last executing test programs: 7m10.917316084s ago: executing program 3 (id=840): r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x101401, 0x0) write$auto_seq_oss_f_ops_seq_oss(r0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x40}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000080)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x2, 0x9}, 0x800009}, 0x8005, 0x20000000) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r1) write$auto(0x3, 0x0, 0xfdef) write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000000)="2941043a0d9c3966445d695ef96a42c6a2d0015c2a80237d1bb40bcd9ffa11a1458d29e07f8fcbe7480386a5927c3115066ee897", 0x34) statmount$auto(&(0x7f00000000c0)={0x8, 0x0, 0x2, 0x4, 0x4}, &(0x7f0000001240)={0x9, 0x101, 0x2, 0x2, 0x7, 0x6, 0x3, 0x1, 0xd73, 0x7, 0x5, 0x3, 0x4, 0x6, 0x26, 0x3, 0x2, 0x6, 0xd, 0xee, 0x2a, 0x4000, 0x1, 0xff, 0x9, 0x7fff, [0x6, 0x1, 0x8, 0x6, 0xb70, 0x8, 0x401, 0x89, 0x400, 0x8, 0x101, 0x6, 0xffffffffffffeb55, 0x3, 0x0, 0x7, 0x9, 0x34a, 0xffffffffffff7fff, 0x873a, 0x4b72d174, 0x7, 0x5, 0xc000000, 0xffffffffffffffff, 0xa, 0x84, 0x7, 0x7fffffff, 0x4, 0x3, 0x0, 0x6, 0x7, 0xfffffffffffff801, 0x4, 0x6, 0x80000001, 0x0, 0x5, 0x3ff, 0x7d32, 0xa8c, 0x2707, 0xaa7, 0x2], "16391c28ff65290e8badb5f0d83c2a074800bc7f33a89e"}, 0xffffffffccbe25e1, 0x1) mmap$auto(0xffffffffffffffff, 0x2, 0x400000000df, 0xeb4, 0x10126f, 0x8000) open(0x0, 0x6140, 0xac) fanotify_mark$auto(0x0, 0x105, 0x8009, 0xffffffffffffffff, 0x0) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0x3, &(0x7f0000000000), 0x68) connect$auto(0x3, &(0x7f0000000000), 0x55) read$auto(0x3, 0x0, 0xf34) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x1d, 0x0, 0x9) connect$auto(0x3, 0x0, 0x55) socket(0xa, 0x3, 0x3a) socket(0x21, 0x2, 0xa) bind$auto(0x4, 0x0, 0x0) write$auto(0x3, 0x0, 0xffd8) mmap$auto(0x10001, 0x8, 0xbd, 0x11, 0x4, 0x6) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001d40)='/proc/timer_list\x00', 0xa182, 0x0) read$auto_proc_iter_file_ops_compat_inode(r2, &(0x7f0000000240)=""/4096, 0x1000) 7m9.991669377s ago: executing program 3 (id=845): mmap$auto(0x0, 0x7, 0x0, 0xeb1, 0x1000000000000000, 0x8001) futex_wait$auto(0x0, 0x0, 0x7f, 0x2, 0x0, 0x1) futex$auto(0x0, 0x3, 0x8243, 0x0, 0x0, 0x4) sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000001440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001400)={&(0x7f0000001480)=ANY=[@ANYBLOB="07130000", @ANYBLOB="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", @ANYBLOB="9fc4c904d3a7adae43ebcf557055e78d6f5b1bd85cb7346fea88b0fc9465a16c92fe3802c3aaa0d1ed2c3ed8cd2dbafbaaad5f202fa44131c850d38d4e189a30a5cf204d2e15e8dabdbfd544c050ef95a47b13419982f5dbb895978571dda7c6529837afe2b74835e233d329863dc69ae4b9dcbd972c4e3b3c2a2513cd42fff0f0c215fb8fbba67c471497d3bf4e294132f37a5f2081e4df6f131699d193cd4edd10aef6b0b4ef0550f2c35117ac983fea6712bec66657ff269b8daeccad6e1c74099ec5fbcfd0cffc9223d699b4fed1fd03204036914923e957d4ec872f8cdcefef1bb3f288b77ee286750dd5a60721"], 0x1354}}, 0x40001) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x4e23}, 0x67) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x2, 0xb}, 0x800009}, 0x5, 0x20000000) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) geteuid() mmap$auto(0xc, 0x100202000c, 0x7, 0xeb1, 0x0, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) select$auto(0x3, 0x0, &(0x7f0000000100)={[0xa, 0x200, 0x0, 0xc, 0x8, 0x3, 0x6, 0x2, 0x9, 0x5e582970, 0x4000000000000000, 0x2, 0x4, 0x5, 0x5, 0x6]}, 0x0, 0x0) connect$auto(r0, &(0x7f0000000140)=@nfc={0x27, 0x0, 0xffffffffffffffff, 0x1}, 0x51) write$auto(0x3, 0x0, 0xfdef) sendmsg$auto_NLBL_MGMT_C_LISTDEF(r0, &(0x7f0000001040)={&(0x7f0000000f80)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001000)={&(0x7f0000001080)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="02002dbd7000ffdbdf25060000000800020007000000080004007c00000008020200090000006331e4811cd2b7d015505a43d1c82477cf68deca994423d700"/77], 0x34}, 0x1, 0x0, 0x0, 0x810}, 0x8014) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) connect$auto(0x3, &(0x7f0000000140), 0x55) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x400c000) bpf$auto(0x0, 0x0, 0xfbf) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89b0, &(0x7f0000000140)={'vlan0\x00'}) shutdown$auto(0x200000003, 0x2) mmap$auto(0x0, 0x8, 0xe2, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x296) sendmsg$auto_NLBL_MGMT_C_LISTDEF(r0, 0x0, 0x20048800) pipe2$auto(&(0x7f0000000000), 0x4) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) 7m8.516574254s ago: executing program 3 (id=849): r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x101401, 0x0) write$auto_seq_oss_f_ops_seq_oss(r0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x40}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000080)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x2, 0x9}, 0x800009}, 0x8005, 0x20000000) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r1) write$auto(0x3, 0x0, 0xfdef) write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000000)="2941043a0d9c3966445d695ef96a42c6a2d0015c2a80237d1bb40bcd9ffa11a1458d29e07f8fcbe7480386a5927c3115066ee897", 0x34) statmount$auto(&(0x7f00000000c0)={0x8, 0x0, 0x2, 0x4, 0x4}, &(0x7f0000001240)={0x9, 0x101, 0x2, 0x2, 0x7, 0x6, 0x3, 0x1, 0xd73, 0x7, 0x5, 0x3, 0x4, 0x6, 0x26, 0x3, 0x2, 0x6, 0xd, 0xee, 0x2a, 0x4000, 0x1, 0xff, 0x9, 0x7fff, [0x6, 0x1, 0x8, 0x6, 0xb70, 0x8, 0x401, 0x89, 0x400, 0x8, 0x101, 0x6, 0xffffffffffffeb55, 0x3, 0x0, 0x7, 0x9, 0x34a, 0xffffffffffff7fff, 0x873a, 0x4b72d174, 0x7, 0x5, 0xc000000, 0xffffffffffffffff, 0xa, 0x84, 0x7, 0x7fffffff, 0x4, 0x3, 0x0, 0x6, 0x7, 0xfffffffffffff801, 0x4, 0x6, 0x80000001, 0x0, 0x5, 0x3ff, 0x7d32, 0xa8c, 0x2707, 0xaa7, 0x2], "16391c28ff65290e8badb5f0d83c2a074800bc7f33a89e"}, 0xffffffffccbe25e1, 0x1) mmap$auto(0xffffffffffffffff, 0x2, 0x400000000df, 0xeb4, 0x10126f, 0x8000) open(0x0, 0x6140, 0xac) fanotify_mark$auto(0x0, 0x105, 0x8009, 0xffffffffffffffff, 0x0) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0x3, &(0x7f0000000000), 0x68) connect$auto(0x3, &(0x7f0000000000), 0x55) read$auto(0x3, 0x0, 0xf34) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x1d, 0x0, 0x9) connect$auto(0x3, 0x0, 0x55) socket(0xa, 0x3, 0x3a) socket(0x21, 0x2, 0xa) bind$auto(0x4, 0x0, 0x0) write$auto(0x3, 0x0, 0xffd8) mmap$auto(0x10001, 0x8, 0xbd, 0x11, 0x4, 0x6) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001d40)='/proc/timer_list\x00', 0xa182, 0x0) read$auto_proc_iter_file_ops_compat_inode(r2, &(0x7f0000000240)=""/4096, 0x1000) 7m7.19362097s ago: executing program 3 (id=854): socket(0x5, 0x1, 0x0) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x902, 0x0) ioctl$auto_RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000000)={0x1, 0x3, {0x4, 0x17, 0x4, 0x7, 0x2, 0x70, 0x5, 0xffff, 0xaa}}) 7m6.955047318s ago: executing program 3 (id=856): socket(0x5, 0x1, 0x0) rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) migrate_pages$auto(0x1, 0x9, 0x0, &(0x7f0000000840)=0x2) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x902, 0x0) ioctl$auto_RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000000)={0x1, 0x3, {0x4, 0x4, 0x4, 0x7, 0x2, 0x70, 0x5, 0xffff, 0xaa}}) 7m6.619780686s ago: executing program 3 (id=860): set_mempolicy$auto(0x1, 0x0, 0x5) set_mempolicy$auto(0xb, &(0x7f0000000000)=0x2, 0xffffffffffffa8cf) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0xfffffffffffffffb) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fb0\x00', 0x30000, 0x0) setsockopt$auto(r0, 0xd, 0x0, 0x0, 0x401) mmap$auto(0x9, 0x8, 0x1, 0x4000000010, 0x3, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x1, 0x0) personality$auto(0x40004010410ffc) open$dir(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x42000, 0x5) open(&(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x8000, 0x104) shmctl$auto(0x8, 0x5, &(0x7f00000000c0)={{0xee, 0xffffffffffffffff, 0x0, 0xf, 0xffff7fff, 0x3, 0x3}, 0x0, 0x8, 0x0, 0x1, 0x2, 0x7ff, 0x401, 0x0, &(0x7f0000000200)="0e8d1e60d08dd5d505098ac4318eaf9dfff4c092bc7038fe816a88faf1a784da7250c8302be0caffe0cccf4b0a8f19e316589beb2738f8ccffaa1738d0df5ee9f09ea66ce72e407969d8d79b354648febe610426c2aa6954093428f56eb13e8b77e0733649f9233bbec7d2c1ab7e13f95dde2c8314dcf945eed4468f72f5baa82a4b2143ccd3b611c95476702a8ed6f56da8ed4d3d5d81817842a37f0035a74dc934ed94372a7fffb71cc8f545af3d61dae9ec186f6a8ce87e6e41dd440e86f0fd9eb67aadce", &(0x7f0000000300)="a0700687677dbb30532b9ca6e3817551b4e0cbab756c179f3dcf997097c778796fd82e1d3d08eea93ce0acce691931ac0f72fc293cf6064fc81d9ab684526a7c8cfe691328a16f9cfc16eb693005e80b4396a317616066b798d0fac4b70222f28765e1069b0b8ed27b2d050dd449a1a98c21c984ed2f84cef60323f8b3203ed4c4e0f85f548175d0136cb2515576b1b0d4ecbcf44d6084da9ee867c4958540b5b73c5010eff38df6a0d4496f60c5332243a41827"}) setresgid$auto(0x9, r1, 0x400) setfsgid$auto(0x70b) setresgid$auto(0x9, 0x2000000000002, 0x4) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/machinecheck/machinecheck0/monarch_timeout\x00', 0x2, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000040)="e4", 0x1) close_range$auto(0x2, 0x8000, 0x0) mmap$auto(0x0, 0x7, 0xffb, 0x8000000008011, 0x3, 0x8000) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x20004801) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000800)='/dev/dri/card0\x00', 0x20400, 0x0) mprotect$auto(0x0, 0x8000000000000001, 0x6) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x40000000, 0x800c000}, 0x4) 7m6.279553728s ago: executing program 32 (id=860): set_mempolicy$auto(0x1, 0x0, 0x5) set_mempolicy$auto(0xb, &(0x7f0000000000)=0x2, 0xffffffffffffa8cf) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0xfffffffffffffffb) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fb0\x00', 0x30000, 0x0) setsockopt$auto(r0, 0xd, 0x0, 0x0, 0x401) mmap$auto(0x9, 0x8, 0x1, 0x4000000010, 0x3, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x1, 0x0) personality$auto(0x40004010410ffc) open$dir(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x42000, 0x5) open(&(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x8000, 0x104) shmctl$auto(0x8, 0x5, &(0x7f00000000c0)={{0xee, 0xffffffffffffffff, 0x0, 0xf, 0xffff7fff, 0x3, 0x3}, 0x0, 0x8, 0x0, 0x1, 0x2, 0x7ff, 0x401, 0x0, &(0x7f0000000200)="0e8d1e60d08dd5d505098ac4318eaf9dfff4c092bc7038fe816a88faf1a784da7250c8302be0caffe0cccf4b0a8f19e316589beb2738f8ccffaa1738d0df5ee9f09ea66ce72e407969d8d79b354648febe610426c2aa6954093428f56eb13e8b77e0733649f9233bbec7d2c1ab7e13f95dde2c8314dcf945eed4468f72f5baa82a4b2143ccd3b611c95476702a8ed6f56da8ed4d3d5d81817842a37f0035a74dc934ed94372a7fffb71cc8f545af3d61dae9ec186f6a8ce87e6e41dd440e86f0fd9eb67aadce", &(0x7f0000000300)="a0700687677dbb30532b9ca6e3817551b4e0cbab756c179f3dcf997097c778796fd82e1d3d08eea93ce0acce691931ac0f72fc293cf6064fc81d9ab684526a7c8cfe691328a16f9cfc16eb693005e80b4396a317616066b798d0fac4b70222f28765e1069b0b8ed27b2d050dd449a1a98c21c984ed2f84cef60323f8b3203ed4c4e0f85f548175d0136cb2515576b1b0d4ecbcf44d6084da9ee867c4958540b5b73c5010eff38df6a0d4496f60c5332243a41827"}) setresgid$auto(0x9, r1, 0x400) setfsgid$auto(0x70b) setresgid$auto(0x9, 0x2000000000002, 0x4) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/machinecheck/machinecheck0/monarch_timeout\x00', 0x2, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000040)="e4", 0x1) close_range$auto(0x2, 0x8000, 0x0) mmap$auto(0x0, 0x7, 0xffb, 0x8000000008011, 0x3, 0x8000) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x20004801) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000800)='/dev/dri/card0\x00', 0x20400, 0x0) mprotect$auto(0x0, 0x8000000000000001, 0x6) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x40000000, 0x800c000}, 0x4) 6m24.775205794s ago: executing program 2 (id=1066): mount$auto(&(0x7f0000000040), &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfs\x00\x00X\xca\xd8\xce\xc1\xfc\x9f\x9f?o;\xf7\xdf\x9f\x11\xc5\xea\xd9', 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:04.0/numa_node\x00', 0x22040, 0x0) r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim0/ports/0/pp_hold\x00', 0x2400, 0x0) read$auto(r0, &(0x7f0000000140)='\x00', 0x4) 6m24.568003666s ago: executing program 2 (id=1070): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/fs/9p/caches\x00', 0x103280, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)=""/177, 0xb1) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000003800)=""/168, 0xa8) 6m24.194387613s ago: executing program 2 (id=1074): sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000001440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001400)={&(0x7f0000000080)=ANY=[@ANYBLOB="07130000", @ANYRES16=0x0, @ANYBLOB="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"], 0x1354}}, 0x40001) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x4e23}, 0x67) sendmmsg$auto(r0, 0x0, 0x5, 0x20000000) rseq$auto(0x0, 0x8000, 0x0, 0x6) geteuid() mmap$auto(0xc, 0x100202000c, 0x7, 0xeb1, 0x0, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x1000000, 0xffffffffffff0001, 0x15) socket(0xa, 0x2, 0x0) connect$auto(0x3, 0x0, 0x51) write$auto(0x3, 0x0, 0xfdef) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) connect$auto(0x3, 0x0, 0x55) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x400c000) bpf$auto(0x0, 0x0, 0xfbf) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89b0, &(0x7f0000000140)={'vlan0\x00'}) shutdown$auto(0x200000003, 0x2) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x296) sendmsg$auto_NLBL_MGMT_C_LISTDEF(r0, 0x0, 0x20048800) pipe2$auto(&(0x7f0000000000), 0x4) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) unshare$auto(0x40000080) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) 6m23.232593227s ago: executing program 2 (id=1080): r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x101401, 0x0) write$auto_seq_oss_f_ops_seq_oss(r0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x40}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000080)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x2, 0x9}, 0x800009}, 0x8005, 0x20000000) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r1) write$auto(0x3, 0x0, 0xfdef) write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000000)="2941043a0d9c3966445d695ef96a42c6a2d0015c2a80237d1bb40bcd9ffa11a1458d29e07f8fcbe7480386a5927c3115066ee897", 0x34) statmount$auto(&(0x7f00000000c0)={0x8, 0x0, 0x2, 0x4, 0x4}, &(0x7f0000001240)={0x9, 0x101, 0x2, 0x2, 0x7, 0x6, 0x3, 0x1, 0xd73, 0x7, 0x5, 0x3, 0x4, 0x6, 0x26, 0x3, 0x2, 0x6, 0xd, 0xee, 0x2a, 0x4000, 0x1, 0xff, 0x9, 0x7fff, [0x6, 0x1, 0x8, 0x6, 0xb70, 0x8, 0x401, 0x89, 0x400, 0x8, 0x101, 0x6, 0xffffffffffffeb55, 0x3, 0x0, 0x7, 0x9, 0x34a, 0xffffffffffff7fff, 0x873a, 0x4b72d174, 0x7, 0x5, 0xc000000, 0xffffffffffffffff, 0xa, 0x84, 0x7, 0x7fffffff, 0x4, 0x3, 0x0, 0x6, 0x7, 0xfffffffffffff801, 0x4, 0x6, 0x80000001, 0x0, 0x5, 0x3ff, 0x7d32, 0xa8c, 0x2707, 0xaa7, 0x2], "16391c28ff65290e8badb5f0d83c2a074800bc7f33a89e"}, 0xffffffffccbe25e1, 0x1) mmap$auto(0xffffffffffffffff, 0x2, 0x400000000df, 0xeb4, 0x10126f, 0x8000) open(0x0, 0x6140, 0xac) fanotify_mark$auto(0x0, 0x105, 0x8009, 0xffffffffffffffff, 0x0) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0x3, &(0x7f0000000000), 0x68) connect$auto(0x3, &(0x7f0000000000), 0x55) read$auto(0x3, 0x0, 0xf34) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x1d, 0x0, 0x9) connect$auto(0x3, 0x0, 0x55) socket(0xa, 0x3, 0x3a) bind$auto(0x4, 0x0, 0x0) write$auto(0x3, 0x0, 0xffd8) mmap$auto(0x10001, 0x8, 0xbd, 0x11, 0x4, 0x6) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001d40)='/proc/timer_list\x00', 0xa182, 0x0) read$auto_proc_iter_file_ops_compat_inode(r2, &(0x7f0000000240)=""/4096, 0x1000) 6m22.764969726s ago: executing program 2 (id=1083): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x40, 0x0) socket(0x2, 0x80805, 0x0) eventfd$auto(0x7) r0 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000540), 0xa0100, 0x0) lseek$auto(r0, 0x0, 0x2) readv$auto(0x3, 0x0, 0x1) read$auto(r0, 0x0, 0x200000008) setsockopt$auto(0xffffffffffffffff, 0x401ffe, 0x5, 0x0, 0x8) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x1, 0x0) socket(0xa, 0x3, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0xa) socket(0x2, 0x5, 0x0) socketpair$auto(0x3, 0x5, 0x7, 0x0) ioctl$auto(0x1, 0x8983, 0x4) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) 6m22.567241767s ago: executing program 2 (id=1084): mmap$auto(0x40, 0x400005, 0x1, 0x19, 0x9e7, 0x7fffffffffffffff) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8800008}, 0x14, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="6f6ffc92bc06bf20b45b037b169279bdc33fde743b7a988b9db164eabd935168b64c222ee9c694067642b9390163f8884f403f800181e795beb0c858ec1fb89663705823b8659dd6f915293b1ce87c61feb1d0fb16629907da25f9730ea7b32958fce072d96789799c122c198c2bb306ec27c2827f2e69eab1939604c09fc514fd9eb50699d35ec61f04e3e38335dbc2bad21cbeacf6b45af64713ae4e45fb256e42c97831fd9a17fa927038b1edc5da92f211bed513f21e2891f2406b0c8801", @ANYRES8, @ANYRES32], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041) r0 = socket(0x2a, 0x1, 0x0) mmap$auto(0x0, 0x4, 0x4000000000dc, 0x40eb1, 0x401, 0x300000000000) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) getrandom$auto(0x0, 0x6000000, 0x3) r1 = socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0xb, 0x3, 0x7ff) getsockopt$auto(r1, 0x0, 0xd0, 0x0, 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x4840) write$auto(0x3, 0x0, 0xfffffdef) setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x18, 0x8, 0x8000) sysfs$auto(0x2, 0x10000000000002d, 0x0) syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r0) mbind$auto(0x200000000000093e, 0x100000009, 0x100000001, 0x0, 0x80000002, 0x1) gettid() connect$auto(0xffffffffffffffff, 0x0, 0x55) mmap$auto(0x7, 0x5, 0x3, 0x16, 0x3, 0xfffffffffffffffd) sendfile$auto(r2, 0xffffffffffffffff, 0x0, 0x2) unshare$auto(0x40000080) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) madvise$auto(0x0, 0x20200, 0x15) mmap$auto(0x0, 0x80000000020009, 0x2, 0xeb1, 0x402, 0x8000) 6m22.17368865s ago: executing program 33 (id=1084): mmap$auto(0x40, 0x400005, 0x1, 0x19, 0x9e7, 0x7fffffffffffffff) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8800008}, 0x14, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="6f6ffc92bc06bf20b45b037b169279bdc33fde743b7a988b9db164eabd935168b64c222ee9c694067642b9390163f8884f403f800181e795beb0c858ec1fb89663705823b8659dd6f915293b1ce87c61feb1d0fb16629907da25f9730ea7b32958fce072d96789799c122c198c2bb306ec27c2827f2e69eab1939604c09fc514fd9eb50699d35ec61f04e3e38335dbc2bad21cbeacf6b45af64713ae4e45fb256e42c97831fd9a17fa927038b1edc5da92f211bed513f21e2891f2406b0c8801", @ANYRES8, @ANYRES32], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041) r0 = socket(0x2a, 0x1, 0x0) mmap$auto(0x0, 0x4, 0x4000000000dc, 0x40eb1, 0x401, 0x300000000000) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) getrandom$auto(0x0, 0x6000000, 0x3) r1 = socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0xb, 0x3, 0x7ff) getsockopt$auto(r1, 0x0, 0xd0, 0x0, 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x4840) write$auto(0x3, 0x0, 0xfffffdef) setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x18, 0x8, 0x8000) sysfs$auto(0x2, 0x10000000000002d, 0x0) syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r0) mbind$auto(0x200000000000093e, 0x100000009, 0x100000001, 0x0, 0x80000002, 0x1) gettid() connect$auto(0xffffffffffffffff, 0x0, 0x55) mmap$auto(0x7, 0x5, 0x3, 0x16, 0x3, 0xfffffffffffffffd) sendfile$auto(r2, 0xffffffffffffffff, 0x0, 0x2) unshare$auto(0x40000080) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) madvise$auto(0x0, 0x20200, 0x15) mmap$auto(0x0, 0x80000000020009, 0x2, 0xeb1, 0x402, 0x8000) 37.507921513s ago: executing program 4 (id=2972): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x48041, 0x0) (async, rerun: 64) move_pages$auto(0x1, 0x3, 0x0, 0x0, 0x0, 0x8000000000000000) write$auto(r0, 0x0, 0x6) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/buddyinfo\x00', 0x6a0041, 0x0) read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000100)=""/47, 0x2f) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32) pivot_root$auto(&(0x7f0000000000)='/,\x00', 0x0) (async, rerun: 32) write$auto(0x3, 0x0, 0xfffffdef) (async) statmount$auto(0x0, 0x0, 0x1fe, 0x81) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x800, 0x0) (async) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) (async) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x40000000, 0x800c000}, 0x4) 36.419878891s ago: executing program 4 (id=2979): set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd12\x00', 0x8001, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/netfilter/nfnetlink_log\x00', 0x40080, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dsp1\x00', 0x20b42, 0x0) r0 = socket(0x21, 0x2, 0x2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) r1 = socket(0x2, 0x80802, 0x0) setsockopt$auto(r1, 0x11, 0x67, 0x0, 0x8) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x0, @multicast1}, 0x55) sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, 0x0, 0x4004414) bpf$auto(0x200000, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x2e77, 0x5a, 0x5, 0x2, 0xffffffffffff0000, 0x4, 0x2, 0x8, 0x3, 0x100, 0x0, 0x80, 0xc, 0x101}, 0x1) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x3}, 0x3, 0x0) unshare$auto(0x40000080) writev$auto(0x1, 0x0, 0x1) mmap$auto(0x5, 0x9, 0x0, 0xc1a, 0x80000001, 0x80000000) madvise$auto(0x0, 0x20200, 0x15) r2 = socket(0xa, 0x2, 0x73) sendto$auto(r2, 0x0, 0xf, 0x800e, &(0x7f00000004c0), 0x19) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r2) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim1/health/break_health\x00', 0x101, 0x0) write$auto(r3, 0x0, 0x40) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) 35.878006922s ago: executing program 4 (id=2982): r0 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x4c00, 0x0) bind$auto(r0, 0x0, 0x100009) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x342, 0x0) r1 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x2000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_MPP(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x30, r2, 0x20, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_DISABLE_HT={0x4}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0xfff9}, @NL80211_ATTR_TIMEOUT={0x8, 0x110, 0x2}, @NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x80}]}, 0x30}, 0x1, 0x0, 0x0, 0x4008000}, 0xc010) 35.000823703s ago: executing program 4 (id=2988): r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim0/ports/0/pp_hold\x00', 0x2400, 0x0) read$auto(r0, &(0x7f0000000140)='\x00', 0x4) (fail_nth: 2) 34.759682548s ago: executing program 4 (id=2991): r0 = openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, &(0x7f0000000000), 0x82c00, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_BINDER_CTL_ADD(r0, 0xc1086201, 0x0) fanotify_init$auto(0x401, 0x1) mmap$auto(0x13c, 0x2, 0x0, 0xfffffffffffffff3, 0x2, 0xfffffffffffffffa) r1 = socket(0x28, 0x80805, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) tkill$auto(0x1, 0x7) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x10, 0x2, 0x15) prctl$auto(0x23, 0x7, 0x7fffffffefff, 0x0, 