 audit(4294967333.718:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12877 comm="syz.4.1445" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8c6db7e719 code=0x0 [ 411.942883][T12282] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 411.959703][T12282] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 411.972005][T12282] bond0 (unregistering): Released all slaves [ 412.127800][T12282] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 412.142242][T12282] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 412.155624][T12282] bond0 (unregistering): Released all slaves [ 412.247624][T12881] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 412.262266][T12881] CPU: 1 UID: 0 PID: 12881 Comm: syz.6.1444 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 412.273094][T12881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 412.283262][T12881] Call Trace: [ 412.286679][T12881] [ 412.289608][T12881] dump_stack_lvl+0x16c/0x1f0 [ 412.294411][T12881] sysfs_warn_dup+0x7f/0xa0 [ 412.298927][T12881] sysfs_do_create_link_sd+0x124/0x140 [ 412.304420][T12881] sysfs_create_link+0x61/0xc0 [ 412.309256][T12881] device_add+0x62e/0x1a70 [ 412.313700][T12881] ? __pfx_device_add+0x10/0x10 [ 412.318571][T12881] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 412.324498][T12881] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 412.330506][T12881] wiphy_register+0x20d7/0x2d30 [ 412.335389][T12881] ? __pfx_wiphy_register+0x10/0x10 [ 412.340624][T12881] ieee80211_register_hw+0x2959/0x3fb0 [ 412.346107][T12881] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 412.351951][T12881] ? rcu_is_watching+0x12/0xc0 [ 412.356725][T12881] ? trace_hrtimer_init+0x19d/0x220 [ 412.361944][T12881] ? __hrtimer_init+0x106/0x2c0 [ 412.366861][T12881] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 412.372627][T12881] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 412.378720][T12881] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 412.385336][T12881] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 412.390654][T12881] hwsim_new_radio_nl+0xb42/0x12b0 [ 412.395838][T12881] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 412.401421][T12881] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 412.408819][T12881] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 412.416307][T12881] genl_family_rcv_msg_doit+0x202/0x2f0 [ 412.421877][T12881] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 412.427968][T12881] ? bpf_lsm_capable+0x9/0x10 [ 412.432682][T12881] ? security_capable+0x7e/0x260 [ 412.437651][T12881] ? ns_capable+0xd7/0x110 [ 412.442094][T12881] genl_rcv_msg+0x565/0x800 [ 412.446632][T12881] ? __pfx_genl_rcv_msg+0x10/0x10 [ 412.451677][T12881] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 412.457253][T12881] netlink_rcv_skb+0x165/0x410 [ 412.462040][T12881] ? __pfx_genl_rcv_msg+0x10/0x10 [ 412.467093][T12881] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 412.472410][T12881] ? down_read+0xc9/0x330 [ 412.476781][T12881] ? __pfx_down_read+0x10/0x10 [ 412.481567][T12881] ? netlink_deliver_tap+0x1ae/0xcf0 [ 412.486907][T12881] genl_rcv+0x28/0x40 [ 412.490915][T12881] netlink_unicast+0x53c/0x7f0 [ 412.495698][T12881] ? __pfx_netlink_unicast+0x10/0x10 [ 412.501002][T12881] ? __phys_addr_symbol+0x30/0x80 [ 412.506049][T12881] ? __check_object_size+0x488/0x710 [ 412.511355][T12881] netlink_sendmsg+0x8b8/0xd70 [ 412.516150][T12881] ? __pfx_netlink_sendmsg+0x10/0x10 [ 412.521471][T12881] ____sys_sendmsg+0x9ae/0xb40 [ 412.526251][T12881] ? copy_msghdr_from_user+0x10b/0x160 [ 412.531723][T12881] ? __pfx_____sys_sendmsg+0x10/0x10 [ 412.537035][T12881] ? __pfx___lock_acquire+0x10/0x10 [ 412.542364][T12881] ___sys_sendmsg+0x135/0x1e0 [ 412.547056][T12881] ? __pfx____sys_sendmsg+0x10/0x10 [ 412.552278][T12881] ? lock_acquire+0x2f/0xb0 [ 412.556795][T12881] ? __fget_files+0x40/0x3f0 [ 412.561407][T12881] ? fdget+0x176/0x210 [ 412.565497][T12881] __sys_sendmsg+0x117/0x1f0 [ 412.570110][T12881] ? __pfx___sys_sendmsg+0x10/0x10 [ 412.575238][T12881] ? __x64_sys_futex+0x1e1/0x4c0 [ 412.580207][T12881] do_syscall_64+0xcd/0x250 [ 412.584745][T12881] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 412.590761][T12881] RIP: 0033:0x7f3e1c97e719 [ 412.595185][T12881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 412.614821][T12881] RSP: 002b:00007f3e1d6f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 412.623281][T12881] RAX: ffffffffffffffda RBX: 00007f3e1cb35f80 RCX: 00007f3e1c97e719 [ 412.631263][T12881] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 412.639330][T12881] RBP: 00007f3e1c9f1616 R08: 0000000000000000 R09: 0000000000000000 [ 412.647319][T12881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 412.655297][T12881] R13: 0000000000000000 R14: 00007f3e1cb35f80 R15: 00007ffe37349688 [ 412.663293][T12881] [ 413.469434][T12907] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 413.495475][T12907] CPU: 0 UID: 0 PID: 12907 Comm: syz.6.1451 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 413.506612][T12907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 413.516711][T12907] Call Trace: [ 413.520260][T12907] [ 413.523199][T12907] dump_stack_lvl+0x16c/0x1f0 [ 413.527924][T12907] sysfs_warn_dup+0x7f/0xa0 [ 413.532475][T12907] sysfs_do_create_link_sd+0x124/0x140 [ 413.537981][T12907] sysfs_create_link+0x61/0xc0 [ 413.542785][T12907] device_add+0x62e/0x1a70 [ 413.547232][T12907] ? __pfx_device_add+0x10/0x10 [ 413.552106][T12907] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 413.558030][T12907] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 413.564130][T12907] wiphy_register+0x20d7/0x2d30 [ 413.569024][T12907] ? __pfx_wiphy_register+0x10/0x10 [ 413.574258][T12907] ieee80211_register_hw+0x2959/0x3fb0 [ 413.579759][T12907] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 413.585590][T12907] ? rcu_is_watching+0x12/0xc0 [ 413.590371][T12907] ? trace_hrtimer_init+0x19d/0x220 [ 413.595606][T12907] ? __hrtimer_init+0x106/0x2c0 [ 413.601033][T12907] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 413.606821][T12907] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 413.613028][T12907] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 413.619672][T12907] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 413.624986][T12907] hwsim_new_radio_nl+0xb42/0x12b0 [ 413.630134][T12907] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 413.635722][T12907] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 413.643142][T12907] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 413.650556][T12907] genl_family_rcv_msg_doit+0x202/0x2f0 [ 413.656137][T12907] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 413.662231][T12907] ? bpf_lsm_capable+0x9/0x10 [ 413.666950][T12907] ? security_capable+0x7e/0x260 [ 413.672082][T12907] ? ns_capable+0xd7/0x110 [ 413.676513][T12907] genl_rcv_msg+0x565/0x800 [ 413.681039][T12907] ? __pfx_genl_rcv_msg+0x10/0x10 [ 413.686083][T12907] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 413.691650][T12907] netlink_rcv_skb+0x165/0x410 [ 413.696434][T12907] ? __pfx_genl_rcv_msg+0x10/0x10 [ 413.701480][T12907] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 413.706801][T12907] ? down_read+0xc9/0x330 [ 413.711232][T12907] ? __pfx_down_read+0x10/0x10 [ 413.716005][T12907] ? netlink_deliver_tap+0x1ae/0xcf0 [ 413.721305][T12907] genl_rcv+0x28/0x40 [ 413.725300][T12907] netlink_unicast+0x53c/0x7f0 [ 413.730080][T12907] ? __pfx_netlink_unicast+0x10/0x10 [ 413.735382][T12907] ? __phys_addr_symbol+0x30/0x80 [ 413.740419][T12907] ? __check_object_size+0x488/0x710 [ 413.745723][T12907] netlink_sendmsg+0x8b8/0xd70 [ 413.750507][T12907] ? __pfx_netlink_sendmsg+0x10/0x10 [ 413.755818][T12907] ____sys_sendmsg+0x9ae/0xb40 [ 413.760603][T12907] ? copy_msghdr_from_user+0x10b/0x160 [ 413.766228][T12907] ? __pfx_____sys_sendmsg+0x10/0x10 [ 413.771539][T12907] ? __pfx___lock_acquire+0x10/0x10 [ 413.777021][T12907] ___sys_sendmsg+0x135/0x1e0 [ 413.781712][T12907] ? __pfx____sys_sendmsg+0x10/0x10 [ 413.786941][T12907] ? lock_acquire+0x2f/0xb0 [ 413.791461][T12907] ? __fget_files+0x40/0x3f0 [ 413.796074][T12907] ? fdget+0x176/0x210 [ 413.800229][T12907] __sys_sendmsg+0x117/0x1f0 [ 413.804834][T12907] ? __pfx___sys_sendmsg+0x10/0x10 [ 413.809963][T12907] ? __x64_sys_futex+0x1e1/0x4c0 [ 413.814934][T12907] do_syscall_64+0xcd/0x250 [ 413.819450][T12907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 413.825361][T12907] RIP: 0033:0x7f3e1c97e719 [ 413.829788][T12907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 