last executing test programs: 16.878445817s ago: executing program 3 (id=633): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x6, 0x1ff, 0x7, 0x1d, 0x7181, 0x7fffffff, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x200000000001, 0xb4, 0xffffffffffff8001, 0x8, 0x10007, 0x80, 0x629d, 0x0, 0xa, 0x8022000, 0x200, 0x0, 0x84, [0x3, 0x2, 0x0, 0xfffffffffffff6c6, 0x0, 0x2000, 0x0, 0xe, 0x3, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x90, 0x0, 0x6, 0x5, 0xfffffffffffbfffd, 0x2000000000000004, 0x10000000000001, 0x10000000000, 0xffffffffffffffff, 0x4, 0xfffffffffffffe00, 0x0, 0x5, 0x5, 0xdcb, 0xffff, 0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffff7fffc, 0x1, 0x3ff, 0x7, 0xc567]}, 0x1fe, 0xd) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001140)='/sys/devices/platform/dummy_hcd.5/usb6/busnum\x00', 0x2000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) close_range$auto(0x2, 0x8000, 0x0) r2 = socket(0xa, 0x2, 0x88) uname$auto(0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'ip_vti0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x4, 0x1ff, r2, @relative_id=0x13, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0xc) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)=""/4096, 0x1000) r5 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r5, 0xfffffffffffffd11, &(0x7f00000001c0)) 16.646656452s ago: executing program 3 (id=635): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x0, 0x0) ioctl$auto(r0, 0xd00064c0, 0xc36) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vhci_hcd.0/nports\x00', 0x1a1d00, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/virtual/tty/tty50/power/control\x00', 0x28001, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) chown$auto(0x0, 0x0, 0x0) r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_STATUS(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x1c, r3, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x40) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000010c0)=""/4118, 0x1016) 16.407369713s ago: executing program 3 (id=638): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8000, 0x0) mmap$auto(0xdb5c, 0x0, 0x2, 0xffff, 0x0, 0x0) io_uring_setup$auto(0x8, 0x0) io_uring_register$auto(0x2, 0xb, 0x0, 0x7f) mmap$auto(0xffff, 0xffffffffffff0000, 0x9, 0xff, 0x8, 0x1) 16.296160229s ago: executing program 3 (id=639): socket(0xa, 0x802, 0x3a) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000001680)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x2, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x8) fcntl$auto(0x8000000000000001, 0x5, 0x8) dup2$auto(0x5, 0x4) setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9) recvmmsg$auto(0x3, 0x0, 0x6, 0x7bd6, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x801, 0x84) socketpair$auto(0x1f, 0x4, 0x8000000000000000, 0x0) getsockopt$auto(0x6, 0x84, 0x81, 0x0, &(0x7f00000000c0)=0x10000) mmap$auto(0x0, 0x40006, 0xdf, 0x9b72, 0x0, 0x28000) sysfs$auto(0x2, 0x1e, 0x0) r0 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x3b71, 0x0) close_range$auto(0x2, 0x8000, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/mm/hugepages/hugepages-1048576kB/nr_hugepages\x00', 0x480, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000340)=""/152, 0x98) io_uring_setup$auto(0x6, 0x0) socket(0x2b, 0x1, 0x1) 15.972951536s ago: executing program 3 (id=642): mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0) symlink$auto(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='./file0\x00') umount2$auto(&(0x7f0000000040)='.\x00', 0x4) (async) socket(0x2, 0x3, 0xa) socket(0x2, 0x5, 0x0) (async) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) (async) setsockopt$auto(0x4, 0x0, 0x80, 0x0, 0x410000) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/environ\x00', 0x800, 0x0) read$auto_proc_environ_operations_base(r1, &(0x7f0000000c40)=""/141, 0x8d) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000200)={0x4c, r2, 0x403, 0x70bd26, 0x25dfdbf9, {}, [@HWSIM_ATTR_FRAME={0x1c, 0x3, "e7f298602aebe42d9ecc6cd05b1f8f1700598c0bb4a45536"}, @HWSIM_ATTR_ADDR_RECEIVER={0xa, 0x1, "196f88149b0c"}, @HWSIM_ATTR_RX_RATE={0x8, 0x5, 0x6}, @HWSIM_ATTR_SIGNAL={0x8, 0x6, 0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x8000) (async) prctl$auto(0x21b, 0x59c, 0xffffffff, 0x6, 0x2) (async) umount2$auto(&(0x7f0000000000)='.\x00', 0x4) 15.829585537s ago: executing program 3 (id=643): mmap$auto(0x0, 0x400008, 0xdf, 0x400000000009b72, 0x2, 0x28000) socket(0x2, 0x1, 0xb0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) select$auto(0xa, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x5, 0x8000000000000001, 0x6, 0x2000000000000002, 0x400000000009, 0x8, 0x400000000ff, 0x7000000000, 0x4, 0xaa8, 0x5, 0xfffffffffffffff8]}, 0x0, 0x0) r0 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r0, 0x29, 0x36, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110) setsockopt$auto(0x400000000000003, 0x29, 0x3b, 0xffffffffffffffff, 0x0) rt_sigprocmask$auto(0x80000, &(0x7f0000000180)={0xfffffffffffffe01}, 0x0, 0x8) write$auto(0x3, 0x0, 0xfffffdef) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2, 0x3, 0x5) setsockopt$auto(0x4, 0x0, 0x20, 0xfffffffffffffffe, 0x0) ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0xe73, 0xbb}, 0x20, 0x0, &(0x7f0000000100)={0x6}, 0x8) select$auto(0x5, &(0x7f0000000080)={[0x400020000008, 0xfffffffffffffffc, 0x7, 0x6, 0xc, 0x3, 0x3, 0x1ffe000, 0xcad, 0x2, 0x9, 0xf, 0xa657, 0x202, 0xd3, 0x1]}, 0x0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) read$auto(0x3, 0x0, 0x80) ioperm$auto(0x7fa, 0x2000000000000091, 0xe) r3 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_REGISTER_BEACONS(r4, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="04002abd7000fbdbdf255f5d0000"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x10000800) mmap$auto(0x0, 0x1, 0xdf, 0xeb1, 0x40000000000a5, 0x400008000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) pivot_root$auto(0x0, &(0x7f0000000040)='/]^+#@%{\x00') 3.064403485s ago: executing program 2 (id=747): r0 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) sendfile$auto(0x1, 0x3, 0x0, 0x48) sendfile$auto(r0, r0, 0x0, 0xb) 2.949975152s ago: executing program 2 (id=748): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) timer_gettime$auto(0x0, 0x0) socketpair$auto(0x2, 0x4, 0x8000000000000000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/nbd2/mq/0/cpu_list\x00', 0xa0440, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/64, 0x40) r1 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r1, 0x0, 0xc3) poll$auto(&(0x7f0000000d40)={0x3, 0x1, 0xa}, 0x5, 0x400) io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46) 2.104812033s ago: executing program 0 (id=758): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x7, 0xeb4, 0x401, 0x8000) (async) socket(0xa, 0x3, 0x71) (async) socket(0xa, 0x2, 0x88) (async) setresuid$auto(0x0, 0x8, 0x8000) (async) ioctl$auto(0x1, 0x890c, 0x8) (async) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64) mprotect$auto(0x100000004, 0x8000000000000001, 0xfffffffeffffffff) (async, rerun: 64) close_range$auto(r0, 0xfffffffffffff000, 0x0) (async) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') (async) fchdir$auto(0xf4400000000) (async) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) mkdir$auto(0x0, 0x40) (async) mmap$auto(0x0, 0x400008, 0x9, 0x10, 0xffffffff, 0x8000) socketpair$auto(0x1d, 0x2, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) open(0x0, 0x22240, 0x98) (async, rerun: 32) socket(0xa, 0x2, 0x88) (async, rerun: 32) r1 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) fchdir$auto(r1) connect$auto(0x3, 0x0, 0x55) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0) (async) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.unix.gid/channel\x00', 0x80402, 0x0) socket(0xa, 0x2, 0x0) (async) setsockopt$auto(0x3, 0x0, 0xfffffffd, 0x0, 0x8) (async) write$auto(r3, 0x0, 0x6) (async, rerun: 32) getrusage$auto(0x2, 0x0) (async, rerun: 32) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="2f212dbd7000fcdbdf252100000008000300", @ANYRES32=r4, @ANYBLOB="08009e000878"], 0x24}, 0x1, 0x0, 0x0, 0x2000c800}, 0x4000000) 1.994372017s ago: executing program 0 (id=760): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) mbind$auto(0x64a, 0x8, 0x0, &(0x7f0000000000)=0x6466, 0x5, 0x6) mprotect$auto(0x1ffff000, 0x8000000001000001, 0xd) r0 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) exit$auto(0x4) fchdir$auto(r0) open(0x0, 0x22240, 0x9d) 1.993028989s ago: executing program 2 (id=761): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) recvfrom$auto(0x3, 0x0, 0x800000000f, 0x2, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0x7fffffff) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00', @ANYRES16], 0x34}, 0x1, 0x0, 0x0, 0x4068811}, 0x80) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) pwritev$auto(0x5, &(0x7f0000000080)={&(0x7f0000000040), 0x19}, 0x2, 0x9, 0x8) close_range$auto(0x2, 0x8, 0x0) 1.261126079s ago: executing program 1 (id=769): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) ioctl$auto(0x3, 0x894b, 0x38) 1.20344521s ago: executing program 1 (id=770): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) socket(0x2, 0x80802, 0x0) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x29, 0x0, 0x28) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x6) socket(0x2a, 0x2, 0x0) socket(0x23, 0x80805, 0x0) memfd_secret$auto(0x0) r0 = getpgid(0x0) pidfd_open$auto(r0, 0x0) socket(0x2b, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/pagemap\x00', 0x0, 0x0) pread64$auto(r1, 0x0, 0x200, 0xe00000000000000) socket$nl_generic(0x10, 0x3, 0x10) r2 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="0000ed00", @ANYRES64=r2], 0x5f}, 0x1, 0x0, 0x0, 0x200408d5}, 0x5) r3 = socket(0x11, 0x2, 0x4) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) sendmsg$auto_NL802154_CMD_GET_INTERFACE(r3, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040}, 0x20004010) mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/keys\x00', 0x8340, 0x0) 1.148980874s ago: executing program 1 (id=771): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x101000, 0x0) (async, rerun: 64) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64) timer_create$auto(0xfffffff9, &(0x7f0000000000)={@sival_int=0x3, 0x8, 0x1, @_tid}, &(0x7f0000000040)=0x200) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) (async) mmap$auto(0x0, 0x8020009, 0xe2, 0xcb1, 0x401, 0x8040001008000) 1.05795479s ago: executing program 0 (id=772): close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x20, 