0x0) brk$auto(0x7fffffffafff) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/pcm0c/sub6/status\x00', 0x2, 0x0) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000019c0)=ANY=[@ANYBLOB="090000009b2aed053c762c67832f44e5d086b9c30fda0171d9cd646e36f2cbd6aa1774c8c4dbd5a30e1ac15dc07bab8e710caa9817ea577919b5a86a2b690dd3b227e02ba9bc3108648afaa457", @ANYRES16=0x0, @ANYBLOB="00042dbd7000ffdbdf2508000000800002807a0049807bf0740aa7aff84a6a883dea5e3931d999afd9a5a2582fc1d0420c526ac7d52ba9a718f99e40ec2246fd068728f6e9095114f2ac6c5e390c0044000800000000000000f93cfa06ace5200a64f8c3bd260215b07f6cc98f8abadc1517566e0ca43bfde3ac84b654c88a8776831fb1a2c227aec8104d230000"], 0x94}, 0x1, 0x0, 0x0, 0x4800}, 0x20048014) r4 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000001980), 0xdc302, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010029bd7000fedbdf2503000000040008000c000180080010"], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800) sendmsg$auto_OVS_FLOW_CMD_SET(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000400)={0x155c, r4, 0x4, 0x70bd2a, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x10001}, @OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x5}, @OVS_FLOW_ATTR_CLEAR={0x4}, @OVS_FLOW_ATTR_ACTIONS={0x1322, 0x2, 0x0, 0x1, [@typed={0x8c, 0x132, 0x0, 0x0, @binary="c73235dcd5ef9607db8bea63cdaae80d3da930a6952cc3b8c76e6a73c2d49048da37dbc7b2e0c223d98092fc72cdac196f83e70a20379ecf69d53cfa52be2b47f78b704988308df7c89c4659f007664045e131d5fb0fa202a3bf5baf416cd0c3d3b88c0390574e57546229be06ff9b83444b544dada62ca761833b141b8e1a537c72dd4a022eede6"}, @generic="d75a66ece1e318a2bd233f6a99d75da572e6b287a420f61625c3999774478f33969f57b106f5c51117db3edc38e6e2d6118580a924880d", @nested={0x11f1, 0x62, 0x0, 0x1, [@nested={0x4, 0x12c}, @generic="d634e26aec91d53c48a4337eb49e1ebc09ea17855a59bfa7a398eee17de8211a", @nested={0x4, 0x52}, @generic="bfd1d7cdbc4b46cc0338fb1c9efc7d28a64933880d53530e9a89ef5181afebd1b5c75e36a58540c505b2f5b27e73a99073a6d90006721cd90f7e0726f318c057c53db14cf940a4def4905dab00c0d60eb6725f8f983be8625a8061fa6d29dd6a064fe569bdaeed23a43a2ad742b1a45a3e02bd52b97b6dcdc5922d786b4146b823143f08350435166a3a34891ec9747dd32a9fe04944868145036e16538b778667bc8d6fd9c157718fcc3fa7f915eaa232b70063b3b8d70a474deb64e3d8cc9739ca63b4b253516d3206cf931b4d40c8f2f39d4ed1d77170c5284ac813df213936bbfaf3093260a1e000485028acc94169b7580789c32ac746c472cae58f605ee8789cf226fdcdedc130d1992c95bb80120bec8aae79e8e467b49903b61f9e1b708c2cd4eb9491937d1f36e6123a410c52cb4ce8f6b3ee038a0435347c04e62b26a3688c98f7ec7fc272e174dae9ed6b613c530d13f59fb092d824d08f2e948fe726265c10af95867f6d7b981df7efe7452bfc3a4309279507fe559968ca5d5eb87ec45c0f42883c40d38b4c53307b289f5a1c90490edc2500f86820e957ec0024478b91df8f0acdaa7e828d1db12b6252b4ae49fc3d994909893a386c57f0e88d4513d86eb986f58368158ad4261e600b32c029cee66ac7bc67d216d730824ba2c559ce7c09aeccd6b20a2de1b59c4579a055d150aea4475368a468473fd28ddb002ca096bc59ca1ff7ca6790f7a73b9dc4b182d4fd0e536d6b555aa68c3993bce359bae0a16165c4afefe4c68bba9b05906260b756802268b967db1a91efdf2a0ed536ff7b0d48c231a7cd235d81ce4d41bbb81dcb5b7416fe9c86adb109ac3d39090f5959c1a3e88ef4c3cc0d563ad81aaf34af64be2f0f6fbefc4808c9a5afa361a1bf83ce2d48fdb0d40d125bd004927fcace2c1c97bb48fa7f651488416550a616d1edecd1b55da469e0bf65a27283d723ccc8f2644e0c79f0b7fa1c31b1381e6bf8e9603d8434607cea11b22fea4b98cc53db864b87b0e080cc1ade42744a3bf62d03fdd402f1f0f1df4cad557641a6a213028bf4cf44c85db9583c0401070f2e92a71f3313920f9d7e32e10444db64df586ec7a1170a5bad3f5c8ee105017963d5256a41593dfe70a8e7552b8759312a925111268e0e7802c4e7c5f156ff836b9317f76122b00a9088e4d2599683155efa2a43530c35fc8c5d83bc6a46e933e2b5ebb81da5e797c91c69311cb829c3b889413d29578191abe26b28c7c605ef9bc840f73b4e4656d13789141b71fb8b5754ae8658317d322cd8f33d81746d1f18c2baabde0a9cbcd568537fe97eb95eba0c709e7faada2d3397754e4cc999dfe7d3614e72d1caa496e7a6e2615cae7261751f7f683bd9cdc947486f6badaea7a70edb17c71f13fd34b147427d9c91db84040a28fdcd6a11d948cb4cd29d01d385321dd0367252d2e50fe4bb8eb8b0500c6b2cf028bd4dcb7cf56f1a6f4957b3d298de634a0a2c952fd45ebc9a14c62a484940ed27a82b53d6a12a33f8f1e028ae34401de8d8983c5ab8612c3f91acd1d41a385e4bc9c71952cf5a71ad5ac223ac1b53f4624bd79d8c8305bf592ef86c07e0c43e2589fa423e5655fdeeff11e3a35aeaa702d9476657379d062e582965a6f1496360f5b621706227683e2946328bd362f7498ad94b55895ac18bc330253ce31e2fc1dda6236a867200bd2388c9b713ce14870d9e9dfa41eeb0276678cd8f4c91915ee190c7ec9eb14c9204be5031e4434cc765ecaedadba31974fe2d7976d32b73d30f1a9363483989a8ce42a7ad72f1dbde5a71d3f299ad6dbf567425a04d24821e42eb4289e02b166dc6d61c48f5cc69745d1ecab68da79e04bbe12307ad1f2aebfbebad614ab2a031e54fbc574c4714ef18981d32224e80a93a97823bb1bf35ed2da1f6f6b2f4652e46a1da647b3a6c72ddd8659884b15eb688bea27b1be2f50c6ca784dce812e7c55aa85b412d4a059763886bea26ab808447313c76f56c11351152492a3ffc8e5d2ddc95f9bee8aa8610ff47a9543480ffc23fa52db616b6037e8766a9d946c40875f613db279b3cd5a9756f3fd4b78fb8e6e64052f951f86c089f4a7f656ab5772c561396d043cde0a43861ff76b3ccbd8e9015a5e06b9c7e45981886ce19248de11d453b307e0a7d70cceffcb6c82307612dfdb41e107085b888a56a68e7fa3658365cf9029c9654e9e7812a30c38c731b393791687535a54e2ae712fefd124cb3628932e3c5e64afff91f5ea98c303cc3c1d4c1627544e15a2a7265fe6e211eab0d1db55981f5a740ff8705db6e831ddf97ad46906c6329c0a9545a079f21a80d3c913b5a7f2dff3802d7583ba5adfb8c85f1a5811b72aec3b65e0c1559a3716570df70b61254eacd4eac028b6c3b1f09ffb0af311c33744d2a521604c6e1dac2e5ecc080ab7801db1b13e9af999ff300e1fef39f65c1c5cfebb3c695d2a58ecaca899a3da054d2b36ff6811d6c980da092fc05e034a3c296c6a8c326def1f503c11be907d7b5275791eda2e18fa4e7be0759285a603fe7249337756eb685478f2be4118232977e245582e659180e61af26c5a88a93fa78e4b0d420dc7d5590316c6b1cd5b53c9b91fc05c2b6187111792cd85c5d5798f664925c67983334ff7f6a6e46b23d539f532d1d0b136c2d7793d1ad6bd9dba0379383896730f2db49f4fbe0a312f9e1c0478b60e202a5a4dc8a31433f5a856a29eae563210bdbd7924a48dc3dec960b8a47e0e9805b9503dd09e8ac9130ec00818bc4455ff6f19a82c1e3632be99d8e114cb2c2d7c8637c6a99646107a376b7e5a95ff8fcfc965efa9c5c232c3da5fd244d3bd6da711556edbf07407f064ed56624fd99357dabc9c6e9358bbaee8abab4c2dd70fdf8a7deb435a9eed2ffbddb34aebd3bc7e8a6981aded1e280c39635e95d94d30b2dfe6f6b2dd07edd627a9ea01d6ed5e8500e8f3bb7c3bc96ec58739eb046af4ad3a83ae42147114b8872338133aa83d3dcdaa6532ebf6809db68d509c3538e122fbc3a962c7c1e8c5722c20b27f89885f30ea286adefcab0076f2f891f15adba2abd65f7822c8d4818479f2fea2f9d5edf15f2573f1363270541cf692209440dad3c189a531f093eb2307865b5b946e7ef7cb4afeb269d06122593408112c920ce790f791a6e2af3984cc64ebba10dc976e90b8aa62aa0bc86d175f0e780b834a2a992ea7f8d02a547af53c1dbac47eb341587bc5e9f77f7915a38a3b5d1ff25a1b9cbd3c59ae4bcd722fe07de14f474c3da82a09921696f7d78bfb650c1a7ea60889a99fcdcc481e6845c05d5115a68ddd38c3936b76abb7eb74c510f14eff255e91c2fcdb3c89cca8f1b0a655909d629c59e3ea53c3118233d998b12214c646381c2645a87e7c26a1b50f99cfac9fdc9b403cac1118da1beefa1e761aadff19d026f52ac7298554301e71439f3358937804e9763ed4962fe54e3302cf0f2537751266c84186fc17e9e3834fc7e71dc40e23c9705c166bb7c05d0cb92d2c45a531df34780999176e1b25d27c30a79fa12a9c30375fa123ced790c0eda1b830f6f1ac695bbea69fa41f1fb60d54ba1c40f793cdc335ccbee3c533a9ba2c42da38137f390a40b30a8e392dcc467fa30f6173c3c8cb728c5ce5966334bb9a0ecbcd740451b05fb290de5345e681649bea481bf8336f620090127e4a9a940abebcb7e34c14c407736710a541e714fa9496d9e1eaf0664586eb6278443dee8d556027d0779d3e7930f31d6fe7247494de8350bfc9ba1353c08ab599f04ad8d6f06f6fb3820309b40eef01b5d90be55379330002c3d2716690985adb79f985ae93d093272646fdf7539d1d431d616daafc3ce2e1da4542bec214b2953a7fb888a91a0997b796814244ebdde3f11f7c42b57b769f6a4a0374a4998e6113c7c3c71c5a4b878a1463002432a848ca8f73d777a6224617205a91f126e3c115b1d6a1a594f0027148ffc3d9b7d1fb4b8ef54e8ac1c2035e6dfb6411143cd77d25dd6311aff7026b657fbe11c5e1a20b5efecc76a62a6e3caeb46a5b7b0df5b2545e8ce7d604d13aa02c4f8c551b17aa5845688961fe105f01fecb86ec8cc43f7d3424ecfeb276af274a0491545d8268c22f3dd4a1adcffa713f451038ca995b4c209f03849bda595977ef9beef2fb5a4d9bee8d7e3c9877256e805fc6da868ae9fd3452ae8191c5c0adade06d314c9c204f164bf66ced0b00aac108d5c0f6dbde8372714274ff181ffdc12af8b66794d43f551875b549c463b7aa1c50dad802673a2a41cf4b9d8495013d09f8d99ce25757072fbfc25060f05347964417f67bdd5e730cbf1b44bcdf61d18e0910c7446579cdbf799313cbf195162f91783ef804bc21943003a137c677848b8f2f62b9e9568502c2da934292b510e1e09d7272f8f0a70d6d97d6c7985d6afa0f9a1dabbfb918a928dda8af0dd5f8fe702a4ec164749832b1757d496952a1c60525aa8075fcd7344e62764f7a99d66176fab0c7146c3df9a215a211bad0e1d5fe8c107fecb0bc794b90840db8bb787fbe5d3d85fe485aab456188ad4b3ce1e7706c1c6d9fd491cb3c807c823c16349952d5858a7abda47663d6e47a3989dbb41645a82b50636205c1f23ea93b73be4bd092b6a26dbb3fb48829375cde17b6992e16a3d3f7baa36d41c21f7ff5fba1d554d4439667f5fad7b2d6f8976ef7a6e4b3973557e9784abfefa0f589ff8e33f640ae4b36fcee22e7b9014aba5d33ea020d85795e7457619d1acf7deb4b3b1c2e09f0432a7db072df4e4a54a7a5a2d9539a395801e6d0785d3fb3bef7122a4e81edc0bfdf72615ead993b4ee1aec1afa0d06b65cdb6b30f59f4b4d3eb34dd63b602eca2d06de91e872b50cddbbf28bb9c4328f60fb5e0d2d424005240d6152c6cd3e43e64de7998827e2ccb243a0847dd8ad60795db56d1bc9955b09aac06c3de7434ab9991c4c1808da32f93dc30a788e6e53e57b9a882462433d165b98eaa147ebfa0f44bef76e691ac4b98211b1fad3edbecf44e5c38adf120a06ccb5e777d63a4919dd12c1d41eee397d01da3ec0f16a16073d57e41e1449fd209322ff08ca5ba7303eb6bf98d24dec90577c0b92cbca8332f765206989d02d5be61f7504adcd587d088aea930e8b85412fc883514f796d29a7184d022a19ebb550afd392d6b90a5255069dd376874608e68f3b85792b50515594010c840bd074086b4e141291f637a89e8474f6da5fc9a52c958f2e565968c36e2ebd151be936090c01a9c29b59bff006cee307bfad7eaae411f3bf6f18ffe1df712c15016dbc90a22f6b7f7d9976c1a6389833216af29ed4ddcc8f41eb5219678f91ff303f29a3db2a22e83a7bc52b3e7a2246bd6558c369b5498909f2f8db50868c28725ba0443a99acdfa7c61eb4c98f77e0f79ddeb99ad45e7e97012317262f749d26b65c3e6523d4ee49c3beb2189f4b5c8391a1b831dd416c25dd5c3775d61cb8f5387f479360c99bf635aa0daa6069ec1c45fa3c628908e5180a97f9b3c0beb0308285a0e9e5d89f94b2d3a907c5c83099a361a4cb1d1fcb4a0e89ead9b19bcd85dfe601c9ce9f8f5edfc02037c27d9d99b67648460c6fec6926dd7d1fb75621eeb9147d57ee752e32880144ca9c23a2bb66649037a23a4c581c782cf78ba1df42af1fa04ecd30cfca6d1025f6ca4bc0caf087a9ab9d3d7136d975e1f19bd8e480601d4075103dfb596ff230aa4f02460b0efa1c2e94ee54789b7623386bbc624be173b916", @nested={0x4, 0x37}, @nested={0x4, 0x68}, @generic="590c3c00479f25d7bba1c8519a3f633f374fd01ff42049deb242422f3e593a3c018e9999ec39a2d2252c6735221b2ee340377caebb91f88d34b75ac67990d035407bf72211b023d95f422f31e7a9ba88deace9ae8460dfaad642b59bf02a8e26da122db93783a3d4e87a737b4d3faa7284e9ba1637620d5c9a691391d72541a14b4ecaf49d96bd4ab93c44e72f6867b2c6e2a62fe8dc00a93eef9b5c301991ccc73d8d71b71364c979f357aa717ec9ca0228254b95aedbd3475b201cc2a427034e56913ff8f2f8bfb0ce686d8213666692b3444a064ad5043f9355c232615f68651e2f4217", @generic="578aae378b7df11c727b10c98b57cb09eff39fcdd11f52a1eeafdcb1b542703437eff3b6e1c90cbb187b762f9e1c7cf267fd8d1b6a02cff53e688efac3cf4a6bc6ecbd075a7cd35d82bef4f15c56efeb5c2e1f5f1072a1bb0bb2921df3f52aa56ddb7d797b421f47163718d5dcac858258f74453480ed92f26046345ecea84b3982005744e08cad9825da4cf726961e5410e58cfb2c215c62a7a223a5ecac3d6f8909ebe9e8186aa8d6893c530ff1fc630d247dce0e3282562f7642cd0d2c1d948d2a26f0637df5afd61e1ef1583318495c302e0954b3065"]}, @generic="7d7a63a63be13cfa67a5a1e70d07873fff67ac1af446eaa1cbbd87806c58c75e384b33711c5606fcfd830a218494d34ea95824b0a72663820993fbb52b2f69da25fbd9ba60b0f2c8e99d62b99f635a61dfada66ec96998d365e59f99db946f", @typed={0x8, 0x46, 0x0, 0x0, @fd=r2}]}, @OVS_FLOW_ATTR_MASK={0x206, 0x7, 0x0, 0x1, [@generic="2b93e88fc0cda067ab73867272291e5f40854b4e2a00d7315ebcad9cffadfba14d9d28795453385f75018341232048de93ab4d11", @nested={0xd8, 0x1a, 0x0, 0x1, [@typed={0x14, 0x81, 0x0, 0x0, @ipv6=@loopback}, @typed={0x5b, 0x11c, 0x0, 0x0, @binary="f78d5357184e6eb7c625848ba57654d97e0860032f869a6b07d24ba5e98caf7c981cfe6e929a945dba6d2a1b1872b9571afe083f50203fbdb44e529e3f6f59bb17e4763712067d9bb3f36bdcab9d458ab9a3f10124ae51"}, @nested={0x4, 0x65}, @typed={0xc, 0xeb, 0x0, 0x0, @u64=0x3}, @generic="0bbc2100c1dd45ae6c57fad622551acb38f4f3f897565321907b0edb4b7cff39f799e4e3e1df45186b4e42839fe0ab7db7f06b8c8e9034cabcc46f7512b21db05b0bd0972cbf777c766512f6", @nested={0x4, 0x103}, @nested={0x4, 0x3a}]}, @generic="f2f4eb3eb13cb2e063a18b790df0e827b0a28f22b4e2aac1a0e6c78b5c0d54e7f70098b5300854ec8c9cb10890c51cd3f5fcc5d20bccd25b6eb6cdfe3e5a6751fbd631754db44b3d5fca910b369192d3106315b82272bc9b646ddf1811fa8d82d49e992856d8f2123606e82e718cfc0a3230b3a78334d5938d27281b", @generic="aabc0bba8bebcde107d677b6", @generic="7f28f6a14f49dd3ed38450f2c626a287a8bfd9bcaee64f5df064d591e493c42d4c205bc0111292db121dbcbf6c2002fa80d755bacdaa7054c6ed48bcc178053caa4017904cdd6a998a9cde2e88d875ff5fdd398def6c6b96d895", @typed={0x14, 0x116, 0x0, 0x0, @ipv6=@empty}]}, @OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x6}]}, 0x155c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000af"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 34.168147901s ago: executing program 4 (id=2995): open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x121342, 0x2700000000000000) 33.711574323s ago: executing program 34 (id=2995): open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x121342, 0x2700000000000000) 7.273944537s ago: executing program 5 (id=3112): memfd_create$auto(&(0x7f0000000000)='%/)#\x00', 0x400) r0 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) fallocate$auto(r0, 0x5, 0x7fffffff, 0x6) connect$auto(r0, &(0x7f0000000080)=@nl=@proc={0x10, 0x0, 0x25dfdbfd, 0x80000000}, 0x7) r1 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x400, 0xee9e708ff1a3721f, 0x21}, 0x18) mmap$auto(0x8000000000000000, 0x6, 0x6, 0x13, 0x6, 0xe72) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000180), 0xffffffffffffffff) r4 = fcntl$getown(r1, 0x9) sendmsg$auto_OVS_DP_CMD_DEL(r2, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r3, 0x300, 0x70bd2b, 0x25dfdbfe, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004810}, 0x0) r5 = socket(0x1, 0x4, 0x0) syz_clone(0x804400, &(0x7f0000000280)="46ef6b5dc229afee0cf8cc7bc33391f831033dd2f09136066bf0e32c318ce1a1972eed620d63a35627c5d5c7a9933008cd9d98113bed2f3cd935b0a1babb351a7cf5be353f7010c14751ca36ddb5bc35e7e13ddc4638b107955363", 0x5b, &(0x7f0000000300), &(0x7f0000000340), &(0x7f0000000380)="de14be161f7d1bc6a038d751c5aa146d5343a7dab084fb4df12353229653f93a8bddb2ca22ee3bad5da06612e7efae9c87a18fc6381ea5647706460599") clone$auto(0x8000000000000000, 0xd100, &(0x7f00000003c0)=0x5, &(0x7f0000000400)=0x7, 0x81) madvise$auto(0x4, 0x9, 0x4) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000480), r2) sendmsg$auto_NL80211_CMD_GET_WIPHY(r2, &(0x7f00000005c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000580)={&(0x7f00000004c0)={0xbc, r6, 0x8, 0x70bd25, 0x25dfdbfb, {}, [@NL80211_ATTR_STA_FLAGS2={0x99, 0x43, "cebf8821a7dbb2d42b4bf186297c566b74f815f9eef5bb54c6c11808657bb2d438ee5e214e42ec79cc28cda1f0d4df2c61aa199252f3f14b3e5ff0bc6c37f307e0c13cfc8649135a4ffe5e1cdd86fb11d053ebd7f77d4386a712373163f335d83b4e2324eda434972921cb65cf12802b49755efcb72944a58dd5d73ec3a145c842e31495dccd4a79ecaee11049f89080fefee5ba4b"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xb, 0xf9, "6c7058fec08b4d"}]}, 0xbc}, 0x1, 0x0, 0x0, 0x20000000}, 0x8010) getpid() memfd_create$auto(&(0x7f0000000600)='%/)#\x00', 0x1) memfd_create$auto(&(0x7f0000000640)='.\x00', 0x7) r7 = openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000680), 0xc400, 0x0) close_range$auto(r5, r7, 0x40) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/sequencer2\x00', 0x0, 0x0) memfd_create$auto(&(0x7f0000000700)='%/)#\x00', 0x10001) clone$auto(0x1ff, 0x6, &(0x7f0000000740)=0x8, &(0x7f0000000780)=0x6, 0xff) poll$auto(&(0x7f00000007c0)={r7, 0x8, 0x1}, 0x7, 0x93) write$auto_buffer_percent_fops_trace(r8, &(0x7f0000000800)="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", 0xfd) r9 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000900), 0x121240, 0x0) fstatfs$auto(r9, &(0x7f0000000940)={0x7806185, 0x8001, 0x9, 0x8, 0x4, 0x8, 0xc, {[0x1, 0x4]}, 0x5, 0xb919, 0x6, [0xd8cd, 0xffffffffffffffff, 0x1, 0xf]}) clone$auto(0x0, 0x9c2, &(0x7f00000009c0)=0x4, &(0x7f0000000a00)=0xa87, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000002100)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000020c0)={&(0x7f0000000b80)={0x1508, r6, 0x34fb0adf33ce0f29, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x9}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x3dd, 0x6e, 0x0, 0x1, [@nested={0x147, 0xf4, 0x0, 0x1, [@generic="b56fe38092dfb4be5360ced32ad3ac6c6bc56f822604897855af79e1bb02c165ae00c06853f766bcac6fd7f0c97d8feb9fc460792cfb5559209a05f840e8aecf8cc348eb653d7ca2714cc42a90cd30b9", @generic="33b4dd3683eae1aa6ab2d1004be4eac285abebde8f6ec0d71054c8daa66eed79861e004f8887af4d3710cc84fafb6ee5152f2de579d8de435f768073795175b22df6b11d6a620c3e6c609a1326ba4af3b2df86ff0d448b70a091d7bb590c3f0cd7a32655ef108ec19c81a4b88e4f885466d7af6395edde5adf803544e32e3d763646b8a6fb6cf1987ac79fb2a257f748e4c60243b44ba90b2977c0fc642b009438d0e9ab644566fb2ebd06704eec4c53ea04653e2e3667680f3b7154c1139e008cc4469e9ae246748b7a7568a6dcf66b0da689591b2efe584929746a83814ba0fb08a1", @nested={0x4, 0xc0}, @nested={0x4, 0x73}, @typed={0x8, 0x29, 0x0, 0x0, @uid}]}, @nested={0x255, 0xa, 0x0, 0x1, [@nested={0x4, 0x7c}, @typed={0x8, 0x49, 0x0, 0x0, @uid}, @generic="db1ef88b4d9bc935a3220ee7d08ac489f75c66c184df", @generic="2a7c5dec8104caad3afa13af01a040583ade0e153c0c36e0c4f180ce4385ac8286c8851d167a0854eb7f08c876712758185a8faf482f5e6c8eaf26001c0ea99d7f8d0117683066d61d69eadf63f83340fbabaca7cb1875a3dd696554006d715c83b8f0127d7b3ba4c1974b5948", @typed={0xfc, 0x140, 0x0, 0x0, @binary="18b370c3d9346f2ef7440ed20b4077d08e12b66f28f821043695f3182574fd658c4e16a8931d36ba8b19149b00c6d531fce9d916536fadac161906f8de366ab2ccac0399c0d9b5f1f0da42de7480d8b2d71a735a6b7c7d6dfc342ee79b6f357d7b6e6ad937f0b35e2e0d0389afa207b8f19049bbe319092046e86f4745876eb2acc8fd526bcdd10d19d15f841e16426a84634dfe3c4b7fd1a6c522c542b384477ff8e3063c26c19ca5843b7347e625b79a252bedaf8b49f5fa6fd21b6f217cb9368b53e81704e7c6e86cb65b1b748ecef94ed423b17a91764f7a75f90fbef18a82041cc23308d762b6c1464ca8b06defaae943ad1b7f4946"}, @generic="5b07b80ccee2882b511e27fe5ebc55186f784770df62ffd66582f689d950fee79e408aff105e659bd26faf22d36c39345b2e601ab24c97758e1aaf1bb3651ae611762e434ae1e8e2f151efd29d62f75aacacd6cb5ba63bbe170886dfb1ce780e8c01879cd9b9ab6e672e7752d5f8f9226c14d24df0344818d65e845088ac5e911769e2b9aca79b0b3627b959b1768412db41d702295f87e94459db4518e9abb283fb", @typed={0x9, 0x9c, 0x0, 0x0, @str='\\!\\\xe2\x00'}, @typed={0x14, 0xd7, 0x0, 0x0, @ipv6=@local}, @nested={0x4, 0x6f}]}, @generic="8ae8f75486e5e0fe862a60105803d07effa1cbd8627b13899fc47d18cbc3d4492f9d95d05c88b4e64db39c6a11f1a02bcccc799c04b4a5aaaf"]}, @NL80211_ATTR_MPATH_NEXT_HOP={0xfe, 0x1a, "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"}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x1004, 0x6e, 0x0, 0x1, [@generic="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"]}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0xfb}]}, 0x1508}, 0x1, 0x0, 0x0, 0x14}, 0xc0) 6.00777889s ago: executing program 5 (id=3114): r0 = openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ubifs/tst_recovery\x00', 0x40aa2, 0x0) write$auto_dfs_global_fops_debug(r0, &(0x7f0000000d80)='0', 0x1) getpriority$auto(0x2, 0x7ff) 5.343734968s ago: executing program 5 (id=3119): r0 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x4c00, 0x0) bind$auto(r0, 0x0, 0x100009) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x342, 0x0) r1 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x2000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff) 3.924978022s ago: executing program 1 (id=3123): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r1) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r0, 0x0, 0x800) mmap$auto(0x8, 0x200, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) socket(0x2a, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) connect$auto(0x3, &(0x7f00000000c0), 0x55) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, 0x0, 0x40) setsockopt$auto(0xffffffffffffffff, 0x4, 0x400, 0x0, 0x2) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x806, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x10000000000002d, 0x0) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) gettid() connect$auto(0xffffffffffffffff, 0x0, 0x55) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0x8a9c}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x5, 0x4) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) sendmsg$auto_NL80211_CMD_FLUSH_PMKSA(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB=' \x00R1', @ANYBLOB="fb96d5b9de6afa3b0dead7b35aa4b07be787ba30f92be83511cacf9d8359b6378e6ba3f29af72829ebdd3b2801", @ANYBLOB="100029bd7000fbdbdf253600000004008e000500020000000000"], 0x20}, 0x1, 0x0, 0x0, 0xff71c3b60d8e285e}, 0x4000000) mmap$auto(0x0, 0x5, 0x6, 0x12, 0x3, 0x88400) 3.010192378s ago: executing program 0 (id=3127): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)=0x10000) syz_genetlink_get_family_id$auto_ovs_flow(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40d81, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffff7, 0x8000) socket(0xa, 0x3, 0x6) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 2.905934688s ago: executing program 6 (id=3128): r0 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000003fc0)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20a02, 0x0) select$auto(0x1, &(0x7f0000000000)={[0x81, 0x380000000, 0xa, 0x3, 0x3, 0x4, 0x2032, 0xf, 0xfff, 0x1fa81f86, 0xfffffffffffffff7, 0x1, 0x100000001, 0xf42, 0x0, 0x2]}, &(0x7f0000000080)={[0x1, 0x80000000, 0x3, 0x2, 0x9, 0x8c, 0x6, 0x1, 0x8, 0x1000, 0x6, 0x3, 0x1, 0x80, 0x80000000000000, 0xa1f]}, &(0x7f0000000100)={[0x8, 0x1, 0x9, 0x6, 0x2, 0xc, 0x9, 0x5, 0x22788ede, 0xd155, 0xfff, 0x0, 0x4, 0x5, 0x40, 0x1]}, &(0x7f0000000180)={0x0, 0x9}) read$auto_tracing_pipe_fops_trace(r0, 0x0, 0x0) 2.778955047s ago: executing program 0 (id=3129): r0 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x4c00, 0x0) bind$auto(r0, 0x0, 0x100009) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x342, 0x0) r1 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x2000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff) 2.687339925s ago: executing program 6 (id=3130): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x4000008000) r0 = socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xf7d, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000002100), r1) sendmsg$auto_MACSEC_CMD_DEL_TXSA(r1, &(0x7f0000003240)={0x0, 0x0, &(0x7f0000003200)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c007a38889676643146336dbaf7a3c529c9b12b8f52cf8a2bcdca4292e6fded0087a17570a14f7fa40a062cb01e0c59eb015f4183ff6f49cd5187fc37172edf3271f00d684d560d965f8a46538244a2e59c706268c0cabcbe4a795b8746d5736fff5b7f3e50ee8afcf834a3afed72", @ANYRES16=r2, @ANYBLOB="01002dbd7000fbdbdf250500000008000100", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20000010}, 0x4014) syz_genetlink_get_family_id$auto_vdpa(&(0x7f0000000000), r1) memfd_create$auto(0x0, 0xe) r3 = socket(0x2c, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r4 = gettid() prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) process_vm_writev$auto(r4, 0x0, 0x2, 0x0, 0x1, 0x0) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, &(0x7f0000000000)=0x81) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r5, 