413.849410][T12907] RSP: 002b:00007f3e1d6f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 413.857835][T12907] RAX: ffffffffffffffda RBX: 00007f3e1cb35f80 RCX: 00007f3e1c97e719 [ 413.865817][T12907] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 413.873795][T12907] RBP: 00007f3e1c9f1616 R08: 0000000000000000 R09: 0000000000000000 [ 413.881773][T12907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 413.889748][T12907] R13: 0000000000000000 R14: 00007f3e1cb35f80 R15: 00007ffe37349688 [ 413.897919][T12907] [ 414.527809][T12282] hsr_slave_0: left promiscuous mode [ 414.541632][T12282] hsr_slave_1: left promiscuous mode [ 414.560767][T12282] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 414.572526][T12282] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 414.604591][T12282] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 414.622296][T12282] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 414.657497][T12282] hsr_slave_0: left promiscuous mode [ 414.663661][T12282] hsr_slave_1: left promiscuous mode [ 414.672638][T12282] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 414.690641][T12282] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 414.698850][T12282] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 414.710259][T12282] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 414.775576][T12282] veth1_macvtap: left promiscuous mode [ 414.781168][T12282] veth0_macvtap: left promiscuous mode [ 414.800289][T12282] veth1_vlan: left promiscuous mode [ 414.809353][T12282] veth0_vlan: left promiscuous mode [ 414.820531][T12282] veth1_macvtap: left promiscuous mode [ 414.830354][T12282] veth0_macvtap: left promiscuous mode [ 414.836594][T12282] veth1_vlan: left promiscuous mode [ 414.842010][T12282] veth0_vlan: left promiscuous mode [ 415.812293][T12282] team0 (unregistering): Port device team_slave_1 removed [ 415.883532][T12282] team0 (unregistering): Port device team_slave_0 removed [ 416.876767][T12282] team0 (unregistering): Port device team_slave_1 removed [ 416.919812][T12282] team0 (unregistering): Port device team_slave_0 removed [ 417.507793][T12766] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 417.584132][T12935] svc: failed to register nfsdv3 RPC service (errno 111). [ 417.597917][T12766] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 417.621535][T12766] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 417.623487][T12935] svc: failed to register nfsaclv3 RPC service (errno 111). [ 417.684968][T12771] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 417.759148][T12766] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 417.772653][T12771] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 417.783403][T12771] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 417.832663][T12771] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 418.008695][T12941] HfR: entered promiscuous mode [ 418.068005][T12941] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1458'. [ 418.195160][T12771] 8021q: adding VLAN 0 to HW filter on device bond0 [ 418.216820][T12766] 8021q: adding VLAN 0 to HW filter on device bond0 [ 418.249306][T12771] 8021q: adding VLAN 0 to HW filter on device team0 [ 418.348690][T12766] 8021q: adding VLAN 0 to HW filter on device team0 [ 418.365690][T12277] bridge0: port 1(bridge_slave_0) entered blocking state [ 418.372870][T12277] bridge0: port 1(bridge_slave_0) entered forwarding state [ 418.403119][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 418.410335][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 418.448448][T11743] bridge0: port 1(bridge_slave_0) entered blocking state [ 418.455623][T11743] bridge0: port 1(bridge_slave_0) entered forwarding state [ 418.530233][T12288] bridge0: port 2(bridge_slave_1) entered blocking state [ 418.537467][T12288] bridge0: port 2(bridge_slave_1) entered forwarding state [ 418.636080][T12946] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1460'. [ 418.689126][T12946] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1460'. [ 418.962791][T12771] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 419.263292][T12766] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 419.334740][T12771] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 419.413152][T12766] veth0_vlan: entered promiscuous mode [ 419.466769][T12766] veth1_vlan: entered promiscuous mode [ 419.575426][T12766] veth0_macvtap: entered promiscuous mode [ 419.596763][T12766] veth1_macvtap: entered promiscuous mode [ 419.632652][T12766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 419.669306][T12766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 419.694186][T12766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 419.719846][T12766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 419.733418][T12766] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 419.752008][T12766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 419.772574][T12766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 419.789327][T12766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 419.801442][T12766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 419.827344][T12766] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 419.859058][T12766] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 419.880268][T12766] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 419.903963][T12766] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 419.922557][T12766] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 420.060004][T12771] veth0_vlan: entered promiscuous mode [ 420.123235][T12771] veth1_vlan: entered promiscuous mode [ 420.208925][T11743] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 420.230705][T11743] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 420.331200][T12771] veth0_macvtap: entered promiscuous mode [ 420.352686][T12286] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 420.367249][T12771] veth1_macvtap: entered promiscuous mode [ 420.376742][T12286] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 420.422484][T12771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 420.447106][T12771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.461119][T12771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 420.472599][T12771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.485966][T12771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 420.497036][T12771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.524916][T12771] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 420.563535][T12771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 420.574819][T12771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.586362][T12771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 420.597831][T12771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.608734][T12771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 420.620079][T12771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 420.632276][T12771] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 420.652222][T12771] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 420.662580][T12771] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 420.671962][T12771] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 420.681220][T12771] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 420.759509][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 420.777445][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 420.807856][T12277] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 420.817002][T12277] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 422.351814][T13095] debugfs: Directory '-侞6yռ ka;+1)p;!X+@' with parent 'ieee80211' already present! [ 423.271755][T13122] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1483'. [ 424.246943][T13147] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 424.414086][T13147] CPU: 0 UID: 0 PID: 13147 Comm: syz.6.1488 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 424.425010][T13147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 424.435106][T13147] Call Trace: [ 424.438417][T13147] [ 424.441384][T13147] dump_stack_lvl+0x16c/0x1f0 [ 424.446197][T13147] sysfs_warn_dup+0x7f/0xa0 [ 424.450754][T13147] sysfs_do_create_link_sd+0x124/0x140 [ 424.456263][T13147] sysfs_create_link+0x61/0xc0 [ 424.461077][T13147] device_add+0x62e/0x1a70 [ 424.465547][T13147] ? __pfx_device_add+0x10/0x10 [ 424.470434][T13147] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 