last executing test programs: 3.572771998s ago: executing program 1 (id=757): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c000000020603000000000000000000000008000900020073797a3000000000050005000100000005000100070000000500040000000000130003006812b82afc111259d217fe60bcda6657"], 0x4c}, 0x1, 0x0, 0x0, 0x844}, 0x24040000) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0a00000004fa0300e27f000001"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r1, &(0x7f0000000a40), &(0x7f0000000000)=""/10, 0x2}, 0x20) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'veth1_vlan\x00', 0x0}) sendmsg$nl_route(r3, 0x0, 0x40008c4) ioctl$sock_FIOGETOWN(r3, 0x8903, &(0x7f00000002c0)) sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@getchain={0x34, 0x11, 0x839, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r5, {0x1, 0x6}, {0xd}, {0x11, 0xfff1}}, [{0x8, 0xb, 0x7f8}, {0x8, 0xb, 0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x84}, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000380)={{{@in=@loopback, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in6=@local}}, &(0x7f00000001c0)=0xe8) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000200)={'ip6gre0\x00', &(0x7f00000002c0)={'syztnl0\x00', 0x0, 0x29, 0x6, 0x1, 0x9, 0x32, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @rand_addr=' \x01\x00', 0x1, 0x80, 0x1, 0x10001}}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0, 0x0}, &(0x7f00000002c0)=0xc) sendmmsg$unix(r8, &(0x7f0000003600)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=[@cred={{0x1c, 0x1, 0x2, {r9, r10, r11}}}], 0x20, 0x20040045}}], 0x1, 0x5) sendmsg$nl_xfrm(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=@migrate={0xfc, 0x21, 0x8, 0x70bd29, 0x25dfdbfb, {{@in=@broadcast, @in6=@local, 0x4e24, 0x7, 0x4e22, 0xde, 0x2, 0x0, 0x80, 0x2c, r5, r6}, 0x6e6bb3}, [@policy={0xac, 0x7, {{@in6=@loopback, @in=@broadcast, 0x4e20, 0x4, 0x4e20, 0x0, 0xa, 0x20, 0xa0, 0x32, r7, r10}, {0x0, 0x1, 0x3, 0x6, 0x7fff, 0x4, 0x7ff, 0x7f}, {0x7, 0x7f, 0x1, 0xe006}, 0x8000, 0x0, 0x0, 0x1, 0x3, 0x3}}]}, 0xfc}}, 0x40000) r12 = socket(0x2b, 0x80801, 0x1) ioctl$sock_inet_udp_SIOCOUTQ(r12, 0x5411, &(0x7f0000000180)) recvfrom$rose(r12, &(0x7f0000000100)=""/20, 0x14, 0x10100, &(0x7f0000000140)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x6, [@default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x40) sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0xa00, &(0x7f0000000080)={&(0x7f0000000040)=@flushpolicy={0x1c, 0x1d, 0x1, 0x0, 0x0, "", [@policy_type={0xa, 0x10, {0x1}}]}, 0x1c}}, 0x0) 3.431642716s ago: executing program 4 (id=759): setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0) syz_emit_ethernet(0xc2, &(0x7f0000000240)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@generic={0x82, 0x2}]}}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f13736080000000000000096c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb042d200", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c00000014001000fcfffffffedbdf250a1f0000", @ANYRES32=r4, @ANYBLOB="140002000000010000000000000000000000000043a7015558a946d35b4c72894707617bb4501744dd4668d54acba2c1a689a315aa6b53230f1e057a3ce3988c148e23e98b92842c7f5a0f78c3992a6979c0481fd41cec2cb44d2401a59ffc6ec96bac394052cddb842f91194203bb880f98da1c706f50e0564d215f8e08b068752fd2689123490a92012bca84311a1ded0540fc99a8566fc5d664b5a2cebf0a34a438a753ba15bd4dcd7ab9"], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8b28, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_START_NAN(r5, 0x0, 0x1) bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x80065c9}, 0xc) socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', 0x0}) r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x3, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_query, @printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8}}, @map_val={0x18, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10001}]}, &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r7, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x84}, 0x94) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={r8, 0x0, 0x0}, 0x10) r9 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet6_int(r9, 0x29, 0x49, 0x0, 0x0) close(0x4) syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/ipc\x00') unshare(0x6a040000) socket(0x8, 0x3, 0x0) 3.127699267s ago: executing program 2 (id=762): socket$inet_tcp(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$devlink(0x0, r0) sendmsg$DEVLINK_CMD_RATE_NEW(r0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000d00)=@nat={'nat\x00', 0x19, 0x0, 0x90, [0x200000000c40, 0x0, 0x0, 0x200000000c70, 0x200000000ca0], 0x11, 0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000001000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff00000000"]}, 0x108) sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000580)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44801}, 0x0) sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0), 0x0, 0x4040880) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000200)={'ip6erspan0\x00', &(0x7f00000001c0)=@ethtool_cmd={0x35, 0x9, 0x4, 0x1, 0x4, 0x20, 0x6, 0x9, 0x7f, 0x0, 0x0, 0x4, 0x7, 0x9, 0x2, 0xffffffff, [0xd4b, 0xe5ab]}}) sendmsg$IEEE802154_LIST_IFACE(r1, 0x0, 0x4800) bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[], 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r1) sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c80)={0x34, r6, 0x1, 0x70bd25, 0x0, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast1}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @private=0xa010101}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000010}, 0x0) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_ADD(r7, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000040)={0x34, 0x0, 0x1, 0x400000, 0x0, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast2}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @remote}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x0) 2.836067611s ago: executing program 3 (id=765): r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "750538d1ee602ec4802a04ea7cdcd151bb2cd9893bc31f80718336d9bd3517076db9ad1f6a120d8be6d7f81cd81ec275000386e7d95f0669b740a5418d69d0", 0x10000000000001}, 0x60) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r1, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "750538d1ee602ec4802a04ea7cdcd151bb2cd9893bc31f80718336d9bd3517076db9ad1f6a120d8be6d7f81cd81ec275000386e7d95f0669b740a5418d69d0", 0x1000000000003f}, 0x60) 2.789106876s ago: executing program 1 (id=766): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10) r1 = accept4(r0, 0x0, 0x0, 0x80800) sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r1, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000007c0)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x20000814}, 0x20018001) recvmsg$unix(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000003c0)}, 