0xc1105517, &(0x7f0000000080)={{0xfffffffc, 0x110d, 0x10000, 0x6, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa00000000e1800000000000000000040000660e070100", 0x8}, 0x6, 0x5, 0x6, 0x8, @integer={0x0, 0x8, 0x5}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"}) openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/numa_maps\x00', 0x402, 0x0) close_range$auto(0x2, r5, 0x0) setsockopt$auto(r3, 0x1, 0x21, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) pidfd_getfd$auto(r5, r3, 0x8001) quotactl_fd$auto(r5, 0x6, 0x9, &(0x7f0000000300)="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") write$auto(0x3, 0x0, 0xfdf3) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket(0x9, 0x3, 0x7) syz_genetlink_get_family_id$auto_ethtool(0x0, r3) 2.594687336s ago: executing program 1 (id=3131): r0 = socket$nl_generic(0x10, 0x3, 0x10) fallocate$auto(r0, 0x1ff, 0x8, 0x3) sendmsg$auto_TIPC_NL_KEY_FLUSH(r0, &(0x7f0000002880)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000002840)={&(0x7f0000000440)={0x18, 0x0, 0x4, 0x70bd2d, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000801}, 0x20000040) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000004280), r0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000006780)={0x0, 0x0, &(0x7f0000006740)={&(0x7f00000042c0)={0x1c, r1, 0x1, 0x70bd28, 0x25dfdbff, {}, [@OVS_PACKET_ATTR_MRU={0x6, 0x9, 0xdd1f}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x800) 2.399459221s ago: executing program 1 (id=3133): mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) openat$auto_fake_panic_fops_(0xffffffffffffff9c, &(0x7f0000000140), 0x101880, 0x0) r0 = socket(0x11, 0x80003, 0x0) setsockopt$auto(r0, 0x107, 0x12, 0x0, 0x4) 2.356545873s ago: executing program 0 (id=3134): r0 = socket(0x10, 0x2, 0x0) inotify_init1$auto(0xfd) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000229bd70001cdddf250200020008000308"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendto$auto(r0, &(0x7f0000000140)="fea9c4455406af033dda92de6bc17f19034b222c29f2591b1a97719a2810da8db3fb37cb2c578e4250c52bd03e477d2baf85aa4232ba288b628ce95784047199fb1a68d3db5a74506e3c305cf660932d2eac18f4c4af708a3341cd5ce7bf76b9ceeb6382df1c1e2f4949f77a4d1faad54adb0b53e0818ef5ed02bc9f69e3f92d79d955d6b464d1fa277ea144fc5b50b457b15d9830dcd465b3c20a58e6fc0f8245527c5e8ebbfa3856c1898a0cf3065265520ff156d08120727ca1", 0xc, 0xa, &(0x7f0000000000)=@ethernet={0x306, @multicast}, 0x6) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.121281642s ago: executing program 1 (id=3135): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x20040010}, 0x40040c0) clone3$auto(&(0x7f0000000140)={0x800001, 0x4, 0x7d, 0x6, 0x3, 0x6, 0x80, 0x3, 0x0, 0x7ffd, 0xc88}, 0xfffffffffffffffb) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/afs/cells\x00', 0x0, 0x0) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) bind$auto(0x3, &(0x7f0000000000), 0x68) set_mempolicy$auto(0x1, &(0x7f0000000080)=0x1, 0x7) sendto$auto(0x3, 0x0, 0x2000f, 0x9, &(0x7f0000000000), 0x1c) socket(0x2, 0x2, 0x88) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x3f00) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mmap$auto(0x8000000000000000, 0xb, 0x800, 0xfffffffffffffffb, 0xf0b, 0x6) mmap$auto(0x400000000000, 0x20009, 0xbec7, 0xeb1, 0x404, 0x8000) syz_clone(0xca000, 0x0, 0x0, 0x0, 0x0, 0x0) uname$auto(0x0) r1 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f00000000c0), 0x101200, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) lseek$auto(r1, 0xe51, 0xf5f) setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) fcntl$auto(0xffffffffffffffff, 0x114c, 0x8000000000000001) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0x3) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/uprobe/perf_event_mux_interval_ms\x00', 0x121102, 0x0) write$auto(r2, 0x0, 0x800000) read$auto(r0, &(0x7f0000000040)='/proc/self/net/afs/cells\x00', 0x5) 1.904870365s ago: executing program 5 (id=3136): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={0x1c, r1, 0xd0d58b333228212f, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x4000048) 1.904489603s ago: executing program 6 (id=3137): mmap$auto(0x0, 0x4020009, 0x0, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x9, 0x8, 0x9b72, 0x2, 0x28000) pidfd_send_signal$auto(0xfffffffffffffff3, 0xe31, 0xfffffffffffffffd, 0x0) madvise$auto(0x0, 0x8000000000000000, 0x15) madvise$auto(0x0, 0x1010001, 0x100000003) socket(0x10, 0x2, 0x0) 1.896636778s ago: executing program 0 (id=3144): mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x100000000002, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYRES8], 0x24}, 0x1, 0x0, 0x0, 0x20040014}, 0x2600c880) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x2, 0x73) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000080), 0x6b) connect$auto(0x3, &(0x7f00000000c0), 0x55) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9) close_range$auto(0x2, 0x8, 0x0) rseq$auto(&(0x7f0000000080)={0xe, 0xe0a4, 0x0, 0x6, 0xfffffffd, 0x2}, 0x8004, 0x0, 0x6) mprotect$auto(0x1ffff000, 0x800007, 0x6) 1.614037304s ago: executing program 6 (id=3138): close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x1, 0x0) socket(0x1e, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x1, 0x5, 0x0) io_uring_setup$auto(0x6, 0x0) munmap$auto(0x8000, 0xe26) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) setrlimit$auto(0x0, &(0x7f0000000000)={0x0, 0x3ff}) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') socket(0x2b, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x5, 0x0) setsockopt$auto(0x4, 0x0, 0x60, 0xfffffffffffffffe, 0x0) getsockopt$auto(0x4, 0x6, 0x11, 0xfffffffffffffffc, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='+\'[:N\x00', 0x72) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) ioctl$auto_def_blk_fops_fs(r0, 0x2202, 0x0) sched_setaffinity$auto(0x1, 0x1, &(0x7f0000000000)=0x1200000000008a) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x8, 0x1000000004, 0x13, 0x3, 0x180000000) clock_nanosleep$auto(0xc, 0x7fffffff, &(0x7f0000000040)={0x7f2b347, 0x1}, &(0x7f0000000080)={0x7fffffffffffffff}) 1.139165309s ago: executing program 1 (id=3139): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)=0x10000) syz_genetlink_get_family_id$auto_ovs_flow(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40d81, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffff7, 0x8000) socket(0xa, 0x3, 0x6) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 1.117779622s ago: executing program 5 (id=3140): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) write$auto(0x3, 0x0, 0xfffffdef) close_range$auto(0x2, 0x8, 0xfbff) 1.105724949s ago: executing program 6 (id=3141): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r1) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r0, 0x0, 0x800) mmap$auto(0x8, 0x200, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) socket(0x2a, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) connect$auto(0x3, &(0x7f00000000c0), 0x55) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, 0x0, 0x40) setsockopt$auto(0xffffffffffffffff, 0x4, 0x400, 0x0, 0x2) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x806, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x10000000000002d, 0x0) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) gettid() connect$auto(0xffffffffffffffff, 0x0, 0x55) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0x8a9c}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x5, 0x4) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) sendmsg$auto_NL80211_CMD_FLUSH_PMKSA(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB=' \x00R1', @ANYBLOB="fb96d5b9de6afa3b0dead7b35aa4b07be787ba30f92be83511cacf9d8359b6378e6ba3f29af72829ebdd3b2801", @ANYBLOB="100029bd7000fbdbdf253600000004008e000500020000000000"], 0x20}, 0x1, 0x0, 0x0, 0xff71c3b60d8e285e}, 0x4000000) mmap$auto(0x0, 0x5, 0x6, 0x12, 0x3, 0x88400) 767.715193ms ago: executing program 1 (id=3142): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) write$auto(0x3, 0x0, 0xfffffdef) fcntl$auto(0x3, 0x4, 0xa553) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) io_uring_setup$auto(0x85, 0x0) connect$auto(r0, 0x0, 0x55) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) close_range$auto(0x2, 0x8, 0x0) getsockname$auto(0xffffffffffffffff, 0x0, 0x0) listen$auto(0xffffffffffffffff, 0x9) accept$auto(0xffffffffffffffff, 0x0, 0x0) r1 = socket(0x1e, 0x1, 0x0) connect$auto(r1, 0x0, 0x10) mmap$auto(0x0, 0x40000c, 0xdf, 0x9b72, 0x2, 0x8000) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/jbd2/sda1-8/info\x00', 0x2, 0x0) writev$auto(0x1, 0x0, 0x1) mmap$auto(0x7, 0x0, 0x2, 0x19, 0xf, 0x5) connect$auto(0x3, 0x0, 0x55) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) io_setup$auto(0x8001, 0x0) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0xc76, 0x8000) mount$auto(0x0, 0x0, 0x0, 0x10001, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) 766.630175ms ago: executing program 0 (id=3151): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, 0x0, 0x40090) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x3, 0x100) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x4020009, 0x9f, 0xeb1, 0x401, 0x8000) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000229bd7000fedbdf251f00000032000d014187497b3033a13163910000010036cf7a320642ea75667d4f8308c03201c7b6eb856c0b7e2e3a93af7a28eb5b1b0100"], 0x48}, 0x1, 0x0, 0x0, 0x4048001}, 0x800) get_robust_list$auto(0x0, 0x0, 0x0) r3 = socket(0xa, 0x5, 0x0) setsockopt$auto(r3, 0x10000000084, 0x4, 0x0, 0x4) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r4 = openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x800, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) read$auto(r4, 0x0, 0x7) mmap$auto(0x0, 0x600004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) ioctl$auto_RNDADDENTROPY2(0xffffffffffffffff, 0x40085203, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="7201", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/fail_futex/probability\x00', 0x4002, 0x0) ioperm$auto(0xa, 0x4, 0xfffffffd) mknod$auto(&(0x7f0000000080)=':,\x00', 0xc9, 0xcb) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) 53.903045ms ago: executing program 6 (id=3143): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r1) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r0, 0x0, 0x800) mmap$auto(0x8, 0x200, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) socket(0x2a, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) connect$auto(0x3, 0x0, 0x55) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40) setsockopt$auto(0xffffffffffffffff, 0x4, 0x400, 0x0, 0x2) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x806, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x10000000000002d, 0x0) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) gettid() connect$auto(0xffffffffffffffff, 0x0, 0x55) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0x8a9c}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x5, 0x4) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) sendmsg$auto_NL80211_CMD_FLUSH_PMKSA(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB=' \x00R1', @ANYBLOB="fb96d5b9de6afa3b0dead7b35aa4b07be787ba30f92be83511cacf9d8359b6378e6ba3f29af72829ebdd3b2801", @ANYBLOB="100029bd7000fbdbdf253600000004008e000500020000000000"], 0x20}, 0x1, 0x0, 0x0, 0xff71c3b60d8e285e}, 0x4000000) mmap$auto(0x0, 0x5, 0x6, 0x12, 0x3, 0x88400) 46.461929ms ago: executing program 5 (id=3153): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x6c, 0x0, 0x800, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IFINDEX={0x8}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x5}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_IF1_SEQ={0x6, 0x6, 0xd}, @HSR_A_IF1_SEQ={0x6, 0x6, 0x7}, @HSR_A_NODE_ADDR={0xa, 0x1, @local}]}, 0x6c}}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) (async) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}}, 0x40000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 0s ago: executing program 0 (id=3145): r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x401f, 0x1, 0x8e051, r0, 0x1000000) kernel console output (not intermixed with test programs): 206062][T11770] should_fail_ex+0x497/0x5b0 [ 356.210749][T11770] ? __lock_acquire+0x15a9/0x3c40 [ 356.215787][T11770] get_futex_key+0x4a3/0x1000 [ 356.220474][T11770] ? __pfx_get_futex_key+0x10/0x10 [ 356.225607][T11770] futex_wake+0xe8/0x4e0 [ 356.229851][T11770] ? __pfx_futex_wake+0x10/0x10 [ 356.234705][T11770] ? find_held_lock+0x2d/0x110 [ 356.239495][T11770] do_futex+0x1e5/0x350 [ 356.243665][T11770] ? __pfx_do_futex+0x10/0x10 [ 356.248352][T11770] ? __might_fault+0xe3/0x190 [ 356.253041][T11770] ? __might_fault+0xe3/0x190 [ 356.257728][T11770] mm_release+0x24e/0x300 [ 356.262062][T11770] do_exit+0x88b/0x2d70 [ 356.266227][T11770] ? get_signal+0x8f7/0x2610 [ 356.270822][T11770] ? __pfx_do_exit+0x10/0x10 [ 356.275421][T11770] ? do_raw_spin_lock+0x12d/0x2c0 [ 356.280456][T11770] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 356.285841][T11770] do_group_exit+0xd3/0x2a0 [ 356.290361][T11770] get_signal+0x2576/0x2610 [ 356.294872][T11770] ? find_held_lock+0x2d/0x110 [ 356.299826][T11770] ? __pfx_get_signal+0x10/0x10 [ 356.304689][T11770] arch_do_signal_or_restart+0x90/0x7e0 [ 356.310247][T11770] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 356.316418][T11770] ? __pfx_do_readv+0x10/0x10 [ 356.321105][T11770] syscall_exit_to_user_mode+0x150/0x2a0 [ 356.326745][T11770] do_syscall_64+0xda/0x250 [ 356.331257][T11770] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 356.337160][T11770] RIP: 0033:0x7f081af85d19 [ 356.341577][T11770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 356.361185][T11770] RSP: 002b:00007f081be64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 356.369601][T11770] RAX: fffffffffffffe00 RBX: 00007f081b175fa0 RCX: 00007f081af85d19 [ 356.377571][T11770] RDX: 0000000000000001 RSI: 0000000020000a80 RDI: 0000000000000003 [ 356.385542][T11770] RBP: 00007f081be64090 R08: 0000000000000000 R09: 0000000000000000 [ 356.393513][T11770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 356.401490][T11770] R13: 0000000000000000 R14: 00007f081b175fa0 R15: 00007fff2ab8c838 [ 356.409496][T11770] [ 358.426840][T11817] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1748'. [ 360.866950][T11858] vivid-013: ================= START STATUS ================= [ 360.901584][T11858] vivid-013: Generate PTS: true [ 360.912959][T11858] vivid-013: Generate SCR: true [ 360.918384][T11858] tpg source WxH: 640x360 (Y'CbCr) [ 360.944359][T11858] tpg field: 1 [ 360.974334][T11859] : Can't lookup blockdev [ 360.993216][T11858] tpg crop: 640x360@0x0 [ 361.004479][T11858] tpg compose: 640x360@0x0 [ 361.014011][T11858] tpg colorspace: 8 [ 361.024417][T11858] tpg transfer function: 0/0 [ 361.041629][T11858] tpg Y'CbCr encoding: 0/0 [ 361.052011][T11858] tpg quantization: 0/0 [ 361.064506][T11858] tpg RGB range: 0/2 [ 361.074650][T11858] vivid-013: ================== END STATUS ================== [ 361.558102][T11871] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1757'. [ 362.200981][T11880] sp0: Synchronizing with TNC [ 362.987031][T11894] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 363.040512][T11895] ptrace attach of "./syz-executor exec"[8722] was attempted by ""[11895] [ 363.053456][T11894] CIFS mount error: No usable UNC path provided in device string! [ 363.053456][T11894] [ 363.163732][T11894] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 363.163970][T11895] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1766'. [ 363.246582][T11894] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1766'. [ 363.276119][T11898] vivid-013: ================= START STATUS ================= [ 363.290630][T11898] vivid-013: Generate PTS: true [ 363.305960][T11898] vivid-013: Generate SCR: true [ 363.320768][T11898] tpg source WxH: 640x360 (Y'CbCr) [ 363.340850][T11898] tpg field: 1 [ 363.361689][T11901] : Can't lookup blockdev [ 363.374015][T11898] tpg crop: 640x360@0x0 [ 363.395514][T11898] tpg compose: 640x360@0x0 [ 363.424063][T11898] tpg colorspace: 8 [ 363.438515][T11898] tpg transfer function: 0/0 [ 363.477956][T11898] tpg Y'CbCr encoding: 0/0 [ 363.491529][T11898] tpg quantization: 0/0 [ 363.498239][T11894] netlink: 102 bytes leftover after parsing attributes in process `syz.4.1766'. [ 363.515429][T11898] tpg RGB range: 0/2 [ 363.543462][T11898] vivid-013: ================== END STATUS ================== [ 367.029671][T11979] sp0: Synchronizing with TNC [ 368.586142][T12018] sp0: Synchronizing with TNC [ 369.136651][T12036] vivid-013: ================= START STATUS ================= [ 369.176113][T12036] vivid-013: Generate PTS: true [ 369.189685][T12036] vivid-013: Generate SCR: true [ 369.195165][T12036] tpg source WxH: 640x360 (Y'CbCr) [ 369.201122][T12036] tpg field: 1 [ 369.204680][T12036] tpg crop: 640x360@0x0 [ 369.209632][T12036] tpg compose: 640x360@0x0 [ 369.214213][T12036] tpg colorspace: 8 [ 369.218210][T12036] tpg transfer function: 0/0 [ 369.223065][T12036] tpg Y'CbCr encoding: 0/0 [ 369.228532][T12036] tpg quantization: 0/0 [ 369.230272][T12038] : Can't lookup blockdev [ 369.232795][T12036] tpg RGB range: 0/2 [ 369.242545][T12036] vivid-013: ================== END STATUS ================== [ 370.337534][T12062] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1820'. [ 370.776296][ T5839] Bluetooth: hci4: command 0x0406 tx timeout [ 372.159906][T12092] vivid-013: ================= START STATUS ================= [ 372.221308][T12092] vivid-013: Generate PTS: true [ 372.264545][T12095] : Can't lookup blockdev [ 372.276995][T12092] vivid-013: Generate SCR: true [ 372.282045][T12092] tpg source WxH: 640x360 (Y'CbCr) [ 372.289582][T12092] tpg field: 1 [ 372.293325][T12092] tpg crop: 640x360@0x0 [ 372.310583][T12092] tpg compose: 640x360@0x0 [ 372.318307][T12092] tpg colorspace: 8 [ 372.379598][T12092] tpg transfer function: 0/0 [ 372.384340][T12092] tpg Y'CbCr encoding: 0/0 [ 372.388936][T12092] tpg quantization: 0/0 [ 372.393224][T12092] tpg RGB range: 0/2 [ 372.397313][T12092] vivid-013: ================== END STATUS ================== [ 374.629473][T12149] vivid-013: ================= START STATUS ================= [ 374.637662][T12149] vivid-013: Generate PTS: true [ 374.642581][T12149] vivid-013: Generate SCR: true [ 374.654531][T12149] tpg source WxH: 640x360 (Y'CbCr) [ 374.683667][T12149] tpg field: 1 [ 374.705264][T12149] tpg crop: 640x360@0x0 [ 374.733804][T12149] tpg compose: 640x360@0x0 [ 374.737286][T12154] : Can't lookup blockdev [ 374.749324][T12149] tpg colorspace: 8 [ 374.786265][T12149] tpg transfer function: 0/0 [ 374.790914][T12149] tpg Y'CbCr encoding: 0/0 [ 374.795350][T12149] tpg quantization: 0/0 [ 374.836914][T12149] tpg RGB range: 0/2 [ 374.840866][T12149] vivid-013: ================== END STATUS ================== [ 376.322804][T12191] capability: warning: `syz.4.1856' uses 32-bit capabilities (legacy support in use) [ 376.501984][T12199] vivid-013: ================= START STATUS ================= [ 376.526128][T12199] vivid-013: Generate PTS: true [ 376.531084][T12199] vivid-013: Generate SCR: true [ 376.547721][T12199] tpg source WxH: 640x360 (Y'CbCr) [ 376.552988][T12199] tpg field: 1 [ 376.569660][T12199] tpg crop: 640x360@0x0 [ 376.573986][T12199] tpg compose: 640x360@0x0 [ 376.597817][T12203] : Can't lookup blockdev [ 376.616037][T12199] tpg colorspace: 8 [ 376.619903][T12199] tpg transfer function: 0/0 [ 376.624514][T12199] tpg Y'CbCr encoding: 0/0 [ 376.649551][T12199] tpg quantization: 0/0 [ 376.653848][T12199] tpg RGB range: 0/2 [ 376.662924][T12199] vivid-013: ================== END STATUS ================== [ 377.679595][T12213] FAULT_INJECTION: forcing a failure. [ 377.679595][T12213] name fail_futex, interval 1, probability 0, space 0, times 0 [ 377.746163][T12213] CPU: 1 UID: 0 PID: 12213 Comm: syz.4.1863 Not tainted 6.13.0-rc3-syzkaller #0 [ 377.755262][T12213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 377.765353][T12213] Call Trace: [ 377.768653][T12213] [ 377.771601][T12213] dump_stack_lvl+0x16c/0x1f0 [ 377.776399][T12213] should_fail_ex+0x497/0x5b0 [ 377.781121][T12213] ? __lock_acquire+0x15a9/0x3c40 [ 377.786187][T12213] get_futex_key+0x4a3/0x1000 [ 377.790896][T12213] ? __pfx_get_futex_key+0x10/0x10 [ 377.796056][T12213] futex_wake+0xe8/0x4e0 [ 377.800329][T12213] ? __pfx_futex_wake+0x10/0x10 [ 377.805207][T12213] ? find_held_lock+0x2d/0x110 [ 377.810006][T12213] do_futex+0x1e5/0x350 [ 377.814194][T12213] ? __pfx_do_futex+0x10/0x10 [ 377.818900][T12213] ? __might_fault+0xe3/0x190 [ 377.823613][T12213] ? __might_fault+0xe3/0x190 [ 377.828332][T12213] mm_release+0x24e/0x300 [ 377.832698][T12213] do_exit+0x88b/0x2d70 [ 377.836891][T12213] ? get_signal+0x8f7/0x2610 [ 377.841505][T12213] ? __pfx_do_exit+0x10/0x10 [ 377.846126][T12213] ? do_raw_spin_lock+0x12d/0x2c0 [ 377.851185][T12213] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 377.856590][T12213] do_group_exit+0xd3/0x2a0 [ 377.861128][T12213] get_signal+0x2576/0x2610 [ 377.865670][T12213] ? __pfx_get_signal+0x10/0x10 [ 377.870552][T12213] ? kick_process+0xf6/0x1b0 [ 377.875181][T12213] ? task_work_add+0x1ca/0x3b0 [ 377.879983][T12213] arch_do_signal_or_restart+0x90/0x7e0 [ 377.885571][T12213] ? __fget_files+0x206/0x3a0 [ 377.890276][T12213] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 377.896476][T12213] ? ksys_read+0x1ba/0x250 [ 377.900918][T12213] ? __pfx_ksys_read+0x10/0x10 [ 377.905715][T12213] syscall_exit_to_user_mode+0x150/0x2a0 [ 377.911391][T12213] do_syscall_64+0xda/0x250 [ 377.915935][T12213] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.921875][T12213] RIP: 0033:0x7fa7de785d19 [ 377.926326][T12213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 377.945970][T12213] RSP: 002b:00007fa7df4fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 377.954420][T12213] RAX: fffffffffffffe00 RBX: 00007fa7de976080 RCX: 00007fa7de785d19 [ 377.962436][T12213] RDX: 0000000200000008 RSI: 0000000000000000 RDI: 0000000000000003 [ 377.970442][T12213] RBP: 00007fa7df4fd090 R08: 0000000000000000 R09: 0000000000000000 [ 377.978455][T12213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 377.987908][T12213] R13: 0000000000000001 R14: 00007fa7de976080 R15: 00007ffcf252cb28 [ 377.987945][T12213] [ 378.943564][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.950195][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.666187][T12268] svc: failed to register nfsdv3 RPC service (errno 111). [ 379.701446][T12268] svc: failed to register nfsaclv3 RPC service (errno 111). [ 381.395037][T12307] FAULT_INJECTION: forcing a failure. [ 381.395037][T12307] name failslab, interval 1, probability 0, space 0, times 0 [ 381.443420][T12307] CPU: 0 UID: 0 PID: 12307 Comm: syz.5.1891 Not tainted 6.13.0-rc3-syzkaller #0 [ 381.452508][T12307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 381.462590][T12307] Call Trace: [ 381.465882][T12307] [ 381.468835][T12307] dump_stack_lvl+0x16c/0x1f0 [ 381.473557][T12307] should_fail_ex+0x497/0x5b0 [ 381.478266][T12307] ? fs_reclaim_acquire+0xae/0x150 [ 381.483416][T12307] should_failslab+0xc2/0x120 [ 381.488130][T12307] __kmalloc_noprof+0xce/0x4f0 [ 381.492934][T12307] ? d_absolute_path+0x137/0x1b0 [ 381.497918][T12307] ? tomoyo_encode2+0x100/0x3e0 [ 381.502809][T12307] tomoyo_encode2+0x100/0x3e0 [ 381.507610][T12307] tomoyo_realpath_from_path+0x1a7/0x710 [ 381.513289][T12307] tomoyo_path_number_perm+0x248/0x5b0 [ 381.518794][T12307] ? tomoyo_path_number_perm+0x235/0x5b0 [ 381.524467][T12307] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 381.530515][T12307] ? __pfx_lock_release+0x10/0x10 [ 381.535575][T12307] ? trace_lock_acquire+0x14e/0x1f0 [ 381.540813][T12307] ? lock_acquire+0x2f/0xb0 [ 381.545345][T12307] ? __fget_files+0x40/0x3a0 [ 381.549972][T12307] ? __fget_files+0x206/0x3a0 [ 381.554686][T12307] security_file_ioctl+0x9b/0x240 [ 381.559742][T12307] __x64_sys_ioctl+0xb7/0x200 [ 381.566218][T12307] do_syscall_64+0xcd/0x250 [ 381.566265][T12307] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.566296][T12307] RIP: 0033:0x7f2484b85d19 [ 381.566317][T12307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 381.566342][T12307] RSP: 002b:00007f24859ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 381.566368][T12307] RAX: ffffffffffffffda RBX: 00007f2484d75fa0 RCX: 00007f2484b85d19 [ 381.566387][T12307] RDX: 0000000000000000 RSI: 0000000083c0550b RDI: 0000000000000003 [ 381.566403][T12307] RBP: 00007f24859ac090 R08: 0000000000000000 R09: 0000000000000000 [ 381.566419][T12307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 381.566435][T12307] R13: 0000000000000000 R14: 00007f2484d75fa0 R15: 00007fffdb937ac8 [ 381.566469][T12307] [ 381.645755][T12307] ERROR: Out of memory at tomoyo_realpath_from_path. [ 382.087340][T12321] FAULT_INJECTION: forcing a failure. [ 382.087340][T12321] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 382.126385][T12321] CPU: 1 UID: 0 PID: 12321 Comm: syz.4.1897 Not tainted 6.13.0-rc3-syzkaller #0 [ 382.135481][T12321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 382.145576][T12321] Call Trace: [ 382.148888][T12321] [ 382.151844][T12321] dump_stack_lvl+0x16c/0x1f0 [ 382.156564][T12321] should_fail_ex+0x497/0x5b0 [ 382.161286][T12321] _copy_to_user+0x32/0xd0 [ 382.165755][T12321] simple_read_from_buffer+0xd0/0x160 [ 382.171254][T12321] proc_fail_nth_read+0x198/0x270 [ 382.176327][T12321] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 382.181924][T12321] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 382.187521][T12321] vfs_read+0x1df/0xbe0 [ 382.191727][T12321] ? open_namespace+0x139/0x190 [ 382.196619][T12321] ? __pfx_open_namespace+0x10/0x10 [ 382.201859][T12321] ? __pfx_vfs_read+0x10/0x10 [ 382.206579][T12321] ? do_raw_spin_unlock+0x172/0x230 [ 382.211814][T12321] ? pidfd_ioctl+0x3b3/0x1fd0 [ 382.216535][T12321] ? __pfx_pidfd_ioctl+0x10/0x10 [ 382.221515][T12321] ksys_read+0x12b/0x250 [ 382.225791][T12321] ? __pfx_ksys_read+0x10/0x10 [ 382.230704][T12321] do_syscall_64+0xcd/0x250 [ 382.235250][T12321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 382.241970][T12321] RIP: 0033:0x7fa7de78472c [ 382.246420][T12321] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 382.266074][T12321] RSP: 002b:00007fa7df51e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 382.274530][T12321] RAX: ffffffffffffffda RBX: 00007fa7de975fa0 RCX: 00007fa7de78472c [ 382.282539][T12321] RDX: 000000000000000f RSI: 00007fa7df51e0a0 RDI: 0000000000000002 [ 382.290545][T12321] RBP: 00007fa7df51e090 R08: 0000000000000000 R09: 0000000000000000 [ 382.298547][T12321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 382.306549][T12321] R13: 0000000000000000 R14: 00007fa7de975fa0 R15: 00007ffcf252cb28 [ 382.314568][T12321] [ 382.552562][T12330] vivid-013: ================= START STATUS ================= [ 382.561412][T12330] vivid-013: Generate PTS: true [ 382.592576][T12330] vivid-013: Generate SCR: true [ 382.598735][T12330] tpg source WxH: 640x360 (Y'CbCr) [ 382.604505][T12330] tpg field: 1 [ 382.608271][T12333] : Can't lookup blockdev [ 382.612739][T12330] tpg crop: 640x360@0x0 [ 382.618710][T12330] tpg compose: 640x360@0x0 [ 382.623161][T12330] tpg colorspace: 8 [ 382.627366][T12330] tpg transfer function: 0/0 [ 382.631973][T12330] tpg Y'CbCr encoding: 0/0 [ 382.637071][T12330] tpg quantization: 0/0 [ 382.641263][T12330] tpg RGB range: 0/2 [ 382.645178][T12330] vivid-013: ================== END STATUS ================== [ 384.637503][T12379] vivid-013: ================= START STATUS ================= [ 384.645489][T12379] vivid-013: Generate PTS: true [ 384.665696][T12379] vivid-013: Generate SCR: true [ 384.695805][T12379] tpg source WxH: 640x360 (Y'CbCr) [ 384.707714][T12381] : Can't lookup blockdev [ 384.724679][T12379] tpg field: 1 [ 384.738468][T12379] tpg crop: 640x360@0x0 [ 384.744929][T12379] tpg compose: 640x360@0x0 [ 384.758663][T12379] tpg colorspace: 8 [ 384.787584][T12379] tpg transfer function: 0/0 [ 384.799701][T12379] tpg Y'CbCr encoding: 0/0 [ 384.804170][T12379] tpg quantization: 0/0 [ 384.828989][T12379] tpg RGB range: 0/2 [ 384.833308][T12379] vivid-013: ================== END STATUS ================== [ 386.044146][T12406] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma? [ 388.995458][T12459] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1938'. [ 392.687209][T12496] vivid-013: ================= START STATUS ================= [ 392.694993][T12496] vivid-013: Generate PTS: true [ 392.700179][T12496] vivid-013: Generate SCR: true [ 392.746479][T12496] tpg source WxH: 640x360 (Y'CbCr) [ 392.764627][T12496] tpg field: 1 [ 392.775815][T12496] tpg crop: 640x360@0x0 [ 392.784413][T12499] : Can't lookup blockdev [ 392.796152][T12496] tpg compose: 640x360@0x0 [ 392.802952][T12496] tpg colorspace: 8 [ 392.819866][T12496] tpg transfer function: 0/0 [ 392.853472][T12496] tpg Y'CbCr encoding: 0/0 [ 392.858499][T12496] tpg quantization: 0/0 [ 392.862795][T12496] tpg RGB range: 0/2 [ 392.866932][T12496] vivid-013: ================== END STATUS ================== [ 393.845800][T12525] vivid-013: ================= START STATUS ================= [ 393.882877][T12525] vivid-013: Generate PTS: true [ 393.909977][T12528] : Can't lookup blockdev [ 393.919436][T12525] vivid-013: Generate SCR: true [ 393.952342][T12525] tpg source WxH: 640x360 (Y'CbCr) [ 393.970272][T12525] tpg field: 1 [ 393.973715][T12525] tpg crop: 640x360@0x0 [ 394.011287][T12525] tpg compose: 640x360@0x0 [ 394.015766][T12525] tpg colorspace: 8 [ 394.032099][T12525] tpg transfer function: 0/0 [ 394.037151][T12525] tpg Y'CbCr encoding: 0/0 [ 394.041919][T12525] tpg quantization: 0/0 [ 394.070581][T12525] tpg RGB range: 0/2 [ 394.074777][T12525] vivid-013: ================== END STATUS ================== [ 396.693625][T12598] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1978'. [ 397.870010][T12627] vivid-013: ================= START STATUS ================= [ 397.903329][T12627] vivid-013: Generate PTS: true [ 397.920771][T12627] vivid-013: Generate SCR: true [ 397.930899][T12627] tpg source WxH: 640x360 (Y'CbCr) [ 397.944327][T12627] tpg field: 1 [ 397.950455][T12627] tpg crop: 640x360@0x0 [ 397.976815][T12631] : Can't lookup blockdev [ 398.007631][T12627] tpg compose: 640x360@0x0 [ 398.012125][T12627] tpg colorspace: 8 [ 398.025484][T12627] tpg transfer function: 0/0 [ 398.034085][T12627] tpg Y'CbCr encoding: 0/0 [ 398.049588][T12627] tpg quantization: 0/0 [ 398.061732][T12627] tpg RGB range: 0/2 [ 398.071275][T12627] vivid-013: ================== END STATUS ================== [ 399.302663][T12660] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1994'. [ 399.966173][T12674] vivid-013: ================= START STATUS ================= [ 399.996521][T12674] vivid-013: Generate PTS: true [ 400.010734][T12674] vivid-013: Generate SCR: true [ 400.015676][T12674] tpg source WxH: 640x360 (Y'CbCr) [ 400.021011][T12674] tpg field: 1 [ 400.024411][T12674] tpg crop: 640x360@0x0 [ 400.036001][T12674] tpg compose: 640x360@0x0 [ 400.040470][T12674] tpg colorspace: 8 [ 400.046362][T12674] tpg transfer function: 0/0 [ 400.059089][T12680] : Can't lookup blockdev [ 400.076103][T12674] tpg Y'CbCr encoding: 0/0 [ 400.080583][T12674] tpg quantization: 0/0 [ 400.084756][T12674] tpg RGB range: 0/2 [ 400.094810][T12674] vivid-013: ================== END STATUS ================== [ 401.430424][T12707] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2009'. [ 401.645485][T12721] vivid-013: ================= START STATUS ================= [ 401.675400][T12721] vivid-013: Generate PTS: true [ 401.690921][T12721] vivid-013: Generate SCR: true [ 401.725546][T12721] tpg source WxH: 640x360 (Y'CbCr) [ 401.748222][T12723] : Can't lookup blockdev [ 401.782650][T12721] tpg field: 1 [ 401.806817][T12721] tpg crop: 640x360@0x0 [ 401.833874][T12721] tpg compose: 640x360@0x0 [ 401.893334][T12721] tpg colorspace: 8 [ 401.899851][T12721] tpg transfer function: 0/0 [ 401.918325][T12721] tpg Y'CbCr encoding: 0/0 [ 401.949793][T12721] tpg quantization: 0/0 [ 402.021560][T12721] tpg RGB range: 0/2 [ 402.035067][T12721] vivid-013: ================== END STATUS ================== [ 403.515472][T12760] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2024'. [ 406.438769][T12810] vivid-013: ================= START STATUS ================= [ 406.460606][T12810] vivid-013: Generate PTS: true [ 406.465548][T12810] vivid-013: Generate SCR: true [ 406.472374][T12810] tpg source WxH: 640x360 (Y'CbCr) [ 406.477925][T12810] tpg field: 1 [ 406.481331][T12810] tpg crop: 640x360@0x0 [ 406.486726][T12810] tpg compose: 640x360@0x0 [ 406.492135][T12810] tpg colorspace: 8 [ 406.497659][T12812] : Can't lookup blockdev [ 406.502111][T12810] tpg transfer function: 0/0 [ 406.515687][T12810] tpg Y'CbCr encoding: 0/0 [ 406.520480][T12810] tpg quantization: 0/0 [ 406.524741][T12810] tpg RGB range: 0/2 [ 406.529096][T12810] vivid-013: ================== END STATUS ================== [ 411.124511][T12910] netlink: 206 bytes leftover after parsing attributes in process `syz.1.2071'. [ 412.322153][T12935] vivid-013: ================= START STATUS ================= [ 412.340772][T12935] vivid-013: Generate PTS: true [ 412.345723][T12935] vivid-013: Generate SCR: true [ 412.367802][T12935] tpg source WxH: 640x360 (Y'CbCr) [ 412.373409][T12939] : Can't lookup blockdev [ 412.390365][T12935] tpg field: 1 [ 412.394019][T12935] tpg crop: 640x360@0x0 [ 412.399156][T12940] : Can't lookup blockdev [ 412.422465][T12935] tpg compose: 640x360@0x0 [ 412.428440][T12935] tpg colorspace: 8 [ 412.446038][T12935] tpg transfer function: 0/0 [ 412.464627][T12935] tpg Y'CbCr encoding: 0/0 [ 412.475343][T12935] tpg quantization: 0/0 [ 412.496017][T12935] tpg RGB range: 0/2 [ 412.499964][T12935] vivid-013: ================== END STATUS ================== [ 412.552412][T12937] vivid-013: ================= START STATUS ================= [ 412.585067][T12937] vivid-013: Generate PTS: true [ 412.590232][T12937] vivid-013: Generate SCR: true [ 412.595774][T12937] tpg source WxH: 640x360 (Y'CbCr) [ 412.606929][T12937] tpg field: 1 [ 412.610422][T12937] tpg crop: 640x360@0x0 [ 412.620754][T12937] tpg compose: 640x360@0x0 [ 412.632000][T12937] tpg colorspace: 8 [ 412.636269][T12937] tpg transfer function: 0/0 [ 412.644941][T12937] tpg Y'CbCr encoding: 0/0 [ 412.655100][T12937] tpg quantization: 0/0 [ 412.661105][T12937] tpg RGB range: 0/2 [ 412.674940][T12937] vivid-013: ================== END STATUS ================== [ 414.968136][T12991] vivid-013: ================= START STATUS ================= [ 414.992416][T12991] vivid-013: Generate PTS: true [ 415.015504][T12991] vivid-013: Generate SCR: true [ 415.031428][T12991] tpg source WxH: 640x360 (Y'CbCr) [ 415.038072][T12992] : Can't lookup blockdev [ 415.056069][T12991] tpg field: 1 [ 415.061817][T12991] tpg crop: 640x360@0x0 [ 415.070005][T12991] tpg compose: 640x360@0x0 [ 415.091386][T12991] tpg colorspace: 8 [ 415.106757][T12991] tpg transfer function: 0/0 [ 415.111762][T12991] tpg Y'CbCr encoding: 0/0 [ 415.138409][T12991] tpg quantization: 0/0 [ 415.163269][T12991] tpg RGB range: 0/2 [ 415.167340][T12991] vivid-013: ================== END STATUS ================== [ 416.652548][T13023] QAT: Device 5 not found [ 416.858420][T13024] QAT: Device 5 not found [ 417.230329][T13039] vivid-013: ================= START STATUS ================= [ 417.245976][T13039] vivid-013: Generate PTS: true [ 417.251137][T13039] vivid-013: Generate SCR: true [ 417.265048][T13039] tpg source WxH: 640x360 (Y'CbCr) [ 417.270687][T13039] tpg field: 1 [ 417.274866][T13039] tpg crop: 640x360@0x0 [ 417.294552][T13040] : Can't lookup blockdev [ 417.316120][T13039] tpg compose: 640x360@0x0 [ 417.332825][T13039] tpg colorspace: 8 [ 417.361423][T13039] tpg transfer function: 0/0 [ 417.366349][T13039] tpg Y'CbCr encoding: 0/0 [ 417.386007][T13039] tpg quantization: 0/0 [ 417.396398][T13039] tpg RGB range: 0/2 [ 417.405983][T13039] vivid-013: ================== END STATUS ================== [ 417.437822][T13042] vivid-013: ================= START STATUS ================= [ 417.445508][T13042] vivid-013: Generate PTS: true [ 417.451622][T13042] vivid-013: Generate SCR: true [ 417.502113][T13047] : Can't lookup blockdev [ 417.518715][T13042] tpg source WxH: 640x360 (Y'CbCr) [ 417.523894][T13042] tpg field: 1 [ 417.538066][T13042] tpg crop: 640x360@0x0 [ 417.542317][T13042] tpg compose: 640x360@0x0 [ 417.550733][T13042] tpg colorspace: 8 [ 417.595497][T13042] tpg transfer function: 0/0 [ 417.602487][T13042] tpg Y'CbCr encoding: 0/0 [ 417.621339][T13042] tpg quantization: 0/0 [ 417.625558][T13042] tpg RGB range: 0/2 [ 417.640123][T13042] vivid-013: ================== END STATUS ================== [ 417.964112][T13055] FAULT_INJECTION: forcing a failure. [ 417.964112][T13055] name failslab, interval 1, probability 0, space 0, times 0 [ 418.024092][T13055] CPU: 1 UID: 0 PID: 13055 Comm: syz.5.2105 Not tainted 6.13.0-rc3-syzkaller #0 [ 418.033184][T13055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 418.043269][T13055] Call Trace: [ 418.046577][T13055] [ 418.049542][T13055] dump_stack_lvl+0x16c/0x1f0 [ 418.054269][T13055] should_fail_ex+0x497/0x5b0 [ 418.058987][T13055] ? fs_reclaim_acquire+0xae/0x150 [ 418.064138][T13055] should_failslab+0xc2/0x120 [ 418.068859][T13055] __kmalloc_noprof+0xce/0x4f0 [ 418.073668][T13055] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 418.079332][T13055] ? tomoyo_realpath_from_path+0xbf/0x710 [ 418.085098][T13055] tomoyo_realpath_from_path+0xbf/0x710 [ 418.090739][T13055] ? tomoyo_path_number_perm+0x235/0x5b0 [ 418.096434][T13055] tomoyo_path_number_perm+0x248/0x5b0 [ 418.101940][T13055] ? tomoyo_path_number_perm+0x235/0x5b0 [ 418.107624][T13055] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 418.113648][T13055] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 418.119351][T13055] ? do_raw_spin_unlock+0x172/0x230 [ 418.124605][T13055] security_file_ioctl+0x9b/0x240 [ 418.129666][T13055] __x64_sys_ioctl+0xb7/0x200 [ 418.134393][T13055] do_syscall_64+0xcd/0x250 [ 418.138937][T13055] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 418.144865][T13055] RIP: 0033:0x7f2484b85d19 [ 418.149310][T13055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 418.168991][T13055] RSP: 002b:00007f248598b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 418.177445][T13055] RAX: ffffffffffffffda RBX: 00007f2484d76080 RCX: 00007f2484b85d19 [ 418.185459][T13055] RDX: 0000000000000004 RSI: 0000000000008983 RDI: 0000000000000001 [ 418.193461][T13055] RBP: 00007f248598b090 R08: 0000000000000000 R09: 0000000000000000 [ 418.201464][T13055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 418.209463][T13055] R13: 0000000000000000 R14: 00007f2484d76080 R15: 00007fffdb937ac8 [ 418.217494][T13055] [ 418.225421][T13055] ERROR: Out of memory at tomoyo_realpath_from_path. [ 419.008454][T13084] sctp: [Deprecated]: syz.4.2112 (pid 13084) Use of int in max_burst socket option deprecated. [ 419.008454][T13084] Use struct sctp_assoc_value instead [ 420.796025][T13121] vivid-013: ================= START STATUS ================= [ 420.803876][T13121] vivid-013: Generate PTS: true [ 420.813945][T13121] vivid-013: Generate SCR: true [ 420.818970][T13121] tpg source WxH: 640x360 (Y'CbCr) [ 420.824105][T13121] tpg field: 1 [ 420.847112][T13121] tpg crop: 640x360@0x0 [ 420.851672][T13121] tpg compose: 640x360@0x0 [ 420.856581][T13121] tpg colorspace: 8 [ 420.861500][T13121] tpg transfer function: 0/0 [ 420.866420][T13121] tpg Y'CbCr encoding: 0/0 [ 420.871247][T13121] tpg quantization: 0/0 [ 420.875426][T13121] tpg RGB range: 0/2 [ 420.879647][T13121] vivid-013: ================== END STATUS ================== [ 421.564436][T13148] vivid-013: ================= START STATUS ================= [ 421.604652][T13148] vivid-013: Generate PTS: true [ 421.642762][T13151] : Can't lookup blockdev [ 421.710178][T13148] vivid-013: Generate SCR: true [ 421.715122][T13148] tpg source WxH: 640x360 (Y'CbCr) [ 421.783737][T13148] tpg field: 1 [ 421.810884][T13148] tpg crop: 640x360@0x0 [ 421.815203][T13148] tpg compose: 640x360@0x0 [ 421.885381][T13148] tpg colorspace: 8 [ 421.926562][T13148] tpg transfer function: 0/0 [ 421.985182][T13148] tpg Y'CbCr encoding: 0/0 [ 422.013967][T13148] tpg quantization: 0/0 [ 422.030953][T13148] tpg RGB range: 0/2 [ 422.046626][T13148] vivid-013: ================== END STATUS ================== [ 423.673300][T13183] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2143'. [ 428.957291][T13261] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2163'. [ 429.987893][T13285] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2169'. [ 430.001553][T13285] nbd: must specify at least one socket [ 430.398168][T13289] mkiss: ax0: crc mode is auto. [ 430.593393][T13300] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2173'. [ 430.603229][T13300] veth1_macvtap: entered allmulticast mode [ 431.017495][T13309] sctp: [Deprecated]: syz.5.2177 (pid 13309) Use of int in max_burst socket option deprecated. [ 431.017495][T13309] Use struct sctp_assoc_value instead [ 431.581150][T13316] FAULT_INJECTION: forcing a failure. [ 431.581150][T13316] name failslab, interval 1, probability 0, space 0, times 0 [ 431.634261][T13316] CPU: 1 UID: 0 PID: 13316 Comm: syz.0.2179 Not tainted 6.13.0-rc3-syzkaller #0 [ 431.643356][T13316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 431.653450][T13316] Call Trace: [ 431.656758][T13316] [ 431.659719][T13316] dump_stack_lvl+0x16c/0x1f0 [ 431.664439][T13316] should_fail_ex+0x497/0x5b0 [ 431.669162][T13316] ? fs_reclaim_acquire+0xae/0x150 [ 431.674315][T13316] should_failslab+0xc2/0x120 [ 431.679042][T13316] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 431.684452][T13316] ? getname_flags.part.0+0x4c/0x550 [ 431.689777][T13316] ? vfs_write+0x306/0x1150 [ 431.694292][T13316] getname_flags.part.0+0x4c/0x550 [ 431.699424][T13316] getname+0x8d/0xe0 [ 431.703324][T13316] do_sys_openat2+0x104/0x1e0 [ 431.708012][T13316] ? __pfx_do_sys_openat2+0x10/0x10 [ 431.713223][T13316] ? __fget_files+0x206/0x3a0 [ 431.717918][T13316] __x64_sys_openat+0x175/0x210 [ 431.722782][T13316] ? __pfx___x64_sys_openat+0x10/0x10 [ 431.728167][T13316] ? ksys_write+0x1ba/0x250 [ 431.732702][T13316] do_syscall_64+0xcd/0x250 [ 431.737226][T13316] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 431.743145][T13316] RIP: 0033:0x7f081af85d19 [ 431.747573][T13316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 431.767213][T13316] RSP: 002b:00007f081be64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 431.775644][T13316] RAX: ffffffffffffffda RBX: 00007f081b175fa0 RCX: 00007f081af85d19 [ 431.783617][T13316] RDX: 0000000000000342 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 431.791590][T13316] RBP: 00007f081be64090 R08: 0000000000000000 R09: 0000000000000000 [ 431.799562][T13316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 431.807533][T13316] R13: 0000000000000000 R14: 00007f081b175fa0 R15: 00007fff2ab8c838 [ 431.815525][T13316] [ 432.278389][T13330] FAULT_INJECTION: forcing a failure. [ 432.278389][T13330] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 432.319687][T13330] CPU: 0 UID: 0 PID: 13330 Comm: syz.4.2184 Not tainted 6.13.0-rc3-syzkaller #0 [ 432.328869][T13330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 432.338959][T13330] Call Trace: [ 432.342257][T13330] [ 432.345202][T13330] dump_stack_lvl+0x16c/0x1f0 [ 432.349916][T13330] should_fail_ex+0x497/0x5b0 [ 432.354634][T13330] _copy_to_user+0x32/0xd0 [ 432.359109][T13330] simple_read_from_buffer+0xd0/0x160 [ 432.364531][T13330] proc_fail_nth_read+0x198/0x270 [ 432.369595][T13330] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 432.375185][T13330] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 432.380770][T13330] vfs_read+0x1df/0xbe0 [ 432.384952][T13330] ? __fget_files+0x1fc/0x3a0 [ 432.389664][T13330] ? __pfx___mutex_lock+0x10/0x10 [ 432.394725][T13330] ? __pfx_vfs_read+0x10/0x10 [ 432.399445][T13330] ? __fget_files+0x206/0x3a0 [ 432.404165][T13330] ksys_read+0x12b/0x250 [ 432.408439][T13330] ? __pfx_ksys_read+0x10/0x10 [ 432.413423][T13330] do_syscall_64+0xcd/0x250 [ 432.418003][T13330] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 432.423940][T13330] RIP: 0033:0x7fa7de78472c [ 432.428377][T13330] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 432.448022][T13330] RSP: 002b:00007fa7df4dc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 432.456482][T13330] RAX: ffffffffffffffda RBX: 00007fa7de976160 RCX: 00007fa7de78472c [ 432.464489][T13330] RDX: 000000000000000f RSI: 00007fa7df4dc0a0 RDI: 0000000000000003 [ 432.472494][T13330] RBP: 00007fa7df4dc090 R08: 0000000000000000 R09: 0000000000000000 [ 432.480500][T13330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 432.488505][T13330] R13: 0000000000000000 R14: 00007fa7de976160 R15: 00007ffcf252cb28 [ 432.496525][T13330] [ 432.888672][T13341] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2186'. [ 433.501849][T13363] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2192'. [ 433.963612][T13372] netlink: 146 bytes leftover after parsing attributes in process `syz.5.2196'. [ 434.136690][T13376] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2196'. [ 434.210032][T13383] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2198'. [ 434.256083][T13383] nbd: must specify at least one socket [ 435.443806][T13423] FAULT_INJECTION: forcing a failure. [ 435.443806][T13423] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 435.474123][T13423] CPU: 1 UID: 0 PID: 13423 Comm: syz.4.2210 Not tainted 6.13.0-rc3-syzkaller #0 [ 435.483216][T13423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 435.493305][T13423] Call Trace: [ 435.496610][T13423] [ 435.499560][T13423] dump_stack_lvl+0x16c/0x1f0 [ 435.504277][T13423] should_fail_ex+0x497/0x5b0 [ 435.509433][T13423] _copy_to_user+0x32/0xd0 [ 435.513902][T13423] simple_read_from_buffer+0xd0/0x160 [ 435.519319][T13423] nsim_pp_hold_read+0xe8/0x140 [ 435.524204][T13423] ? __pfx_nsim_pp_hold_read+0x10/0x10 [ 435.529712][T13423] full_proxy_read+0xfb/0x1b0 [ 435.534426][T13423] ? __pfx_full_proxy_read+0x10/0x10 [ 435.539753][T13423] vfs_read+0x1df/0xbe0 [ 435.543939][T13423] ? __fget_files+0x1fc/0x3a0 [ 435.548648][T13423] ? __pfx___mutex_lock+0x10/0x10 [ 435.553707][T13423] ? __pfx_vfs_read+0x10/0x10 [ 435.558426][T13423] ? __fget_files+0x206/0x3a0 [ 435.563150][T13423] ksys_read+0x12b/0x250 [ 435.567425][T13423] ? __pfx_ksys_read+0x10/0x10 [ 435.572235][T13423] do_syscall_64+0xcd/0x250 [ 435.576777][T13423] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 435.582704][T13423] RIP: 0033:0x7fa7de785d19 [ 435.587146][T13423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 435.606785][T13423] RSP: 002b:00007fa7df51e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 435.615244][T13423] RAX: ffffffffffffffda RBX: 00007fa7de975fa0 RCX: 00007fa7de785d19 [ 435.623257][T13423] RDX: 0000000000000004 RSI: 0000000020000140 RDI: 0000000000000003 [ 435.631263][T13423] RBP: 00007fa7df51e090 R08: 0000000000000000 R09: 0000000000000000 [ 435.639529][T13423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 435.648497][T13423] R13: 0000000000000000 R14: 00007fa7de975fa0 R15: 00007ffcf252cb28 [ 435.656529][T13423] [ 440.386305][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.395970][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.456128][T13525] vivid-013: ================= START STATUS ================= [ 440.474526][T13525] vivid-013: Generate PTS: true [ 440.484652][T13525] vivid-013: Generate SCR: true [ 440.494782][T13525] tpg source WxH: 640x360 (Y'CbCr) [ 440.504907][T13525] tpg field: 1 [ 440.515038][T13525] tpg crop: 640x360@0x0 [ 440.524620][T13525] tpg compose: 640x360@0x0 [ 440.535919][T13525] tpg colorspace: 8 [ 440.545928][T13525] tpg transfer function: 0/0 [ 440.550651][T13525] tpg Y'CbCr encoding: 0/0 [ 440.555202][T13525] tpg quantization: 0/0 [ 440.575892][T13525] tpg RGB range: 0/2 [ 440.579921][T13525] vivid-013: ================== END STATUS ================== [ 441.279106][T13526] vivid-013: kernel_thread() failed [ 442.576769][T13532] ptp ptp0: only physical clock in use now [ 446.401236][T13606] vivid-013: ================= START STATUS ================= [ 446.409622][T13606] vivid-013: Generate PTS: true [ 446.414714][T13606] vivid-013: Generate SCR: true [ 446.419828][T13606] tpg source WxH: 640x360 (Y'CbCr) [ 446.425052][T13606] tpg field: 1 [ 446.428796][T13606] tpg crop: 640x360@0x0 [ 446.433236][T13606] tpg compose: 640x360@0x0 [ 446.438262][T13606] tpg colorspace: 8 [ 446.442098][T13606] tpg transfer function: 0/0 [ 446.452903][T13606] tpg Y'CbCr encoding: 0/0 [ 446.457699][T13606] tpg quantization: 0/0 [ 446.462088][T13606] tpg RGB range: 0/2 [ 446.466444][T13606] vivid-013: ================== END STATUS ================== [ 449.456372][T13690] FAULT_INJECTION: forcing a failure. [ 449.456372][T13690] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 449.470154][T13690] CPU: 1 UID: 0 PID: 13690 Comm: syz.4.2287 Not tainted 6.13.0-rc3-syzkaller #0 [ 449.479727][T13690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 449.489794][T13690] Call Trace: [ 449.493070][T13690] [ 449.496013][T13690] dump_stack_lvl+0x16c/0x1f0 [ 449.500703][T13690] should_fail_ex+0x497/0x5b0 [ 449.505390][T13690] _copy_from_user+0x2e/0xd0 [ 449.509993][T13690] kstrtouint_from_user+0xd7/0x1c0 [ 449.515107][T13690] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 449.520836][T13690] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 449.526909][T13690] proc_fail_nth_write+0x84/0x250 [ 449.531949][T13690] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 449.537593][T13690] ? ksys_write+0x12b/0x250 [ 449.542106][T13690] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 449.547748][T13690] vfs_write+0x24c/0x1150 [ 449.552084][T13690] ? __fget_files+0x1fc/0x3a0 [ 449.556765][T13690] ? __pfx___mutex_lock+0x10/0x10 [ 449.561799][T13690] ? __pfx_vfs_write+0x10/0x10 [ 449.566575][T13690] ? __fget_files+0x206/0x3a0 [ 449.571267][T13690] ksys_write+0x12b/0x250 [ 449.575599][T13690] ? __pfx_ksys_write+0x10/0x10 [ 449.580461][T13690] do_syscall_64+0xcd/0x250 [ 449.584977][T13690] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 449.590880][T13690] RIP: 0033:0x7fa7de7847cf [ 449.595294][T13690] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 449.614910][T13690] RSP: 002b:00007fa7df51e030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 449.623337][T13690] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa7de7847cf [ 449.631318][T13690] RDX: 0000000000000001 RSI: 00007fa7df51e0a0 RDI: 0000000000000011 [ 449.639291][T13690] RBP: 00007fa7df51e090 R08: 0000000000000000 R09: 0000000000000000 [ 449.647269][T13690] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 449.655332][T13690] R13: 0000000000000000 R14: 00007fa7de975fa0 R15: 00007ffcf252cb28 [ 449.663324][T13690] [ 450.727738][T13695] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 454.290091][T13781] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2314'. [ 458.389140][ T5839] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 458.408007][ T5839] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 458.416552][ T5839] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 458.443842][ T5839] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 458.451948][ T5839] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 458.465547][ T5839] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 459.187900][T13875] chnl_net:caif_netlink_parms(): no params data found [ 459.710112][T13875] bridge0: port 1(bridge_slave_0) entered blocking state [ 459.729706][T13875] bridge0: port 1(bridge_slave_0) entered disabled state [ 459.767492][T13875] bridge_slave_0: entered allmulticast mode [ 459.816820][T13875] bridge_slave_0: entered promiscuous mode [ 459.863806][T13875] bridge0: port 2(bridge_slave_1) entered blocking state [ 459.876444][T13875] bridge0: port 2(bridge_slave_1) entered disabled state [ 459.883700][T13875] bridge_slave_1: entered allmulticast mode [ 459.899314][T13875] bridge_slave_1: entered promiscuous mode [ 459.979215][T13875] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 460.009830][T13875] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 460.237879][T13875] team0: Port device team_slave_0 added [ 460.263769][T13875] team0: Port device team_slave_1 added [ 460.433854][T13875] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 460.489216][T13875] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 460.524440][T13875] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 460.536040][ T5839] Bluetooth: hci2: command tx timeout [ 460.555260][T13875] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 460.564821][T13875] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 460.591630][T13875] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 460.759070][T13875] hsr_slave_0: entered promiscuous mode [ 460.775255][T13875] hsr_slave_1: entered promiscuous mode [ 460.787867][T13875] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 460.796783][T13875] Cannot create hsr debugfs directory [ 461.671426][T13875] 8021q: adding VLAN 0 to HW filter on device bond0 [ 461.736987][T13875] 8021q: adding VLAN 0 to HW filter on device team0 [ 461.764123][ T8291] bridge0: port 1(bridge_slave_0) entered blocking state [ 461.771295][ T8291] bridge0: port 1(bridge_slave_0) entered forwarding state [ 461.800328][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 461.807513][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 462.312950][T13875] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 462.636875][ T5839] Bluetooth: hci2: command tx timeout [ 462.790256][T13875] veth0_vlan: entered promiscuous mode [ 462.801311][T13875] veth1_vlan: entered promiscuous mode [ 462.824696][T13875] veth0_macvtap: entered promiscuous mode [ 462.834777][T13875] veth1_macvtap: entered promiscuous mode [ 462.849964][T13875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 462.860747][T13875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 462.870714][T13875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 462.881374][T13875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 462.891270][T13875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 462.902014][T13875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 462.911968][T13875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 462.922566][T13875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 462.932494][T13875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 462.943021][T13875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 462.953366][T13875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 462.964058][T13875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 462.975221][T13875] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 463.023258][T13875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 463.044940][T13875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 463.065083][T13875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 463.084636][T13875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 463.104798][T13875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 463.131802][T13875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 463.148400][T13875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 463.159108][T13875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 463.170200][T13875] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 463.422636][ T1326] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 463.456905][ T1326] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 463.606640][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 463.616060][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 463.838630][T13976] vivid-013: ================= START STATUS ================= [ 463.885932][T13976] vivid-013: Generate PTS: true [ 463.969916][T13976] vivid-013: Generate SCR: true [ 463.974864][T13976] tpg source WxH: 640x360 (Y'CbCr) [ 464.000985][T13976] tpg field: 1 [ 464.013134][T13976] tpg crop: 640x360@0x0 [ 464.048183][T13976] tpg compose: 640x360@0x0 [ 464.052665][T13976] tpg colorspace: 8 [ 464.095919][T13976] tpg transfer function: 0/0 [ 464.128670][T13976] tpg Y'CbCr encoding: 0/0 [ 464.133140][T13976] tpg quantization: 0/0 [ 464.185558][T13976] tpg RGB range: 0/2 [ 464.190057][T13976] vivid-013: ================== END STATUS ================== [ 464.696098][ T5143] Bluetooth: hci2: command tx timeout [ 466.294453][T14037] vivid-013: ================= START STATUS ================= [ 466.314152][T14037] vivid-013: Generate PTS: true [ 466.343913][T14037] vivid-013: Generate SCR: true [ 466.384101][T14037] tpg source WxH: 640x360 (Y'CbCr) [ 466.394390][T14037] tpg field: 1 [ 466.398312][T14037] tpg crop: 640x360@0x0 [ 466.402960][T14037] tpg compose: 640x360@0x0 [ 466.407711][T14037] tpg colorspace: 8 [ 466.411617][T14037] tpg transfer function: 0/0 [ 466.416718][T14037] tpg Y'CbCr encoding: 0/0 [ 466.421386][T14037] tpg quantization: 0/0 [ 466.425778][T14037] tpg RGB range: 0/2 [ 466.429924][T14037] vivid-013: ================== END STATUS ================== [ 466.536852][T14048] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2375'. [ 466.776084][ T5143] Bluetooth: hci2: command tx timeout [ 468.625695][T14086] vivid-013: ================= START STATUS ================= [ 468.636166][T14086] vivid-013: Generate PTS: true [ 468.641100][T14086] vivid-013: Generate SCR: true [ 468.656004][T14086] tpg source WxH: 640x360 (Y'CbCr) [ 468.687186][T14086] tpg field: 1 [ 468.722203][T14086] tpg crop: 640x360@0x0 [ 468.757481][T14086] tpg compose: 640x360@0x0 [ 468.773635][T14086] tpg colorspace: 8 [ 468.807644][T14086] tpg transfer function: 0/0 [ 468.848447][T14086] tpg Y'CbCr encoding: 0/0 [ 468.852924][T14086] tpg quantization: 0/0 [ 468.928971][T14086] tpg RGB range: 0/2 [ 468.938292][T14086] vivid-013: ================== END STATUS ================== [ 470.606851][T14131] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 470.612962][T14131] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 470.666272][T14131] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 470.694161][T14131] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 470.737696][T14131] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 470.745429][T14131] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 470.765595][T14131] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 471.470045][T14151] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2399'. [ 472.376010][T14180] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2408'. [ 472.410122][T14180] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2408'. [ 472.615980][ T5143] Bluetooth: hci3: command 0x0c1a tx timeout [ 472.622178][ T5839] Bluetooth: hci1: command 0x0406 tx timeout [ 472.696255][ T5143] Bluetooth: hci4: command 0x0406 tx timeout [ 472.776028][ T5143] Bluetooth: hci2: command 0x0c1a tx timeout [ 473.307242][T14201] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2413'. [ 473.734391][T14217] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2415'. [ 474.777085][ T5143] Bluetooth: hci4: command 0x0406 tx timeout [ 474.856743][ T5143] Bluetooth: hci2: command 0x0c1a tx timeout [ 475.223007][T14251] FAULT_INJECTION: forcing a failure. [ 475.223007][T14251] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 475.237107][T14251] CPU: 1 UID: 0 PID: 14251 Comm: syz.1.2433 Not tainted 6.13.0-rc3-syzkaller #0 [ 475.246184][T14251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 475.256266][T14251] Call Trace: [ 475.259568][T14251] [ 475.262518][T14251] dump_stack_lvl+0x16c/0x1f0 [ 475.267232][T14251] should_fail_ex+0x497/0x5b0 [ 475.271943][T14251] ? fs_reclaim_acquire+0xae/0x150 [ 475.277085][T14251] should_fail_alloc_page+0xe7/0x130 [ 475.282409][T14251] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 475.288601][T14251] __alloc_pages_noprof+0x190/0x25b0 [ 475.293922][T14251] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 475.300115][T14251] ? is_bpf_text_address+0x94/0x1a0 [ 475.305356][T14251] ? kernel_text_address+0x8d/0x100 [ 475.310598][T14251] ? __kernel_text_address+0xd/0x40 [ 475.315828][T14251] ? unwind_get_return_address+0x59/0xa0 [ 475.321492][T14251] ? arch_stack_walk+0xa7/0x100 [ 475.326372][T14251] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 475.332142][T14251] ? __pfx_stack_trace_save+0x10/0x10 [ 475.337550][T14251] ? stack_depot_save_flags+0x28/0x9e0 [ 475.343048][T14251] ? __pfx_mark_lock+0x10/0x10 [ 475.347855][T14251] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 475.353784][T14251] ? policy_nodemask+0xea/0x4e0 [ 475.358679][T14251] alloc_pages_mpol_noprof+0x2c9/0x610 [ 475.364186][T14251] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 475.370227][T14251] pte_alloc_one+0x20/0x390 [ 475.374777][T14251] __pte_alloc+0x6e/0x3b0 [ 475.379139][T14251] ? __pfx___pte_alloc+0x10/0x10 [ 475.384110][T14251] ? walk_to_pmd+0x1a5/0x2a0 [ 475.388732][T14251] vm_insert_pages+0x933/0xac0 [ 475.393551][T14251] ? rcu_is_watching+0x12/0xc0 [ 475.398355][T14251] ? __pfx_vm_insert_pages+0x10/0x10 [ 475.403683][T14251] ? __rb_map_vma+0x4d8/0xae0 [ 475.408406][T14251] __rb_map_vma+0x81f/0xae0 [ 475.413053][T14251] ? __pfx___rb_map_vma+0x10/0x10 [ 475.418125][T14251] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 475.423971][T14251] ring_buffer_map+0x56e/0x9b0 [ 475.428789][T14251] tracing_buffers_mmap+0xa6/0x120 [ 475.433939][T14251] __mmap_region+0x1786/0x2670 [ 475.438760][T14251] ? __pfx___mmap_region+0x10/0x10 [ 475.443910][T14251] ? hlock_class+0x4e/0x130 [ 475.448453][T14251] ? mark_lock+0xb5/0xc60 [ 475.452908][T14251] mmap_region+0x127/0x320 [ 475.457364][T14251] do_mmap+0xc00/0xfc0 [ 475.461469][T14251] vm_mmap_pgoff+0x1ba/0x360 [ 475.466102][T14251] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 475.471253][T14251] ? __fget_files+0x206/0x3a0 [ 475.475964][T14251] ksys_mmap_pgoff+0x32c/0x5c0 [ 475.480766][T14251] ? __pfx_ksys_write+0x10/0x10 [ 475.485656][T14251] __x64_sys_mmap+0x125/0x190 [ 475.490374][T14251] do_syscall_64+0xcd/0x250 [ 475.494914][T14251] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 475.500845][T14251] RIP: 0033:0x7fc5e8b85d19 [ 475.505286][T14251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 475.525444][T14251] RSP: 002b:00007fc5e99d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 475.533897][T14251] RAX: ffffffffffffffda RBX: 00007fc5e8d75fa0 RCX: 00007fc5e8b85d19 [ 475.541902][T14251] RDX: 0000000000000001 RSI: 000000000000401f RDI: 0000000020ffc000 [ 475.549909][T14251] RBP: 00007fc5e99d9090 R08: 0000000000000003 R09: 0000000000000000 [ 475.557912][T14251] R10: 000000000008e051 R11: 0000000000000246 R12: 0000000000000002 [ 475.565916][T14251] R13: 0000000000000000 R14: 00007fc5e8d75fa0 R15: 00007ffcd42dfd58 [ 475.573940][T14251] [ 476.048978][T14275] program syz.1.2432 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 476.048994][T14276] program syz.1.2432 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 476.936887][ T5143] Bluetooth: hci2: command 0x0c1a tx timeout [ 478.043865][T14330] FAULT_INJECTION: forcing a failure. [ 478.043865][T14330] name failslab, interval 1, probability 0, space 0, times 0 [ 478.061958][T14330] CPU: 1 UID: 0 PID: 14330 Comm: syz.4.2452 Not tainted 6.13.0-rc3-syzkaller #0 [ 478.071041][T14330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 478.081127][T14330] Call Trace: [ 478.084426][T14330] [ 478.087382][T14330] dump_stack_lvl+0x16c/0x1f0 [ 478.092095][T14330] should_fail_ex+0x497/0x5b0 [ 478.096811][T14330] ? fs_reclaim_acquire+0xae/0x150 [ 478.101960][T14330] should_failslab+0xc2/0x120 [ 478.106676][T14330] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 478.112089][T14330] ? getname_kernel+0x52/0x370 [ 478.116906][T14330] getname_kernel+0x52/0x370 [ 478.121540][T14330] kern_path+0x1d/0x50 [ 478.125638][T14330] tomoyo_mount_acl+0x62d/0x880 [ 478.130504][T14330] ? hlock_class+0x4e/0x130 [ 478.135024][T14330] ? __lock_acquire+0x15a9/0x3c40 [ 478.140071][T14330] ? __pfx_tomoyo_mount_acl+0x10/0x10 [ 478.145460][T14330] ? __pfx___lock_acquire+0x10/0x10 [ 478.150678][T14330] ? stack_trace_save+0x95/0xd0 [ 478.155560][T14330] ? trace_lock_acquire+0x14e/0x1f0 [ 478.160771][T14330] ? tomoyo_mount_permission+0x149/0x420 [ 478.166415][T14330] ? lock_acquire+0x2f/0xb0 [ 478.170925][T14330] ? tomoyo_mount_permission+0x149/0x420 [ 478.176572][T14330] tomoyo_mount_permission+0x16e/0x420 [ 478.182035][T14330] ? tomoyo_mount_permission+0x149/0x420 [ 478.187673][T14330] ? __pfx_tomoyo_mount_permission+0x10/0x10 [ 478.193667][T14330] ? get_current_fs_domain+0x184/0x1f0 [ 478.199140][T14330] security_sb_mount+0x9b/0x260 [ 478.204004][T14330] path_mount+0x129/0x1f10 [ 478.208432][T14330] ? kmem_cache_free+0x152/0x4c0 [ 478.213378][T14330] ? __pfx_path_mount+0x10/0x10 [ 478.218329][T14330] ? putname+0x13c/0x180 [ 478.222585][T14330] __x64_sys_mount+0x294/0x320 [ 478.227355][T14330] ? __pfx___x64_sys_mount+0x10/0x10 [ 478.232653][T14330] do_syscall_64+0xcd/0x250 [ 478.237166][T14330] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 478.243068][T14330] RIP: 0033:0x7fa7de785d19 [ 478.247486][T14330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 478.267104][T14330] RSP: 002b:00007fa7df51e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 478.275525][T14330] RAX: ffffffffffffffda RBX: 00007fa7de975fa0 RCX: 00007fa7de785d19 [ 478.283505][T14330] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000020000000 [ 478.291478][T14330] RBP: 00007fa7df51e090 R08: 0000000000000000 R09: 0000000000000000 [ 478.299457][T14330] R10: 0000000010dfd057 R11: 0000000000000246 R12: 0000000000000001 [ 478.307433][T14330] R13: 0000000000000000 R14: 00007fa7de975fa0 R15: 00007ffcf252cb28 [ 478.315422][T14330] [ 478.320295][ T0] NOHZ tick-stop error: local softirq work is pending, handler #248!!! [ 478.463230][T14337] warning: `syz.1.2454' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 479.784798][T14371] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2463'. [ 481.804264][T14413] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2474'. [ 482.546952][T14424] netlink: 'syz.0.2476': attribute type 11 has an invalid length. [ 483.274834][ T5839] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 483.284269][ T5839] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 483.292831][ T5839] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 483.323134][ T5839] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 483.332913][ T5839] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 483.343021][ T5839] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 483.437600][T14443] openvswitch: netlink: Flow key attribute not present in set flow. [ 483.649446][ T1161] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 483.788632][ T1161] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 483.971075][ T1161] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 484.157551][ T1161] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 484.189328][T14439] chnl_net:caif_netlink_parms(): no params data found [ 484.344119][T14439] bridge0: port 1(bridge_slave_0) entered blocking state [ 484.353067][T14439] bridge0: port 1(bridge_slave_0) entered disabled state [ 484.361055][T14439] bridge_slave_0: entered allmulticast mode [ 484.369261][T14439] bridge_slave_0: entered promiscuous mode [ 484.477124][T14439] bridge0: port 2(bridge_slave_1) entered blocking state [ 484.484508][T14439] bridge0: port 2(bridge_slave_1) entered disabled state [ 484.493782][T14439] bridge_slave_1: entered allmulticast mode [ 484.507409][T14439] bridge_slave_1: entered promiscuous mode [ 485.429835][ T5839] Bluetooth: hci0: command tx timeout [ 485.611855][ T1161] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 485.648493][ T1161] bond0 (unregistering): Released all slaves [ 485.691310][T14439] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 485.767987][T14439] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 485.845938][ T1161] HSR: left promiscuous mode [ 485.901499][T14439] team0: Port device team_slave_0 added [ 485.939621][T14439] team0: Port device team_slave_1 added [ 486.092990][T14439] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 486.139688][T14439] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 486.181655][T14439] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 486.194932][T14439] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 486.202107][T14439] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 486.240287][T14439] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 486.262274][T14477] netlink: 326 bytes leftover after parsing attributes in process `syz.5.2487'. [ 486.732218][T14439] hsr_slave_0: entered promiscuous mode [ 486.791315][T14439] hsr_slave_1: entered promiscuous mode [ 486.835766][T14439] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 486.845959][T14439] Cannot create hsr debugfs directory [ 487.496040][ T5839] Bluetooth: hci0: command tx timeout [ 487.566031][ T1161] hsr_slave_0: left promiscuous mode [ 487.582800][ T1161] hsr_slave_1: left promiscuous mode [ 487.604443][ T1161] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 487.624146][ T1161] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 487.634395][ T1161] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 487.654690][ T1161] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 487.687513][ T1161] veth1_macvtap: left promiscuous mode [ 487.693579][ T1161] veth1_vlan: left promiscuous mode [ 487.699208][ T1161] veth0_vlan: left promiscuous mode [ 488.675542][ T1161] team0 (unregistering): Port device team_slave_1 removed [ 488.804445][ T1161] team0 (unregistering): Port device team_slave_0 removed [ 489.415039][T14518] netlink: 'syz.5.2495': attribute type 17 has an invalid length. [ 489.436195][T14518] netlink: 326 bytes leftover after parsing attributes in process `syz.5.2495'. [ 489.576023][ T5839] Bluetooth: hci0: command tx timeout [ 490.095432][T14439] 8021q: adding VLAN 0 to HW filter on device bond0 [ 490.153061][T14439] 8021q: adding VLAN 0 to HW filter on device team0 [ 490.207910][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 490.215087][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 490.257553][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 490.264708][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 490.335000][T14439] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 490.345489][T14439] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 490.788815][T14439] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 491.351057][T14439] veth0_vlan: entered promiscuous mode [ 491.395097][T14439] veth1_vlan: entered promiscuous mode [ 491.475640][T14439] veth0_macvtap: entered promiscuous mode [ 491.563309][T14439] veth1_macvtap: entered promiscuous mode [ 491.621729][T14439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 491.656138][ T5839] Bluetooth: hci0: command tx timeout [ 491.669548][T14439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 491.703599][T14439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 491.714453][T14439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 491.736081][T14439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 491.756034][T14439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 491.776716][T14439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 491.790730][T14439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 491.806056][T14439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 491.825869][T14439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 491.846263][T14439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 491.883327][T14439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 491.905160][T14439] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 492.037510][T14439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.069322][T14439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.090836][T14439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.106031][T14439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.116594][T14439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.127525][T14439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.138981][T14439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.155272][T14439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.186331][T14439] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 492.855472][ T8291] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 492.886144][ T29] audit: type=1800 audit(4294967464.159:7): pid=14598 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2507" name="discovery_nqn" dev="configfs" ino=46554 res=0 errno=0 [ 492.922080][ T8291] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 493.024194][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 493.049726][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 493.297259][T14624] openvswitch: netlink: Flow key attribute not present in set flow. [ 494.038673][T14629] netlink: zone id is out of range [ 494.061266][T14629] netlink: set zone limit has 8 unknown bytes [ 494.359854][T14647] ubi9: attaching mtd0 [ 494.387685][T14647] ubi9 error: ubi_attach_mtd_dev: bad VID header (13) or data offsets (77) [ 496.107442][T14691] netlink: zone id is out of range [ 496.158036][T14691] netlink: set zone limit has 8 unknown bytes [ 496.615774][T14717] netlink: 'syz.4.2524': attribute type 1 has an invalid length. [ 496.861008][ T29] audit: type=1804 audit(4294967468.149:8): pid=14721 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2525" name="#)-\&[}" dev="mqueue" ino=47774 res=1 errno=0 [ 496.886234][T14721] kernel read not supported for file /#)-\&[} (pid: 14721 comm: syz.1.2525) [ 496.969397][ T29] audit: type=1800 audit(4294967468.179:9): pid=14721 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2525" name="#)-\&[}" dev="mqueue" ino=47774 res=0 errno=0 [ 497.603740][T14755] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2529'. [ 500.540379][T14800] netlink: zone id is out of range [ 500.590213][T14800] netlink: set zone limit has 8 unknown bytes [ 501.584494][T14830] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2541'. [ 501.822195][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.829025][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 503.904115][T14870] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2553'. [ 504.510860][T14882] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2554'. [ 507.277742][T14928] netlink: 'syz.4.2562': attribute type 17 has an invalid length. [ 507.324338][T14928] netlink: 326 bytes leftover after parsing attributes in process `syz.4.2562'. [ 508.616697][T14968] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 508.617190][T14964] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2569'. [ 508.623987][T14968] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 508.672011][T14968] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 508.678295][T14968] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 508.684796][T14968] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 508.696781][T14968] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 509.029633][T14979] Debayer A: ================= START STATUS ================= [ 509.037610][T14979] Debayer A: Debayer Mean Window Size: 3 [ 509.044848][T14979] Debayer A: ================== END STATUS ================== [ 510.696278][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 510.702398][ T5143] Bluetooth: hci2: command 0x0c1a tx timeout [ 510.708883][ T5143] Bluetooth: hci4: command 0x0406 tx timeout [ 510.715139][ T5143] Bluetooth: hci3: command 0x0c1a tx timeout [ 511.148532][T15042] netlink: 330 bytes leftover after parsing attributes in process `syz.5.2579'. [ 511.334365][T15047] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 511.346258][T15047] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 511.354309][T15047] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 511.384622][T15047] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 511.777671][T15059] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2581'. [ 511.826703][T15059] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2581'. [ 513.002372][T15093] Process accounting resumed [ 513.341427][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 513.416036][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 513.422642][T15028] Bluetooth: hci2: command 0x0c1a tx timeout [ 513.429243][ T5835] Bluetooth: hci4: command 0x0406 tx timeout [ 514.195959][T15133] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2595'. [ 515.525980][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 516.071020][T15123] netlink: 'syz.0.2594': attribute type 17 has an invalid length. [ 516.125378][T15123] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2594'. [ 516.490113][T15183] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 516.506265][T15183] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 516.512347][T15183] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 516.556490][T15183] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 517.818754][T15028] Bluetooth: hci3: command 0x0c1a tx timeout [ 518.545990][T15028] Bluetooth: hci2: command 0x0c1a tx timeout [ 518.552094][ T5839] Bluetooth: hci4: command 0x0406 tx timeout [ 518.616212][T15028] Bluetooth: hci0: command 0x0c1a tx timeout [ 519.145035][T15217] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2614'. [ 520.551730][T15223] netlink: 'syz.5.2611': attribute type 17 has an invalid length. [ 520.585000][T15223] netlink: 326 bytes leftover after parsing attributes in process `syz.5.2611'. [ 522.121739][T15273] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2623'. [ 522.484321][T15278] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2625'. [ 522.569343][T15261] kexec: Could not allocate control_code_buffer [ 522.578088][T15278] FAULT_INJECTION: forcing a failure. [ 522.578088][T15278] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 522.656097][T15278] CPU: 0 UID: 0 PID: 15278 Comm: syz.1.2625 Not tainted 6.13.0-rc3-syzkaller #0 [ 522.665188][T15278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 522.675288][T15278] Call Trace: [ 522.678596][T15278] [ 522.681568][T15278] dump_stack_lvl+0x16c/0x1f0 [ 522.686374][T15278] should_fail_ex+0x497/0x5b0 [ 522.691095][T15278] _copy_from_iter+0x29b/0x1400 [ 522.695998][T15278] ? trace_lock_acquire+0x14e/0x1f0 [ 522.701237][T15278] ? __alloc_skb+0x200/0x380 [ 522.705866][T15278] ? __pfx__copy_from_iter+0x10/0x10 [ 522.711188][T15278] ? __virt_addr_valid+0x1a4/0x590 [ 522.716342][T15278] ? __virt_addr_valid+0x5e/0x590 [ 522.721400][T15278] ? __phys_addr_symbol+0x30/0x80 [ 522.726459][T15278] ? __check_object_size+0x488/0x710 [ 522.731789][T15278] netlink_sendmsg+0x813/0xd70 [ 522.736593][T15278] ? __pfx_netlink_sendmsg+0x10/0x10 [ 522.741920][T15278] ____sys_sendmsg+0x9ae/0xb40 [ 522.746718][T15278] ? copy_msghdr_from_user+0x10b/0x160 [ 522.752218][T15278] ? __pfx_____sys_sendmsg+0x10/0x10 [ 522.757529][T15278] ? __lock_acquire+0xcc5/0x3c40 [ 522.762511][T15278] ? hlock_class+0x4e/0x130 [ 522.767048][T15278] ? __lock_acquire+0x15a9/0x3c40 [ 522.772117][T15278] ___sys_sendmsg+0x135/0x1e0 [ 522.776834][T15278] ? __pfx____sys_sendmsg+0x10/0x10 [ 522.782071][T15278] ? __pfx___lock_acquire+0x10/0x10 [ 522.787346][T15278] ? __pfx___might_resched+0x10/0x10 [ 522.792662][T15278] ? __might_fault+0xe3/0x190 [ 522.797472][T15278] __sys_sendmmsg+0x201/0x420 [ 522.802200][T15278] ? __pfx___sys_sendmmsg+0x10/0x10 [ 522.807452][T15278] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 522.813481][T15278] ? fput+0x67/0x440 [ 522.817419][T15278] ? ksys_write+0x1ba/0x250 [ 522.821984][T15278] ? __pfx_ksys_write+0x10/0x10 [ 522.826877][T15278] __x64_sys_sendmmsg+0x9c/0x100 [ 522.831850][T15278] ? lockdep_hardirqs_on+0x7c/0x110 [ 522.837083][T15278] do_syscall_64+0xcd/0x250 [ 522.841624][T15278] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 522.847563][T15278] RIP: 0033:0x7fe313f85d19 [ 522.852009][T15278] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 522.871655][T15278] RSP: 002b:00007fe311df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 522.880116][T15278] RAX: ffffffffffffffda RBX: 00007fe314175fa0 RCX: 00007fe313f85d19 [ 522.888129][T15278] RDX: 0000000000000007 RSI: 0000000020000200 RDI: 0000000000000007 [ 522.896137][T15278] RBP: 00007fe311df6090 R08: 0000000000000000 R09: 0000000000000000 [ 522.904144][T15278] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 522.912253][T15278] R13: 0000000000000000 R14: 00007fe314175fa0 R15: 00007fffb4c8c288 [ 522.920278][T15278] [ 523.101783][T15284] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2627'. [ 523.534155][T15294] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2629'. [ 524.677525][T15313] FAULT_INJECTION: forcing a failure. [ 524.677525][T15313] name failslab, interval 1, probability 0, space 0, times 0 [ 524.725972][T15313] CPU: 0 UID: 0 PID: 15313 Comm: syz.5.2635 Not tainted 6.13.0-rc3-syzkaller #0 [ 524.735070][T15313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 524.745338][T15313] Call Trace: [ 524.748629][T15313] [ 524.751568][T15313] dump_stack_lvl+0x16c/0x1f0 [ 524.756263][T15313] should_fail_ex+0x497/0x5b0 [ 524.760951][T15313] ? fs_reclaim_acquire+0xae/0x150 [ 524.766072][T15313] should_failslab+0xc2/0x120 [ 524.770761][T15313] __kmalloc_noprof+0xce/0x4f0 [ 524.775535][T15313] ? rcu_is_watching+0x12/0xc0 [ 524.780307][T15313] ? tomoyo_encode2+0x100/0x3e0 [ 524.785166][T15313] tomoyo_encode2+0x100/0x3e0 [ 524.789861][T15313] tomoyo_realpath_from_path+0x1a7/0x710 [ 524.795504][T15313] ? tomoyo_fill_path_info+0x233/0x420 [ 524.800978][T15313] tomoyo_mount_acl+0x1af/0x880 [ 524.805844][T15313] ? hlock_class+0x4e/0x130 [ 524.810362][T15313] ? __lock_acquire+0x15a9/0x3c40 [ 524.815404][T15313] ? __pfx_tomoyo_mount_acl+0x10/0x10 [ 524.820786][T15313] ? __pfx___lock_acquire+0x10/0x10 [ 524.826008][T15313] ? stack_trace_save+0x95/0xd0 [ 524.830874][T15313] ? __pfx_lock_release+0x10/0x10 [ 524.835922][T15313] ? trace_lock_acquire+0x14e/0x1f0 [ 524.841139][T15313] ? tomoyo_mount_permission+0x149/0x420 [ 524.846784][T15313] ? lock_acquire+0x2f/0xb0 [ 524.851372][T15313] ? tomoyo_mount_permission+0x149/0x420 [ 524.857024][T15313] tomoyo_mount_permission+0x16e/0x420 [ 524.862502][T15313] ? tomoyo_mount_permission+0x149/0x420 [ 524.868150][T15313] ? __pfx_tomoyo_mount_permission+0x10/0x10 [ 524.874142][T15313] ? get_current_fs_domain+0x184/0x1f0 [ 524.879615][T15313] security_sb_mount+0x9b/0x260 [ 524.884480][T15313] path_mount+0x129/0x1f10 [ 524.888909][T15313] ? kmem_cache_free+0x152/0x4c0 [ 524.893854][T15313] ? __pfx_path_mount+0x10/0x10 [ 524.898718][T15313] ? putname+0x13c/0x180 [ 524.902987][T15313] __x64_sys_mount+0x294/0x320 [ 524.907946][T15313] ? __pfx___x64_sys_mount+0x10/0x10 [ 524.913293][T15313] do_syscall_64+0xcd/0x250 [ 524.917807][T15313] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 524.923709][T15313] RIP: 0033:0x7f2484b85d19 [ 524.928129][T15313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 524.947837][T15313] RSP: 002b:00007f248598b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 524.956257][T15313] RAX: ffffffffffffffda RBX: 00007f2484d76080 RCX: 00007f2484b85d19 [ 524.964243][T15313] RDX: 00000000200001c0 RSI: 00000000200000c0 RDI: 0000000000000000 [ 524.972217][T15313] RBP: 00007f248598b090 R08: 0000000000000000 R09: 0000000000000000 [ 524.980190][T15313] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 524.988160][T15313] R13: 0000000000000000 R14: 00007f2484d76080 R15: 00007fffdb937ac8 [ 524.996147][T15313] [ 525.157092][T15313] ERROR: Out of memory at tomoyo_realpath_from_path. [ 525.482243][T15319] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2636'. [ 528.899874][T15361] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2647'. [ 529.570866][T15395] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2656'. [ 530.212689][T15406] ima: policy update failed [ 530.242447][ T29] audit: type=1802 audit(4294967501.529:10): pid=15406 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2663" res=0 errno=0 [ 530.922731][T15425] FAULT_INJECTION: forcing a failure. [ 530.922731][T15425] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 530.956028][T15425] CPU: 1 UID: 0 PID: 15425 Comm: syz.5.2668 Not tainted 6.13.0-rc3-syzkaller #0 [ 530.965115][T15425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 530.975216][T15425] Call Trace: [ 530.978528][T15425] [ 530.981484][T15425] dump_stack_lvl+0x16c/0x1f0 [ 530.986210][T15425] should_fail_ex+0x497/0x5b0 [ 530.990936][T15425] _copy_from_user+0x2e/0xd0 [ 530.995573][T15425] copy_msghdr_from_user+0x99/0x160 [ 531.000819][T15425] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 531.006695][T15425] ___sys_sendmsg+0xff/0x1e0 [ 531.011328][T15425] ? __pfx____sys_sendmsg+0x10/0x10 [ 531.016570][T15425] ? __pfx_lock_release+0x10/0x10 [ 531.021604][T15425] ? trace_lock_acquire+0x14e/0x1f0 [ 531.026822][T15425] ? __fget_files+0x206/0x3a0 [ 531.031514][T15425] __sys_sendmsg+0x16e/0x220 [ 531.036123][T15425] ? __pfx___sys_sendmsg+0x10/0x10 [ 531.041270][T15425] do_syscall_64+0xcd/0x250 [ 531.045789][T15425] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 531.051704][T15425] RIP: 0033:0x7f2484b85d19 [ 531.056119][T15425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 531.075741][T15425] RSP: 002b:00007f248598b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 531.084170][T15425] RAX: ffffffffffffffda RBX: 00007f2484d76080 RCX: 00007f2484b85d19 [ 531.092157][T15425] RDX: 0000000000000004 RSI: 0000000020000100 RDI: 0000000000000003 [ 531.100134][T15425] RBP: 00007f248598b090 R08: 0000000000000000 R09: 0000000000000000 [ 531.108131][T15425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 531.116130][T15425] R13: 0000000000000000 R14: 00007f2484d76080 R15: 00007fffdb937ac8 [ 531.124135][T15425] [ 532.291847][T15445] netlink: 'syz.4.2674': attribute type 1 has an invalid length. [ 532.688156][T15455] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2677'. [ 532.768590][T15458] FAULT_INJECTION: forcing a failure. [ 532.768590][T15458] name failslab, interval 1, probability 0, space 0, times 0 [ 532.805891][T15458] CPU: 0 UID: 0 PID: 15458 Comm: syz.5.2678 Not tainted 6.13.0-rc3-syzkaller #0 [ 532.814984][T15458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 532.825071][T15458] Call Trace: [ 532.828371][T15458] [ 532.831331][T15458] dump_stack_lvl+0x16c/0x1f0 [ 532.836048][T15458] should_fail_ex+0x497/0x5b0 [ 532.840781][T15458] ? fs_reclaim_acquire+0xae/0x150 [ 532.845930][T15458] should_failslab+0xc2/0x120 [ 532.850645][T15458] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 532.856054][T15458] ? __pfx_mark_lock+0x10/0x10 [ 532.860876][T15458] ? ptlock_alloc+0x1f/0x70 [ 532.865423][T15458] ptlock_alloc+0x1f/0x70 [ 532.869796][T15458] pte_alloc_one+0x74/0x390 [ 532.874337][T15458] do_pte_missing+0x1ae7/0x3e00 [ 532.879228][T15458] __handle_mm_fault+0x103c/0x2a40 [ 532.884365][T15458] ? __pfx___handle_mm_fault+0x10/0x10 [ 532.889837][T15458] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 532.895490][T15458] ? find_vma+0xc0/0x140 [ 532.899736][T15458] ? __pfx_find_vma+0x10/0x10 [ 532.904429][T15458] handle_mm_fault+0x3fa/0xaa0 [ 532.909220][T15458] do_user_addr_fault+0x7a3/0x13f0 [ 532.914358][T15458] exc_page_fault+0x5c/0xc0 [ 532.918873][T15458] asm_exc_page_fault+0x26/0x30 [ 532.923734][T15458] RIP: 0010:__get_user_1+0x1a/0x30 [ 532.928857][T15458] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 ba 00 f0 ff ff ff 7f 00 00 48 39 c2 48 19 d2 48 09 d0 0f 01 cb <0f> b6 10 31 c0 0f 01 ca c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 [ 532.948474][T15458] RSP: 0018:ffffc9000586fcc0 EFLAGS: 00050246 [ 532.954563][T15458] RAX: 0000000000000000 RBX: ffff888035597800 RCX: ffffc9000586fc28 [ 532.962553][T15458] RDX: 0000000000000000 RSI: ffffffff8761a495 RDI: ffffffff8bb16bc0 [ 532.970549][T15458] RBP: 0000000000000000 R08: 0000000000000000 R09: fffffbfff2039b32 [ 532.978528][T15458] R10: ffffffff901cd997 R11: 0000000000000000 R12: dffffc0000000000 [ 532.986511][T15458] R13: 0000000000000000 R14: 0000000000000000 R15: 000000000000ffd8 [ 532.994500][T15458] ? mousedev_write+0x175/0x820 [ 532.999376][T15458] mousedev_write+0x182/0x820 [ 533.004068][T15458] ? security_file_permission+0x71/0x210 [ 533.009710][T15458] ? __pfx_mousedev_write+0x10/0x10 [ 533.014923][T15458] vfs_write+0x24c/0x1150 [ 533.019263][T15458] ? __fget_files+0x1fc/0x3a0 [ 533.023948][T15458] ? __pfx_lock_release+0x10/0x10 [ 533.028975][T15458] ? __pfx_vfs_write+0x10/0x10 [ 533.033750][T15458] ? lock_acquire+0x2f/0xb0 [ 533.038255][T15458] ? __fget_files+0x40/0x3a0 [ 533.042855][T15458] ? __fget_files+0x206/0x3a0 [ 533.047547][T15458] ksys_write+0x207/0x250 [ 533.051882][T15458] ? __pfx_ksys_write+0x10/0x10 [ 533.056749][T15458] do_syscall_64+0xcd/0x250 [ 533.061263][T15458] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 533.067163][T15458] RIP: 0033:0x7f2484b85d19 [ 533.071586][T15458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 533.091204][T15458] RSP: 002b:00007f24859ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 533.099627][T15458] RAX: ffffffffffffffda RBX: 00007f2484d75fa0 RCX: 00007f2484b85d19 [ 533.107599][T15458] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 533.115572][T15458] RBP: 00007f24859ac090 R08: 0000000000000000 R09: 0000000000000000 [ 533.123547][T15458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 533.131520][T15458] R13: 0000000000000000 R14: 00007f2484d75fa0 R15: 00007fffdb937ac8 [ 533.139508][T15458] [ 533.668400][T15472] svc: failed to register nfsdv3 RPC service (errno 111). [ 533.691428][T15472] svc: failed to register nfsaclv3 RPC service (errno 111). [ 534.234873][T15423] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2666'. [ 534.282066][T15478] FAULT_INJECTION: forcing a failure. [ 534.282066][T15478] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 534.327449][T15478] CPU: 1 UID: 0 PID: 15478 Comm: syz.5.2683 Not tainted 6.13.0-rc3-syzkaller #0 [ 534.336539][T15478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 534.346634][T15478] Call Trace: [ 534.349937][T15478] [ 534.352883][T15478] dump_stack_lvl+0x16c/0x1f0 [ 534.357600][T15478] should_fail_ex+0x497/0x5b0 [ 534.362319][T15478] _copy_from_user+0x2e/0xd0 [ 534.366953][T15478] __sys_bpf+0x215/0x57a0 [ 534.371333][T15478] ? __pfx_lock_release+0x10/0x10 [ 534.376403][T15478] ? __pfx___sys_bpf+0x10/0x10 [ 534.381204][T15478] ? vfs_write+0x306/0x1150 [ 534.385754][T15478] ? __mutex_unlock_slowpath+0x164/0x690 [ 534.391433][T15478] ? fput+0x67/0x440 [ 534.395785][T15478] ? ksys_write+0x1ba/0x250 [ 534.400304][T15478] ? __pfx_ksys_write+0x10/0x10 [ 534.405174][T15478] __x64_sys_bpf+0x78/0xc0 [ 534.409599][T15478] ? lockdep_hardirqs_on+0x7c/0x110 [ 534.414815][T15478] do_syscall_64+0xcd/0x250 [ 534.419343][T15478] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 534.425249][T15478] RIP: 0033:0x7f2484b85d19 [ 534.429668][T15478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 534.449284][T15478] RSP: 002b:00007f24859ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 534.457708][T15478] RAX: ffffffffffffffda RBX: 00007f2484d75fa0 RCX: 00007f2484b85d19 [ 534.465686][T15478] RDX: 00000000000000a3 RSI: 0000000020000000 RDI: 0000000000000000 [ 534.473664][T15478] RBP: 00007f24859ac090 R08: 0000000000000000 R09: 0000000000000000 [ 534.481641][T15478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 534.489619][T15478] R13: 0000000000000000 R14: 00007f2484d75fa0 R15: 00007fffdb937ac8 [ 534.497619][T15478] [ 534.531886][T15482] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2685'. [ 534.552660][T15484] netlink: 'syz.1.2684': attribute type 1 has an invalid length. [ 534.977354][T15494] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2689'. [ 535.101468][T15494] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2689'. [ 535.341572][T15510] netlink: 'syz.1.2694': attribute type 1 has an invalid length. [ 536.059618][T15531] FAULT_INJECTION: forcing