0x0, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x12}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x10, 0x2, 0x4) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000fbdbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0xfe, 0x9}, 0x7}, 0x3, 0x0) 994.710329ms ago: executing program 2 (id=773): mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x848000000015, 0x805, 0x0) io_uring_setup$auto(0x3ff, 0x0) openat$auto_mon_fops_stat_usb_mon(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/16s\x00', 0x40000, 0x0) socket(0x2c, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x6, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) bind$auto(0x3, 0x0, 0x5) 939.565607ms ago: executing program 0 (id=774): r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='j\x00%i'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4) r2 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_NVRAM_INIT(r2, 0x7040, 0x0) r3 = socket(0x10, 0x2, 0x4) io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x401, 0x8, 0xfe, 0x6fb3, 0x8a, 0x9, 0xffffffffffffffff, [0x100, 0x9, 0x7f], {0x2, 0x7, 0x3032, 0xe, 0xf, 0x5, 0x5, 0xfffffff9, 0xf08a2b3}, {0x0, 0xfc, 0x6, 0x0, 0x0, 0xf89, 0x9, 0x837, 0x8}}) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'dummy0\x00'}) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x2404c000) write$auto(r3, &(0x7f0000000000)='-\x00', 0x2fb) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0) 815.05362ms ago: executing program 1 (id=775): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(0x0, r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="e4000000", @ANYRES16=r1, @ANYBLOB="2f212dbd7000fcdbdf252100000008000300", @ANYRES32=r2, @ANYBLOB="c5002c8008003400", @ANYRES32=0x0], 0xe4}}, 0x50) 812.420623ms ago: executing program 32 (id=643): mmap$auto(0x0, 0x400008, 0xdf, 0x400000000009b72, 0x2, 0x28000) socket(0x2, 0x1, 0xb0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) select$auto(0xa, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x5, 0x8000000000000001, 0x6, 0x2000000000000002, 0x400000000009, 0x8, 0x400000000ff, 0x7000000000, 0x4, 0xaa8, 0x5, 0xfffffffffffffff8]}, 0x0, 0x0) r0 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r0, 0x29, 0x36, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110) setsockopt$auto(0x400000000000003, 0x29, 0x3b, 0xffffffffffffffff, 0x0) rt_sigprocmask$auto(0x80000, &(0x7f0000000180)={0xfffffffffffffe01}, 0x0, 0x8) write$auto(0x3, 0x0, 0xfffffdef) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2, 0x3, 0x5) setsockopt$auto(0x4, 0x0, 0x20, 0xfffffffffffffffe, 0x0) ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0xe73, 0xbb}, 0x20, 0x0, &(0x7f0000000100)={0x6}, 0x8) select$auto(0x5, &(0x7f0000000080)={[0x400020000008, 0xfffffffffffffffc, 0x7, 0x6, 0xc, 0x3, 0x3, 0x1ffe000, 0xcad, 0x2, 0x9, 0xf, 0xa657, 0x202, 0xd3, 0x1]}, 0x0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) read$auto(0x3, 0x0, 0x80) ioperm$auto(0x7fa, 0x2000000000000091, 0xe) r3 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_REGISTER_BEACONS(r4, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="04002abd7000fbdbdf255f5d0000"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x10000800) mmap$auto(0x0, 0x1, 0xdf, 0xeb1, 0x40000000000a5, 0x400008000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) pivot_root$auto(0x0, &(0x7f0000000040)='/]^+#@%{\x00') 648.617669ms ago: executing program 0 (id=777): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) r1 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x2, 0x0) pwrite64$auto(r1, &(0x7f0000000140)='\vX_n\x91p\xe6\x1eRN8\x99C\x05s\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x52, 0x3) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptyt2\x00', 0x4c801, 0x0) ioctl$auto_TIOCCONS2(r2, 0x541d, 0x0) r3 = open(&(0x7f0000000080)='./file0\x00', 0x1ffd, 0x12) socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x29, 0x43, 0x0, 0x9) sendfile$auto(r3, r3, &(0x7f0000000000)=0x7ff, 0x3) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/time\x00') setns(r4, 0x0) ioctl$auto_UDMABUF_CREATE(r3, 0x40187542, &(0x7f0000000040)={r0, 0x101, 0xbd1a, 0xff}) ioctl$auto_TIOCGDEV2(r5, 0x540f, 0x0) 625.020898ms ago: executing program 2 (id=778): fchmod$auto(0xffffffffffffffff, 0x9) r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec14\x00', 0x121200, 0x0) r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x40000, 0x0) mmap$auto_vmwgfx_driver_fops_vmwgfx_drv(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x4000100000000) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='y'], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) ioctl$auto_CEC_ADAP_G_CONNECTOR_INFO(r0, 0x8044610a, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r2) sendmsg$auto_NL80211_CMD_GET_WIPHY(r2, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[@ANYBLOB="04020000", @ANYRES16=r4, @ANYBLOB="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"], 0x204}, 0x1, 0x0, 0x0, 0x1}, 0x80) io_uring_setup$auto(0x7, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000003c0), 0x202000, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(0x0, r2) sendmsg$auto_BATADV_CMD_GET_BLA_CLAIM(r6, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x40810) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x1, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb1, 0x10006, 0x300000000000) ioctl$auto__ctl_fops_dm_ioctl(r3, 0x4048aec9, 0x0) 585.717845ms ago: executing program 1 (id=779): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x106) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000100)='ns/pid_for_children\x00') r0 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) r1 = socket(0x18, 0xa, 0x1) close_range$auto(0x2, 0x8000, 0x0) socket(0x1, 0x5, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/mnt\x00') socket(0x80000000000000a, 0x2, 0x0) bpf$auto(0x0, &(0x7f0000000300)=@link_update={r1, @new_prog_fd=r0, 0x100, @old_map_fd=r0}, 0x10) bpf$auto(0x3, &(0x7f0000000340)=@enable_stats={0x5}, 0x3) 394.533546ms ago: executing program 0 (id=780): r0 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/attr/sockcreate\x00', 0x1, 0x0) (async) r1 = openat$auto_ptdump_curknl_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async) openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f00000002c0)={0x106143, 0x12, 0x20}, 0x18) (async) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/fib_multipath_hash_policy\x00', 0x2000, 0x0) read$auto_proc_sys_file_operations_proc_sysctl(r2, 0x0, 0x0) (async) read$auto_ptdump_curknl_fops_(r1, &(0x7f0000000040)=""/56, 0x38) (async) write$auto_proc_pid_attr_operations_base(r0, 0x0, 0x0) 393.803727ms ago: executing program 1 (id=781): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) mbind$auto(0x64a, 0x8, 0x0, &(0x7f0000000000)=0x6466, 0x5, 0x6) mprotect$auto(0x1ffff000, 0x8000000001000001, 0xd) r0 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) exit$auto(0x4) fchdir$auto(r0) open(0x0, 0x22240, 0x9d) 0s ago: executing program 2 (id=782): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) recvfrom$auto(0x3, 0x0, 0x800000000f, 0x2, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0x7fffffff) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00', @ANYRES16], 0x34}, 0x1, 0x0, 0x0, 0x4068811}, 0x80) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) pwritev$auto(0x5, &(0x7f0000000080)={&(0x7f0000000040), 0x19}, 0x2, 0x9, 0x8) close_range$auto(0x2, 0x8, 0x0) kernel console output (not intermixed with test programs): forked to background, child pid 5498 no interfaces have a carrier [ 42.276036][ T5499] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.287022][ T5499] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.38' (ED25519) to the list of known hosts. syzkaller login: [ 66.795166][ T5817] cgroup: Unknown subsys name 'net' [ 66.996039][ T5817] cgroup: Unknown subsys name 'cpuset' [ 67.004357][ T5817] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 68.318658][ T5817] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 70.015937][ T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 70.026099][ T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 70.049576][ T5828] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 70.056958][ T5828] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 70.064399][ T5828] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 70.073622][ T5828] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 70.081357][ T5828] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 70.090307][ T5828] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 70.099706][ T5839] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 70.113827][ T5837] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 70.122275][ T5837] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 70.123670][ T5839] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 70.129874][ T5837] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 70.143269][ T5839] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 70.150435][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 70.150852][ T5837] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 70.160009][ T5828] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 70.169598][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 70.174180][ T5828] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 70.180669][ T5839] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 70.187298][ T5828] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 70.194424][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 70.212456][ T54] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 70.224853][ T5828] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 70.583899][ T5826] chnl_net:caif_netlink_parms(): no params data found [ 70.641370][ T5835] chnl_net:caif_netlink_parms(): no params data found [ 70.651742][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 70.714200][ T5830] chnl_net:caif_netlink_parms(): no params data found [ 70.746364][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.754659][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.762614][ T5826] bridge_slave_0: entered allmulticast mode [ 70.769334][ T5826] bridge_slave_0: entered promiscuous mode [ 70.813439][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.820548][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.827930][ T5826] bridge_slave_1: entered allmulticast mode [ 70.835134][ T5826] bridge_slave_1: entered promiscuous mode [ 70.871966][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.879857][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.887442][ T5829] bridge_slave_0: entered allmulticast mode [ 70.894639][ T5829] bridge_slave_0: entered promiscuous mode [ 70.925705][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.933064][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.940284][ T5829] bridge_slave_1: entered allmulticast mode [ 70.947415][ T5829] bridge_slave_1: entered promiscuous mode [ 70.988539][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.001734][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.013958][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.051276][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.075609][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.083054][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state [ 71.090197][ T5835] bridge_slave_0: entered allmulticast mode [ 71.097033][ T5835] bridge_slave_0: entered promiscuous mode [ 71.105900][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.113147][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.120409][ T5835] bridge_slave_1: entered allmulticast mode [ 71.127880][ T5835] bridge_slave_1: entered promiscuous mode [ 71.141558][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.149090][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state [ 71.156689][ T5830] bridge_slave_0: entered allmulticast mode [ 71.164075][ T5830] bridge_slave_0: entered promiscuous mode [ 71.193872][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.201059][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.209826][ T5830] bridge_slave_1: entered allmulticast mode [ 71.216799][ T5830] bridge_slave_1: entered promiscuous mode [ 71.226258][ T5829] team0: Port device team_slave_0 added [ 71.234781][ T5829] team0: Port device team_slave_1 added [ 71.243943][ T5826] team0: Port device team_slave_0 added [ 71.280589][ T5826] team0: Port device team_slave_1 added [ 71.289073][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.300064][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.311816][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.329841][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.336934][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.363141][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.384471][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.410568][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.417767][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.444033][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.478006][ T5835] team0: Port device team_slave_0 added [ 71.495091][ T5830] team0: Port device team_slave_0 added [ 71.503358][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.510323][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.536898][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.549845][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.557041][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.583124][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.595884][ T5835] team0: Port device team_slave_1 added [ 71.617812][ T5830] team0: Port device team_slave_1 added [ 71.655987][ T5829] hsr_slave_0: entered promiscuous mode [ 71.664885][ T5829] hsr_slave_1: entered promiscuous mode [ 71.689383][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.696897][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.723311][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.750592][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.758068][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.785003][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.797292][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.807113][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.808183][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.833658][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.850139][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.859281][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.866405][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.892602][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.933713][ T5826] hsr_slave_0: entered promiscuous mode [ 71.940293][ T5826] hsr_slave_1: entered promiscuous mode [ 71.946912][ T5826] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 71.955005][ T5826] Cannot create hsr debugfs directory [ 72.015065][ T5830] hsr_slave_0: entered promiscuous mode [ 72.021400][ T5830] hsr_slave_1: entered promiscuous mode [ 72.028031][ T5830] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 72.036245][ T5830] Cannot create hsr debugfs directory [ 72.063530][ T5835] hsr_slave_0: entered promiscuous mode [ 72.069682][ T5835] hsr_slave_1: entered promiscuous mode [ 72.076374][ T5835] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 72.084337][ T5835] Cannot create hsr debugfs directory [ 72.283340][ T5839] Bluetooth: hci2: command tx timeout [ 72.283343][ T5828] Bluetooth: hci3: command tx timeout [ 72.283767][ T5834] Bluetooth: hci0: command tx timeout [ 72.289315][ T5836] Bluetooth: hci1: command tx timeout [ 72.346063][ T5829] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 72.357488][ T5829] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 72.368429][ T5829] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 72.385242][ T5829] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 72.420396][ T5826] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 72.433715][ T5826] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 72.448480][ T5826] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 72.461433][ T5826] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 72.530521][ T5835] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 72.545634][ T5835] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 72.556003][ T5835] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 72.567125][ T5835] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 72.635079][ T5830] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 72.657872][ T5830] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 72.668491][ T5830] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 72.693866][ T5830] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 72.746460][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.775500][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.798194][ T62] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.805658][ T62] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.833551][ T62] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.840648][ T62] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.856604][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.880356][ T5826] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.909635][ T4544] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.916772][ T4544] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.929997][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.961309][ T353] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.968457][ T353] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.996312][ T5835] 8021q: adding VLAN 0 to HW filter on device team0 [ 73.009453][ T5829] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 73.044240][ T4544] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.051361][ T4544] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.087898][ T353] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.095092][ T353] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.151644][ T5835] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 73.164194][ T5835] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 73.184856][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 73.241968][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 73.296458][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.304160][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.333509][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.340974][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.418329][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.515516][ T5829] veth0_vlan: entered promiscuous mode [ 73.538585][ T5829] veth1_vlan: entered promiscuous mode [ 73.576929][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.601692][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.637822][ T5829] veth0_macvtap: entered promiscuous mode [ 73.662936][ T5829] veth1_macvtap: entered promiscuous mode [ 73.695683][ T5826] veth0_vlan: entered promiscuous mode [ 73.707937][ T5835] veth0_vlan: entered promiscuous mode [ 73.735754][ T5835] veth1_vlan: entered promiscuous mode [ 73.750017][ T5826] veth1_vlan: entered promiscuous mode [ 73.764677][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.778755][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.797838][ T5829] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.808778][ T5829] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.818017][ T5829] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.827687][ T5829] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.843684][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.879119][ T5826] veth0_macvtap: entered promiscuous mode [ 73.901754][ T5826] veth1_macvtap: entered promiscuous mode [ 73.937809][ T5835] veth0_macvtap: entered promiscuous mode [ 73.957406][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.970420][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.983090][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.991875][ T5835] veth1_macvtap: entered promiscuous mode [ 74.018487][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.029208][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.043362][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.065634][ T5830] veth0_vlan: entered promiscuous mode [ 74.079176][ T5826] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.088059][ T5826] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.097488][ T5826] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.106540][ T5826] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.130524][ T5830] veth1_vlan: entered promiscuous mode [ 74.150586][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.161463][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.172823][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.183809][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.195100][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.206874][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.217567][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.228226][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.239170][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.249914][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.262595][ T4544] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.271010][ T4544] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.287752][ T5835] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.297099][ T5835] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.306908][ T5835] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.315765][ T5835] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.362408][ T5836] Bluetooth: hci1: command tx timeout [ 74.368223][ T5834] Bluetooth: hci0: command tx timeout [ 74.368268][ T5834] Bluetooth: hci3: command tx timeout [ 74.373828][ T5828] Bluetooth: hci2: command tx timeout [ 74.413665][ T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.413891][ T353] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.421500][ T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.439060][ T353] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.477283][ T5830] veth0_macvtap: entered promiscuous mode [ 74.478477][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.492479][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.495971][ T5830] veth1_macvtap: entered promiscuous mode [ 74.514502][ T5829] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 74.562993][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.588301][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.613554][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.625687][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.640084][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.651467][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.662765][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.761736][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.772875][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.783174][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.795185][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.805111][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.820264][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.837772][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.874699][ T5830] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.896594][ T5830] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.933480][ T5830] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.953156][ T5830] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.982106][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.012148][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.060533][ T4544] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.091445][ T4544] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.180158][ T4671] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.203015][ T4671] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.348052][ T4671] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.371257][ T4671] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.484832][ T5894] Invalid ELF header magic: != ELF [ 75.690535][ T5907] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2'. [ 76.195501][ T5920] capability: warning: `syz.3.8' uses 32-bit capabilities (legacy support in use) [ 76.340758][ T5920] ima: policy update failed [ 76.386989][ T29] audit: type=1802 audit(1734242990.373:2): pid=5920 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.8" res=0 errno=0 [ 76.444479][ T5828] Bluetooth: hci2: command tx timeout [ 76.449929][ T5828] Bluetooth: hci3: command tx timeout [ 76.455419][ T5828] Bluetooth: hci1: command tx timeout [ 76.460841][ T5828] Bluetooth: hci0: command tx timeout [ 76.718047][ T5933] Zero length message leads to an empty skb [ 76.754109][ T5933] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 78.126042][ T5962] netlink: 1004 bytes leftover after parsing attributes in process `syz.3.19'. [ 78.351666][ T5967] program syz.1.21 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 78.448373][ T5969] mmap: syz.1.21 (5969) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 78.522233][ T5839] Bluetooth: hci1: command tx timeout [ 78.527735][ T5828] Bluetooth: hci0: command tx timeout [ 78.527762][ T5834] Bluetooth: hci3: command tx timeout [ 78.533948][ T5828] Bluetooth: hci2: command tx timeout [ 78.873809][ T5973] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 83.205787][ T29] audit: type=1800 audit(1734242997.203:3): pid=6035 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.37" name="lu_gp_id" dev="configfs" ino=8385 res=0 errno=0 [ 83.282885][ T6035] openvswitch: netlink: Message has 4 unknown bytes. [ 87.169837][ T51] cfg80211: failed to load regulatory.db [ 88.606746][ T29] audit: type=1326 audit(1734243002.603:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6143 comm="syz.1.63" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd112585d19 code=0x0 [ 91.575231][ T6176] ======================================================= [ 91.575231][ T6176] WARNING: The mand mount option has been deprecated and [ 91.575231][ T6176] and is ignored by this kernel. Remove the mand [ 91.575231][ T6176] option from the mount to silence this warning. [ 91.575231][ T6176] ======================================================= [ 92.306116][ T6199] FAULT_INJECTION: forcing a failure. [ 92.306116][ T6199] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 92.325102][ T6199] CPU: 0 UID: 0 PID: 6199 Comm: syz.2.82 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0 [ 92.335655][ T6199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 92.345803][ T6199] Call Trace: [ 92.349073][ T6199] [ 92.351993][ T6199] dump_stack_lvl+0x16c/0x1f0 [ 92.356743][ T6199] should_fail_ex+0x497/0x5b0 [ 92.361432][ T6199] _copy_from_iter+0x29b/0x1400 [ 92.366284][ T6199] ? trace_lock_acquire+0x14e/0x1f0 [ 92.371482][ T6199] ? __pfx__copy_from_iter+0x10/0x10 [ 92.376777][ T6199] ? __virt_addr_valid+0x1a4/0x590 [ 92.381899][ T6199] ? __virt_addr_valid+0x5e/0x590 [ 92.387009][ T6199] ? __phys_addr_symbol+0x30/0x80 [ 92.392054][ T6199] ? __check_object_size+0x488/0x710 [ 92.397350][ T6199] kernfs_fop_write_iter+0x19d/0x500 [ 92.402636][ T6199] vfs_write+0x5ae/0x1150 [ 92.406966][ T6199] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 92.412776][ T6199] ? __pfx___mutex_lock+0x10/0x10 [ 92.417886][ T6199] ? __pfx_vfs_write+0x10/0x10 [ 92.422681][ T6199] ksys_write+0x12b/0x250 [ 92.427042][ T6199] ? __pfx_ksys_write+0x10/0x10 [ 92.431908][ T6199] do_syscall_64+0xcd/0x250 [ 92.436412][ T6199] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.442303][ T6199] RIP: 0033:0x7fd4caf85d19 [ 92.446709][ T6199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 92.466317][ T6199] RSP: 002b:00007fd4cbcee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 92.474743][ T6199] RAX: ffffffffffffffda RBX: 00007fd4cb175fa0 RCX: 00007fd4caf85d19 [ 92.482785][ T6199] RDX: 0000000000000002 RSI: 00000000200001c0 RDI: 0000000000000003 [ 92.490757][ T6199] RBP: 00007fd4cbcee090 R08: 0000000000000000 R09: 0000000000000000 [ 92.498722][ T6199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 92.506720][ T6199] R13: 0000000000000000 R14: 00007fd4cb175fa0 R15: 00007fff54c2acc8 [ 92.514705][ T6199] [ 93.255559][ T6223] netlink: 330 bytes leftover after parsing attributes in process `syz.0.90'. [ 94.134306][ T6250] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 94.176902][ T6250] FAULT_INJECTION: forcing a failure. [ 94.176902][ T6250] name failslab, interval 1, probability 0, space 0, times 1 [ 94.235541][ T6250] CPU: 0 UID: 0 PID: 6250 Comm: syz.2.100 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0 [ 94.246204][ T6250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 94.256295][ T6250] Call Trace: [ 94.259603][ T6250] [ 94.262560][ T6250] dump_stack_lvl+0x16c/0x1f0 [ 94.267302][ T6250] should_fail_ex+0x497/0x5b0 [ 94.272019][ T6250] ? fs_reclaim_acquire+0xae/0x150 [ 94.277187][ T6250] should_failslab+0xc2/0x120 [ 94.281911][ T6250] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 94.287769][ T6250] ? __alloc_skb+0x2b3/0x380 [ 94.292420][ T6250] __alloc_skb+0x2b3/0x380 [ 94.296882][ T6250] ? __pfx___alloc_skb+0x10/0x10 [ 94.301865][ T6250] ? genl_rcv_msg+0x4f0/0x800 [ 94.306591][ T6250] ? genl_rcv_msg+0x4bd/0x800 [ 94.311315][ T6250] netlink_ack+0x164/0xb20 [ 94.315772][ T6250] netlink_rcv_skb+0x327/0x410 [ 94.320565][ T6250] ? __pfx_genl_rcv_msg+0x10/0x10 [ 94.325625][ T6250] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 94.330970][ T6250] ? down_read+0xc9/0x330 [ 94.335345][ T6250] ? __pfx_down_read+0x10/0x10 [ 94.340154][ T6250] ? netlink_deliver_tap+0x1ae/0xca0 [ 94.345674][ T6250] genl_rcv+0x28/0x40 [ 94.349770][ T6250] netlink_unicast+0x53c/0x7f0 [ 94.354602][ T6250] ? __pfx_netlink_unicast+0x10/0x10 [ 94.359996][ T6250] ? __phys_addr_symbol+0x30/0x80 [ 94.365163][ T6250] ? __check_object_size+0x488/0x710 [ 94.370520][ T6250] netlink_sendmsg+0x8b8/0xd70 [ 94.375354][ T6250] ? __pfx_netlink_sendmsg+0x10/0x10 [ 94.380703][ T6250] ____sys_sendmsg+0x9ae/0xb40 [ 94.385514][ T6250] ? copy_msghdr_from_user+0x10b/0x160 [ 94.391030][ T6250] ? __pfx_____sys_sendmsg+0x10/0x10 [ 94.396376][ T6250] ___sys_sendmsg+0x135/0x1e0 [ 94.401106][ T6250] ? __pfx____sys_sendmsg+0x10/0x10 [ 94.406357][ T6250] ? __pfx_lock_release+0x10/0x10 [ 94.411424][ T6250] ? trace_lock_acquire+0x14e/0x1f0 [ 94.416680][ T6250] ? __fget_files+0x206/0x3a0 [ 94.421490][ T6250] __sys_sendmsg+0x16e/0x220 [ 94.426137][ T6250] ? __pfx___sys_sendmsg+0x10/0x10 [ 94.431320][ T6250] do_syscall_64+0xcd/0x250 [ 94.435866][ T6250] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 94.441805][ T6250] RIP: 0033:0x7fd4caf85d19 [ 94.446271][ T6250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 94.466011][ T6250] RSP: 002b:00007fd4cbcee038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 94.474464][ T6250] RAX: ffffffffffffffda RBX: 00007fd4cb175fa0 RCX: 00007fd4caf85d19 [ 94.482472][ T6250] RDX: 0000000000000800 RSI: 0000000020000000 RDI: 0000000000000003 [ 94.490510][ T6250] RBP: 00007fd4cbcee090 R08: 0000000000000000 R09: 0000000000000000 [ 94.498518][ T6250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 94.506557][ T6250] R13: 0000000000000000 R14: 00007fd4cb175fa0 R15: 00007fff54c2acc8 [ 94.514628][ T6250] [ 94.532380][ T6252] tipc: Started in network mode [ 94.537375][ T6252] tipc: Node identity ee00, cluster identity 4711 [ 94.551289][ T6252] tipc: Node number set to 60928 [ 97.145831][ T6314] FAULT_INJECTION: forcing a failure. [ 97.145831][ T6314] name failslab, interval 1, probability 0, space 0, times 0 [ 97.159218][ T6314] CPU: 0 UID: 0 PID: 6314 Comm: syz.3.124 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0 [ 97.169868][ T6314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 97.180018][ T6314] Call Trace: [ 97.183309][ T6314] [ 97.186240][ T6314] dump_stack_lvl+0x16c/0x1f0 [ 97.190926][ T6314] should_fail_ex+0x497/0x5b0 [ 97.195634][ T6314] ? fs_reclaim_acquire+0xae/0x150 [ 97.200762][ T6314] should_failslab+0xc2/0x120 [ 97.205476][ T6314] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 97.210860][ T6314] ? fput+0x67/0x440 [ 97.214774][ T6314] ? getname_flags.part.0+0x4c/0x550 [ 97.220109][ T6314] getname_flags.part.0+0x4c/0x550 [ 97.225272][ T6314] __x64_sys_rmdir+0xb0/0x110 [ 97.230003][ T6314] do_syscall_64+0xcd/0x250 [ 97.234551][ T6314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 97.240574][ T6314] RIP: 0033:0x7f2073d85d19 [ 97.245025][ T6314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 97.264937][ T6314] RSP: 002b:00007f2074ad2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054 [ 97.273390][ T6314] RAX: ffffffffffffffda RBX: 00007f2073f75fa0 RCX: 00007f2073d85d19 [ 97.281372][ T6314] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000100 [ 97.289349][ T6314] RBP: 00007f2074ad2090 R08: 0000000000000000 R09: 0000000000000000 [ 97.297323][ T6314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 97.305295][ T6314] R13: 0000000000000000 R14: 00007f2073f75fa0 R15: 00007ffe95e241e8 [ 97.313282][ T6314] [ 97.446113][ T6317] netlink: 330 bytes leftover after parsing attributes in process `syz.3.125'. [ 97.786578][ T6324] netlink: 4 bytes leftover after parsing attributes in process `syz.1.128'. [ 97.789697][ T6319] Invalid ELF header magic: != ELF [ 97.911542][ T6326] bond0: option primary_reselect: invalid value () [ 98.039919][ T6329] netlink: 12 bytes leftover after parsing attributes in process `syz.0.130'. [ 98.614720][ T6345] Process accounting resumed [ 98.843279][ T6350] netlink: 4 bytes leftover after parsing attributes in process `syz.3.139'. [ 98.882888][ T6350] netlink: 4 bytes leftover after parsing attributes in process `syz.3.139'. [ 99.390165][ T6359] FAULT_INJECTION: forcing a failure. [ 99.390165][ T6359] name failslab, interval 1, probability 0, space 0, times 0 [ 99.414798][ T6359] CPU: 1 UID: 0 PID: 6359 Comm: syz.2.143 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0 [ 99.425513][ T6359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 99.435658][ T6359] Call Trace: [ 99.438939][ T6359] [ 99.441867][ T6359] dump_stack_lvl+0x16c/0x1f0 [ 99.446556][ T6359] should_fail_ex+0x497/0x5b0 [ 99.451239][ T6359] ? fs_reclaim_acquire+0xae/0x150 [ 99.456362][ T6359] should_failslab+0xc2/0x120 [ 99.461093][ T6359] __kmalloc_node_noprof+0xd1/0x520 [ 99.466307][ T6359] ? alloc_slab_obj_exts+0x41/0xa0 [ 99.471433][ T6359] alloc_slab_obj_exts+0x41/0xa0 [ 99.476647][ T6359] __memcg_slab_post_alloc_hook+0x2a7/0x9b0 [ 99.482578][ T6359] __kmalloc_node_noprof+0x409/0x520 [ 99.487897][ T6359] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 99.493384][ T6359] __kvmalloc_node_noprof+0xad/0x1a0 [ 99.498685][ T6359] seq_read_iter+0x82a/0x12b0 [ 99.503368][ T6359] ? __mutex_trylock_common+0xea/0x250 [ 99.508837][ T6359] kernfs_fop_read_iter+0x414/0x580 [ 99.514116][ T6359] ? rw_verify_area+0xd0/0x700 [ 99.518888][ T6359] vfs_read+0x87f/0xbe0 [ 99.523063][ T6359] ? __pfx_vfs_read+0x10/0x10 [ 99.527773][ T6359] ksys_read+0x12b/0x250 [ 99.532024][ T6359] ? __pfx_ksys_read+0x10/0x10 [ 99.536821][ T6359] do_syscall_64+0xcd/0x250 [ 99.541335][ T6359] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 99.547236][ T6359] RIP: 0033:0x7fd4caf85d19 [ 99.551680][ T6359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 99.571400][ T6359] RSP: 002b:00007fd4cbcee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 99.579828][ T6359] RAX: ffffffffffffffda RBX: 00007fd4cb175fa0 RCX: 00007fd4caf85d19 [ 99.588084][ T6359] RDX: 0000000000000070 RSI: 0000000020000000 RDI: 0000000000000003 [ 99.596070][ T6359] RBP: 00007fd4cbcee090 R08: 0000000000000000 R09: 0000000000000000 [ 99.604052][ T6359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 99.612115][ T6359] R13: 0000000000000000 R14: 00007fd4cb175fa0 R15: 00007fff54c2acc8 [ 99.620106][ T6359] [ 100.325684][ T6365] Invalid ELF header magic: != ELF [ 101.185507][ T6396] openvswitch: netlink: Missing valid actions attribute. [ 103.904936][ T6454] Invalid ELF header magic: != ELF [ 104.236149][ T6464] process 'syz.2.172' launched ':,' with NULL argv: empty string added [ 105.018749][ T6478] netlink: 4 bytes leftover after parsing attributes in process `syz.0.176'. [ 106.886902][ T6512] nbd: must specify at least one socket [ 106.935450][ T6519] netlink: 28 bytes leftover after parsing attributes in process `syz.3.189'. [ 106.984765][ T6519] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 107.182912][ T6526] FAULT_INJECTION: forcing a failure. [ 107.182912][ T6526] name failslab, interval 1, probability 0, space 0, times 0 [ 107.200124][ T6526] CPU: 0 UID: 0 PID: 6526 Comm: syz.2.192 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0 [ 107.210792][ T6526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 107.220883][ T6526] Call Trace: [ 107.224187][ T6526] [ 107.227140][ T6526] dump_stack_lvl+0x16c/0x1f0 [ 107.231852][ T6526] should_fail_ex+0x497/0x5b0 [ 107.236571][ T6526] ? fs_reclaim_acquire+0xae/0x150 [ 107.241807][ T6526] should_failslab+0xc2/0x120 [ 107.246529][ T6526] __kmalloc_node_noprof+0xd1/0x520 [ 107.251791][ T6526] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 107.257303][ T6526] __kvmalloc_node_noprof+0xad/0x1a0 [ 107.262640][ T6526] seq_read_iter+0x82a/0x12b0 [ 107.267357][ T6526] ? __mutex_trylock_common+0xea/0x250 [ 107.272970][ T6526] kernfs_fop_read_iter+0x414/0x580 [ 107.278220][ T6526] ? rw_verify_area+0xd0/0x700 [ 107.283031][ T6526] vfs_read+0x87f/0xbe0 [ 107.287248][ T6526] ? __pfx_vfs_read+0x10/0x10 [ 107.292065][ T6526] ksys_read+0x12b/0x250 [ 107.296349][ T6526] ? __pfx_ksys_read+0x10/0x10 [ 107.301169][ T6526] do_syscall_64+0xcd/0x250 [ 107.305721][ T6526] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.311677][ T6526] RIP: 0033:0x7fd4caf85d19 [ 107.316126][ T6526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 107.335774][ T6526] RSP: 002b:00007fd4cbcee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 107.344231][ T6526] RAX: ffffffffffffffda RBX: 00007fd4cb175fa0 RCX: 00007fd4caf85d19 [ 107.352249][ T6526] RDX: 0000000000000040 RSI: 0000000020000080 RDI: 0000000000000003 [ 107.360254][ T6526] RBP: 00007fd4cbcee090 R08: 0000000000000000 R09: 0000000000000000 [ 107.368262][ T6526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 107.376281][ T6526] R13: 0000000000000000 R14: 00007fd4cb175fa0 R15: 00007fff54c2acc8 [ 107.384319][ T6526] [ 107.498600][ T6532] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 108.579783][ T6547] Invalid ELF header magic: != ELF [ 111.688343][ T6603] netlink: 'syz.1.217': attribute type 1 has an invalid length. [ 111.849700][ T6598] Invalid ELF header magic: != ELF [ 111.868523][ T6598] ubi0: attaching mtd0 [ 111.876595][ T6598] ubi0: scanning is finished [ 111.881244][ T6598] ubi0: empty MTD device detected [ 112.008506][ T6598] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 112.019337][ T6598] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 112.034931][ T6598] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 112.042486][ T6598] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 112.050246][ T6598] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 112.062279][ T6598] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 112.076019][ T6598] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2752207180 [ 112.093632][ T6598] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 112.115294][ T6610] ubi0: background thread "ubi_bgt0d" started, PID 6610 [ 112.492255][ T6618] netlink: 'syz.3.224': attribute type 1 has an invalid length. [ 113.099156][ T6636] Invalid ELF header magic: != ELF [ 113.722846][ T6661] netlink: 8 bytes leftover after parsing attributes in process `syz.2.237'. [ 114.047822][ T6674] Invalid ELF header magic: != ELF [ 114.552642][ T6696] netlink: 342 bytes leftover after parsing attributes in process `syz.2.248'. [ 114.566780][ T6696] netlink: 274 bytes leftover after parsing attributes in process `syz.2.248'. [ 114.698115][ T6698] nbd: must specify at least one socket [ 115.946073][ T6742] Process accounting resumed [ 115.951223][ T6742] FAULT_INJECTION: forcing a failure. [ 115.951223][ T6742] name failslab, interval 1, probability 0, space 0, times 0 [ 115.982161][ T6742] CPU: 0 UID: 0 PID: 6742 Comm: syz.2.265 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0 [ 115.992827][ T6742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 116.002913][ T6742] Call Trace: [ 116.006215][ T6742] [ 116.009261][ T6742] dump_stack_lvl+0x16c/0x1f0 [ 116.013977][ T6742] should_fail_ex+0x497/0x5b0 [ 116.018676][ T6742] ? fs_reclaim_acquire+0xae/0x150 [ 116.023819][ T6742] should_failslab+0xc2/0x120 [ 116.028522][ T6742] __kmalloc_node_noprof+0xd1/0x520 [ 116.033743][ T6742] ? security_capable+0x7e/0x260 [ 116.038695][ T6742] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 116.044687][ T6742] ? ns_capable+0xd7/0x110 [ 116.049210][ T6742] __kvmalloc_node_noprof+0xad/0x1a0 [ 116.054506][ T6742] proc_sys_call_handler+0x2f6/0x5d0 [ 116.059805][ T6742] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 116.065619][ T6742] ? hlock_class+0x4e/0x130 [ 116.070130][ T6742] ? __lock_acquire+0xcc5/0x3c40 [ 116.075168][ T6742] ? __pfx_proc_sys_write+0x10/0x10 [ 116.080373][ T6742] __kernel_write_iter+0x318/0xa80 [ 116.085505][ T6742] ? __pfx___kernel_write_iter+0x10/0x10 [ 116.091188][ T6742] __kernel_write+0xf6/0x140 [ 116.095786][ T6742] ? __pfx___kernel_write+0x10/0x10 [ 116.100989][ T6742] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 116.106640][ T6742] ? rcu_is_watching+0x12/0xc0 [ 116.111416][ T6742] ? acct_pin_kill+0x2d/0x100 [ 116.116100][ T6742] ? lock_acquire+0x2f/0xb0 [ 116.120610][ T6742] ? acct_pin_kill+0x2d/0x100 [ 116.125293][ T6742] do_acct_process+0xcb0/0x14a0 [ 116.130152][ T6742] ? __pfx_do_acct_process+0x10/0x10 [ 116.135447][ T6742] ? do_raw_spin_lock+0x12d/0x2c0 [ 116.140489][ T6742] acct_pin_kill+0x2d/0x100 [ 116.145030][ T6742] pin_kill+0x194/0x7c0 [ 116.149194][ T6742] ? __pfx_pin_kill+0x10/0x10 [ 116.153874][ T6742] ? rcu_is_watching+0x12/0xc0 [ 116.158734][ T6742] ? __pfx_autoremove_wake_function+0x10/0x10 [ 116.164839][ T6742] ? __x64_sys_acct+0xfe/0x220 [ 116.169634][ T6742] ? lock_acquire+0x2f/0xb0 [ 116.174154][ T6742] ? __x64_sys_acct+0xfe/0x220 [ 116.178940][ T6742] __x64_sys_acct+0x15b/0x220 [ 116.183633][ T6742] ? lockdep_hardirqs_on+0x7c/0x110 [ 116.188864][ T6742] do_syscall_64+0xcd/0x250 [ 116.193380][ T6742] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.199373][ T6742] RIP: 0033:0x7fd4caf85d19 [ 116.203790][ T6742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 116.223417][ T6742] RSP: 002b:00007fd4cbcee038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 116.232019][ T6742] RAX: ffffffffffffffda RBX: 00007fd4cb175fa0 RCX: 00007fd4caf85d19 [ 116.240097][ T6742] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 116.248070][ T6742] RBP: 00007fd4cbcee090 R08: 0000000000000000 R09: 0000000000000000 [ 116.256044][ T6742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 116.264026][ T6742] R13: 0000000000000000 R14: 00007fd4cb175fa0 R15: 00007fff54c2acc8 [ 116.272038][ T6742] [ 116.281931][ T6750] Process accounting resumed [ 116.328478][ T6749] netlink: 28 bytes leftover after parsing attributes in process `syz.3.263'. [ 116.681450][ T6757] Process accounting resumed [ 120.234543][ T6833] syz.1.291 uses obsolete (PF_INET,SOCK_PACKET) [ 121.739954][ T6864] Invalid ELF header magic: != ELF [ 121.758348][ T6871] FAULT_INJECTION: forcing a failure. [ 121.758348][ T6871] name failslab, interval 1, probability 0, space 0, times 0 [ 121.804204][ T6871] CPU: 0 UID: 0 PID: 6871 Comm: syz.0.298 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0 [ 121.814855][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 121.824987][ T6871] Call Trace: [ 121.828301][ T6871] [ 121.831271][ T6871] dump_stack_lvl+0x16c/0x1f0 [ 121.835996][ T6871] should_fail_ex+0x497/0x5b0 [ 121.840763][ T6871] ? fs_reclaim_acquire+0xae/0x150 [ 121.845979][ T6871] should_failslab+0xc2/0x120 [ 121.850713][ T6871] __kmalloc_node_noprof+0xd1/0x520 [ 121.855958][ T6871] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 121.861561][ T6871] __kvmalloc_node_noprof+0xad/0x1a0 [ 121.866893][ T6871] seq_read_iter+0x82a/0x12b0 [ 121.871611][ T6871] ? __mutex_trylock_common+0xea/0x250 [ 121.877129][ T6871] kernfs_fop_read_iter+0x414/0x580 [ 121.882366][ T6871] ? rw_verify_area+0xd0/0x700 [ 121.887166][ T6871] vfs_read+0x87f/0xbe0 [ 121.891367][ T6871] ? __pfx_vfs_read+0x10/0x10 [ 121.896105][ T6871] ksys_read+0x12b/0x250 [ 121.900389][ T6871] ? __pfx_ksys_read+0x10/0x10 [ 121.905207][ T6871] do_syscall_64+0xcd/0x250 [ 121.909757][ T6871] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.915695][ T6871] RIP: 0033:0x7ff8cd785d19 [ 121.920156][ T6871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 121.939908][ T6871] RSP: 002b:00007ff8ce56d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 121.948375][ T6871] RAX: ffffffffffffffda RBX: 00007ff8cd975fa0 RCX: 00007ff8cd785d19 [ 121.956386][ T6871] RDX: 00000000000000ff RSI: 00000000200000c0 RDI: 0000000000000003 [ 121.964404][ T6871] RBP: 00007ff8ce56d090 R08: 0000000000000000 R09: 0000000000000000 [ 121.972416][ T6871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 121.980426][ T6871] R13: 0000000000000000 R14: 00007ff8cd975fa0 R15: 00007fffcca7c618 [ 121.988464][ T6871] [ 123.121709][ T6897] Invalid ELF header magic: != ELF [ 123.153506][ T6897] ubi: mtd0 is already attached to ubi0 [ 123.214609][ T6902] FAULT_INJECTION: forcing a failure. [ 123.214609][ T6902] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 123.228346][ T6902] CPU: 1 UID: 0 PID: 6902 Comm: syz.0.316 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0 [ 123.239015][ T6902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 123.249100][ T6902] Call Trace: [ 123.252384][ T6902] [ 123.255319][ T6902] dump_stack_lvl+0x16c/0x1f0 [ 123.260008][ T6902] should_fail_ex+0x497/0x5b0 [ 123.264699][ T6902] _copy_to_user+0x32/0xd0 [ 123.269131][ T6902] simple_read_from_buffer+0xd0/0x160 [ 123.274522][ T6902] proc_fail_nth_read+0x198/0x270 [ 123.279562][ T6902] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 123.285131][ T6902] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 123.290689][ T6902] vfs_read+0x1df/0xbe0 [ 123.294853][ T6902] ? __fget_files+0x1fc/0x3a0 [ 123.299539][ T6902] ? __pfx___mutex_lock+0x10/0x10 [ 123.304573][ T6902] ? __pfx_vfs_read+0x10/0x10 [ 123.309261][ T6902] ? __fget_files+0x206/0x3a0 [ 123.313954][ T6902] ksys_read+0x12b/0x250 [ 123.318200][ T6902] ? __pfx_ksys_read+0x10/0x10 [ 123.322993][ T6902] do_syscall_64+0xcd/0x250 [ 123.327507][ T6902] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.333415][ T6902] RIP: 0033:0x7ff8cd78472c [ 123.337837][ T6902] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 123.357457][ T6902] RSP: 002b:00007ff8ce56d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 123.365877][ T6902] RAX: ffffffffffffffda RBX: 00007ff8cd975fa0 RCX: 00007ff8cd78472c [ 123.373851][ T6902] RDX: 000000000000000f RSI: 00007ff8ce56d0a0 RDI: 0000000000000004 [ 123.381822][ T6902] RBP: 00007ff8ce56d090 R08: 0000000000000000 R09: 0000000000000000 [ 123.389796][ T6902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 123.397767][ T6902] R13: 0000000000000000 R14: 00007ff8cd975fa0 R15: 00007fffcca7c618 [ 123.405754][ T6902] [ 123.654879][ T6904] Process accounting resumed [ 123.669617][ T6904] Invalid input. Must be >= 4608 [ 123.940372][ T6918] Invalid input. Must be >= 4608 [ 124.261317][ T6926] Invalid input. Must be >= 4608 [ 125.237259][ T6819] Invalid input. Must be >= 4608 [ 125.384501][ T6939] Invalid input. Must be >= 4608 [ 125.551398][ T6964] FAULT_INJECTION: forcing a failure. [ 125.551398][ T6964] name failslab, interval 1, probability 0, space 0, times 0 [ 125.593006][ T6964] CPU: 0 UID: 0 PID: 6964 Comm: syz.3.336 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0 [ 125.604182][ T6964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 125.614356][ T6964] Call Trace: [ 125.617657][ T6964] [ 125.620607][ T6964] dump_stack_lvl+0x16c/0x1f0 [ 125.625323][ T6964] should_fail_ex+0x497/0x5b0 [ 125.630054][ T6964] ? fs_reclaim_acquire+0xae/0x150 [ 125.635206][ T6964] should_failslab+0xc2/0x120 [ 125.639919][ T6964] __kmalloc_node_noprof+0xd1/0x520 [ 125.645152][ T6964] ? trace_contention_end+0xee/0x140 [ 125.650466][ T6964] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 125.655956][ T6964] ? find_held_lock+0x2d/0x110 [ 125.660734][ T6964] __kvmalloc_node_noprof+0xad/0x1a0 [ 125.666032][ T6964] traverse.part.0.constprop.0+0x392/0x640 [ 125.671845][ T6964] ? trace_lock_acquire+0x14e/0x1f0 [ 125.677058][ T6964] seq_lseek+0x2b4/0x440 [ 125.681310][ T6964] proc_reg_llseek+0x205/0x2f0 [ 125.686082][ T6964] ksys_lseek+0xf0/0x1b0 [ 125.690329][ T6964] do_syscall_64+0xcd/0x250 [ 125.694849][ T6964] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.700747][ T6964] RIP: 0033:0x7f2073d85d19 [ 125.705164][ T6964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.724775][ T6964] RSP: 002b:00007f2074ad2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000008 [ 125.733203][ T6964] RAX: ffffffffffffffda RBX: 00007f2073f75fa0 RCX: 00007f2073d85d19 [ 125.741189][ T6964] RDX: 0000000000000001 RSI: 7fffffffffffffff RDI: 0000000000000003 [ 125.749164][ T6964] RBP: 00007f2074ad2090 R08: 0000000000000000 R09: 0000000000000000 [ 125.757150][ T6964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 125.765149][ T6964] R13: 0000000000000000 R14: 00007f2073f75fa0 R15: 00007ffe95e241e8 [ 125.773242][ T6964] [ 125.888811][ T6963] Invalid input. Must be >= 4608 [ 126.188780][ T6972] Invalid input. Must be >= 4608 [ 126.617418][ T6984] netlink: 8 bytes leftover after parsing attributes in process `syz.3.344'. [ 126.634459][ T6984] netlink: 8 bytes leftover after parsing attributes in process `syz.3.344'. [ 126.647939][ T6988] netlink: 'syz.0.346': attribute type 11 has an invalid length. [ 126.755221][ T6991] netlink: 346 bytes leftover after parsing attributes in process `syz.1.347'. [ 126.771110][ T6984] Invalid input. Must be >= 4608 [ 126.851340][ T6993] netlink: 28 bytes leftover after parsing attributes in process `syz.0.348'. [ 126.874926][ T6993] vcan0: entered promiscuous mode [ 127.254155][ T6994] Invalid input. Must be >= 4608 [ 127.918196][ T7009] Invalid input. Must be >= 4608 [ 128.430898][ T7023] Invalid input. Must be >= 4608 [ 128.537071][ T7028] FAULT_INJECTION: forcing a failure. [ 128.537071][ T7028] name failslab, interval 1, probability 0, space 0, times 0 [ 128.575051][ T7028] CPU: 0 UID: 0 PID: 7028 Comm: syz.3.357 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0 [ 128.585714][ T7028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 128.595981][ T7028] Call Trace: [ 128.599295][ T7028] [ 128.602259][ T7028] dump_stack_lvl+0x16c/0x1f0 [ 128.606981][ T7028] should_fail_ex+0x497/0x5b0 [ 128.611700][ T7028] ? fs_reclaim_acquire+0xae/0x150 [ 128.616856][ T7028] should_failslab+0xc2/0x120 [ 128.621579][ T7028] __kmalloc_noprof+0xce/0x4f0 [ 128.626390][ T7028] ? d_absolute_path+0x137/0x1b0 [ 128.631381][ T7028] ? tomoyo_encode2+0x100/0x3e0 [ 128.636275][ T7028] tomoyo_encode2+0x100/0x3e0 [ 128.640993][ T7028] tomoyo_realpath_from_path+0x1a7/0x710 [ 128.646673][ T7028] tomoyo_path_number_perm+0x248/0x5b0 [ 128.652178][ T7028] ? tomoyo_path_number_perm+0x235/0x5b0 [ 128.657864][ T7028] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 128.663922][ T7028] ? __pfx_lock_release+0x10/0x10 [ 128.668993][ T7028] ? trace_lock_acquire+0x14e/0x1f0 [ 128.674239][ T7028] ? lock_acquire+0x2f/0xb0 [ 128.678773][ T7028] ? __fget_files+0x40/0x3a0 [ 128.683407][ T7028] ? __fget_files+0x206/0x3a0 [ 128.688128][ T7028] security_file_ioctl+0x9b/0x240 [ 128.693196][ T7028] __x64_sys_ioctl+0xb7/0x200 [ 128.697932][ T7028] do_syscall_64+0xcd/0x250 [ 128.702476][ T7028] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.708580][ T7028] RIP: 0033:0x7f2073d85d19 [ 128.713021][ T7028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.732751][ T7028] RSP: 002b:00007f2074ad2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 128.741202][ T7028] RAX: ffffffffffffffda RBX: 00007f2073f75fa0 RCX: 00007f2073d85d19 [ 128.749202][ T7028] RDX: 0000000000000000 RSI: 0000000050009405 RDI: 0000000000000004 [ 128.757202][ T7028] RBP: 00007f2074ad2090 R08: 0000000000000000 R09: 0000000000000000 [ 128.765206][ T7028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 128.773212][ T7028] R13: 0000000000000000 R14: 00007f2073f75fa0 R15: 00007ffe95e241e8 [ 128.781231][ T7028] [ 128.784330][ C0] vkms_vblank_simulate: vblank timer overrun [ 