0x2) socket$nl_route(0x10, 0x3, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) socket$inet_smc(0x2b, 0x1, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r2) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x275a, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) bind$bt_l2cap(r3, &(0x7f0000000000), 0xe) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee1, 0x8031, 0xffffffffffffffff, 0x0) setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0x7, &(0x7f0000000200)=0x20004, 0x4) socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00'}, 0x94) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/time_for_children\x00') r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000300)=ANY=[@ANYRESHEX], 0x30}, 0x1, 0x0, 0x0, 0xc0}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000005100000000000000000a200000000900010073797a30000000001400000010"], 0x48}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)) 2.758328501s ago: executing program 2 (id=767): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) socketpair(0x11, 0x1, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x80040005, 0x0, 0x0, 0x40f00, 0x18}, 0x94) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl(r1, 0x8b1a, &(0x7f0000000040)) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f00000000c0)={0xfffc, 0xc}, 0x8) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x1c, &(0x7f00000001c0)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0xfffffffb}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f0000000040), &(0x7f0000000080)=0x4) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x2000000, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_TABLE_USERDATA={0x0, 0x6, "4f2e7d67cd2d47178804a770fc84a2db5da27bc2c3561d3f3b29ab6c3b2ce4413c0a9cfe0e82f57dd2f36aa1671afde192d0bd5afda09c98e04816742a9823da7f43507198632617d07d1d591db14efdcaf3897b687a8f359ba00700c4a9f8174b0dc2e01b16ed86651462cf74616497026ac544e927ba20546bfcd4d62d45b7fef376d4b5f2de6f7d9dfc85e520426988fe18298d18c0ebaa2160905b13088c3171e0762e8f9469d154ec51f16abeb4e4400c119891c6de43ee1c11f9acdb5eea4ba9f66941621cbb61b70b05cd5953f26a7b987882f4b9d80757368918bf2aeaf7b9c822e3c41cb9dae7c121538948516ac20ab74c0a8ac24341"}]}, @NFT_MSG_NEWCHAIN={0xbc, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x4}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_COUNTERS={0x4c, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0xa}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x5}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x6}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x2}, @NFTA_COUNTER_PACKETS={0x0, 0x2, 0x1, 0x0, 0x100000001}, @NFTA_COUNTER_BYTES={0xc}]}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}, @NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x1}, @NFTA_CHAIN_POLICY={0x0, 0x5, 0x1, 0x0, 0xfffffffffffffffc}, @NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x4}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x6}]}, @NFT_MSG_DELCHAIN={0x44, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x2000}, [@NFTA_CHAIN_HANDLE={0xfffffffffffffe3c, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x18, 0x4, 0x0, 0x1, [@NFTA_HOOK_DEV={0x14, 0x3, 'veth1_macvtap\x00'}]}]}], {0x14}}, 0x148}, 0x1, 0x0, 0x0, 0x125f6c2a359f9cca}, 0x20000808) 2.632603233s ago: executing program 3 (id=769): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000780), r0) sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000040)={0x34, r1, 0x1, 0x400000, 0x0, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast2}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @remote}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x0) (fail_nth: 8) 1.957978854s ago: executing program 0 (id=771): r0 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xfff2, 0xa}, {0x2}}}, 0x24}}, 0x4000) getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0), &(0x7f0000000100)=0x4) 1.957009918s ago: executing program 3 (id=772): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000030000006102000002"], 0x48) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d80)={{r0}, &(0x7f0000000d00), &(0x7f0000000d40)='%+9llu \x00'}, 0x20) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4) r2 = socket$inet6(0xa, 0x3, 0x1) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000040)={{{@in=@private=0xa010100, @in=@multicast1, 0x0, 0x20, 0x0, 0x0, 0xa}, {0x2, 0xfffffffffffffffe, 0x0, 0x8, 0x5, 0xfffffffffffffffa, 0x0, 0x5}, {0x4, 0xfffffffffffffffc, 0x2}, 0xffffffff, 0x0, 0x1, 0x0, 0x0, 0x3}, {{@in6=@dev={0xfe, 0x80, '\x00', 0x42}, 0x0, 0x32}, 0x2, @in=@local, 0x0, 0x4}}, 0xe8) r3 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x38, 0x1403, 0x1, 0x70bd26, 0x25dfdbff, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'wg1\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x4008010) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c00000044000701fcffffff00000000017c0000380004804e2d"], 0x4c}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)={0x14, 0x3, 0x2, 0x101, 0x0, 0x0, {0x3, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x800) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r8, 0x0, r9, 0x0, 0x1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) write$cgroup_int(r11, &(0x7f0000000000)=0x8, 0x12) close(r11) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x7a05, 0x1700) splice(r10, 0x0, r11, &(0x7f00000002c0)=0x87ffffe, 0x6, 0x0) vmsplice(r9, &(0x7f0000000380)=[{&(0x7f0000000180)="04", 0x1}, {&(0x7f0000000200)="7f", 0x1}, {&(0x7f0000001300)="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", 0xd01}, {&(0x7f00000002c0)="40288f34bcf7367c6993649e41118758375f199400b0a9755e1b624228bf7072cae3c38479baec", 0x27}, {&(0x7f0000000440)="155332af", 0x4}, {&(0x7f0000002040)="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", 0xfc1}], 0x6, 0x6) getsockopt$SO_TIMESTAMP(r8, 0x1, 0x23, &(0x7f0000000000), &(0x7f0000000040)=0x4) sendmsg$DEVLINK_CMD_RATE_GET(r9, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x1c, 0x0, 0x8, 0x70bd2d, 0x25dfdbfb, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x810}, 0x40000) ioctl$sock_inet_udp_SIOCINQ(r9, 0x541b, 0x0) write(r7, 0x0, 0x0) sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP2={0x18, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @mcast2}}, @IPSET_ATTR_CIDR={0x5, 0x3, 0xfe}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080) connect$inet6(r2, &(0x7f0000000240)={0xa, 0x12, 0x0, @empty}, 0x1c) bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0600000004000000040000000100000000000000", @ANYRES32, @ANYBLOB="00000000000000000000800000090035e43b5353", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) 1.955841269s ago: executing program 4 (id=773): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000080)="d80000001e0001054e81f782060000000000000206007c095dd2466518000e800a00142603600e1208000f0000000406a80016c00800094014000000035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791433a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a50254cca9e00360db798262f3d40fad95667e006dcdff11a49b1328d9dd74977efd563951f215ce3bb9ad909d5e1cace81ed0bffece0b42a9eca0200e6ccd40dd6e4edef3d93452a9295", 0xd8}], 0x1}, 0x4008850) 1.823973723s ago: executing program 0 (id=774): r0 = socket$l2tp6(0xa, 0x2, 0x73) setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000000)=0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000000ac0)=[{{&(0x7f0000000180)={0xa, 0x0, 0x0, @empty, 0x7ffffffb}, 0x1b, 0x0}}], 0x17fd147c801ae9af, 0xff00) listen(0xffffffffffffffff, 0x5) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x844) 1.811443242s ago: executing program 0 (id=775): socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5) close(0x4) syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/ipc\x00') r0 = socket$netlink(0x10, 0x3, 0x14) sendmsg$netlink(r0, &(0x7f0000003f40)={0x0, 0x0, &(0x7f0000003e80)=[{&(0x7f00000005c0)=ANY=[@ANYBLOB="100000000010"], 0x10}], 0x1}, 0x0) 1.696850272s ago: executing program 2 (id=776): r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000700)={'bond0\x00'}) (fail_nth: 3) 1.608990177s ago: executing program 4 (id=777): socket$inet_tcp(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$devlink(0x0, r0) sendmsg$DEVLINK_CMD_RATE_NEW(r0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000d00)=@nat={'nat\x00', 0x19, 0x0, 0x90, [0x200000000c40, 0x0, 0x0, 0x200000000c70, 0x200000000ca0], 0x11, 0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000001000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff00000000"]}, 0x108) sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000580)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44801}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000140)={'wpan3\x00'}) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000200)={'ip6erspan0\x00', &(0x7f00000001c0)=@ethtool_cmd={0x35, 0x9, 0x4, 0x1, 0x4, 0x20, 0x6, 0x9, 0x7f, 0x0, 0x0, 0x4, 0x7, 0x9, 0x2, 0xffffffff, [0xd4b, 0xe5ab]}}) sendmsg$IEEE802154_LIST_IFACE(r1, 0x0, 0x4800) bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[], 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r1) sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c80)={0x34, r6, 0x1, 0x70bd25, 0x0, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast1}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @private=0xa010101}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000010}, 0x0) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_ADD(r7, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000040)={0x34, 0x0, 0x1, 0x400000, 0x0, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast2}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @remote}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x0) 1.31930226s ago: executing program 2 (id=778): r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "750538d1ee602ec4802a04ea7cdcd151bb2cd9893bc31f80718336d9bd3517076db9ad1f6a120d8be6d7f81cd81ec275000386e7d95f0669b740a5418d69d0", 0x10000000000001}, 0x60) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r1, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "750538d1ee602ec4802a04ea7cdcd151bb2cd9893bc31f80718336d9bd3517076db9ad1f6a120d8be6d7f81cd81ec275000386e7d95f0669b740a5418d69d0", 0x1000000000003f}, 0x60) (fail_nth: 2) 1.319001168s ago: executing program 1 (id=779): r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x0, 0x2000030a, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0a00000001000000ff000000070001000000000070c864ee2c8b03ec9fc268abb3e16f390a835396060c629043f066c2659e7dd4d9435e6fd1ba48a5f28db7b453b62423b6ce97c0ccfedc7120282590ce66acc64bdef86e2ef8768d5d", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740), &(0x7f0000000840), 0x75, r1}, 0x38) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r2}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001a40)={0x11, 0x1, &(0x7f0000001840)=@raw=[@ldst={0x0, 0x0, 0x2}], &(0x7f00000018c0)='syzkaller\x00', 0x6, 0x9f, &(0x7f0000001900)=""/159}, 0x80) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={r1, &(0x7f00000001c0)="3059a0688812fbbe9ca773829a23319cf792cfce7f274ac145ddeb860ec960d78ddc3a8b3a2b1c5f9b16a6f742c4099ee34e2a87de3b025744be96ea68cdc5b0aff3b77415847f3b7cdf19c0203a482abd49a092d06e15758f23ee4cc6de296c89fd54351cd85c8e37a95effec716f3d898e3dff23e858", &(0x7f0000000340)=""/230}, 0x20) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'caif0\x00'}) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000280)={0xffffffffffffffff, 0x53, 0xd, 0x9}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB='H\x00\x00\x00'], 0x48}, 0x1, 0x0, 0x0, 0x20004810}, 0x0) sendmmsg$inet(r0, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0) 964.11766ms ago: executing program 1 (id=780): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2400000001040102000000c9fd000000000000000800034000"], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x30, 0x1, 0x4, 0x5, 0x0, 0x0, {0xa}, [@NFULA_CFG_FLAGS={0x6}, @NFULA_CFG_CMD={0x5, 0x1, 0x2}, @NFULA_CFG_MODE={0xa, 0x2, {0xffffff00, 0x2}}]}, 0x30}, 0x1, 0x0, 0x0, 0xc090}, 0x2000004) 915.057288ms ago: executing program 0 (id=781): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB='c 75:', @ANYRESDEC], 0x10) r2 = socket$inet_udp(0x2, 0x2, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000280), 0x4) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001"], 0xb8}}, 0x0) r4 = epoll_create1(0x0) ioctl$FS_IOC_SETFLAGS(r4, 0x40088a01, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000580)={0x40000008}) r5 = socket$phonet_pipe(0x23, 0x5, 0x2) connect$phonet_pipe(r5, &(0x7f0000000080)={0x23, 0x8, 0x4, 0x81}, 0x10) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) recvmmsg(r2, &(0x7f0000000a40)=[{{&(0x7f0000000a80)=@nl=@unspec, 0x80, &(0x7f0000000940)=[{&(0x7f0000000740)=""/244, 0xf4}, {&(0x7f0000000840)=""/224, 0xe0}], 0x2, &(0x7f0000000b00)=""/181, 0xb5}, 0x7}], 0x1, 0x2, 0x0) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x0) bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x2e, &(0x7f0000001140)={@broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x1, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}, 0x0) syz_emit_ethernet(0x2416, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x0) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000200000/0x4000)=nil, 0x4000, 0x4, 0x200000006c832, 0xffffffffffffffff, 0x0) 914.815036ms ago: executing program 2 (id=782): r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x2}) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000380)=0x2) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'vlan0\x00', 0x1}) bind$rose(r0, &(0x7f0000000000)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x4, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x40) 813.005445ms ago: executing