a failure. [ 536.059618][T15531] name failslab, interval 1, probability 0, space 0, times 0 [ 536.063897][T15532] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2706'. [ 536.089977][T15532] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 536.099516][T15532] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 536.120069][T15532] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 536.136419][T15531] CPU: 0 UID: 0 PID: 15531 Comm: syz.0.2699 Not tainted 6.13.0-rc3-syzkaller #0 [ 536.145584][T15531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 536.155660][T15531] Call Trace: [ 536.158953][T15531] [ 536.161905][T15531] dump_stack_lvl+0x16c/0x1f0 [ 536.166607][T15531] should_fail_ex+0x497/0x5b0 [ 536.171300][T15531] ? fs_reclaim_acquire+0xae/0x150 [ 536.176426][T15531] should_failslab+0xc2/0x120 [ 536.181121][T15531] __kmalloc_noprof+0xce/0x4f0 [ 536.185899][T15531] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 536.191530][T15531] ? tomoyo_realpath_from_path+0xbf/0x710 [ 536.197262][T15531] tomoyo_realpath_from_path+0xbf/0x710 [ 536.202818][T15531] ? tomoyo_path_number_perm+0x235/0x5b0 [ 536.208469][T15531] tomoyo_path_number_perm+0x248/0x5b0 [ 536.213936][T15531] ? tomoyo_path_number_perm+0x235/0x5b0 [ 536.219583][T15531] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 536.225607][T15531] ? __pfx_lock_release+0x10/0x10 [ 536.230631][T15531] ? trace_lock_acquire+0x14e/0x1f0 [ 536.235849][T15531] ? lock_acquire+0x2f/0xb0 [ 536.240378][T15531] ? __fget_files+0x40/0x3a0 [ 536.244978][T15531] ? __fget_files+0x206/0x3a0 [ 536.249668][T15531] security_file_ioctl+0x9b/0x240 [ 536.254708][T15531] __x64_sys_ioctl+0xb7/0x200 [ 536.259404][T15531] do_syscall_64+0xcd/0x250 [ 536.263920][T15531] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 536.269823][T15531] RIP: 0033:0x7f0e57d85d19 [ 536.274250][T15531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 536.293868][T15531] RSP: 002b:00007f0e58bec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 536.302288][T15531] RAX: ffffffffffffffda RBX: 00007f0e57f75fa0 RCX: 00007f0e57d85d19 [ 536.310262][T15531] RDX: 0000000020000000 RSI: 000000004028700f RDI: 0000000000000003 [ 536.318235][T15531] RBP: 00007f0e58bec090 R08: 0000000000000000 R09: 0000000000000000 [ 536.326644][T15531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 536.334618][T15531] R13: 0000000000000000 R14: 00007f0e57f75fa0 R15: 00007ffcf8d341d8 [ 536.342607][T15531] [ 536.346443][T15532] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 536.362385][T15531] ERROR: Out of memory at tomoyo_realpath_from_path. [ 536.860877][T15540] netlink: 122 bytes leftover after parsing attributes in process `syz.1.2701'. [ 536.914624][T15540] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2701'. [ 536.957815][T15548] openvswitch: netlink: ct_state flags 05001eac unsupported [ 537.817874][T15575] svc: failed to register nfsdv3 RPC service (errno 111). [ 537.863408][T15575] svc: failed to register nfsaclv3 RPC service (errno 111). [ 538.915070][T15603] netlink: 122 bytes leftover after parsing attributes in process `syz.4.2722'. [ 539.043912][T15597] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2722'. [ 539.187387][T15614] netlink: 'syz.1.2725': attribute type 1 has an invalid length. [ 540.258230][T15617] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2726'. [ 540.272105][T15617] netdevsim netdevsim4 netdevsim2: entered allmulticast mode [ 542.719328][T15704] netlink: 122 bytes leftover after parsing attributes in process `syz.5.2747'. [ 542.749130][T15704] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2747'. [ 543.473009][T15718] svc: failed to register nfsdv3 RPC service (errno 111). [ 543.488973][T15718] svc: failed to register nfsaclv3 RPC service (errno 111). [ 544.103370][T15744] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2759'. [ 547.041165][T15826] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2781'. [ 548.481659][T15845] dyndbg: bad flag-op ^, at start of ^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@ [ 548.521582][T15845] dyndbg: flags parse failed [ 549.043939][T15854] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2787'. [ 549.072887][T15854] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2787'. [ 554.811152][T15945] HfR: entered promiscuous mode [ 554.826356][T15946] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2807'. [ 554.950591][T15946] HfR: left promiscuous mode [ 556.692409][T15964] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2815'. [ 556.792400][T15964] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2815'. [ 557.357233][T15984] FAULT_INJECTION: forcing a failure. [ 557.357233][T15984] name failslab, interval 1, probability 0, space 0, times 0 [ 557.410824][T15984] CPU: 0 UID: 0 PID: 15984 Comm: syz.5.2817 Not tainted 6.13.0-rc3-syzkaller #0 [ 557.419928][T15984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 557.430016][T15984] Call Trace: [ 557.433311][T15984] [ 557.436264][T15984] dump_stack_lvl+0x16c/0x1f0 [ 557.440979][T15984] should_fail_ex+0x497/0x5b0 [ 557.445690][T15984] ? fs_reclaim_acquire+0xae/0x150 [ 557.450838][T15984] should_failslab+0xc2/0x120 [ 557.455554][T15984] __kmalloc_cache_noprof+0x68/0x420 [ 557.460877][T15984] ? __pfx_lock_release+0x10/0x10 [ 557.465935][T15984] raw_ioctl+0x7ba/0x2a50 [ 557.470309][T15984] ? __pfx_raw_ioctl+0x10/0x10 [ 557.475111][T15984] ? __fget_files+0x206/0x3a0 [ 557.479824][T15984] ? __pfx_raw_ioctl+0x10/0x10 [ 557.484630][T15984] __x64_sys_ioctl+0x190/0x200 [ 557.489438][T15984] do_syscall_64+0xcd/0x250 [ 557.493990][T15984] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 557.499921][T15984] RIP: 0033:0x7f2484b85d19 [ 557.504361][T15984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 557.524003][T15984] RSP: 002b:00007f24859ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 557.532460][T15984] RAX: ffffffffffffffda RBX: 00007f2484d75fa0 RCX: 00007f2484b85d19 [ 557.540469][T15984] RDX: 0000000000000000 RSI: 0000000083c0550b RDI: 0000000000000003 [ 557.548489][T15984] RBP: 00007f24859ac090 R08: 0000000000000000 R09: 0000000000000000 [ 557.556505][T15984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 557.564524][T15984] R13: 0000000000000000 R14: 00007f2484d75fa0 R15: 00007fffdb937ac8 [ 557.572543][T15984] [ 558.004700][T15994] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2819'. [ 561.415274][T16037] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2830'. [ 562.608130][T16042] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2832'. [ 563.272770][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.286042][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 564.224861][T16087] HfR: entered promiscuous mode [ 564.255553][T16087] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2842'. [ 564.296115][T16087] HfR: left promiscuous mode [ 565.382589][T16120] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2851'. [ 566.225176][T16143] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2857'. [ 566.265099][T16144] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2857'. [ 566.397719][T16143] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 566.407238][T16143] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 568.472855][T16182] program syz.5.2868 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 568.604687][T16186] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2870'. [ 568.858769][T16195] FAULT_INJECTION: forcing a failure. [ 568.858769][T16195] name failslab, interval 1, probability 0, space 0, times 0 [ 568.896041][T16195] CPU: 0 UID: 0 PID: 16195 Comm: syz.5.2873 Not tainted 6.13.0-rc3-syzkaller #0 [ 568.905148][T16195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 568.915220][T16195] Call Trace: [ 568.918503][T16195] [ 568.921435][T16195] dump_stack_lvl+0x16c/0x1f0 [ 568.926133][T16195] should_fail_ex+0x497/0x5b0 [ 568.930827][T16195] should_failslab+0xc2/0x120 [ 568.935514][T16195] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 568.940904][T16195] ? skb_clone+0x190/0x3f0 [ 568.945337][T16195] skb_clone+0x190/0x3f0 [ 568.949591][T16195] netlink_deliver_tap+0xafd/0xca0 [ 568.954721][T16195] netlink_unicast+0x6b4/0x7f0 [ 568.959491][T16195] ? __pfx_netlink_unicast+0x10/0x10 [ 568.964778][T16195] ? genl_rcv_msg+0x4bd/0x800 [ 568.969472][T16195] netlink_ack+0x6a5/0xb20 [ 568.973903][T16195] netlink_rcv_skb+0x327/0x410 [ 568.978673][T16195] ? __pfx_genl_rcv_msg+0x10/0x10 [ 568.983706][T16195] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 568.989025][T16195] ? down_read+0xc9/0x330 [ 568.993375][T16195] ? __pfx_down_read+0x10/0x10 [ 568.998182][T16195] ? netlink_deliver_tap+0x1ae/0xca0 [ 569.003501][T16195] genl_rcv+0x28/0x40 [ 569.007497][T16195] netlink_unicast+0x53c/0x7f0 [ 569.012274][T16195] ? __pfx_netlink_unicast+0x10/0x10 [ 569.017567][T16195] ? __phys_addr_symbol+0x30/0x80 [ 569.022600][T16195] ? __check_object_size+0x488/0x710 [ 569.027899][T16195] netlink_sendmsg+0x8b8/0xd70 [ 569.032846][T16195] ? __pfx_netlink_sendmsg+0x10/0x10 [ 569.038149][T16195] ____sys_sendmsg+0x9ae/0xb40 [ 569.042920][T16195] ? copy_msghdr_from_user+0x10b/0x160 [ 569.048395][T16195] ? __pfx_____sys_sendmsg+0x10/0x10 [ 569.053698][T16195] ___sys_sendmsg+0x135/0x1e0 [ 569.058396][T16195] ? __pfx____sys_sendmsg+0x10/0x10 [ 569.063616][T16195] ? __pfx_lock_release+0x10/0x10 [ 569.068650][T16195] ? trace_lock_acquire+0x14e/0x1f0 [ 569.073865][T16195] ? __fget_files+0x206/0x3a0 [ 569.078556][T16195] __sys_sendmsg+0x16e/0x220 [ 569.083161][T16195] ? __pfx___sys_sendmsg+0x10/0x10 [ 569.088297][T16195] do_syscall_64+0xcd/0x250 [ 569.092816][T16195] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 569.098718][T16195] RIP: 0033:0x7f2484b85d19 [ 569.103137][T16195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 569.122767][T16195] RSP: 002b:00007f24859ac038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 569.131202][T16195] RAX: ffffffffffffffda RBX: 00007f2484d75fa0 RCX: 00007f2484b85d19 [ 569.139184][T16195] RDX: 0000000000000000 RSI: 0000000020006200 RDI: 0000000000000003 [ 569.147164][T16195] RBP: 00007f24859ac090 R08: 0000000000000000 R09: 0000000000000000 [ 569.155138][T16195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 569.163111][T16195] R13: 0000000000000000 R14: 00007f2484d75fa0 R15: 00007fffdb937ac8 [ 569.171102][T16195] [ 569.329852][T16202] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2872'. [ 569.515560][T16205] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2875'. [ 569.816198][T16217] Process accounting resumed [ 570.462351][T16230] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2880'. [ 570.766146][T16254] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2881'. [ 570.813444][T16257] FAULT_INJECTION: forcing a failure. [ 570.813444][T16257] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 570.870873][T16257] CPU: 0 UID: 0 PID: 16257 Comm: syz.1.2882 Not tainted 6.13.0-rc3-syzkaller #0 [ 570.879973][T16257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 570.890053][T16257] Call Trace: [ 570.893349][T16257] [ 570.896299][T16257] dump_stack_lvl+0x16c/0x1f0 [ 570.901014][T16257] should_fail_ex+0x497/0x5b0 [ 570.905726][T16257] _copy_from_user+0x2e/0xd0 [ 570.910344][T16257] copy_msghdr_from_user+0x99/0x160 [ 570.915558][T16257] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 570.921375][T16257] ? __lock_acquire+0xcc5/0x3c40 [ 570.926339][T16257] ___sys_sendmsg+0xff/0x1e0 [ 570.930952][T16257] ? __pfx____sys_sendmsg+0x10/0x10 [ 570.936169][T16257] ? trace_lock_acquire+0x14e/0x1f0 [ 570.941393][T16257] __sys_sendmmsg+0x201/0x420 [ 570.946087][T16257] ? __pfx___sys_sendmmsg+0x10/0x10 [ 570.951303][T16257] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 570.957299][T16257] ? fput+0x67/0x440 [ 570.961205][T16257] ? ksys_write+0x1ba/0x250 [ 570.965710][T16257] ? __pfx_ksys_write+0x10/0x10 [ 570.970569][T16257] __x64_sys_sendmmsg+0x9c/0x100 [ 570.975520][T16257] ? lockdep_hardirqs_on+0x7c/0x110 [ 570.980762][T16257] do_syscall_64+0xcd/0x250 [ 570.985295][T16257] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.991206][T16257] RIP: 0033:0x7fe313f85d19 [ 570.995633][T16257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 571.015255][T16257] RSP: 002b:00007fe311df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 571.023676][T16257] RAX: ffffffffffffffda RBX: 00007fe314175fa0 RCX: 00007fe313f85d19 [ 571.031652][T16257] RDX: 0000000000000007 RSI: 0000000020000200 RDI: 0000000000000003 [ 571.039625][T16257] RBP: 00007fe311df6090 R08: 0000000000000000 R09: 0000000000000000 [ 571.047598][T16257] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 571.055570][T16257] R13: 0000000000000000 R14: 00007fe314175fa0 R15: 00007fffb4c8c288 [ 571.063552][T16257] [ 571.385536][T16265] FAULT_INJECTION: forcing a failure. [ 571.385536][T16265] name failslab, interval 1, probability 0, space 0, times 0 [ 571.408706][T16265] CPU: 1 UID: 0 PID: 16265 Comm: syz.1.2885 Not tainted 6.13.0-rc3-syzkaller #0 [ 571.417803][T16265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 571.427897][T16265] Call Trace: [ 571.431197][T16265] [ 571.434153][T16265] dump_stack_lvl+0x16c/0x1f0 [ 571.438877][T16265] should_fail_ex+0x497/0x5b0 [ 571.443596][T16265] ? fs_reclaim_acquire+0xae/0x150 [ 571.448744][T16265] should_failslab+0xc2/0x120 [ 571.453458][T16265] __kmalloc_noprof+0xce/0x4f0 [ 571.458260][T16265] ? tomoyo_encode2+0x100/0x3e0 [ 571.463148][T16265] tomoyo_encode2+0x100/0x3e0 [ 571.467873][T16265] tomoyo_realpath_from_path+0x1a7/0x710 [ 571.473548][T16265] ? tomoyo_path_number_perm+0x235/0x5b0 [ 571.479233][T16265] tomoyo_path_number_perm+0x248/0x5b0 [ 571.484736][T16265] ? tomoyo_path_number_perm+0x235/0x5b0 [ 571.490413][T16265] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 571.496436][T16265] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 571.502138][T16265] ? do_raw_spin_unlock+0x172/0x230 [ 571.507377][T16265] security_file_ioctl+0x9b/0x240 [ 571.512430][T16265] __x64_sys_ioctl+0xb7/0x200 [ 571.517161][T16265] do_syscall_64+0xcd/0x250 [ 571.521704][T16265] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 571.527631][T16265] RIP: 0033:0x7fe313f85d19 [ 571.532083][T16265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 571.551728][T16265] RSP: 002b:00007fe311dd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 571.560200][T16265] RAX: ffffffffffffffda RBX: 00007fe314176080 RCX: 00007fe313f85d19 [ 571.568208][T16265] RDX: 0000000000000004 RSI: 0000000000008983 RDI: 0000000000000001 [ 571.576214][T16265] RBP: 00007fe311dd5090 R08: 0000000000000000 R09: 0000000000000000 [ 571.584228][T16265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 571.592325][T16265] R13: 0000000000000000 R14: 00007fe314176080 R15: 00007fffb4c8c288 [ 571.600353][T16265] [ 571.627348][T16265] ERROR: Out of memory at tomoyo_realpath_from_path. [ 572.222930][T16274] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2887'. [ 572.451814][T16272] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2886'. [ 573.884101][T16294] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2892'. [ 575.830784][T16324] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 575.858397][T16324] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 575.879540][T16330] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2902'. [ 575.926064][T16324] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 575.958181][T16324] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 576.009815][T16339] nl80211: entered promiscuous mode [ 577.905930][T15028] Bluetooth: hci4: command 0x0406 tx timeout [ 577.912060][T15028] Bluetooth: hci3: command 0x0c1a tx timeout [ 577.952397][T16373] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2913'. [ 577.976026][T15028] Bluetooth: hci0: command 0x0c1a tx timeout [ 577.982119][ T5835] Bluetooth: hci2: command 0x0c1a tx timeout [ 578.046481][T16373] veth1_macvtap: entered allmulticast mode [ 578.096298][T16377] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2913'. [ 580.847670][T16418] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2923'. [ 581.056535][T16447] FAULT_INJECTION: forcing a failure. [ 581.056535][T16447] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 581.106306][T16447] CPU: 0 UID: 0 PID: 16447 Comm: syz.5.2928 Not tainted 6.13.0-rc3-syzkaller #0 [ 581.115411][T16447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 581.125501][T16447] Call Trace: [ 581.128806][T16447] [ 581.131751][T16447] dump_stack_lvl+0x16c/0x1f0 [ 581.136470][T16447] should_fail_ex+0x497/0x5b0 [ 581.141195][T16447] _copy_from_user+0x2e/0xd0 [ 581.145830][T16447] copy_msghdr_from_user+0x99/0x160 [ 581.151115][T16447] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 581.157028][T16447] ___sys_sendmsg+0xff/0x1e0 [ 581.161667][T16447] ? __pfx____sys_sendmsg+0x10/0x10 [ 581.166923][T16447] ? __pfx_lock_release+0x10/0x10 [ 581.171984][T16447] ? trace_lock_acquire+0x14e/0x1f0 [ 581.177238][T16447] ? __fget_files+0x206/0x3a0 [ 581.181967][T16447] __sys_sendmsg+0x16e/0x220 [ 581.186599][T16447] ? __pfx___sys_sendmsg+0x10/0x10 [ 581.191771][T16447] do_syscall_64+0xcd/0x250 [ 581.196316][T16447] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 581.202249][T16447] RIP: 0033:0x7f2484b85d19 [ 581.206702][T16447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 581.226347][T16447] RSP: 002b:00007f24859ac038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 581.234802][T16447] RAX: ffffffffffffffda RBX: 00007f2484d75fa0 RCX: 00007f2484b85d19 [ 581.242815][T16447] RDX: 0000000004000000 RSI: 0000000020000180 RDI: 0000000000000015 [ 581.250830][T16447] RBP: 00007f24859ac090 R08: 0000000000000000 R09: 0000000000000000 [ 581.258843][T16447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 581.266895][T16447] R13: 0000000000000000 R14: 00007f2484d75fa0 R15: 00007fffdb937ac8 [ 581.274920][T16447] [ 581.543445][T16456] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2931'. [ 582.098669][T16467] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2934'. [ 582.121681][T16467] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2934'. [ 582.413694][T16474] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2936'. [ 582.426812][T16474] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2936'. [ 582.821810][T16482] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2945'. [ 582.870864][T16485] netlink: 'syz.1.2939': attribute type 11 has an invalid length. [ 583.011003][T16493] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2940'. [ 583.794392][T16509] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2946'. [ 583.830505][T16509] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2946'. [ 586.997959][T16537] __nla_validate_parse: 1 callbacks suppressed [ 586.997980][T16537] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2951'. [ 587.041624][T16537] veth1_macvtap: entered allmulticast mode [ 587.067157][T16537] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2951'. [ 587.505941][T16559] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2958'. [ 589.169031][T16596] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2969'. [ 590.902656][T16639] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2980'. [ 590.934267][T16639] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2980'. [ 591.438355][T16653] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2983'. [ 591.895845][T16664] netlink: 'syz.1.2986': attribute type 33 has an invalid length. [ 591.904093][T16664] netlink: 322 bytes leftover after parsing attributes in process `syz.1.2986'. [ 592.395607][T16674] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 593.882675][ T5835] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 593.892682][ T5835] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 593.901838][ T5835] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 593.911407][ T5835] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 593.926004][ T5835] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 593.935381][ T5835] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 594.147343][T16701] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2999'. [ 594.467149][T16705] chnl_net:caif_netlink_parms(): no params data found [ 594.824974][T16720] vivid-013: ================= START STATUS ================= [ 594.885220][T16720] vivid-013: Generate PTS: true [ 594.911267][T16705] bridge0: port 1(bridge_slave_0) entered blocking state [ 594.939722][T16705] bridge0: port 1(bridge_slave_0) entered disabled state [ 594.948376][T16720] vivid-013: Generate SCR: true [ 594.953300][T16720] tpg source WxH: 640x360 (Y'CbCr) [ 594.976196][T16705] bridge_slave_0: entered allmulticast mode [ 594.992159][T16705] bridge_slave_0: entered promiscuous mode [ 595.010494][T16720] tpg field: 1 [ 595.013927][T16720] tpg crop: 640x360@0x0 [ 595.019200][T16705] bridge0: port 2(bridge_slave_1) entered blocking state [ 595.025333][T16720] tpg compose: 640x360@0x0 [ 595.026589][ T29] audit: type=1800 audit(4294967566.309:11): pid=16730 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3003" name="lu_gp_id" dev="configfs" ino=54976 res=0 errno=0 [ 595.031039][T16720] tpg colorspace: 8 [ 595.060874][T16720] tpg transfer function: 0/0 [ 595.071892][T16705] bridge0: port 2(bridge_slave_1) entered disabled state [ 595.075925][T16720] tpg Y'CbCr encoding: 0/0 [ 595.094081][T16720] tpg quantization: 0/0 [ 595.097271][T16705] bridge_slave_1: entered allmulticast mode [ 595.098943][T16720] tpg RGB range: 0/2 [ 595.105255][T16705] bridge_slave_1: entered promiscuous mode [ 595.126210][T16720] vivid-013: ================== END STATUS ================== [ 595.182848][T16705] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 595.207764][T16705] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 595.259828][T16705] team0: Port device team_slave_0 added [ 595.282966][T16705] team0: Port device team_slave_1 added [ 595.468213][T16741] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3006'. [ 595.497332][T16741] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3006'. [ 595.551401][T16745] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3006'. [ 595.570143][T16705] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 595.604683][T16705] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 595.668112][T16705] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 595.702005][T16705] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 595.711740][T16705] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 595.775892][T16705] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 595.929461][T16705] hsr_slave_0: entered promiscuous mode [ 595.946312][T16705] hsr_slave_1: entered promiscuous mode [ 595.974514][T16705] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 595.982493][ T5835] Bluetooth: hci1: command tx timeout [ 596.012676][T16705] Cannot create hsr debugfs directory [ 596.739966][T16705] 8021q: adding VLAN 0 to HW filter on device bond0 [ 596.812414][T16705] 8021q: adding VLAN 0 to HW filter on device team0 [ 596.860386][T16249] bridge0: port 1(bridge_slave_0) entered blocking state [ 596.867627][T16249] bridge0: port 1(bridge_slave_0) entered forwarding state [ 596.880060][T16249] bridge0: port 2(bridge_slave_1) entered blocking state [ 596.887264][T16249] bridge0: port 2(bridge_slave_1) entered forwarding state [ 597.272451][T16705] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 597.803259][T16705] veth0_vlan: entered promiscuous mode [ 597.838726][T16705] veth1_vlan: entered promiscuous mode [ 597.856410][T16791] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3016'. [ 597.924944][T16705] veth0_macvtap: entered promiscuous mode [ 597.954808][T16705] veth1_macvtap: entered promiscuous mode [ 597.971477][T16797] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3017'. [ 597.972854][T16796] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3018'. [ 597.987200][T16788] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3016'. [ 598.013946][T16705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 598.049613][T16705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 598.065910][ T5835] Bluetooth: hci1: command tx timeout [ 598.080523][T16705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 598.094540][T16705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 598.107186][T16705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 598.135337][T16705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 598.169218][T16705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 598.187692][T16705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 598.203649][T16705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 598.218494][T16705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 598.237819][T16705] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 598.272317][T16705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 598.291634][T16705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 598.303809][T16705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 598.321892][T16705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 598.333604][T16705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 598.352564][T16705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 598.364289][T16705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 598.382082][T16705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 598.397206][T16705] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 598.593795][T16247] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 598.612127][T16247] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 598.675315][T16248] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 598.684107][T16248] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 599.244355][T16804] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3027'. [ 599.264374][T16804] ipvlan0: entered allmulticast mode [ 599.288987][T16804] veth0_vlan: entered allmulticast mode [ 599.337252][T16815] FAULT_INJECTION: forcing a failure. [ 599.337252][T16815] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 599.383685][T16815] CPU: 0 UID: 0 PID: 16815 Comm: syz.5.3023 Not tainted 6.13.0-rc3-syzkaller #0 [ 599.392772][T16815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 599.402868][T16815] Call Trace: [ 599.406174][T16815] [ 599.409122][T16815] dump_stack_lvl+0x16c/0x1f0 [ 599.413843][T16815] should_fail_ex+0x497/0x5b0 [ 599.418583][T16815] _copy_from_user+0x2e/0xd0 [ 599.423207][T16815] move_addr_to_kernel+0x68/0x160 [ 599.428254][T16815] __sys_bind+0x11c/0x260 [ 599.432593][T16815] ? __pfx___sys_bind+0x10/0x10 [ 599.437478][T16815] ? __pfx_ksys_write+0x10/0x10 [ 599.442344][T16815] __x64_sys_bind+0x72/0xb0 [ 599.446853][T16815] ? lockdep_hardirqs_on+0x7c/0x110 [ 599.452066][T16815] do_syscall_64+0xcd/0x250 [ 599.456581][T16815] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 599.462482][T16815] RIP: 0033:0x7f2484b85d19 [ 599.466896][T16815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 599.486513][T16815] RSP: 002b:00007f24859ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 599.495022][T16815] RAX: ffffffffffffffda RBX: 00007f2484d75fa0 RCX: 00007f2484b85d19 [ 599.503001][T16815] RDX: 000000000000006b RSI: 0000000000000000 RDI: 0000000000000003 [ 599.510974][T16815] RBP: 00007f24859ac090 R08: 0000000000000000 R09: 0000000000000000 [ 599.518945][T16815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 599.526916][T16815] R13: 0000000000000000 R14: 00007f2484d75fa0 R15: 00007fffdb937ac8 [ 599.534900][T16815] [ 600.136165][ T5835] Bluetooth: hci1: command tx timeout [ 600.263122][T16835] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3028'. [ 600.660715][T16842] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3030'. [ 601.748021][T16869] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3043'. [ 602.057593][T16876] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3037'. [ 602.233183][ T5835] Bluetooth: hci1: command tx timeout [ 602.320160][T16878] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3038'. [ 602.337777][T16878] ipvlan0: entered allmulticast mode [ 602.343606][T16878] veth0_vlan: entered allmulticast mode [ 602.975177][T16886] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3039'. [ 603.718158][T16897] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3041'. [ 604.065217][T16900] FAULT_INJECTION: forcing a failure. [ 604.065217][T16900] name failslab, interval 1, probability 0, space 0, times 0 [ 604.108611][T16900] CPU: 1 UID: 0 PID: 16900 Comm: syz.1.3046 Not tainted 6.13.0-rc3-syzkaller #0 [ 604.117704][T16900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 604.127791][T16900] Call Trace: [ 604.131107][T16900] [ 604.134067][T16900] dump_stack_lvl+0x16c/0x1f0 [ 604.138789][T16900] should_fail_ex+0x497/0x5b0 [ 604.143513][T16900] ? fs_reclaim_acquire+0xae/0x150 [ 604.148669][T16900] should_failslab+0xc2/0x120 [ 604.153397][T16900] __kmalloc_noprof+0xce/0x4f0 [ 604.158209][T16900] ? tomoyo_encode2+0x100/0x3e0 [ 604.163095][T16900] tomoyo_encode2+0x100/0x3e0 [ 604.167785][T16900] tomoyo_realpath_from_path+0x1a7/0x710 [ 604.173432][T16900] ? tomoyo_path_number_perm+0x235/0x5b0 [ 604.179085][T16900] tomoyo_path_number_perm+0x248/0x5b0 [ 604.184558][T16900] ? tomoyo_path_number_perm+0x235/0x5b0 [ 604.190212][T16900] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 604.196208][T16900] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 604.201892][T16900] security_file_ioctl+0x9b/0x240 [ 604.206925][T16900] __x64_sys_ioctl+0xb7/0x200 [ 604.211620][T16900] do_syscall_64+0xcd/0x250 [ 604.216484][T16900] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 604.222386][T16900] RIP: 0033:0x7fe313f85d19 [ 604.226805][T16900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 604.246438][T16900] RSP: 002b:00007fe311df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 604.254856][T16900] RAX: ffffffffffffffda RBX: 00007fe314175fa0 RCX: 00007fe313f85d19 [ 604.262838][T16900] RDX: 0000000000000000 RSI: 000000000000ff07 RDI: 0000000000000001 [ 604.270824][T16900] RBP: 00007fe311df6090 R08: 0000000000000000 R09: 0000000000000000 [ 604.278809][T16900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 604.286782][T16900] R13: 0000000000000000 R14: 00007fe314175fa0 R15: 00007fffb4c8c288 [ 604.294794][T16900] [ 604.297952][ C1] vkms_vblank_simulate: vblank timer overrun [ 604.343125][T16900] ERROR: Out of memory at tomoyo_realpath_from_path. [ 606.237415][T16935] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3056'. [ 606.773657][T16947] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3053'. [ 606.806746][T16947] ipvlan0: entered allmulticast mode [ 606.826842][T16947] veth0_vlan: entered allmulticast mode [ 608.163351][T16974] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3063'. [ 611.277523][T16989] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3069'. [ 613.442873][T17022] FAULT_INJECTION: forcing a failure. [ 613.442873][T17022] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 613.456366][T17022] CPU: 0 UID: 0 PID: 17022 Comm: syz.5.3078 Not tainted 6.13.0-rc3-syzkaller #0 [ 613.465441][T17022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 613.475530][T17022] Call Trace: [ 613.478834][T17022] [ 613.481792][T17022] dump_stack_lvl+0x16c/0x1f0 [ 613.486504][T17022] should_fail_ex+0x497/0x5b0 [ 613.491217][T17022] _copy_from_user+0x2e/0xd0 [ 613.495839][T17022] __sys_bpf+0x215/0x57a0 [ 613.500194][T17022] ? __pfx_lock_release+0x10/0x10 [ 613.505247][T17022] ? __pfx___sys_bpf+0x10/0x10 [ 613.510040][T17022] ? vfs_write+0x306/0x1150 [ 613.514580][T17022] ? __mutex_unlock_slowpath+0x164/0x690 [ 613.520266][T17022] ? fput+0x67/0x440 [ 613.524203][T17022] ? ksys_write+0x1ba/0x250 [ 613.528750][T17022] ? __pfx_ksys_write+0x10/0x10 [ 613.533641][T17022] __x64_sys_bpf+0x78/0xc0 [ 613.538092][T17022] ? lockdep_hardirqs_on+0x7c/0x110 [ 613.543324][T17022] do_syscall_64+0xcd/0x250 [ 613.547863][T17022] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 613.553799][T17022] RIP: 0033:0x7f2484b85d19 [ 613.558240][T17022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 613.577880][T17022] RSP: 002b:00007f24859ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 613.586340][T17022] RAX: ffffffffffffffda RBX: 00007f2484d75fa0 RCX: 00007f2484b85d19 [ 613.594356][T17022] RDX: 000000000000000e RSI: 00000000200001c0 RDI: 0000000000000014 [ 613.602361][T17022] RBP: 00007f24859ac090 R08: 0000000000000000 R09: 0000000000000000 [ 613.610368][T17022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 613.618378][T17022] R13: 0000000000000001 R14: 00007f2484d75fa0 R15: 00007fffdb937ac8 [ 613.626404][T17022] [ 613.971133][T17033] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3081'. [ 614.588650][T17050] FAULT_INJECTION: forcing a failure. [ 614.588650][T17050] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 614.614720][T17050] CPU: 0 UID: 0 PID: 17050 Comm: syz.0.3084 Not tainted 6.13.0-rc3-syzkaller #0 [ 614.623826][T17050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 614.633931][T17050] Call Trace: [ 614.637238][T17050] [ 614.640198][T17050] dump_stack_lvl+0x16c/0x1f0 [ 614.644922][T17050] should_fail_ex+0x497/0x5b0 [ 614.649678][T17050] _copy_to_user+0x32/0xd0 [ 614.654144][T17050] simple_read_from_buffer+0xd0/0x160 [ 614.659568][T17050] proc_fail_nth_read+0x198/0x270 [ 614.664644][T17050] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 614.670239][T17050] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 614.675833][T17050] vfs_read+0x1df/0xbe0 [ 614.680028][T17050] ? __fget_files+0x1fc/0x3a0 [ 614.684743][T17050] ? __pfx___mutex_lock+0x10/0x10 [ 614.689809][T17050] ? __pfx_vfs_read+0x10/0x10 [ 614.694531][T17050] ? __fget_files+0x206/0x3a0 [ 614.699250][T17050] ksys_read+0x12b/0x250 [ 614.703551][T17050] ? __pfx_ksys_read+0x10/0x10 [ 614.708364][T17050] do_syscall_64+0xcd/0x250 [ 614.712915][T17050] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 614.718848][T17050] RIP: 0033:0x7f0e57d8472c [ 614.723298][T17050] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 614.743209][T17050] RSP: 002b:00007f0e58bec030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 614.751759][T17050] RAX: ffffffffffffffda RBX: 00007f0e57f75fa0 RCX: 00007f0e57d8472c [ 614.759790][T17050] RDX: 000000000000000f RSI: 00007f0e58bec0a0 RDI: 0000000000000004 [ 614.767803][T17050] RBP: 00007f0e58bec090 R08: 0000000000000000 R09: 0000000000000000 [ 614.775813][T17050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 614.784264][T17050] R13: 0000000000000000 R14: 00007f0e57f75fa0 R15: 00007ffcf8d341d8 [ 614.792290][T17050] [ 616.407709][T17109] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3095'. [ 619.744977][T17159] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3107'. [ 624.120037][T17240] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3127'. [ 624.698277][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.705016][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.784981][T17257] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3134'. [ 624.812017][T17257] IPv6: NLM_F_CREATE should be specified when creating new route [ 624.835238][T17257] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 624.843254][T17257] IPv6: NLM_F_CREATE should be set when creating new route [ 624.850590][T17257] IPv6: NLM_F_CREATE should be set when creating new route [ 626.061715][T17280] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3139'. [ 627.066376][T17297] ================================================================== [ 627.074488][T17297] BUG: KASAN: slab-out-of-bounds in __rb_map_vma+0x9ab/0xae0 [ 627.081914][T17297] Read of size 8 at addr ffff88806982fff8 by task syz.0.3145/17297 [ 627.089845][T17297] [ 627.092188][T17297] CPU: 0 UID: 0 PID: 17297 Comm: syz.0.3145 Not tainted 6.13.0-rc3-syzkaller #0 [ 627.101258][T17297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 627.111374][T17297] Call Trace: [ 627.114676][T17297] [ 627.117630][T17297] dump_stack_lvl+0x116/0x1f0 [ 627.122345][T17297] print_report+0xc3/0x620 [ 627.126805][T17297] ? __virt_addr_valid+0x5e/0x590 [ 627.131849][T17297] ? __phys_addr+0xc6/0x150 [ 627.136364][T17297] kasan_report+0xd9/0x110 [ 627.140810][T17297] ? __rb_map_vma+0x9ab/0xae0 [ 627.145520][T17297] ? __rb_map_vma+0x9ab/0xae0 [ 627.150213][T17297] __rb_map_vma+0x9ab/0xae0 [ 627.154736][T17297] ? __pfx___rb_map_vma+0x10/0x10 [ 627.159790][T17297] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 627.165606][T17297] ring_buffer_map+0x56e/0x9b0 [ 627.170379][T17297] tracing_buffers_mmap+0xa6/0x120 [ 627.175503][T17297] __mmap_region+0x1786/0x2670 [ 627.180298][T17297] ? __pfx___lock_acquire+0x10/0x10 [ 627.185512][T17297] ? __pfx___mmap_region+0x10/0x10 [ 627.190673][T17297] ? hlock_class+0x4e/0x130 [ 627.195184][T17297] ? mark_lock+0xb5/0xc60 [ 627.199554][T17297] mmap_region+0x127/0x320 [ 627.203982][T17297] do_mmap+0xc00/0xfc0 [ 627.208059][T17297] vm_mmap_pgoff+0x1ba/0x360 [ 627.212659][T17297] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 627.217781][T17297] ? __fget_files+0x206/0x3a0 [ 627.222465][T17297] ksys_mmap_pgoff+0x32c/0x5c0 [ 627.227231][T17297] ? rcu_is_watching+0x12/0xc0 [ 627.232007][T17297] __x64_sys_mmap+0x125/0x190 [ 627.236686][T17297] do_syscall_64+0xcd/0x250 [ 627.241194][T17297] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 627.247096][T17297] RIP: 0033:0x7f0e57d85d19 [ 627.251511][T17297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 627.271124][T17297] RSP: 002b:00007f0e58bec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 627.279545][T17297] RAX: ffffffffffffffda RBX: 00007f0e57f75fa0 RCX: 00007f0e57d85d19 [ 627.287518][T17297] RDX: 0000000000000001 RSI: 000000000000401f RDI: 0000000020ffc000 [ 627.295489][T17297] RBP: 00007f0e57e01a20 R08: 0000000000000003 R09: 0000000001000000 [ 627.303458][T17297] R10: 000000000008e051 R11: 0000000000000246 R12: 0000000000000000 [ 627.311426][T17297] R13: 0000000000000000 R14: 00007f0e57f75fa0 R15: 00007ffcf8d341d8 [ 627.319405][T17297] [ 627.322417][T17297] [ 627.324729][T17297] Allocated by task 16998: [ 627.329138][T17297] kasan_save_stack+0x33/0x60 [ 627.333818][T17297] kasan_save_track+0x14/0x30 [ 627.338494][T17297] __kasan_kmalloc+0xaa/0xb0 [ 627.343083][T17297] __kmalloc_node_noprof+0x21f/0x520 [ 627.348371][T17297] __kvmalloc_node_noprof+0xad/0x1a0 [ 627.353656][T17297] unix_net_init+0x12b/0x350 [ 627.358248][T17297] ops_init+0x1df/0x5f0 [ 627.362410][T17297] setup_net+0x21f/0x860 [ 627.366655][T17297] copy_net_ns+0x2b4/0x6c0 [ 627.371075][T17297] create_new_namespaces+0x3ea/0xad0 [ 627.376364][T17297] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 627.382000][T17297] ksys_unshare+0x45d/0xa40 [ 627.386509][T17297] __x64_sys_unshare+0x31/0x40 [ 627.391278][T17297] do_syscall_64+0xcd/0x250 [ 627.395791][T17297] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 627.401698][T17297] [ 627.404014][T17297] Freed by task 16244: [ 627.408071][T17297] kasan_save_stack+0x33/0x60 [ 627.412753][T17297] kasan_save_track+0x14/0x30 [ 627.417430][T17297] kasan_save_free_info+0x3b/0x60 [ 627.422448][T17297] __kasan_slab_free+0x51/0x70 [ 627.427220][T17297] kfree+0x14f/0x4b0 [ 627.431122][T17297] kvfree+0x47/0x50 [ 627.434934][T17297] unix_net_exit+0x37/0xb0 [ 627.439354][T17297] ops_exit_list+0xb0/0x180 [ 627.443860][T17297] cleanup_net+0x5b7/0xbd0 [ 627.448282][T17297] process_one_work+0x958/0x1b30 [ 627.453226][T17297] worker_thread+0x6c8/0xf00 [ 627.457818][T17297] kthread+0x2c1/0x3a0 [ 627.461887][T17297] ret_from_fork+0x45/0x80 [ 627.466299][T17297] ret_from_fork_asm+0x1a/0x30 [ 627.471066][T17297] [ 627.473379][T17297] The buggy address belongs to the object at ffff88806982e000 [ 627.473379][T17297] which belongs to the cache kmalloc-4k of size 4096 [ 627.487442][T17297] The buggy address is located 4088 bytes to the right of [ 627.487442][T17297] allocated 4096-byte region [ffff88806982e000, ffff88806982f000) [ 627.502302][T17297] [ 627.504625][T17297] The buggy address belongs to the physical page: [ 627.511041][T17297] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x69828 [ 627.519808][T17297] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 627.528303][T17297] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 627.535847][T17297] page_type: f5(slab) [ 627.539858][T17297] raw: 00fff00000000040 ffff88801ac42140 ffffea000187c600 dead000000000002 [ 627.548446][T17297] raw: 0000000000000000 0000000080040004 00000001f5000000 0000000000000000 [ 627.557035][T17297] head: 00fff00000000040 ffff88801ac42140 ffffea000187c600 dead000000000002 [ 627.565703][T17297] head: 0000000000000000 0000000080040004 00000001f5000000 0000000000000000 [ 627.574371][T17297] head: 00fff00000000003 ffffea0001a60a01 ffffffffffffffff 0000000000000000 [ 627.583040][T17297] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000 [ 627.591707][T17297] page dumped because: kasan: bad access detected [ 627.598123][T17297] page_owner tracks the page as allocated [ 627.603827][T17297] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 16249, tgid 16249 (kworker/u8:21), ts 611697307786, free_ts 610717362068 [ 627.625030][T17297] post_alloc_hook+0x2d1/0x350 [ 627.629809][T17297] get_page_from_freelist+0xfce/0x2f80 [ 627.635273][T17297] __alloc_pages_noprof+0x223/0x25b0 [ 627.640564][T17297] alloc_pages_mpol_noprof+0x2c9/0x610 [ 627.646031][T17297] new_slab+0x2c9/0x410 [ 627.650185][T17297] ___slab_alloc+0xce2/0x1650 [ 627.654861][T17297] __slab_alloc.constprop.0+0x56/0xb0 [ 627.660236][T17297] __kmalloc_node_track_caller_noprof+0x2ee/0x520 [ 627.666653][T17297] kmalloc_reserve+0xef/0x2c0 [ 627.671330][T17297] __alloc_skb+0x164/0x380 [ 627.675745][T17297] nsim_dev_trap_report_work+0x2af/0xd20 [ 627.681393][T17297] process_one_work+0x958/0x1b30 [ 627.686342][T17297] worker_thread+0x6c8/0xf00 [ 627.690929][T17297] kthread+0x2c1/0x3a0 [ 627.694996][T17297] ret_from_fork+0x45/0x80 [ 627.699502][T17297] ret_from_fork_asm+0x1a/0x30 [ 627.704272][T17297] page last free pid 16975 tgid 16971 stack trace: [ 627.710763][T17297] free_unref_page+0x661/0x1080 [ 627.715621][T17297] qlist_free_all+0x4e/0x120 [ 627.720213][T17297] kasan_quarantine_reduce+0x195/0x1e0 [ 627.725674][T17297] __kasan_slab_alloc+0x69/0x90 [ 627.730533][T17297] kmem_cache_alloc_noprof+0x1c8/0x3b0 [ 627.736014][T17297] taskstats_exit+0x650/0xbe0 [ 627.740688][T17297] do_exit+0x84a/0x2d70 [ 627.744848][T17297] do_group_exit+0xd3/0x2a0 [ 627.749365][T17297] get_signal+0x2576/0x2610 [ 627.753866][T17297] arch_do_signal_or_restart+0x90/0x7e0 [ 627.759419][T17297] syscall_exit_to_user_mode+0x150/0x2a0 [ 627.765058][T17297] do_syscall_64+0xda/0x250 [ 627.769568][T17297] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 627.775473][T17297] [ 627.777788][T17297] Memory state around the buggy address: [ 627.783410][T17297] ffff88806982fe80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 627.791557][T17297] ffff88806982ff00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 627.799617][T17297] >ffff88806982ff80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 627.807692][T17297] ^ [ 627.815664][T17297] ffff888069830000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 627.823721][T17297] ffff888069830080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 627.831776][T17297] ================================================================== [ 628.144313][T17297] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 628.151575][T17297] CPU: 1 UID: 0 PID: 17297 Comm: syz.0.3145 Not tainted 6.13.0-rc3-syzkaller #0 [ 628.160632][T17297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 628.170714][T17297] Call Trace: [ 628.174013][T17297] [ 628.176960][T17297] dump_stack_lvl+0x3d/0x1f0 [ 628.181584][T17297] panic+0x71d/0x800 [ 628.185522][T17297] ? __pfx_panic+0x10/0x10 [ 628.189975][T17297] ? irqentry_exit+0x3b/0x90 [ 628.194593][T17297] ? lockdep_hardirqs_on+0x7c/0x110 [ 628.199827][T17297] ? preempt_schedule_thunk+0x1a/0x30 [ 628.205260][T17297] ? preempt_schedule_common+0x44/0xc0 [ 628.210758][T17297] check_panic_on_warn+0xab/0xb0 [ 628.215737][T17297] end_report+0x117/0x180 [ 628.220100][T17297] kasan_report+0xe9/0x110 [ 628.224641][T17297] ? __rb_map_vma+0x9ab/0xae0 [ 628.229355][T17297] ? __rb_map_vma+0x9ab/0xae0 [ 628.234083][T17297] __rb_map_vma+0x9ab/0xae0 [ 628.238625][T17297] ? __pfx___rb_map_vma+0x10/0x10 [ 628.243696][T17297] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 628.249538][T17297] ring_buffer_map+0x56e/0x9b0 [ 628.254340][T17297] tracing_buffers_mmap+0xa6/0x120 [ 628.259498][T17297] __mmap_region+0x1786/0x2670 [ 628.264385][T17297] ? __pfx___lock_acquire+0x10/0x10 [ 628.269636][T17297] ? __pfx___mmap_region+0x10/0x10 [ 628.274789][T17297] ? hlock_class+0x4e/0x130 [ 628.279331][T17297] ? mark_lock+0xb5/0xc60 [ 628.283823][T17297] mmap_region+0x127/0x320 [ 628.288277][T17297] do_mmap+0xc00/0xfc0 [ 628.292382][T17297] vm_mmap_pgoff+0x1ba/0x360 [ 628.297018][T17297] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 628.302169][T17297] ? __fget_files+0x206/0x3a0 [ 628.306879][T17297] ksys_mmap_pgoff+0x32c/0x5c0 [ 628.311676][T17297] ? rcu_is_watching+0x12/0xc0 [ 628.316472][T17297] __x64_sys_mmap+0x125/0x190 [ 628.321182][T17297] do_syscall_64+0xcd/0x250 [ 628.325723][T17297] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 628.331647][T17297] RIP: 0033:0x7f0e57d85d19 [ 628.336087][T17297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 628.355727][T17297] RSP: 002b:00007f0e58bec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 628.364171][T17297] RAX: ffffffffffffffda RBX: 00007f0e57f75fa0 RCX: 00007f0e57d85d19 [ 628.372178][T17297] RDX: 0000000000000001 RSI: 000000000000401f RDI: 0000000020ffc000 [ 628.380182][T17297] RBP: 00007f0e57e01a20 R08: 0000000000000003 R09: 0000000001000000 [ 628.388279][T17297] R10: 000000000008e051 R11: 0000000000000246 R12: 0000000000000000 [ 628.396280][T17297] R13: 0000000000000000 R14: 00007f0e57f75fa0 R15: 00007ffcf8d341d8 [ 628.404306][T17297] [ 628.407497][T17297] Kernel Offset: disabled [ 628.411820][T17297] Rebooting in 86400 seconds..