424.476444][T13147] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 424.482539][T13147] wiphy_register+0x20d7/0x2d30 [ 424.487430][T13147] ? __pfx_wiphy_register+0x10/0x10 [ 424.492663][T13147] ieee80211_register_hw+0x2959/0x3fb0 [ 424.498152][T13147] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 424.503978][T13147] ? rcu_is_watching+0x12/0xc0 [ 424.508772][T13147] ? trace_hrtimer_init+0x19d/0x220 [ 424.514000][T13147] ? __hrtimer_init+0x106/0x2c0 [ 424.518881][T13147] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 424.524654][T13147] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 424.530768][T13147] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 424.537380][T13147] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 424.542685][T13147] hwsim_new_radio_nl+0xb42/0x12b0 [ 424.547812][T13147] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 424.553393][T13147] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 424.560788][T13147] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 424.568196][T13147] genl_family_rcv_msg_doit+0x202/0x2f0 [ 424.573770][T13147] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 424.579901][T13147] ? bpf_lsm_capable+0x9/0x10 [ 424.584591][T13147] ? security_capable+0x7e/0x260 [ 424.589592][T13147] ? ns_capable+0xd7/0x110 [ 424.594044][T13147] genl_rcv_msg+0x565/0x800 [ 424.598576][T13147] ? __pfx_genl_rcv_msg+0x10/0x10 [ 424.603654][T13147] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 424.609224][T13147] netlink_rcv_skb+0x165/0x410 [ 424.614036][T13147] ? __pfx_genl_rcv_msg+0x10/0x10 [ 424.619081][T13147] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 424.624393][T13147] ? down_read+0xc9/0x330 [ 424.628740][T13147] ? __pfx_down_read+0x10/0x10 [ 424.633512][T13147] ? netlink_deliver_tap+0x1ae/0xcf0 [ 424.638820][T13147] genl_rcv+0x28/0x40 [ 424.642816][T13147] netlink_unicast+0x53c/0x7f0 [ 424.647599][T13147] ? __pfx_netlink_unicast+0x10/0x10 [ 424.652927][T13147] ? __phys_addr_symbol+0x30/0x80 [ 424.657965][T13147] ? __check_object_size+0x488/0x710 [ 424.663267][T13147] netlink_sendmsg+0x8b8/0xd70 [ 424.668049][T13147] ? __pfx_netlink_sendmsg+0x10/0x10 [ 424.673356][T13147] ____sys_sendmsg+0x9ae/0xb40 [ 424.678131][T13147] ? copy_msghdr_from_user+0x10b/0x160 [ 424.683600][T13147] ? __pfx_____sys_sendmsg+0x10/0x10 [ 424.688914][T13147] ? netlink_recvmsg+0x81c/0xf30 [ 424.693863][T13147] ? __pfx___lock_acquire+0x10/0x10 [ 424.699082][T13147] ___sys_sendmsg+0x135/0x1e0 [ 424.703776][T13147] ? __pfx____sys_sendmsg+0x10/0x10 [ 424.709002][T13147] ? lock_acquire+0x2f/0xb0 [ 424.713526][T13147] ? __fget_files+0x40/0x3f0 [ 424.718144][T13147] ? fdget+0x176/0x210 [ 424.722230][T13147] __sys_sendmsg+0x117/0x1f0 [ 424.726838][T13147] ? __pfx___sys_sendmsg+0x10/0x10 [ 424.731964][T13147] ? __x64_sys_futex+0x1e1/0x4c0 [ 424.736932][T13147] do_syscall_64+0xcd/0x250 [ 424.741450][T13147] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 424.747362][T13147] RIP: 0033:0x7f3e1c97e719 [ 424.751962][T13147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 424.771769][T13147] RSP: 002b:00007f3e1d6f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 424.780204][T13147] RAX: ffffffffffffffda RBX: 00007f3e1cb35f80 RCX: 00007f3e1c97e719 [ 424.788273][T13147] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 424.796251][T13147] RBP: 00007f3e1c9f1616 R08: 0000000000000000 R09: 0000000000000000 [ 424.804229][T13147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 424.812207][T13147] R13: 0000000000000000 R14: 00007f3e1cb35f80 R15: 00007ffe37349688 [ 424.820207][T13147] [ 425.642274][T12286] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 426.078022][T12286] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 426.261474][T12286] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 426.285067][ T5850] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 426.308387][ T5850] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 426.337112][ T5850] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 426.355870][ T5850] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 426.364777][ T5850] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 426.372192][ T5850] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 426.525356][T12286] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 426.934474][T12286] bridge_slave_1: left allmulticast mode [ 426.940171][T12286] bridge_slave_1: left promiscuous mode [ 426.946048][T12286] bridge0: port 2(bridge_slave_1) entered disabled state [ 427.161930][T12286] bridge_slave_0: left allmulticast mode [ 427.188529][T12286] bridge_slave_0: left promiscuous mode [ 427.206653][T12286] bridge0: port 1(bridge_slave_0) entered disabled state [ 427.658685][T13185] RDS: rds_bind could not find a transport for fe80::300:0:0:0, load rds_tcp or rds_rdma? [ 428.492115][ T5840] Bluetooth: hci2: command tx timeout [ 428.714347][T12286] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 428.755658][T12286] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 428.776765][T12286] bond0 (unregistering): Released all slaves [ 428.803509][T13169] chnl_net:caif_netlink_parms(): no params data found [ 428.876426][T13187] debugfs: Directory '-侞6yռ ka;+1)p;!X+@' with parent 'ieee80211' already present! [ 429.735459][T13169] bridge0: port 1(bridge_slave_0) entered blocking state [ 429.742744][T13169] bridge0: port 1(bridge_slave_0) entered disabled state [ 429.753999][T13169] bridge_slave_0: entered allmulticast mode [ 429.761249][T13169] bridge_slave_0: entered promiscuous mode [ 429.837833][T13169] bridge0: port 2(bridge_slave_1) entered blocking state [ 429.864756][T13169] bridge0: port 2(bridge_slave_1) entered disabled state [ 429.894287][T13169] bridge_slave_1: entered allmulticast mode [ 429.901739][T13169] bridge_slave_1: entered promiscuous mode [ 430.302025][T13169] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 430.456104][T13169] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 430.554650][ T5840] Bluetooth: hci2: command tx timeout [ 431.470110][T13169] team0: Port device team_slave_0 added [ 431.542873][T13169] team0: Port device team_slave_1 added [ 431.804046][T12286] hsr_slave_0: left promiscuous mode [ 431.874089][T12286] hsr_slave_1: left promiscuous mode [ 431.934024][T12286] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 431.956961][T12286] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 431.990820][T12286] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 432.008348][T12286] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 432.112467][T12286] veth1_macvtap: left promiscuous mode [ 432.126226][T12286] veth0_macvtap: left promiscuous mode [ 432.141126][T12286] veth1_vlan: left promiscuous mode [ 432.153380][T12286] veth0_vlan: left promiscuous mode [ 432.653824][ T5840] Bluetooth: hci2: command tx timeout [ 433.982050][T12286] team0 (unregistering): Port device team_slave_1 removed [ 434.082647][T12286] team0 (unregistering): Port device team_slave_0 removed [ 434.721901][ T5840] Bluetooth: hci2: command tx timeout [ 434.935143][T13262] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 434.952805][T13262] CPU: 0 UID: 0 PID: 13262 Comm: syz.4.1516 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 434.963639][T13262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 434.973825][T13262] Call Trace: [ 434.977408][T13262] [ 434.980505][T13262] dump_stack_lvl+0x16c/0x1f0 [ 434.985229][T13262] sysfs_warn_dup+0x7f/0xa0 [ 434.989778][T13262] sysfs_do_create_link_sd+0x124/0x140 [ 434.995268][T13262] sysfs_create_link+0x61/0xc0 [ 435.000105][T13262] device_add+0x62e/0x1a70 [ 435.004575][T13262] ? __pfx_device_add+0x10/0x10 [ 435.009439][T13262] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 435.015362][T13262] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 435.021367][T13262] wiphy_register+0x20d7/0x2d30 [ 435.026250][T13262] ? __pfx_wiphy_register+0x10/0x10 [ 435.031570][T13262] ieee80211_register_hw+0x2959/0x3fb0 [ 435.037055][T13262] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 435.042882][T13262] ? rcu_is_watching+0x12/0xc0 [ 435.047662][T13262] ? trace_hrtimer_init+0x19d/0x220 [ 435.052876][T13262] ? __hrtimer_init+0x106/0x2c0 [ 435.057751][T13262] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 435.063515][T13262] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 435.069603][T13262] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 435.076207][T13262] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 435.081505][T13262] hwsim_new_radio_nl+0xb42/0x12b0 [ 435.086632][T13262] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 435.092194][T13262] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 435.099584][T13262] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 435.107065][T13262] genl_family_rcv_msg_doit+0x202/0x2f0 [ 435.112629][T13262] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 435.118722][T13262] ? bpf_lsm_capable+0x9/0x10 [ 435.123414][T13262] ? security_capable+0x7e/0x260 [ 435.128374][T13262] ? ns_capable+0xd7/0x110 [ 435.132802][T13262] genl_rcv_msg+0x565/0x800 [ 435.137328][T13262] ? __pfx_genl_rcv_msg+0x10/0x10 [ 435.142372][T13262] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 435.147951][T13262] netlink_rcv_skb+0x165/0x410 [ 435.152732][T13262] ? __pfx_genl_rcv_msg+0x10/0x10 [ 435.157867][T13262] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 435.163175][T13262] ? down_read+0xc9/0x330 [ 435.167531][T13262] ? __pfx_down_read+0x10/0x10 [ 435.172309][T13262] ? netlink_deliver_tap+0x1ae/0xcf0 [ 435.177698][T13262] genl_rcv+0x28/0x40 [ 435.181694][T13262] netlink_unicast+0x53c/0x7f0 [ 435.186482][T13262] ? __pfx_netlink_unicast+0x10/0x10 [ 435.191796][T13262] ? __phys_addr_symbol+0x30/0x80 [ 435.196835][T13262] ? __check_object_size+0x488/0x710 [ 435.202150][T13262] netlink_sendmsg+0x8b8/0xd70 [ 435.206950][T13262] ? __pfx_netlink_sendmsg+0x10/0x10 [ 435.212268][T13262] ____sys_sendmsg+0x9ae/0xb40 [ 435.217050][T13262] ? copy_msghdr_from_user+0x10b/0x160 [ 435.222525][T13262] ? __pfx_____sys_sendmsg+0x10/0x10 [ 435.227829][T13262] ? __pfx___lock_acquire+0x10/0x10 [ 435.233049][T13262] ___sys_sendmsg+0x135/0x1e0 [ 435.237770][T13262] ? __pfx____sys_sendmsg+0x10/0x10 [ 435.242993][T13262] ? lock_acquire+0x2f/0xb0 [ 435.247515][T13262] ? __fget_files+0x40/0x3f0 [ 435.252132][T13262] ? fdget+0x176/0x210 [ 435.256293][T13262] __sys_sendmsg+0x117/0x1f0 [ 435.260911][T13262] ? __pfx___sys_sendmsg+0x10/0x10 [ 435.266043][T13262] ? __x64_sys_futex+0x1e1/0x4c0 [ 435.271012][T13262] do_syscall_64+0xcd/0x250 [ 435.275535][T13262] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 435.281458][T13262] RIP: 0033:0x7f8c6db7e719 [ 435.285894][T13262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 435.305524][T13262] RSP: 002b:00007f8c6e977038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 435.314038][T13262] RAX: ffffffffffffffda RBX: 00007f8c6dd35f80 RCX: 00007f8c6db7e719 [ 435.322023][T13262] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 435.329998][T13262] RBP: 00007f8c6dbf1616 R08: 0000000000000000 R09: 0000000000000000 [ 435.338062][T13262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 435.346126][T13262] R13: 0000000000000000 R14: 00007f8c6dd35f80 R15: 00007ffce97f67b8 [ 435.354117][T13262] [ 435.588570][T13169] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 435.595756][T13169] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 435.622575][T13169] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 435.694167][T13169] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 435.701162][T13169] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 435.754128][T13169] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 436.047439][T13169] hsr_slave_0: entered promiscuous mode [ 436.074939][T13169] hsr_slave_1: entered promiscuous mode [ 436.089101][T13169] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 436.104899][T13169] Cannot create hsr debugfs directory [ 437.325280][T13333] delete_channel: no stack [ 438.387168][T13169] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 438.480134][T13169] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 438.525390][T13169] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 438.577579][T13169] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 438.693554][T13169] 8021q: adding VLAN 0 to HW filter on device bond0 [ 438.710969][T13169] 8021q: adding VLAN 0 to HW filter on device team0 [ 438.805970][T13169] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 438.816454][T13169] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 438.839420][T12286] bridge0: port 1(bridge_slave_0) entered blocking state [ 438.846619][T12286] bridge0: port 1(bridge_slave_0) entered forwarding state [ 438.875340][T12286] bridge0: port 2(bridge_slave_1) entered blocking state [ 438.882484][T12286] bridge0: port 2(bridge_slave_1) entered forwarding state [ 439.221277][T13169] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 439.376498][T13169] veth0_vlan: entered promiscuous mode [ 439.447948][T13169] veth1_vlan: entered promiscuous mode [ 439.473517][T13169] veth0_macvtap: entered promiscuous mode [ 439.483045][T13169] veth1_macvtap: entered promiscuous mode [ 439.498588][T13169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 439.509646][T13169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 439.520087][T13169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 439.530835][T13169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 439.541021][T13169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 439.551930][T13169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 439.567248][T13169] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 439.580033][T13169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 439.590634][T13169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 439.600921][T13169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 439.611797][T13169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 439.621905][T13169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 439.632559][T13169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 439.643884][T13169] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 439.653986][T13169] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 439.662743][T13169] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 439.671559][T13169] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 439.680868][T13169] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 440.196121][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 440.225080][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 440.282488][T12282] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 440.303893][T12282] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 440.323225][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.329750][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.859702][T13416] ptrace attach of "./syz-executor exec"[13169] was attempted by ""[13416] [ 441.735256][T13427] nbd: socks must be embedded in a SOCK_ITEM attr [ 443.454372][ T29] audit: type=1326 audit(4294967365.278:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13485 comm=093D exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3e1c97e719 code=0x0 [ 443.471198][T13491] HSR: entered promiscuous mode [ 447.708054][T13550] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 447.738937][T13550] CPU: 0 UID: 0 PID: 13550 Comm: syz.5.1566 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 447.749793][T13550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 447.759927][T13550] Call Trace: [ 447.763248][T13550] [ 447.766246][T13550] dump_stack_lvl+0x16c/0x1f0 [ 447.770996][T13550] sysfs_warn_dup+0x7f/0xa0 [ 447.775580][T13550] sysfs_do_create_link_sd+0x124/0x140 [ 447.781140][T13550] sysfs_create_link+0x61/0xc0 [ 447.785971][T13550] device_add+0x62e/0x1a70 [ 447.790448][T13550] ? __pfx_device_add+0x10/0x10 [ 447.795369][T13550] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 447.801756][T13550] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 447.807805][T13550] wiphy_register+0x20d7/0x2d30 [ 447.812741][T13550] ? __pfx_wiphy_register+0x10/0x10 [ 447.818112][T13550] ieee80211_register_hw+0x2959/0x3fb0 [ 447.823639][T13550] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 447.829519][T13550] ? rcu_is_watching+0x12/0xc0 [ 447.834379][T13550] ? trace_hrtimer_init+0x19d/0x220 [ 447.839636][T13550] ? __hrtimer_init+0x106/0x2c0 [ 447.844548][T13550] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 447.850353][T13550] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 447.856477][T13550] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 447.863123][T13550] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 447.868479][T13550] hwsim_new_radio_nl+0xb42/0x12b0 [ 447.873643][T13550] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 447.879342][T13550] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 447.886958][T13550] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 