program 1 (id=783): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000003e000701feffffff00000000017c00000c0042800c00018006000600800a00000c0002800800148004"], 0x30}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000) 744.504469ms ago: executing program 4 (id=784): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00000007c0)={0x400000000000000, 0x0, &(0x7f0000000700)={&(0x7f0000001900)=ANY=[@ANYBLOB="020f000015000000000000000000000005000500000000000a0000000080ffffff0000000000000000432e0000000000000000000000000008001200000002000000f1edc4ea00000600000000000000000000000000000000000000000000000000000000000000fc01000000000000000000000000810005000600000000000a00000000000000ff0200000000000000000000000000010000000000000000010018"], 0xa8}}, 0x40080) 627.822026ms ago: executing program 1 (id=785): socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) socket$inet6_mptcp(0xa, 0x1, 0x106) socket$inet6_mptcp(0xa, 0x1, 0x106) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) pipe(&(0x7f0000000480)) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000007c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_BINDTODEVICE_wg(r1, 0x1, 0x19, &(0x7f0000000280)='wg2\x00', 0x4) ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000f00)={'veth1_macvtap\x00', &(0x7f0000000000)=@ethtool_perm_addr={0x4b, 0x34, "cb721b782a17a7b6a00d923e3f7fdafda2073830fb8cfb34eb7cbd173e61bd8505ed36e7e245825e2998b679855e3188ea632416"}}) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4, 0x0, 0x6}, 0x18) ppoll(&(0x7f0000000500)=[{r2}], 0x1, 0x0, 0x0, 0x0) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0) unshare(0x62040200) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r6, 0x107, 0xf, &(0x7f0000006ffc)=0xd90, 0x4) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) bind$packet(r6, &(0x7f0000000000)={0x11, 0x0, r9, 0x1, 0x0, 0x6, @link_local}, 0x14) sendmsg$nl_route(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=@ipv6_delroute={0x4c, 0x19, 0x800, 0x70bd25, 0x25dfdbfd, {0xa, 0x0, 0x0, 0x6, 0xfd, 0x0, 0xff, 0x7}, [@RTA_PREF={0x5, 0x14, 0x6}, @RTA_EXPIRES={0x8, 0x17, 0xa4}, @RTA_PRIORITY={0x8, 0x6, 0x7}, @RTA_OIF={0x8, 0x4, r9}, @RTA_ENCAP_TYPE={0x6}, @RTA_ENCAP_TYPE={0xffffffac, 0x15, 0xa}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40841}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bind$netlink(r7, &(0x7f0000000900)={0x10, 0x0, 0x25dfdbff, 0x800}, 0xc) r10 = socket$kcm(0xa, 0x2, 0x3a) sendmsg$kcm(r10, &(0x7f0000000440)={&(0x7f0000000800)=@l2tp6={0xa, 0x0, 0x0, @dev}, 0x80, &(0x7f00000000c0)}, 0x0) close(r0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x2, 0x0, r2, 0x0, '\x00', r9, 0xffffffffffffffff, 0x3, 0x2, 0x3}, 0x50) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000200)=0xffffffffffffffff, 0x4) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0x20, &(0x7f0000000300)={&(0x7f0000000600)=""/135, 0x87, 0x0, &(0x7f00000006c0)=""/100, 0x64}}, 0x10) 627.584646ms ago: executing program 0 (id=786): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001240)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=@newtfilter={0xe8, 0x28, 0xd27, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x0, r4}, [@filter_kind_options=@f_flow={{0x9}, {0xb0, 0x2, [@TCA_FLOW_ADDEND={0x8, 0x5, 0x800}, @TCA_FLOW_KEYS={0x8, 0x1, 0xdd96}, @TCA_FLOW_XOR={0x8, 0x7, 0x1}, @TCA_FLOW_EMATCHES={0x94, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_LIST={0x58, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0x400}, {0x400, 0x2, 0x1, "8876"}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x7, 0x1, 0xb}, {0x6, 0x2, 0x3, 0x0, 0x6}}}, @TCF_EM_CONTAINER={0xc, 0x3, 0x0, 0x0, {{0x3}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x2, 0x3, 0x6}, {0x5, 0x8, 0x3, 0x2fba}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x800}}]}]}}, @TCA_RATE={0x6, 0x5, {0xb8, 0x1}}]}, 0xe8}}, 0x0) 616.942081ms ago: executing program 2 (id=787): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000004, 0x3b071, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000024c0)=@newtaction={0x6c, 0x30, 0x48b, 0x0, 0x0, {}, [{0x58, 0x1, [@m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x3}, @multicast2, @remote}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20008000}, 0x8000) sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000640)={'wlan0\x00'}) r4 = socket(0x11, 0x80a, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'bond0\x00'}) connect$can_j1939(r4, &(0x7f0000001080)={0x1d, 0x0, 0x0, {0x3, 0xf0, 0x4}, 0xfe}, 0x18) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) write$cgroup_pid(r5, &(0x7f0000000000), 0x2a979d) r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0) listen(r6, 0x0) connect$rose(r6, &(0x7f0000000040)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x0, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast]}, 0x40) r7 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r7, &(0x7f00000000c0)={0x18, 0x0, {0x4, @multicast, 'bond0\x00'}}, 0x1e) r8 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r8, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000010c0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10) getsockopt$bt_hci(r8, 0x84, 0x6d, &(0x7f0000000000)=""/4102, &(0x7f0000001040)=0x1006) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x10, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r0, @ANYBLOB="0000000002000000b70500000800000085000000aa00000095"], &(0x7f0000000040)='GPL\x00', 0x4, 0x1002, &(0x7f00000017c0)=""/4098, 0x40f00}, 0x94) 544.103881ms ago: executing program 3 (id=788): r0 = socket$pppoe(0x18, 0x1, 0x0) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xa}], 0x1, 0x1) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuset.effective_mems\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0) r3 = socket$rxrpc(0x21, 0x2, 0x2) getsockopt(r3, 0x110, 0x20006, 0x0, 0x0) connect$pppoe(r0, &(0x7f00000000c0)={0x18, 0x0, {0x7, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}, 'macvlan1\x00'}}, 0x1e) sendmmsg(r0, &(0x7f0000001340)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000500)="ab", 0x5ea}], 0x1}}], 0x484, 0x24048084) 542.740327ms ago: executing program 4 (id=789): r0 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0) socket(0x2a, 0x800, 0x8001) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000811}, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@newtaction={0x48, 0x30, 0x871a15abc695f20d, 0x0, 0x25dfdbf4, {}, [{0x34, 0x1, [@m_sample={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x0) sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0) 265.020725ms ago: executing program 3 (id=790): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="000000000000000066000200ff000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000007bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222}, 0x78) 264.828608ms ago: executing program 4 (id=791): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4) syz_emit_ethernet(0x6a, &(0x7f0000000000)={@multicast, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "6d4dfdeb8cf7bbfe143803bec2ce783e04cd32308cdd8dde", "c71cb8adfce542a4bc5a026c208fd0c45787e4aa384e3d26b21ea41cc128364c"}}}}}}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) (fail_nth: 12) 263.827163ms ago: executing program 0 (id=792): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0xfffc, 0x1, 0x0, 0xfffffffd}, 0x1c) (async) unshare(0x68040200) syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r1}, 0x4) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x11, &(0x7f0000000200)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x53}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}]}, &(0x7f0000000080)='GPL\x00'}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000100)="b34715ecd04550d3abc89b6f7bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) epoll_create1(0x0) (async) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfffff000) (async) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0) r3 = socket(0x15, 0x5, 0x0) getsockopt(r3, 0x200000000114, 0x2716, &(0x7f0000c35fff)=""/1, &(0x7f0000000000)=0xf002) (async) setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0) (async) r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000500"/28], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 0s ago: executing program 3 (id=793): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2400000001040102000000c9fd000000000000000800034000"], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x30, 0x1, 0x4, 0x5, 0x0, 0x0, {0xa}, [@NFULA_CFG_FLAGS={0x6}, @NFULA_CFG_CMD={0x5, 0x1, 0x2}, @NFULA_CFG_MODE={0xa, 0x2, {0xffffff00, 0x2}}]}, 0x30}, 0x1, 0x0, 0x0, 0xc090}, 0x2000004) kernel console output (not intermixed with test programs): _sendmsg+0x10/0x10 [ 106.641551][ T6864] ? __pfx_ksys_write+0x10/0x10 [ 106.641565][ T6864] ? rcu_is_watching+0x15/0xb0 [ 106.641602][ T6864] ? do_syscall_64+0xbe/0x3b0 [ 106.641626][ T6864] do_syscall_64+0xfa/0x3b0 [ 106.641644][ T6864] ? lockdep_hardirqs_on+0x9c/0x150 [ 106.641663][ T6864] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.641679][ T6864] ? clear_bhb_loop+0x60/0xb0 [ 106.641698][ T6864] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.641714][ T6864] RIP: 0033:0x7f1c33d8e929 [ 106.641733][ T6864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 106.641745][ T6864] RSP: 002b:00007f1c34c7f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 106.641763][ T6864] RAX: ffffffffffffffda RBX: 00007f1c33fb5fa0 RCX: 00007f1c33d8e929 [ 106.641774][ T6864] RDX: 0000000004000914 RSI: 000020000000c2c0 RDI: 0000000000000003 [ 106.641785][ T6864] RBP: 00007f1c34c7f090 R08: 0000000000000000 R09: 0000000000000000 [ 106.641794][ T6864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 106.641804][ T6864] R13: 0000000000000000 R14: 00007f1c33fb5fa0 R15: 00007ffd47c094b8 [ 106.641832][ T6864] [ 106.947266][ T6870] netlink: 12 bytes leftover after parsing attributes in process `syz.3.325'. [ 106.989381][ T6870] netlink: 8 bytes leftover after parsing attributes in process `syz.3.325'. [ 107.159173][ T6881] FAULT_INJECTION: forcing a failure. [ 107.159173][ T6881] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 107.175435][ T6881] CPU: 1 UID: 0 PID: 6881 Comm: syz.4.327 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 107.175457][ T6881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 107.175467][ T6881] Call Trace: [ 107.175473][ T6881] [ 107.175480][ T6881] dump_stack_lvl+0x189/0x250 [ 107.175504][ T6881] ? __pfx____ratelimit+0x10/0x10 [ 107.175525][ T6881] ? __pfx_dump_stack_lvl+0x10/0x10 [ 107.175543][ T6881] ? __pfx__printk+0x10/0x10 [ 107.175564][ T6881] ? __might_fault+0xb0/0x130 [ 107.175593][ T6881] should_fail_ex+0x414/0x560 [ 107.175621][ T6881] _copy_from_iter+0x1db/0x16f0 [ 107.175649][ T6881] ? policy_nodemask+0x27c/0x720 [ 107.175669][ T6881] ? __pfx__copy_from_iter+0x10/0x10 [ 107.175693][ T6881] ? set_page_refcounted+0xa0/0x1e0 [ 107.175712][ T6881] ? page_copy_sane+0x4e/0x280 [ 107.175731][ T6881] copy_page_from_iter+0xdd/0x170 [ 107.175753][ T6881] tun_get_user+0x1d7b/0x3e20 [ 107.175780][ T6881] ? tun_get_user+0x6f6/0x3e20 [ 107.175811][ T6881] ? __pfx_tun_get_user+0x10/0x10 [ 107.175831][ T6881] ? aa_file_perm+0x11f/0xed0 [ 107.175846][ T6881] ? aa_file_perm+0x3e7/0xed0 [ 107.175875][ T6881] ? ref_tracker_alloc+0x318/0x460 [ 107.175895][ T6881] ? __lock_acquire+0xab9/0xd20 [ 107.175914][ T6881] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 107.175943][ T6881] ? tun_get+0x1c/0x2f0 [ 107.175967][ T6881] ? tun_get+0x1c/0x2f0 [ 107.175985][ T6881] ? tun_get+0x1c/0x2f0 [ 107.176008][ T6881] tun_chr_write_iter+0x113/0x200 [ 107.176030][ T6881] vfs_write+0x54b/0xa90 [ 107.176054][ T6881] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 107.176073][ T6881] ? __pfx_vfs_write+0x10/0x10 [ 107.176102][ T6881] ? __fget_files+0x2a/0x420 [ 107.176132][ T6881] ksys_write+0x145/0x250 [ 107.176153][ T6881] ? __pfx_ksys_write+0x10/0x10 [ 107.176176][ T6881] ? do_syscall_64+0xbe/0x3b0 [ 107.176200][ T6881] do_syscall_64+0xfa/0x3b0 [ 107.176219][ T6881] ? lockdep_hardirqs_on+0x9c/0x150 [ 107.176238][ T6881] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.176254][ T6881] ? clear_bhb_loop+0x60/0xb0 [ 107.176274][ T6881] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.176296][ T6881] RIP: 0033:0x7f6719d8d3df [ 107.176312][ T6881] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 107.176325][ T6881] RSP: 002b:00007f6717bf6000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 107.176343][ T6881] RAX: ffffffffffffffda RBX: 00007f6719fb5fa0 RCX: 00007f6719d8d3df [ 107.176355][ T6881] RDX: 000000000000002a RSI: 00002000000002c0 RDI: 00000000000000c8 [ 107.176366][ T6881] RBP: 00007f6717bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 107.176376][ T6881] R10: 000000000000002a R11: 0000000000000293 R12: 0000000000000001 [ 107.176386][ T6881] R13: 0000000000000001 R14: 00007f6719fb5fa0 R15: 00007fff8e12c638 [ 107.176415][ T6881] [ 107.477173][ T6883] sctp: [Deprecated]: syz.0.328 (pid 6883) Use of struct sctp_assoc_value in delayed_ack socket option. [ 107.477173][ T6883] Use struct sctp_sack_info instead [ 107.499490][ T6883] netlink: 8 bytes leftover after parsing attributes in process `syz.0.328'. [ 107.571420][ T6887] FAULT_INJECTION: forcing a failure. [ 107.571420][ T6887] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 107.584685][ T6887] CPU: 1 UID: 0 PID: 6887 Comm: syz.4.330 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 107.584707][ T6887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 107.584717][ T6887] Call Trace: [ 107.584724][ T6887] [ 107.584731][ T6887] dump_stack_lvl+0x189/0x250 [ 107.584755][ T6887] ? __pfx____ratelimit+0x10/0x10 [ 107.584775][ T6887] ? __pfx_dump_stack_lvl+0x10/0x10 [ 