128.801232][ T7028] ERROR: Out of memory at tomoyo_realpath_from_path. [ 128.857725][ T7028] Invalid input. Must be >= 4608 [ 129.848820][ T7039] Invalid ELF header magic: != ELF [ 129.897623][ T7032] Invalid input. Must be >= 4608 [ 130.254815][ T7051] Invalid input. Must be >= 4608 [ 130.418172][ T7049] Invalid ELF header magic: != ELF [ 130.644106][ T7057] Invalid input. Must be >= 4608 [ 131.224150][ T7072] Invalid ELF header magic: != ELF [ 132.229642][ T7033] Invalid input. Must be >= 4608 [ 133.246407][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.252979][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.980169][ T7074] Invalid input. Must be >= 4608 [ 134.864394][ T7129] Invalid input. Must be >= 4608 [ 135.620354][ T7140] netlink: 12 bytes leftover after parsing attributes in process `syz.3.393'. [ 135.722288][ T7140] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 136.044155][ T7134] Invalid input. Must be >= 4608 [ 136.466786][ T7156] Invalid input. Must be >= 4608 [ 136.960868][ T7163] Invalid input. Must be >= 4608 [ 137.941798][ T7178] Invalid input. Must be >= 4608 syzkaller syzkaller login: [ 138.268842][ T7198] Invalid input. Must be >= 4608 [ 138.558975][ T7204] Invalid input. Must be >= 4608 [ 139.144965][ T7209] Invalid ELF header magic: != ELF [ 139.512596][ T7222] netlink: 28 bytes leftover after parsing attributes in process `syz.0.417'. [ 139.774216][ T7212] Invalid input. Must be >= 4608 [ 140.331727][ T7145] Invalid input. Must be >= 4608 [ 142.469991][ T7229] Invalid input. Must be >= 4608 [ 142.827225][ T7277] netlink: 28 bytes leftover after parsing attributes in process `syz.3.437'. [ 142.887813][ T7277] geneve1: entered allmulticast mode [ 143.154813][ T7273] Invalid input. Must be >= 4608 [ 143.471327][ T7289] Invalid input. Must be >= 4608 [ 144.506401][ T7297] Invalid input. Must be >= 4608 [ 144.674135][ T7318] netlink: 342 bytes leftover after parsing attributes in process `syz.3.453'. [ 144.787839][ T7318] Invalid input. Must be >= 4608 [ 145.224628][ T7326] Invalid input. Must be >= 4608 [ 145.323381][ T7331] Invalid input. Must be >= 4608 [ 145.513479][ T7334] Invalid input. Must be >= 4608 [ 146.450836][ T7350] netlink: 342 bytes leftover after parsing attributes in process `syz.0.464'. [ 146.462278][ T7350] netlink: 342 bytes leftover after parsing attributes in process `syz.0.464'. [ 146.657781][ T7347] Invalid input. Must be >= 4608 [ 147.823488][ T7369] rtc_cmos 00:00: Alarms can be up to one day in the future [ 147.893504][ T7362] Invalid input. Must be >= 4608 [ 148.949149][ T7388] Invalid input. Must be >= 4608 [ 149.099409][ T7397] netlink: 'syz.1.479': attribute type 46 has an invalid length. [ 149.189763][ T7401] FAULT_INJECTION: forcing a failure. [ 149.189763][ T7401] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 149.249866][ T7401] CPU: 1 UID: 0 PID: 7401 Comm: syz.2.481 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0 [ 149.260707][ T7401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 149.270902][ T7401] Call Trace: [ 149.274218][ T7401] [ 149.277176][ T7401] dump_stack_lvl+0x16c/0x1f0 [ 149.281893][ T7401] should_fail_ex+0x497/0x5b0 [ 149.286609][ T7401] _copy_from_user+0x2e/0xd0 [ 149.291245][ T7401] sg_write+0x2cd/0xe00 [ 149.295447][ T7401] ? __pfx_sg_write+0x10/0x10 [ 149.300151][ T7401] ? aa_file_perm+0x4d5/0xfe0 [ 149.304860][ T7401] ? find_held_lock+0x2d/0x110 [ 149.309684][ T7401] ? apparmor_file_permission+0x251/0x400 [ 149.315439][ T7401] ? bpf_lsm_file_permission+0x9/0x10 [ 149.320845][ T7401] ? security_file_permission+0x71/0x210 [ 149.326509][ T7401] ? __pfx_sg_write+0x10/0x10 [ 149.331218][ T7401] vfs_write+0x24c/0x1150 [ 149.335583][ T7401] ? __pfx_vfs_write+0x10/0x10 [ 149.340374][ T7401] ? do_sys_openat2+0xb1/0x1e0 [ 149.345185][ T7401] ? __pfx_do_sys_openat2+0x10/0x10 [ 149.350430][ T7401] ksys_write+0x12b/0x250 [ 149.354839][ T7401] ? __pfx_ksys_write+0x10/0x10 [ 149.359828][ T7401] do_syscall_64+0xcd/0x250 [ 149.364364][ T7401] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.370290][ T7401] RIP: 0033:0x7fd4caf85d19 [ 149.374729][ T7401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.394458][ T7401] RSP: 002b:00007fd4cbcee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 149.402905][ T7401] RAX: ffffffffffffffda RBX: 00007fd4cb175fa0 RCX: 00007fd4caf85d19 [ 149.410905][ T7401] RDX: 000000000000fdf3 RSI: 0000000000000000 RDI: 0000000000000003 [ 149.418896][ T7401] RBP: 00007fd4cbcee090 R08: 0000000000000000 R09: 0000000000000000 [ 149.426894][ T7401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 149.434884][ T7401] R13: 0000000000000000 R14: 00007fd4cb175fa0 R15: 00007fff54c2acc8 [ 149.442894][ T7401] [ 150.064969][ T7400] Invalid input. Must be >= 4608 [ 150.269271][ T7414] netlink: 4 bytes leftover after parsing attributes in process `syz.3.486'. [ 150.329445][ T7414] aoe: can't write to that file. [ 150.608811][ T7413] Invalid input. Must be >= 4608 [ 150.819772][ T7426] sg_write: data in/out 888535554/295 bytes for SCSI command 0xb4-- guessing data in; [ 150.819772][ T7426] program syz.1.491 not setting count and/or reply_len properly [ 151.554737][ T7428] openvswitch: netlink: IP tunnel dst address not specified [ 151.729020][ T7428] Invalid input. Must be >= 4608 [ 151.798716][ T7437] netlink: 'syz.2.492': attribute type 46 has an invalid length. [ 152.211165][ T7370] Invalid input. Must be >= 4608 ust be >= 4608 [ 152.943529][ T7443] Invalid input. Must be >= 4608 [ 153.119769][ T7470] rtc_cmos 00:00: Alarms can be up to one day in the future [ 153.482951][ T7484] netlink: 28 bytes leftover after parsing attributes in process `syz.0.506'. [ 153.515252][ T7484] bridge_slave_1: left allmulticast mode [ 153.520972][ T7484] bridge_slave_1: left promiscuous mode [ 153.545681][ T7484] bridge0: port 2(bridge_slave_1) entered disabled state [ 153.613156][ T7484] bridge_slave_0: left allmulticast mode [ 153.649658][ T7484] bridge_slave_0: left promiscuous mode [ 153.672137][ T7484] bridge0: port 1(bridge_slave_0) entered disabled state [ 153.985513][ T7473] Process accounting paused [ 154.073859][ T7497] Invalid ELF header magic: != ELF [ 155.104210][ T7522] sg_write: data in/out 888535554/295 bytes for SCSI command 0xb4-- guessing data in; [ 155.104210][ T7522] program syz.3.517 not setting count and/or reply_len properly [ 155.653517][ T7530] netlink: 342 bytes leftover after parsing attributes in process `syz.0.519'. [ 155.669216][ T7520] netlink: 28 bytes leftover after parsing attributes in process `syz.1.516'. [ 155.703788][ T7524] netlink: 12 bytes leftover after parsing attributes in process `syz.1.516'. [ 155.706506][ T7520] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode [ 155.726638][ T7520] mac80211_hwsim hwsim8 wlan0: entered allmulticast mode [ 159.694191][ T7613] netlink: 8 bytes leftover after parsing attributes in process `syz.0.542'. [ 159.697210][ T7610] can: request_module (can-proto-0) failed. [ 160.645727][ T7629] delete_channel: no stack [ 160.874063][ T7640] nvme_fabrics: unknown parameter or missing value '7' in ctrl creation request [ 161.696862][ T7658] Invalid ELF header magic: != ELF [ 162.020652][ T7677] netlink: 4 bytes leftover after parsing attributes in process `syz.2.561'. [ 162.063470][ T7677] netlink: 4 bytes leftover after parsing attributes in process `syz.2.561'. [ 162.653694][ T7685] netlink: 28 bytes leftover after parsing attributes in process `syz.1.562'. [ 162.898200][ T7688] netlink: 28 bytes leftover after parsing attributes in process `syz.3.566'. [ 162.987773][ T7685] team0: Port device team_slave_1 removed [ 163.172573][ T7691] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 163.193280][ T7688] bridge_slave_1: left allmulticast mode [ 163.232872][ T7688] bridge_slave_1: left promiscuous mode [ 163.277219][ T7688] bridge0: port 2(bridge_slave_1) entered disabled state [ 163.442987][ T7688] bridge_slave_0: left allmulticast mode [ 163.458229][ T7688] bridge_slave_0: left promiscuous mode [ 163.478659][ T7688] bridge0: port 1(bridge_slave_0) entered disabled state [ 163.715490][ T7701] netlink: 342 bytes leftover after parsing attributes in process `syz.1.569'. [ 168.733938][ T29] audit: type=1804 audit(4294967335.570:5): pid=7784 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.594" name="/newroot/sys/kernel/tracing/trace_options" dev="tracefs" ino=48 res=1 errno=0 [ 171.114643][ T7807] netlink: 28 bytes leftover after parsing attributes in process `syz.1.598'. [ 171.409858][ T7794] netlink: 28 bytes leftover after parsing attributes in process `syz.2.595'. [ 171.452559][ T7794] netdevsim netdevsim2 netdevsim2: entered allmulticast mode [ 172.943406][ T7819] netlink: 28 bytes leftover after parsing attributes in process `syz.0.603'. [ 173.012266][ T7819] netdevsim netdevsim0 netdevsim2: entered allmulticast mode [ 173.142736][ T7835] FAULT_INJECTION: forcing a failure. [ 173.142736][ T7835] name failslab, interval 1, probability 0, space 0, times 0 [ 173.222394][ T7835] CPU: 1 UID: 0 PID: 7835 Comm: syz.2.608 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0 [ 173.233055][ T7835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 173.243141][ T7835] Call Trace: [ 173.246460][ T7835] [ 173.249395][ T7835] dump_stack_lvl+0x16c/0x1f0 [ 173.254089][ T7835] should_fail_ex+0x497/0x5b0 [ 173.258787][ T7835] ? fs_reclaim_acquire+0xae/0x150 [ 173.263910][ T7835] should_failslab+0xc2/0x120 [ 173.268606][ T7835] __kmalloc_cache_noprof+0x68/0x420 [ 173.273908][ T7835] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 173.279390][ T7835] disk_seqf_start+0x68/0x180 [ 173.284084][ T7835] seq_read_iter+0x2ab/0x12b0 [ 173.288764][ T7835] ? __mutex_trylock_common+0xea/0x250 [ 173.294239][ T7835] proc_reg_read_iter+0x21d/0x310 [ 173.299270][ T7835] vfs_read+0x87f/0xbe0 [ 173.303450][ T7835] ? __pfx_vfs_read+0x10/0x10 [ 173.308151][ T7835] ksys_read+0x12b/0x250 [ 173.312402][ T7835] ? __pfx_ksys_read+0x10/0x10 [ 173.317181][ T7835] do_syscall_64+0xcd/0x250 [ 173.321714][ T7835] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.327625][ T7835] RIP: 0033:0x7fd4caf85d19 [ 173.332041][ T7835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 173.351649][ T7835] RSP: 002b:00007fd4cbcee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 173.360072][ T7835] RAX: ffffffffffffffda RBX: 00007fd4cb175fa0 RCX: 00007fd4caf85d19 [ 173.368048][ T7835] RDX: 0000000000010001 RSI: 0000000020000080 RDI: 0000000000000003 [ 173.376022][ T7835] RBP: 00007fd4cbcee090 R08: 0000000000000000 R09: 0000000000000000 [ 173.383992][ T7835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 173.392050][ T7835] R13: 0000000000000000 R14: 00007fd4cb175fa0 R15: 00007fff54c2acc8 [ 173.400034][ T7835] [ 173.681470][ T7845] netlink: 4 bytes leftover after parsing attributes in process `syz.0.609'. [ 174.896081][ T7856] netlink: 28 bytes leftover after parsing attributes in process `syz.3.618'. [ 174.949498][ T7856] netdevsim netdevsim3 netdevsim2: entered allmulticast mode [ 176.932185][ T29] audit: type=1800 audit(8277292036.570:6): pid=7928 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.641" name="members" dev="configfs" ino=16449 res=0 errno=0 [ 177.544992][ T7953] could not allocate digest TFM handle [ 177.765081][ T7951] could not allocate digest TFM handle [ 178.978714][ T7984] netlink: 4320 bytes leftover after parsing attributes in process `syz.1.654'. [ 180.242079][ T29] audit: type=1800 audit(8277292039.890:7): pid=8003 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.660" name="lu_gp_id" dev="configfs" ino=16542 res=0 errno=0 [ 180.383995][ T7995] netlink: 28 bytes leftover after parsing attributes in process `syz.1.658'. [ 180.401093][ T7995] netdevsim netdevsim1 netdevsim2: entered allmulticast mode [ 182.605235][ T8060] netlink: 28 bytes leftover after parsing attributes in process `syz.1.682'. [ 182.648484][ T8060] veth0_macvtap: left promiscuous mode [ 183.113800][ T8072] [U] [ 183.116802][ T8072] [U] [ 183.119503][ T8072] [U] [ 183.122215][ T8072] [U] [ 183.130606][ T8072] [U] [ 183.133372][ T8072] [U] [ 183.136100][ T8072] [U] [ 183.138831][ T8072] [U] [ 183.148314][ T8072] [U] [ 183.151071][ T8072] [U] [ 183.153800][ T8072] [U] [ 183.156529][ T8072] [U] [ 183.160333][ T8072] [U] [ 183.163078][ T8072] [U] [ 183.165803][ T8072] [U] [ 183.168535][ T8072] [U] [ 183.201409][ T8077] [U] [ 183.843571][ T8107] netlink: 8 bytes leftover after parsing attributes in process `syz.2.695'. [ 184.625430][ T8122] [U] [ 184.628206][ T8122] [U] [ 184.630934][ T8122] [U] [ 184.633659][ T8122] [U] [ 184.662262][ T8122] [U] [ 184.665026][ T8122] [U] [ 184.667759][ T8122] [U] [ 184.670479][ T8122] [U] [ 184.682974][ T8122] [U] [ 184.685730][ T8122] [U] [ 184.688458][ T8122] [U] [ 184.691178][ T8122] [U] [ 184.713200][ T8122] [U] [ 184.715966][ T8122] [U] [ 184.718693][ T8122] [U] [ 184.721456][ T8122] [U] [ 184.741403][ T8125] [U] [ 184.969846][ T8131] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 185.673108][ T8158] netlink: 346 bytes leftover after parsing attributes in process `syz.2.715'. [ 186.242756][ T8168] nbd: socks must be embedded in a SOCK_ITEM attr [ 186.250459][ T8168] block nbd1: shutting down sockets [ 186.894748][ T8186] binder: 8185:8186 ioctl 7fffffff 6 returned -22 [ 187.486455][ T8196] netlink: 342 bytes leftover after parsing attributes in process `syz.2.726'. [ 188.378288][ T8223] Process accounting resumed [ 188.622358][ T8229] ecryptfs_miscdev_write: Invalid packet size [116] [ 190.959014][ T29] audit: type=1804 audit(8277292050.610:8): pid=8305 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.766" name="/file0" dev="rootfs" ino=17148 res=1 errno=0 [ 190.985467][ T29] audit: type=1804 audit(8277292050.640:9): pid=8305 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.766" name="/file0" dev="rootfs" ino=17148 res=1 errno=0 [ 191.005731][ T29] audit: type=1804 audit(8277292050.640:10): pid=8305 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.766" name="/file0" dev="rootfs" ino=17148 res=1 errno=0 [ 191.768391][ T5829] Process accounting resumed [ 191.789833][ T5829] Invalid input. Must be >= 4608 [ 192.360420][ T5839] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 192.369770][ T5839] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 192.389696][ T5839] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 192.401452][ T5839] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 192.410684][ T5839] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 192.427607][ T5839] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 192.726347][ T5829] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] PREEMPT SMP KASAN PTI [ 192.728988][ T8351] chnl_net:caif_netlink_parms(): no params data found [ 192.738952][ T5829] KASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f] [ 192.738972][ T5829] CPU: 0 UID: 0 PID: 5829 Comm: syz-executor Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0 [ 192.738998][ T5829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 192.739010][ T5829] RIP: 0010:rds_tcp_skbuf_handler+0x67/0x2e0 [ 192.781130][ T5829] Code: 48 c1 ea 03 80 3c 02 00 0f 85 58 02 00 00 4d 8b bf 08 09 00 00 48 b8 00 00 00 00 00 fc ff df 49 8d 7f 28 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 28 02 00 00 48 89 da 4d 89 f0 4c 89 e9 4d 8b 7f [ 192.800760][ T5829] RSP: 0018:ffffc90003faf5b0 EFLAGS: 00010206 [ 192.806831][ T5829] RAX: dffffc0000000000 RBX: ffff888027898c00 RCX: ffffc90003faf620 [ 192.814803][ T5829] RDX: 0000000000000005 RSI: ffffffff8a6dfe29 RDI: 0000000000000028 [ 192.822776][ T5829] RBP: 0000000000000001 R08: ffffc90003faf710 R09: 0000000000000040 [ 192.830830][ T5829] R10: 0000000000000040 R11: 00000000726f7475 R12: ffff8880345da100 [ 192.838797][ T5829] R13: ffffc90003faf620 R14: ffffc90003faf710 R15: 0000000000000000 [ 192.846771][ T5829] FS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 192.855699][ T5829] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 192.862281][ T5829] CR2: 00007f24e88b4440 CR3: 0000000065184000 CR4: 00000000003526f0 [ 192.870338][ T5829] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 192.878304][ T5829] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 192.886360][ T5829] Call Trace: [ 192.889633][ T5829] [ 192.892558][ T5829] ? die_addr+0x3b/0xa0 [ 192.896722][ T5829] ? exc_general_protection+0x155/0x230 [ 192.902364][ T5829] ? asm_exc_general_protection+0x26/0x30 [ 192.908106][ T5829] ? rds_tcp_skbuf_handler+0x29/0x2e0 [ 192.913490][ T5829] ? rds_tcp_skbuf_handler+0x67/0x2e0 [ 192.918875][ T5829] proc_sys_call_handler+0x403/0x5d0 [ 192.924165][ T5829] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 192.929975][ T5829] ? hlock_class+0x4e/0x130 [ 192.934508][ T5829] ? __lock_acquire+0xcc5/0x3c40 [ 192.939453][ T5829] ? __pfx_proc_sys_write+0x10/0x10 [ 192.944653][ T5829] __kernel_write_iter+0x318/0xa80 [ 192.949766][ T5829] ? __pfx___kernel_write_iter+0x10/0x10 [ 192.955401][ T5829] __kernel_write+0xf6/0x140 [ 192.960007][ T5829] ? __pfx___kernel_write+0x10/0x10 [ 192.965226][ T5829] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 192.970871][ T5829] ? rcu_is_watching+0x12/0xc0 [ 192.975647][ T5829] ? acct_pin_kill+0x2d/0x100 [ 192.980326][ T5829] ? lock_acquire+0x2f/0xb0 [ 192.984837][ T5829] ? acct_pin_kill+0x2d/0x100 [ 192.989527][ T5829] do_acct_process+0xcb0/0x14a0 [ 192.994399][ T5829] ? __pfx_do_acct_process+0x10/0x10 [ 192.999697][ T5829] ? do_raw_spin_lock+0x12d/0x2c0 [ 193.004733][ T5829] acct_pin_kill+0x2d/0x100 [ 193.009253][ T5829] pin_kill+0x194/0x7c0 [ 193.013418][ T5829] ? __pfx_pin_kill+0x10/0x10 [ 193.018098][ T5829] ? rcu_is_watching+0x12/0xc0 [ 193.023389][ T5829] ? __pfx_autoremove_wake_function+0x10/0x10 [ 193.029476][ T5829] ? mnt_pin_kill+0x31/0x1e0 [ 193.034066][ T5829] ? lock_acquire+0x2f/0xb0 [ 193.038568][ T5829] ? mnt_pin_kill+0x31/0x1e0 [ 193.043163][ T5829] ? mnt_pin_kill+0x31/0x1e0 [ 193.047763][ T5829] mnt_pin_kill+0x61/0x1e0 [ 193.052178][ T5829] cleanup_mnt+0x3ac/0x450 [ 193.056593][ T5829] task_work_run+0x14e/0x250 [ 193.061202][ T5829] ? __pfx_task_work_run+0x10/0x10 [ 193.066320][ T5829] do_exit+0xadd/0x2d70 [ 193.070481][ T5829] ? get_signal+0x8f7/0x2610 [ 193.075156][ T5829] ? __pfx_do_exit+0x10/0x10 [ 193.079749][ T5829] ? do_raw_spin_lock+0x12d/0x2c0 [ 193.084802][ T5829] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 193.090208][ T5829] do_group_exit+0xd3/0x2a0 [ 193.095003][ T5829] get_signal+0x2576/0x2610 [ 193.099522][ T5829] ? __pfx_child_wait_callback+0x10/0x10 [ 193.105160][ T5829] ? __pfx_get_signal+0x10/0x10 [ 193.110012][ T5829] ? __do_sys_wait4+0xd2/0x170 [ 193.114798][ T5829] arch_do_signal_or_restart+0x90/0x7e0 [ 193.120371][ T5829] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 193.126559][ T5829] syscall_exit_to_user_mode+0x150/0x2a0 [ 193.132200][ T5829] do_syscall_64+0xda/0x250 [ 193.136732][ T5829] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.142646][ T5829] RIP: 0033:0x7f2073d7bf97 [ 193.147064][ T5829] Code: Unable to access opcode bytes at 0x7f2073d7bf6d. [ 193.154095][ T5829] RSP: 002b:00007ffe95e24550 EFLAGS: 00000293 ORIG_RAX: 000000000000003d [ 193.162509][ T5829] RAX: fffffffffffffe00 RBX: 00000000000001bd RCX: 00007f2073d7bf97 [ 193.170475][ T5829] RDX: 0000000040000000 RSI: 00007ffe95e245ac RDI: 00000000ffffffff [ 193.178441][ T5829] RBP: 00007ffe95e245ac R08: 0000000000000000 R09: 00007f2074ad3000 [ 193.186409][ T5829] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 193.194375][ T5829] R13: 000055558c9ef590 R14: 00007ffe95e24600 R15: 0000000000000098 [ 193.202344][ T5829] [ 193.205358][ T5829] Modules linked in: [ 193.209332][ C0] vkms_vblank_simulate: vblank timer overrun [ 193.216227][ T5829] ---[ end trace 0000000000000000 ]--- SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 193.242315][ T5829] RIP: 0010:rds_tcp_skbuf_handler+0x67/0x2e0 [ 193.248363][ T5829] Code: 48 c1 ea 03 80 3c 02 00 0f 85 58 02 00 00 4d 8b bf 08 09 00 00 48 b8 00 00 00 00 00 fc ff df 49 8d 7f 28 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 28 02 00 00 48 89 da 4d 89 f0 4c 89 e9 4d 8b 7f [ 193.355901][ T5829] RSP: 0018:ffffc90003faf5b0 EFLAGS: 00010206 [ 193.373571][ T5829] RAX: dffffc0000000000 RBX: ffff888027898c00 RCX: ffffc90003faf620 [ 193.381607][ T5829] RDX: 0000000000000005 RSI: ffffffff8a6dfe29 RDI: 0000000000000028 [ 193.438665][ T5829] RBP: 0000000000000001 R08: ffffc90003faf710 R09: 0000000000000040 [ 193.462405][ T5829] R10: 0000000000000040 R11: 00000000726f7475 R12: ffff8880345da100 [ 193.470497][ T5829] R13: ffffc90003faf620 R14: ffffc90003faf710 R15: 0000000000000000 [ 193.481174][ T5829] FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 193.490525][ T5829] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 193.497732][ T5829] CR2: 000055860d3a7250 CR3: 000000000db7e000 CR4: 00000000003526f0 [ 193.505986][ T5829] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 193.562020][ T5829] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 193.570042][ T5829] Kernel panic - not syncing: Fatal exception [ 193.576385][ T5829] Kernel Offset: disabled [ 193.580700][ T5829] Rebooting in 86400 seconds..