447.894492][T13550] genl_family_rcv_msg_doit+0x202/0x2f0 [ 447.900091][T13550] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 447.906201][T13550] ? bpf_lsm_capable+0x9/0x10 [ 447.910899][T13550] ? security_capable+0x7e/0x260 [ 447.915855][T13550] ? ns_capable+0xd7/0x110 [ 447.920284][T13550] genl_rcv_msg+0x565/0x800 [ 447.924814][T13550] ? __pfx_genl_rcv_msg+0x10/0x10 [ 447.929864][T13550] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 447.935450][T13550] netlink_rcv_skb+0x165/0x410 [ 447.940339][T13550] ? __pfx_genl_rcv_msg+0x10/0x10 [ 447.945394][T13550] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 447.950714][T13550] ? down_read+0xc9/0x330 [ 447.955059][T13550] ? __pfx_down_read+0x10/0x10 [ 447.959921][T13550] ? netlink_deliver_tap+0x1ae/0xcf0 [ 447.965231][T13550] genl_rcv+0x28/0x40 [ 447.969235][T13550] netlink_unicast+0x53c/0x7f0 [ 447.974039][T13550] ? __pfx_netlink_unicast+0x10/0x10 [ 447.979353][T13550] ? __phys_addr_symbol+0x30/0x80 [ 447.984418][T13550] ? __check_object_size+0x488/0x710 [ 447.989816][T13550] netlink_sendmsg+0x8b8/0xd70 [ 447.994606][T13550] ? __pfx_netlink_sendmsg+0x10/0x10 [ 448.000108][T13550] ____sys_sendmsg+0x9ae/0xb40 [ 448.004934][T13550] ? copy_msghdr_from_user+0x10b/0x160 [ 448.010427][T13550] ? __pfx_____sys_sendmsg+0x10/0x10 [ 448.015754][T13550] ? netlink_recvmsg+0x81c/0xf30 [ 448.020729][T13550] ? __pfx___lock_acquire+0x10/0x10 [ 448.025956][T13550] ___sys_sendmsg+0x135/0x1e0 [ 448.030651][T13550] ? __pfx____sys_sendmsg+0x10/0x10 [ 448.035876][T13550] ? lock_acquire+0x2f/0xb0 [ 448.040393][T13550] ? __fget_files+0x40/0x3f0 [ 448.045107][T13550] ? fdget+0x176/0x210 [ 448.049188][T13550] __sys_sendmsg+0x117/0x1f0 [ 448.053809][T13550] ? __pfx___sys_sendmsg+0x10/0x10 [ 448.058939][T13550] ? __x64_sys_futex+0x1e1/0x4c0 [ 448.063903][T13550] do_syscall_64+0xcd/0x250 [ 448.068426][T13550] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 448.074337][T13550] RIP: 0033:0x7f506f97e719 [ 448.078758][T13550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 448.098373][T13550] RSP: 002b:00007f5070854038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 448.106807][T13550] RAX: ffffffffffffffda RBX: 00007f506fb35f80 RCX: 00007f506f97e719 [ 448.114788][T13550] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 448.122797][T13550] RBP: 00007f506f9f1616 R08: 0000000000000000 R09: 0000000000000000 [ 448.130863][T13550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 448.138841][T13550] R13: 0000000000000000 R14: 00007f506fb35f80 R15: 00007ffd64300988 [ 448.146834][T13550] [ 449.300561][T13568] bridge0: port 3(bond0) entered blocking state [ 449.344097][T13568] bridge0: port 3(bond0) entered disabled state [ 449.369224][T13568] bond0: entered allmulticast mode [ 449.413886][T13568] bond_slave_0: entered allmulticast mode [ 449.431305][T13568] bond_slave_1: entered allmulticast mode [ 449.487128][T13568] bond0: entered promiscuous mode [ 449.492247][T13568] bond_slave_0: entered promiscuous mode [ 449.555255][T13568] bond_slave_1: entered promiscuous mode [ 449.561836][T13568] bridge0: port 3(bond0) entered blocking state [ 449.568256][T13568] bridge0: port 3(bond0) entered forwarding state [ 449.988191][T13573] Unable to find swap-space signature [ 450.137062][ T5850] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 450.150070][ T5850] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 450.154087][T13575] openvswitch: netlink: Message has 4 unknown bytes. [ 450.175695][ T5850] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 450.186363][ T5850] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 450.195782][ T5850] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 450.203127][ T5850] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 450.426907][T13580] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 450.468067][T13580] CPU: 0 UID: 0 PID: 13580 Comm: syz.6.1576 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 450.478911][T13580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 450.489022][T13580] Call Trace: [ 450.492426][T13580] [ 450.495393][T13580] dump_stack_lvl+0x16c/0x1f0 [ 450.500168][T13580] sysfs_warn_dup+0x7f/0xa0 [ 450.504736][T13580] sysfs_do_create_link_sd+0x124/0x140 [ 450.510250][T13580] sysfs_create_link+0x61/0xc0 [ 450.515063][T13580] device_add+0x62e/0x1a70 [ 450.519536][T13580] ? __pfx_device_add+0x10/0x10 [ 450.524443][T13580] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 450.530401][T13580] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 450.536612][T13580] wiphy_register+0x20d7/0x2d30 [ 450.541532][T13580] ? __pfx_wiphy_register+0x10/0x10 [ 450.546803][T13580] ieee80211_register_hw+0x2959/0x3fb0 [ 450.552331][T13580] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 450.558197][T13580] ? rcu_is_watching+0x12/0xc0 [ 450.563020][T13580] ? trace_hrtimer_init+0x19d/0x220 [ 450.568277][T13580] ? __hrtimer_init+0x106/0x2c0 [ 450.573211][T13580] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 450.579036][T13580] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 450.585178][T13580] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 450.591822][T13580] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 450.597167][T13580] hwsim_new_radio_nl+0xb42/0x12b0 [ 450.602325][T13580] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 450.607929][T13580] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 450.615373][T13580] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 450.622822][T13580] genl_family_rcv_msg_doit+0x202/0x2f0 [ 450.628444][T13580] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 450.634585][T13580] ? bpf_lsm_capable+0x9/0x10 [ 450.639315][T13580] ? security_capable+0x7e/0x260 [ 450.644304][T13580] ? ns_capable+0xd7/0x110 [ 450.648761][T13580] genl_rcv_msg+0x565/0x800 [ 450.653316][T13580] ? __pfx_genl_rcv_msg+0x10/0x10 [ 450.658393][T13580] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 450.663995][T13580] netlink_rcv_skb+0x165/0x410 [ 450.668811][T13580] ? __pfx_genl_rcv_msg+0x10/0x10 [ 450.673885][T13580] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 450.679238][T13580] ? down_read+0xc9/0x330 [ 450.683611][T13580] ? __pfx_down_read+0x10/0x10 [ 450.689115][T13580] ? netlink_deliver_tap+0x1ae/0xcf0 [ 450.694464][T13580] genl_rcv+0x28/0x40 [ 450.698498][T13580] netlink_unicast+0x53c/0x7f0 [ 450.703319][T13580] ? __pfx_netlink_unicast+0x10/0x10 [ 450.708657][T13580] ? __phys_addr_symbol+0x30/0x80 [ 450.713727][T13580] ? __check_object_size+0x488/0x710 [ 450.719072][T13580] netlink_sendmsg+0x8b8/0xd70 [ 450.723904][T13580] ? __pfx_netlink_sendmsg+0x10/0x10 [ 450.729343][T13580] ____sys_sendmsg+0x9ae/0xb40 [ 450.734166][T13580] ? copy_msghdr_from_user+0x10b/0x160 [ 450.739672][T13580] ? __pfx_____sys_sendmsg+0x10/0x10 [ 450.745020][T13580] ? netlink_recvmsg+0x81c/0xf30 [ 450.750006][T13580] ? __pfx___lock_acquire+0x10/0x10 [ 450.755278][T13580] ___sys_sendmsg+0x135/0x1e0 [ 450.760009][T13580] ? __pfx____sys_sendmsg+0x10/0x10 [ 450.765277][T13580] ? lock_acquire+0x2f/0xb0 [ 450.769830][T13580] ? __fget_files+0x40/0x3f0 [ 450.774478][T13580] ? fdget+0x176/0x210 [ 450.778594][T13580] __sys_sendmsg+0x117/0x1f0 [ 450.783230][T13580] ? __pfx___sys_sendmsg+0x10/0x10 [ 450.788383][T13580] ? __x64_sys_futex+0x1e1/0x4c0 [ 450.793388][T13580] do_syscall_64+0xcd/0x250 [ 450.797949][T13580] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 450.803898][T13580] RIP: 0033:0x7f3e1c97e719 [ 450.808361][T13580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 450.828030][T13580] RSP: 002b:00007f3e1d6f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 450.836582][T13580] RAX: ffffffffffffffda RBX: 00007f3e1cb35f80 RCX: 00007f3e1c97e719 [ 450.844604][T13580] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 450.852621][T13580] RBP: 00007f3e1c9f1616 R08: 0000000000000000 R09: 0000000000000000 [ 450.860670][T13580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 450.868688][T13580] R13: 0000000000000000 R14: 00007f3e1cb35f80 R15: 00007ffe37349688 [ 450.876810][T13580] [ 451.019060][T13585] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1578'. [ 451.187427][T13576] chnl_net:caif_netlink_parms(): no params data found [ 451.355388][T13591] delete_channel: no stack [ 451.804297][T13608] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1583'. [ 451.902815][T12277] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 451.948355][T13576] bridge0: port 1(bridge_slave_0) entered blocking state [ 