107.584794][ T6887] ? __pfx__printk+0x10/0x10 [ 107.584830][ T6887] should_fail_ex+0x414/0x560 [ 107.584858][ T6887] _copy_from_user+0x2d/0xb0 [ 107.584877][ T6887] copy_from_sockptr+0x48/0x70 [ 107.584902][ T6887] ip6_mroute_setsockopt+0x71a/0xf00 [ 107.584934][ T6887] ? __pfx_ip6_mroute_setsockopt+0x10/0x10 [ 107.584992][ T6887] do_ipv6_setsockopt+0x35a/0x2eb0 [ 107.585026][ T6887] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 107.585046][ T6887] ? __might_fault+0xb0/0x130 [ 107.585067][ T6887] ? _parse_integer_limit+0x1ae/0x1f0 [ 107.585094][ T6887] ? aa_label_sk_perm+0x413/0x560 [ 107.585122][ T6887] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 107.585163][ T6887] ? __pfx___might_resched+0x10/0x10 [ 107.585183][ T6887] ? rcu_read_lock_any_held+0xb3/0x120 [ 107.585203][ T6887] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 107.585226][ T6887] ? vfs_write+0x8d8/0xa90 [ 107.585260][ T6887] ipv6_setsockopt+0x59/0x170 [ 107.585280][ T6887] rawv6_setsockopt+0x23b/0x5b0 [ 107.585296][ T6887] ? __lock_acquire+0xab9/0xd20 [ 107.585315][ T6887] ? __pfx_rawv6_setsockopt+0x10/0x10 [ 107.585333][ T6887] ? aa_sock_opt_perm+0x74/0x110 [ 107.585355][ T6887] ? sock_common_setsockopt+0x36/0xc0 [ 107.585375][ T6887] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 107.585397][ T6887] do_sock_setsockopt+0x257/0x3e0 [ 107.585423][ T6887] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 107.585450][ T6887] ? __fget_files+0x2a/0x420 [ 107.585480][ T6887] __x64_sys_setsockopt+0x18b/0x220 [ 107.585508][ T6887] do_syscall_64+0xfa/0x3b0 [ 107.585527][ T6887] ? lockdep_hardirqs_on+0x9c/0x150 [ 107.585546][ T6887] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.585562][ T6887] ? clear_bhb_loop+0x60/0xb0 [ 107.585583][ T6887] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.585599][ T6887] RIP: 0033:0x7f6719d8e929 [ 107.585614][ T6887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 107.585627][ T6887] RSP: 002b:00007f6717bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 107.585645][ T6887] RAX: ffffffffffffffda RBX: 00007f6719fb5fa0 RCX: 00007f6719d8e929 [ 107.585658][ T6887] RDX: 00000000000000d3 RSI: 0000000000000029 RDI: 0000000000000005 [ 107.585668][ T6887] RBP: 00007f6717bf6090 R08: 0000000000000066 R09: 0000000000000000 [ 107.585678][ T6887] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 107.585688][ T6887] R13: 0000000000000000 R14: 00007f6719fb5fa0 R15: 00007fff8e12c638 [ 107.585717][ T6887] [ 107.903542][ T6889] netlink: 24 bytes leftover after parsing attributes in process `syz.0.328'. [ 108.048268][ T6897] netlink: 8 bytes leftover after parsing attributes in process `syz.4.333'. [ 108.195540][ T6904] netlink: 'syz.4.335': attribute type 1 has an invalid length. [ 108.312925][ T6909] tipc: Enabling of bearer rejected, failed to enable media [ 108.398929][ T6912] bond1: (slave geneve2): making interface the new active one [ 108.431073][ T6912] bond1: (slave geneve2): Enslaving as an active interface with an up link [ 108.521779][ T6904] 8021q: adding VLAN 0 to HW filter on device bond1 [ 108.566833][ T48] netdevsim netdevsim4 eth0: set [1, 1] type 2 family 0 port 20000 - 0 [ 108.604433][ T48] netdevsim netdevsim4 eth1: set [1, 1] type 2 family 0 port 20000 - 0 [ 108.692686][ T13] netdevsim netdevsim4 eth2: set [1, 1] type 2 family 0 port 20000 - 0 [ 108.709884][ T6925] FAULT_INJECTION: forcing a failure. [ 108.709884][ T6925] name failslab, interval 1, probability 0, space 0, times 0 [ 108.722736][ T6925] CPU: 1 UID: 0 PID: 6925 Comm: syz.0.341 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 108.722759][ T6925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.722769][ T6925] Call Trace: [ 108.722776][ T6925] [ 108.722783][ T6925] dump_stack_lvl+0x189/0x250 [ 108.722807][ T6925] ? __pfx____ratelimit+0x10/0x10 [ 108.722828][ T6925] ? __pfx_dump_stack_lvl+0x10/0x10 [ 108.722846][ T6925] ? __pfx__printk+0x10/0x10 [ 108.722878][ T6925] should_fail_ex+0x414/0x560 [ 108.722905][ T6925] should_failslab+0xa8/0x100 [ 108.722926][ T6925] kmem_cache_alloc_node_noprof+0x76/0x3c0 [ 108.722946][ T6925] ? __alloc_skb+0x112/0x2d0 [ 108.722971][ T6925] __alloc_skb+0x112/0x2d0 [ 108.722996][ T6925] tcp_send_active_reset+0x8c/0x6d0 [ 108.723026][ T6925] tcp_abort+0x2b5/0x3e0 [ 108.723045][ T6925] ? tcp_abort+0x223/0x3e0 [ 108.723067][ T6925] smc_release+0x179/0x540 [ 108.723093][ T6925] sock_close+0xc0/0x240 [ 108.723112][ T6925] ? __pfx_sock_close+0x10/0x10 [ 108.723128][ T6925] __fput+0x449/0xa70 [ 108.723159][ T6925] fput_close_sync+0x119/0x200 [ 108.723183][ T6925] ? __pfx_fput_close_sync+0x10/0x10 [ 108.723217][ T6925] __x64_sys_close+0x7f/0x110 [ 108.723231][ T6925] do_syscall_64+0xfa/0x3b0 [ 108.723250][ T6925] ? lockdep_hardirqs_on+0x9c/0x150 [ 108.723269][ T6925] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 108.723285][ T6925] ? clear_bhb_loop+0x60/0xb0 [ 108.723305][ T6925] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 108.723321][ T6925] RIP: 0033:0x7fe8caf8e929 [ 108.723337][ T6925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 108.723350][ T6925] RSP: 002b:00007fe8c8df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 108.723367][ T6925] RAX: ffffffffffffffda RBX: 00007fe8cb1b5fa0 RCX: 00007fe8caf8e929 [ 108.723379][ T6925] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 108.723389][ T6925] RBP: 00007fe8c8df6090 R08: 0000000000000000 R09: 0000000000000000 [ 108.723398][ T6925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 108.723418][ T6925] R13: 0000000000000000 R14: 00007fe8cb1b5fa0 R15: 00007ffc3a8733c8 [ 108.723448][ T6925] [ 108.737242][ T13] netdevsim netdevsim4 eth3: set [1, 1] type 2 family 0 port 20000 - 0 [ 108.995788][ T6891] syz.2.331 (6891) used greatest stack depth: 17992 bytes left [ 109.020753][ T6935] FAULT_INJECTION: forcing a failure. [ 109.020753][ T6935] name failslab, interval 1, probability 0, space 0, times 0 [ 109.037146][ T6935] CPU: 0 UID: 0 PID: 6935 Comm: syz.3.345 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 109.037170][ T6935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 109.037180][ T6935] Call Trace: [ 109.037187][ T6935] [ 109.037195][ T6935] dump_stack_lvl+0x189/0x250 [ 109.037219][ T6935] ? __pfx____ratelimit+0x10/0x10 [ 109.037239][ T6935] ? __pfx_dump_stack_lvl+0x10/0x10 [ 109.037258][ T6935] ? __pfx__printk+0x10/0x10 [ 109.037285][ T6935] ? __pfx___might_resched+0x10/0x10 [ 109.037309][ T6935] should_fail_ex+0x414/0x560 [ 109.037336][ T6935] should_failslab+0xa8/0x100 [ 109.037358][ T6935] kmem_cache_alloc_node_noprof+0x76/0x3c0 [ 109.037378][ T6935] ? __alloc_skb+0x112/0x2d0 [ 109.037403][ T6935] __alloc_skb+0x112/0x2d0 [ 109.037428][ T6935] netlink_sendmsg+0x5c6/0xb30 [ 109.037460][ T6935] ? __pfx_netlink_sendmsg+0x10/0x10 [ 109.037484][ T6935] ? aa_sock_msg_perm+0x94/0x160 [ 109.037508][ T6935] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 109.037529][ T6935] ? __pfx_netlink_sendmsg+0x10/0x10 [ 109.037551][ T6935] __sock_sendmsg+0x219/0x270 [ 109.037574][ T6935] ____sys_sendmsg+0x505/0x830 [ 109.037603][ T6935] ? __pfx_____sys_sendmsg+0x10/0x10 [ 109.037635][ T6935] ? import_iovec+0x74/0xa0 [ 109.037658][ T6935] ___sys_sendmsg+0x21f/0x2a0 [ 109.037676][ T6935] ? __pfx____sys_sendmsg+0x10/0x10 [ 109.037731][ T6935] ? __fget_files+0x2a/0x420 [ 109.037749][ T6935] ? __fget_files+0x3a0/0x420 [ 109.037779][ T6935] __x64_sys_sendmsg+0x19b/0x260 [ 109.037798][ T6935] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 109.037824][ T6935] ? __pfx_ksys_write+0x10/0x10 [ 109.037840][ T6935] ? rcu_is_watching+0x15/0xb0 [ 109.037865][ T6935] ? do_syscall_64+0xbe/0x3b0 [ 109.037889][ T6935] do_syscall_64+0xfa/0x3b0 [ 109.037908][ T6935] ? lockdep_hardirqs_on+0x9c/0x150 [ 109.037927][ T6935] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.037943][ T6935] ? clear_bhb_loop+0x60/0xb0 [ 109.037963][ T6935] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.037979][ T6935] RIP: 0033:0x7ff3c558e929 [ 109.037994][ T6935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 109.038007][ T6935] RSP: 002b:00007ff3c33f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 109.038025][ T6935] RAX: ffffffffffffffda RBX: 00007ff3c57b5fa0 RCX: 00007ff3c558e929 [ 109.038037][ T6935] RDX: 000000002000400c RSI: 00002000000000c0 RDI: 0000000000000003 [ 109.038048][ T6935] RBP: 00007ff3c33f6090 R08: 0000000000000000 R09: 0000000000000000 [ 109.038058][ T6935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 109.038068][ T6935] R13: 0000000000000000 R14: 00007ff3c57b5fa0 R15: 00007fff2bb2ea68 [ 109.038097][ T6935] [ 109.351943][ T6933] gtp0: entered promiscuous mode [ 109.372422][ T6933] gtp0: entered allmulticast mode [ 109.584015][ T6958] __nla_validate_parse: 5 callbacks suppressed [ 109.584031][ T6958] netlink: 40 bytes leftover after parsing attributes in process `syz.4.351'. [ 109.617232][ T6957] netlink: 12 bytes leftover after parsing attributes in process `syz.0.352'. [ 110.051007][ T6975] netlink: 16 bytes leftover after parsing attributes in process `syz.4.354'. [ 110.082757][ T6975] netlink: 16 bytes leftover after parsing attributes in process `syz.4.354'. [ 110.132007][ T6975] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 110.186102][ T6983] netlink: 156 bytes leftover after parsing attributes in process `syz.1.358'. [ 110.369709][ T6986] netlink: 12 bytes leftover after parsing attributes in process `syz.2.359'. [ 110.391436][ T6989] FAULT_INJECTION: forcing a failure. [ 110.391436][ T6989] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 110.401696][ T6990] tipc: New replicast peer: 255.255.255.255 [ 110.413998][ T6989] CPU: 1 UID: 0 PID: 6989 Comm: syz.1.361 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 110.414021][ T6989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 110.414030][ T6989] Call Trace: [ 110.414038][ T6989] [ 110.414045][ T6989] dump_stack_lvl+0x189/0x250 [ 110.414069][ T6989] ? __pfx____ratelimit+0x10/0x10 [ 110.414090][ T6989] ? __pfx_dump_stack_lvl+0x10/0x10 [ 110.414109][ T6989] ? __pfx__printk+0x10/0x10 [ 110.414144][ T6989] should_fail_ex+0x414/0x560 [ 110.414170][ T6989] _copy_to_user+0x31/0xb0 [ 110.414190][ T6989] simple_read_from_buffer+0xe1/0x170 [ 110.414216][ T6989] proc_fail_nth_read+0x1df/0x250 [ 110.414241][ T6989] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 110.414271][ T6989] ? rw_verify_area+0x258/0x650 [ 110.414289][ T6989] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 110.414312][ T6989] vfs_read+0x200/0x980 [ 110.414337][ T6989] ? __pfx___mutex_lock+0x10/0x10 [ 110.414358][ T6989] ? __pfx_vfs_read+0x10/0x10 [ 110.414379][ T6989] ? __fget_files+0x2a/0x420 [ 110.414403][ T6989] ? __fget_files+0x3a0/0x420 [ 110.414422][ T6989] ? __fget_files+0x2a/0x420 [ 110.414451][ T6989] ksys_read+0x145/0x250 [ 110.414466][ T6989] ? __fget_files+0x2a/0x420 [ 110.414488][ T6989] ? __pfx_ksys_read+0x10/0x10 [ 110.414512][ T6989] ? do_syscall_64+0xbe/0x3b0 [ 110.414537][ T6989] do_syscall_64+0xfa/0x3b0 [ 110.414555][ T6989] ? lockdep_hardirqs_on+0x9c/0x150 [ 110.414575][ T6989] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.414592][ T6989] ? clear_bhb_loop+0x60/0xb0 [ 110.414612][ T6989] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.414628][ T6989] RIP: 0033:0x7feaae18d33c [ 110.414643][ T6989] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 110.414656][ T6989] RSP: 002b:00007feaaf02d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 110.414674][ T6989] RAX: ffffffffffffffda RBX: 00007feaae3b5fa0 RCX: 00007feaae18d33c [ 110.414686][ T6989] RDX: 000000000000000f RSI: 00007feaaf02d0a0 RDI: 0000000000000007 [ 110.414696][ T6989] RBP: 00007feaaf02d090 R08: 0000000000000000 R09: 0000000000000000 [ 110.414707][ T6989] R10: 0000200000000800 R11: 0000000000000246 R12: 0000000000000001 [ 110.414717][ T6989] R13: 0000000000000000 R14: 00007feaae3b5fa0 R15: 00007ffc2b7b8f98 [ 110.414747][ T6989] [ 110.418327][ T6990] tipc: Enabled bearer , priority 10 [ 111.397146][ T7037] netlink: 'syz.1.373': attribute type 27 has an invalid length. [ 111.481545][ T7040] netlink: 12 bytes leftover after parsing attributes in process `syz.4.374'. [ 111.534048][ T6165] tipc: Node number set to 2175806933 [ 111.659882][ T7049] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 111.692685][ T7051] openvswitch: netlink: Key type 30 is not supported [ 112.199838][ T7073] netlink: 24 bytes leftover after parsing attributes in process `syz.0.384'. [ 112.209197][ T7073] tipc: Enabling of bearer rejected, failed to enable media [ 112.335308][ T7080] netlink: 'syz.1.386': attribute type 3 has an invalid length. [ 112.409553][ T7081] netlink: 24 bytes leftover after parsing attributes in process `syz.1.386'. [ 112.442873][ T7083] netlink: 12 bytes leftover after parsing attributes in process `syz.0.388'. [ 112.812408][ T7101] FAULT_INJECTION: forcing a failure. [ 112.812408][ T7101] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 112.833361][ T7101] CPU: 1 UID: 0 PID: 7101 Comm: syz.1.394 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 112.833384][ T7101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 112.833394][ T7101] Call Trace: [ 112.833401][ T7101] [ 112.833409][ T7101] dump_stack_lvl+0x189/0x250 [ 112.833432][ T7101] ? __pfx____ratelimit+0x10/0x10 [ 112.833453][ T7101] ? __pfx_dump_stack_lvl+0x10/0x10 [ 112.833472][ T7101] ? __pfx__printk+0x10/0x10 [ 112.833506][ T7101] should_fail_ex+0x414/0x560 [ 112.833533][ T7101] _copy_to_user+0x31/0xb0 [ 112.833554][ T7101] simple_read_from_buffer+0xe1/0x170 [ 112.833579][ T7101] proc_fail_nth_read+0x1df/0x250 [ 112.833604][ T7101] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 112.833629][ T7101] ? rw_verify_area+0x258/0x650 [ 112.833647][ T7101] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 