451.958019][T13576] bridge0: port 1(bridge_slave_0) entered disabled state [ 451.971055][T13576] bridge_slave_0: entered allmulticast mode [ 451.986634][T13576] bridge_slave_0: entered promiscuous mode [ 452.103729][T12277] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 452.157445][T13576] bridge0: port 2(bridge_slave_1) entered blocking state [ 452.169279][T13576] bridge0: port 2(bridge_slave_1) entered disabled state [ 452.213295][T13576] bridge_slave_1: entered allmulticast mode [ 452.235018][T13576] bridge_slave_1: entered promiscuous mode [ 452.315451][ T5850] Bluetooth: hci2: command tx timeout [ 452.319160][T12277] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 452.447903][T13576] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 452.528816][T12277] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 452.565073][T13576] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 452.712590][T13576] team0: Port device team_slave_0 added [ 452.778625][T13576] team0: Port device team_slave_1 added [ 452.871409][T13576] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 452.884684][T13576] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 452.933815][T13576] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 452.955838][T13576] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 452.962836][T13576] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 453.013928][T13576] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 453.232913][T13576] hsr_slave_0: entered promiscuous mode [ 453.254777][T13576] hsr_slave_1: entered promiscuous mode [ 453.276155][T13576] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 453.293951][T13576] Cannot create hsr debugfs directory [ 453.507356][T12277] bridge_slave_1: left allmulticast mode [ 453.513075][T12277] bridge_slave_1: left promiscuous mode [ 453.538807][T12277] bridge0: port 2(bridge_slave_1) entered disabled state [ 453.587249][T12277] bridge_slave_0: left allmulticast mode [ 453.592952][T12277] bridge_slave_0: left promiscuous mode [ 453.626028][T12277] bridge0: port 1(bridge_slave_0) entered disabled state [ 454.234348][T12277] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 454.254714][T12277] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 454.277222][T12277] bond0 (unregistering): Released all slaves [ 454.325305][T13628] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 454.359680][T13628] CPU: 1 UID: 0 PID: 13628 Comm: syz.5.1588 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 454.370519][T13628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 454.380625][T13628] Call Trace: [ 454.383927][T13628] [ 454.386883][T13628] dump_stack_lvl+0x16c/0x1f0 [ 454.391611][T13628] sysfs_warn_dup+0x7f/0xa0 [ 454.396158][T13628] sysfs_do_create_link_sd+0x124/0x140 [ 454.401672][T13628] sysfs_create_link+0x61/0xc0 [ 454.406477][T13628] device_add+0x62e/0x1a70 [ 454.410938][T13628] ? __pfx_device_add+0x10/0x10 [ 454.415832][T13628] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 454.417590][ T5850] Bluetooth: hci2: command tx timeout [ 454.421755][T13628] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 454.433138][T13628] wiphy_register+0x20d7/0x2d30 [ 454.438056][T13628] ? __pfx_wiphy_register+0x10/0x10 [ 454.443316][T13628] ieee80211_register_hw+0x2959/0x3fb0 [ 454.448828][T13628] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 454.454700][T13628] ? rcu_is_watching+0x12/0xc0 [ 454.459506][T13628] ? trace_hrtimer_init+0x19d/0x220 [ 454.464761][T13628] ? __hrtimer_init+0x106/0x2c0 [ 454.469761][T13628] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 454.475560][T13628] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 454.481680][T13628] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 454.488320][T13628] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 454.493654][T13628] hwsim_new_radio_nl+0xb42/0x12b0 [ 454.498807][T13628] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 454.504484][T13628] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 454.511901][T13628] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 454.519335][T13628] genl_family_rcv_msg_doit+0x202/0x2f0 [ 454.524941][T13628] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 454.531060][T13628] ? bpf_lsm_capable+0x9/0x10 [ 454.535773][T13628] ? security_capable+0x7e/0x260 [ 454.540757][T13628] ? ns_capable+0xd7/0x110 [ 454.545220][T13628] genl_rcv_msg+0x565/0x800 [ 454.549780][T13628] ? __pfx_genl_rcv_msg+0x10/0x10 [ 454.554864][T13628] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 454.560458][T13628] netlink_rcv_skb+0x165/0x410 [ 454.565278][T13628] ? __pfx_genl_rcv_msg+0x10/0x10 [ 454.570352][T13628] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 454.575698][T13628] ? down_read+0xc9/0x330 [ 454.580062][T13628] ? __pfx_down_read+0x10/0x10 [ 454.584865][T13628] ? netlink_deliver_tap+0x1ae/0xcf0 [ 454.590204][T13628] genl_rcv+0x28/0x40 [ 454.594225][T13628] netlink_unicast+0x53c/0x7f0 [ 454.599065][T13628] ? __pfx_netlink_unicast+0x10/0x10 [ 454.604395][T13628] ? __phys_addr_symbol+0x30/0x80 [ 454.609453][T13628] ? __check_object_size+0x488/0x710 [ 454.614798][T13628] netlink_sendmsg+0x8b8/0xd70 [ 454.619611][T13628] ? __pfx_netlink_sendmsg+0x10/0x10 [ 454.625766][T13628] ____sys_sendmsg+0x9ae/0xb40 [ 454.630581][T13628] ? copy_msghdr_from_user+0x10b/0x160 [ 454.636084][T13628] ? __pfx_____sys_sendmsg+0x10/0x10 [ 454.641418][T13628] ? netlink_recvmsg+0x81c/0xf30 [ 454.646402][T13628] ? __pfx___lock_acquire+0x10/0x10 [ 454.651665][T13628] ___sys_sendmsg+0x135/0x1e0 [ 454.656479][T13628] ? __pfx____sys_sendmsg+0x10/0x10 [ 454.661790][T13628] ? lock_acquire+0x2f/0xb0 [ 454.666340][T13628] ? __fget_files+0x40/0x3f0 [ 454.670981][T13628] ? fdget+0x176/0x210 [ 454.675092][T13628] __sys_sendmsg+0x117/0x1f0 [ 454.679719][T13628] ? __pfx___sys_sendmsg+0x10/0x10 [ 454.684882][T13628] ? __x64_sys_futex+0x1e1/0x4c0 [ 454.689964][T13628] do_syscall_64+0xcd/0x250 [ 454.694505][T13628] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 454.700448][T13628] RIP: 0033:0x7f506f97e719 [ 454.704903][T13628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 454.724729][T13628] RSP: 002b:00007f5070854038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 454.733194][T13628] RAX: ffffffffffffffda RBX: 00007f506fb35f80 RCX: 00007f506f97e719 [ 454.741198][T13628] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 454.749197][T13628] RBP: 00007f506f9f1616 R08: 0000000000000000 R09: 0000000000000000 [ 454.757209][T13628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 454.765216][T13628] R13: 0000000000000000 R14: 00007f506fb35f80 R15: 00007ffd64300988 [ 454.773244][T13628] [ 454.817804][T12277] HSR: left promiscuous mode [ 455.641629][T12277] hsr_slave_0: left promiscuous mode [ 455.680815][T12277] hsr_slave_1: left promiscuous mode [ 455.731378][T13662] netlink: 5 bytes leftover after parsing attributes in process `syz.4.1595'. [ 455.741718][T12277] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 455.757049][T12277] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 455.811425][T12277] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 455.835159][T12277] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 455.924604][T12277] veth1_macvtap: left promiscuous mode [ 455.930191][T12277] veth0_macvtap: left promiscuous mode [ 455.958725][T12277] veth1_vlan: left promiscuous mode [ 455.964388][T13653] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1593'. [ 455.984711][T12277] veth0_vlan: left promiscuous mode [ 456.482726][ T5850] Bluetooth: hci2: command tx timeout [ 456.880075][T13681] cgroup: fork rejected by pids controller in /syz5 [ 458.535391][T12277] team0 (unregistering): Port device team_slave_1 removed [ 458.564255][ T5850] Bluetooth: hci2: command tx timeout [ 459.164592][T12277] team0 (unregistering): Port device team_slave_0 removed [ 461.187430][T13662] HSR: entered promiscuous mode [ 461.762798][T13849] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 461.780029][T13849] CPU: 1 UID: 0 PID: 13849 Comm: syz.5.1599 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 461.790867][T13849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 461.800965][T13849] Call Trace: [ 461.804273][T13849] [ 461.807230][T13849] dump_stack_lvl+0x16c/0x1f0 [ 461.811951][T13849] sysfs_warn_dup+0x7f/0xa0 [ 461.816539][T13849] sysfs_do_create_link_sd+0x124/0x140 [ 461.822062][T13849] sysfs_create_link+0x61/0xc0 [ 461.827044][T13849] device_add+0x62e/0x1a70 [ 461.831516][T13849] ? __pfx_device_add+0x10/0x10 [ 461.836423][T13849] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 461.842371][T13849] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 461.848494][T13849] wiphy_register+0x20d7/0x2d30 [ 461.853927][T13849] ? __pfx_wiphy_register+0x10/0x10 [ 461.860184][T13849] ieee80211_register_hw+0x2959/0x3fb0 [ 461.865744][T13849] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 461.871607][T13849] ? rcu_is_watching+0x12/0xc0 [ 461.876510][T13849] ? trace_hrtimer_init+0x19d/0x220 [ 461.881758][T13849] ? __hrtimer_init+0x106/0x2c0 [ 461.886669][T13849] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 461.892548][T13849] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 461.898660][T13849] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 461.905299][T13849] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 461.910630][T13849] hwsim_new_radio_nl+0xb42/0x12b0 [ 461.915867][T13849] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 461.921460][T13849] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 461.929063][T13849] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 461.936511][T13849] genl_family_rcv_msg_doit+0x202/0x2f0 [ 461.942113][T13849] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 461.948243][T13849] ? bpf_lsm_capable+0x9/0x10 [ 461.952943][T13849] ? security_capable+0x7e/0x260 [ 461.957903][T13849] ? ns_capable+0xd7/0x110 [ 461.962336][T13849] genl_rcv_msg+0x565/0x800 [ 461.966953][T13849] ? __pfx_genl_rcv_msg+0x10/0x10 [ 461.972011][T13849] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 461.977666][T13849] netlink_rcv_skb+0x165/0x410 [ 461.982454][T13849] ? __pfx_genl_rcv_msg+0x10/0x10 [ 461.987499][T13849] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 461.992817][T13849] ? down_read+0xc9/0x330 [ 461.997169][T13849] ? __pfx_down_read+0x10/0x10 [ 462.001944][T13849] ? netlink_deliver_tap+0x1ae/0xcf0 [ 462.007247][T13849] genl_rcv+0x28/0x40 [ 462.011247][T13849] netlink_unicast+0x53c/0x7f0 [ 462.016045][T13849] ? __pfx_netlink_unicast+0x10/0x10 [ 462.021360][T13849] ? __phys_addr_symbol+0x30/0x80 [ 462.026405][T13849] ? __check_object_size+0x488/0x710 [ 462.031724][T13849] netlink_sendmsg+0x8b8/0xd70 [ 462.036519][T13849] ? __pfx_netlink_sendmsg+0x10/0x10 [ 462.041833][T13849] ____sys_sendmsg+0x9ae/0xb40 [ 462.046623][T13849] ? copy_msghdr_from_user+0x10b/0x160 [ 462.052096][T13849] ? __pfx_____sys_sendmsg+0x10/0x10 [ 462.057406][T13849] ? __pfx___lock_acquire+0x10/0x10 [ 462.062625][T13849] ___sys_sendmsg+0x135/0x1e0 [ 462.067316][T13849] ? __pfx____sys_sendmsg+0x10/0x10 [ 462.072540][T13849] ? lock_acquire+0x2f/0xb0 [ 462.077075][T13849] ? __fget_files+0x40/0x3f0 [ 462.082178][T13849] ? fdget+0x176/0x210 [ 462.086282][T13849] __sys_sendmsg+0x117/0x1f0 [ 462.090904][T13849] ? __pfx___sys_sendmsg+0x10/0x10 [ 462.096123][T13849] ? __x64_sys_futex+0x1e1/0x4c0 [ 462.101096][T13849] do_syscall_64+0xcd/0x250 [ 462.105647][T13849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 462.111558][T13849] RIP: 0033:0x7f506f97e719 [ 462.115990][T13849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 462.135631][T13849] RSP: 002b:00007f5070854038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 462.144086][T13849] RAX: ffffffffffffffda RBX: 00007f506fb35f80 RCX: 00007f506f97e719 [ 462.152065][T13849] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 462.160043][T13849] RBP: 00007f506f9f1616 R08: 0000000000000000 R09: 0000000000000000 [ 462.168020][T13849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 462.176002][T13849] R13: 0000000000000000 R14: 00007f506fb35f80 R15: 00007ffd64300988 [ 462.184084][T13849] [ 462.355612][T13576] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 462.424727][T13576] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 462.643910][T13576] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 462.686525][T13576] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 462.906014][T13576] 8021q: adding VLAN 0 to HW filter on device bond0 [ 462.961169][T13576] 8021q: adding VLAN 0 to HW filter on device team0 [ 463.002764][T12277] bridge0: port 1(bridge_slave_0) entered blocking state [ 463.009960][T12277] bridge0: port 1(bridge_slave_0) entered forwarding state [ 463.052557][T12277] bridge0: port 2(bridge_slave_1) entered blocking state [ 463.059776][T12277] bridge0: port 2(bridge_slave_1) entered forwarding state [ 463.516540][T13576] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 463.644607][T13576] veth0_vlan: entered promiscuous mode [ 463.683654][T13576] veth1_vlan: entered promiscuous mode [ 463.777052][T13576] veth0_macvtap: entered promiscuous mode [ 463.804605][T13576] veth1_macvtap: entered promiscuous mode [ 463.849697][T13576] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 463.901368][T13576] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 463.943859][T13576] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 463.984397][T13576] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 464.032963][T13576] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 464.053860][T13576] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 464.078542][T13576] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 464.106464][T13576] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 464.141491][T13576] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 464.164564][T13576] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 464.188857][T13576] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 464.224720][T13576] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 464.263950][T13576] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 464.302989][T13576] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 464.345157][T13576] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 464.372494][T13576] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 464.395445][T13576] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 464.419611][T13576] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 464.930745][ T7402] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 464.964261][ T7402] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 465.026036][T11744] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 465.037615][T11744] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 470.773420][T13972] Process accounting resumed [ 474.462793][T14004] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 474.514313][T14004] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 475.036941][T14012] sysfs: cannot create duplicate filename '/class/ieee80211/-侞6yռ ka;+1)p;!X+@' [ 475.293913][T14012] CPU: 0 UID: 0 PID: 14012 Comm: syz.6.1629 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 475.304760][T14012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 475.314982][T14012] Call Trace: [ 475.318294][T14012] [ 475.321257][T14012] dump_stack_lvl+0x16c/0x1f0 [ 475.325995][T14012] sysfs_warn_dup+0x7f/0xa0 [ 475.330710][T14012] sysfs_do_create_link_sd+0x124/0x140 [ 475.336328][T14012] sysfs_create_link+0x61/0xc0 [ 475.341162][T14012] device_add+0x62e/0x1a70 [ 475.345639][T14012] ? __pfx_device_add+0x10/0x10 [ 475.350649][T14012] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 475.356578][T14012] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 475.363036][T14012] wiphy_register+0x20d7/0x2d30 [ 475.367937][T14012] ? __pfx_wiphy_register+0x10/0x10 [ 475.373176][T14012] ieee80211_register_hw+0x2959/0x3fb0 [ 475.379109][T14012] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 475.384997][T14012] ? rcu_is_watching+0x12/0xc0 [ 475.389798][T14012] ? trace_hrtimer_init+0x19d/0x220 [ 475.395023][T14012] ? __hrtimer_init+0x106/0x2c0 [ 475.399899][T14012] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 475.405663][T14012] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 475.411761][T14012] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 475.418370][T14012] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 475.423701][T14012] hwsim_new_radio_nl+0xb42/0x12b0 [ 475.428846][T14012] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 475.434409][T14012] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 475.441884][T14012] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 475.449391][T14012] genl_family_rcv_msg_doit+0x202/0x2f0 [ 475.455065][T14012] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 475.461188][T14012] ? bpf_lsm_capable+0x9/0x10 [ 475.465906][T14012] ? security_capable+0x7e/0x260 [ 475.470873][T14012] ? ns_capable+0xd7/0x110 [ 475.475362][T14012] genl_rcv_msg+0x565/0x800 [ 475.479893][T14012] ? __pfx_genl_rcv_msg+0x10/0x10 [ 475.484937][T14012] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 475.490505][T14012] netlink_rcv_skb+0x165/0x410 [ 475.495298][T14012] ? __pfx_genl_rcv_msg+0x10/0x10 [ 475.500352][T14012] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 475.505664][T14012] ? down_read+0xc9/0x330 [ 475.510002][T14012] ? __pfx_down_read+0x10/0x10 [ 475.514790][T14012] ? netlink_deliver_tap+0x1ae/0xcf0 [ 475.520096][T14012] genl_rcv+0x28/0x40 [ 475.524091][T14012] netlink_unicast+0x53c/0x7f0 [ 475.528873][T14012] ? __pfx_netlink_unicast+0x10/0x10 [ 475.534170][T14012] ? __phys_addr_symbol+0x30/0x80 [ 475.539203][T14012] ? __check_object_size+0x488/0x710 [ 475.544523][T14012] netlink_sendmsg+0x8b8/0xd70 [ 475.549311][T14012] ? __pfx_netlink_sendmsg+0x10/0x10 [ 475.554624][T14012] ____sys_sendmsg+0x9ae/0xb40 [ 475.559408][T14012] ? copy_msghdr_from_user+0x10b/0x160 [ 475.564970][T14012] ? __pfx_____sys_sendmsg+0x10/0x10 [ 475.570276][T14012] ? netlink_recvmsg+0x81c/0xf30 [ 475.575239][T14012] ? __pfx___lock_acquire+0x10/0x10 [ 475.580470][T14012] ___sys_sendmsg+0x135/0x1e0 [ 475.585169][T14012] ? __pfx____sys_sendmsg+0x10/0x10 [ 475.590398][T14012] ? lock_acquire+0x2f/0xb0 [ 475.594930][T14012] ? __fget_files+0x40/0x3f0 [ 475.599543][T14012] ? fdget+0x176/0x210 [ 475.603648][T14012] __sys_sendmsg+0x117/0x1f0 [ 475.608358][T14012] ? __pfx___sys_sendmsg+0x10/0x10 [ 475.613539][T14012] ? __x64_sys_futex+0x1e1/0x4c0 [ 475.618518][T14012] do_syscall_64+0xcd/0x250 [ 475.623044][T14012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 475.628963][T14012] RIP: 0033:0x7f3e1c97e719 [ 475.633386][T14012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 475.653139][T14012] RSP: 002b:00007f3e1d6f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 475.661578][T14012] RAX: ffffffffffffffda RBX: 00007f3e1cb35f80 RCX: 00007f3e1c97e719 [ 475.669608][T14012] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003 [ 475.677694][T14012] RBP: 00007f3e1c9f1616 R08: 0000000000000000 R09: 0000000000000000 [ 475.685711][T14012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 475.693781][T14012] R13: 0000000000000000 R14: 00007f3e1cb35f80 R15: 00007ffe37349688 [ 475.701784][T14012] [ 476.049631][T14016] netlink: 'syz.4.1628': attribute type 11 has an invalid length. [ 476.096420][T14016] netlink: 'syz.4.1628': attribute type 11 has an invalid length. [ 477.977445][ T7605] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 478.206832][ T7605] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 478.525952][ T7605] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 478.537894][ T5840] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 478.559595][ T5840] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 478.571013][ T5840] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 478.612580][ T5840] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 478.636042][ T5840] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 478.653168][ T5840] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 478.781180][ T7605] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 479.445546][T14054] chnl_net:caif_netlink_parms(): no params data found [ 479.678128][ T7605] bridge_slave_1: left allmulticast mode [ 479.699900][ T7605] bridge_slave_1: left promiscuous mode [ 479.733981][ T7605] bridge0: port 2(bridge_slave_1) entered disabled state [ 479.865224][ T7605] bridge_slave_0: left allmulticast mode [ 479.896916][ T7605] bridge_slave_0: left promiscuous mode [ 479.902703][ T7605] bridge0: port 1(bridge_slave_0) entered disabled state [ 480.730660][ T5850] Bluetooth: hci1: command tx timeout [ 481.919949][ T7605] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 482.155340][ T7605] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 482.193035][ T7605] bond0 (unregistering): Released all slaves [ 482.275454][ T7605] HSR: left promiscuous mode [ 482.476447][T14075] debugfs: Directory '-侞6yռ ka;+1)p;!X+@' with parent 'ieee80211' already present! [ 482.552533][T14054] bridge0: port 1(bridge_slave_0) entered blocking state [ 482.574205][T14054] bridge0: port 1(bridge_slave_0) entered disabled state [ 482.594024][T14054] bridge_slave_0: entered allmulticast mode [ 482.601126][T14054] bridge_slave_0: entered promiscuous mode [ 482.626771][ T5879] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN PTI [ 482.639504][ T5879] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f] [ 482.647906][ T5879] CPU: 1 UID: 0 PID: 5879 Comm: kworker/1:5 Not tainted 6.12.0-rc7-syzkaller-00012-g3022e9d00ebe #0 [ 482.658651][ T5879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 482.669415][ T5879] Workqueue: events swap_reclaim_work [ 482.674850][ T5879] RIP: 0010:__list_del_entry_valid_or_report+0x20/0x1c0 [ 482.682107][ T5879] Code: 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 fe 48 83 c7 08 48 83 ec 18 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 19 01 00 00 48 89 f2 48 8b 4e 08 48 b8 00 00 00 [ 482.703238][ T5879] RSP: 0018:ffffc90004567c30 EFLAGS: 00010202 [ 482.709569][ T5879] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff888034a8e078 [ 482.717994][ T5879] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000008 [ 482.726181][ T5879] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 482.734245][ T5879] R10: 0000000000000001 R11: 000000000000004f R12: dffffc0000000000 [ 482.742319][ T5879] R13: ffffffffffffffb8 R14: ffff888034a8e000 R15: ffffc90003bff000 [ 482.751006][ T5879] FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 482.760749][ T5879] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 482.767517][ T5879] CR2: 0000000000158000 CR3: 0000000039624000 CR4: 00000000003526f0 [ 482.775780][ T5879] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 482.784466][ T5879] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 482.792812][ T5879] Call Trace: [ 482.796092][ T5879] [ 482.799019][ T5879] ? die_addr+0x3b/0xa0 [ 482.803192][ T5879] ? exc_general_protection+0x155/0x230 [ 482.810323][ T5879] ? asm_exc_general_protection+0x26/0x30 [ 482.816191][ T5879] ? __list_del_entry_valid_or_report+0x20/0x1c0 [ 482.822561][ T5879] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 482.828025][ T5879] swap_reclaim_full_clusters+0x109/0x460 [ 482.833865][ T5879] swap_reclaim_work+0x2e/0x40 [ 482.838642][ T5879] process_one_work+0x958/0x1b30 [ 482.843602][ T5879] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 482.849343][ T5879] ? __pfx_process_one_work+0x10/0x10 [ 482.855891][ T5879] ? assign_work+0x1a0/0x250 [ 482.860632][ T5879] worker_thread+0x6c8/0xf00 [ 482.865591][ T5879] ? __kthread_parkme+0x148/0x220 [ 482.871856][ T5879] ? __pfx_worker_thread+0x10/0x10 [ 482.878103][ T5879] kthread+0x2c1/0x3a0 [ 482.882701][ T5879] ? _raw_spin_unlock_irq+0x23/0x50 [ 482.888118][ T5879] ? __pfx_kthread+0x10/0x10 [ 482.892759][ T5879] ret_from_fork+0x45/0x80 [ 482.897594][ T5879] ? __pfx_kthread+0x10/0x10 [ 482.903449][ T5879] ret_from_fork_asm+0x1a/0x30 [ 482.908317][ T5879] [ 482.911517][ T5879] Modules linked in: [ 482.915875][ T5879] ---[ end trace 0000000000000000 ]--- [ 482.921626][ T5879] RIP: 0010:__list_del_entry_valid_or_report+0x20/0x1c0 [ 482.928661][ T5879] Code: 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 fe 48 83 c7 08 48 83 ec 18 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 19 01 00 00 48 89 f2 48 8b 4e 08 48 b8 00 00 00 [ 482.948484][ T5879] RSP: 0018:ffffc90004567c30 EFLAGS: 00010202 [ 482.955705][ T5879] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff888034a8e078 [ 482.964070][ T5879] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000008 [ 482.972146][ T5879] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 482.980190][ T5879] R10: 0000000000000001 R11: 000000000000004f R12: dffffc0000000000 [ 482.988290][ T5879] R13: ffffffffffffffb8 R14: ffff888034a8e000 R15: ffffc90003bff000 [ 482.996280][ T5879] FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 483.005435][ T5879] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 483.012014][ T5879] CR2: 0000000000158000 CR3: 0000000039624000 CR4: 00000000003526f0 [ 483.020239][ T5879] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 483.028464][ T5879] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 483.036613][ T5879] Kernel panic - not syncing: Fatal exception [ 483.043044][ T5879] Kernel Offset: disabled [ 483.047542][ T5879] Rebooting in 86400 seconds..