112.833670][ T7101] vfs_read+0x200/0x980 [ 112.833693][ T7101] ? __pfx___mutex_lock+0x10/0x10 [ 112.833716][ T7101] ? __pfx_vfs_read+0x10/0x10 [ 112.833735][ T7101] ? __fget_files+0x2a/0x420 [ 112.833759][ T7101] ? __fget_files+0x3a0/0x420 [ 112.833778][ T7101] ? __fget_files+0x2a/0x420 [ 112.833807][ T7101] ksys_read+0x145/0x250 [ 112.833828][ T7101] ? __pfx_ksys_read+0x10/0x10 [ 112.833843][ T7101] ? rcu_is_watching+0x15/0xb0 [ 112.833868][ T7101] ? do_syscall_64+0xbe/0x3b0 [ 112.833893][ T7101] do_syscall_64+0xfa/0x3b0 [ 112.833911][ T7101] ? lockdep_hardirqs_on+0x9c/0x150 [ 112.833930][ T7101] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.833947][ T7101] ? clear_bhb_loop+0x60/0xb0 [ 112.833967][ T7101] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.833983][ T7101] RIP: 0033:0x7feaae18d33c [ 112.834006][ T7101] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 112.834020][ T7101] RSP: 002b:00007feaaf02d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 112.834037][ T7101] RAX: ffffffffffffffda RBX: 00007feaae3b5fa0 RCX: 00007feaae18d33c [ 112.834050][ T7101] RDX: 000000000000000f RSI: 00007feaaf02d0a0 RDI: 0000000000000006 [ 112.834060][ T7101] RBP: 00007feaaf02d090 R08: 0000000000000000 R09: 0000000000000000 [ 112.834070][ T7101] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 112.834081][ T7101] R13: 0000000000000000 R14: 00007feaae3b5fa0 R15: 00007ffc2b7b8f98 [ 112.834111][ T7101] [ 113.947710][ T7140] warning: `syz.0.406' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 113.962020][ T7144] FAULT_INJECTION: forcing a failure. [ 113.962020][ T7144] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 113.995877][ T7143] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 113.997119][ T7144] CPU: 0 UID: 0 PID: 7144 Comm: syz.1.409 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 113.997141][ T7144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 113.997151][ T7144] Call Trace: [ 113.997158][ T7144] [ 113.997165][ T7144] dump_stack_lvl+0x189/0x250 [ 113.997190][ T7144] ? __pfx____ratelimit+0x10/0x10 [ 113.997211][ T7144] ? __pfx_dump_stack_lvl+0x10/0x10 [ 113.997230][ T7144] ? __pfx__printk+0x10/0x10 [ 113.997264][ T7144] should_fail_ex+0x414/0x560 [ 113.997291][ T7144] _copy_to_user+0x31/0xb0 [ 113.997312][ T7144] simple_read_from_buffer+0xe1/0x170 [ 113.997337][ T7144] proc_fail_nth_read+0x1df/0x250 [ 113.997361][ T7144] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 113.997385][ T7144] ? rw_verify_area+0x258/0x650 [ 113.997402][ T7144] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 113.997424][ T7144] vfs_read+0x200/0x980 [ 113.997447][ T7144] ? __pfx___mutex_lock+0x10/0x10 [ 113.997468][ T7144] ? __pfx_vfs_read+0x10/0x10 [ 113.997488][ T7144] ? __fget_files+0x2a/0x420 [ 113.997512][ T7144] ? __fget_files+0x3a0/0x420 [ 113.997530][ T7144] ? __fget_files+0x2a/0x420 [ 113.997558][ T7144] ksys_read+0x145/0x250 [ 113.997578][ T7144] ? __pfx_ksys_read+0x10/0x10 [ 113.997602][ T7144] ? do_syscall_64+0xbe/0x3b0 [ 113.997626][ T7144] do_syscall_64+0xfa/0x3b0 [ 113.997654][ T7144] ? lockdep_hardirqs_on+0x9c/0x150 [ 113.997673][ T7144] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.997689][ T7144] ? clear_bhb_loop+0x60/0xb0 [ 113.997709][ T7144] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.997724][ T7144] RIP: 0033:0x7feaae18d33c [ 113.997739][ T7144] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 113.997751][ T7144] RSP: 002b:00007feaaf02d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 113.997768][ T7144] RAX: ffffffffffffffda RBX: 00007feaae3b5fa0 RCX: 00007feaae18d33c [ 113.997779][ T7144] RDX: 000000000000000f RSI: 00007feaaf02d0a0 RDI: 0000000000000003 [ 113.997789][ T7144] RBP: 00007feaaf02d090 R08: 0000000000000000 R09: 0000000000000000 [ 113.997799][ T7144] R10: 000000000000002a R11: 0000000000000246 R12: 0000000000000001 [ 113.997809][ T7144] R13: 0000000000000001 R14: 00007feaae3b5fa0 R15: 00007ffc2b7b8f98 [ 113.997838][ T7144] [ 114.159341][ T7150] syz_tun: entered allmulticast mode [ 114.384896][ T7156] dvmrp1: entered allmulticast mode [ 114.421529][ T7150] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16) [ 115.273728][ T7150] syz_tun: left allmulticast mode [ 115.318203][ T7188] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 115.341816][ T7188] FAULT_INJECTION: forcing a failure. [ 115.341816][ T7188] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 115.364254][ T7188] CPU: 0 UID: 0 PID: 7188 Comm: syz.3.419 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 115.364277][ T7188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 115.364287][ T7188] Call Trace: [ 115.364294][ T7188] [ 115.364302][ T7188] dump_stack_lvl+0x189/0x250 [ 115.364326][ T7188] ? __pfx____ratelimit+0x10/0x10 [ 115.364347][ T7188] ? __pfx_dump_stack_lvl+0x10/0x10 [ 115.364366][ T7188] ? __pfx__printk+0x10/0x10 [ 115.364401][ T7188] should_fail_ex+0x414/0x560 [ 115.364428][ T7188] _copy_to_user+0x31/0xb0 [ 115.364450][ T7188] simple_read_from_buffer+0xe1/0x170 [ 115.364476][ T7188] proc_fail_nth_read+0x1df/0x250 [ 115.364500][ T7188] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 115.364524][ T7188] ? rw_verify_area+0x258/0x650 [ 115.364541][ T7188] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 115.364564][ T7188] vfs_read+0x200/0x980 [ 115.364588][ T7188] ? __pfx___mutex_lock+0x10/0x10 [ 115.364610][ T7188] ? __pfx_vfs_read+0x10/0x10 [ 115.364630][ T7188] ? __fget_files+0x2a/0x420 [ 115.364654][ T7188] ? __fget_files+0x3a0/0x420 [ 115.364673][ T7188] ? __fget_files+0x2a/0x420 [ 115.364702][ T7188] ksys_read+0x145/0x250 [ 115.364723][ T7188] ? __pfx_ksys_read+0x10/0x10 [ 115.364738][ T7188] ? rcu_is_watching+0x15/0xb0 [ 115.364768][ T7188] ? do_syscall_64+0xbe/0x3b0 [ 115.364793][ T7188] do_syscall_64+0xfa/0x3b0 [ 115.364812][ T7188] ? lockdep_hardirqs_on+0x9c/0x150 [ 115.364830][ T7188] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.364847][ T7188] ? clear_bhb_loop+0x60/0xb0 [ 115.364867][ T7188] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.364882][ T7188] RIP: 0033:0x7ff3c558d33c [ 115.364898][ T7188] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 115.364911][ T7188] RSP: 002b:00007ff3c33f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 115.364929][ T7188] RAX: ffffffffffffffda RBX: 00007ff3c57b5fa0 RCX: 00007ff3c558d33c [ 115.364941][ T7188] RDX: 000000000000000f RSI: 00007ff3c33f60a0 RDI: 0000000000000003 [ 115.364951][ T7188] RBP: 00007ff3c33f6090 R08: 0000000000000000 R09: 0000000000000000 [ 115.364961][ T7188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 115.364971][ T7188] R13: 0000000000000000 R14: 00007ff3c57b5fa0 R15: 00007fff2bb2ea68 [ 115.365001][ T7188] [ 115.765161][ T7203] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 115.813023][ T7199] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 115.821711][ T7199] team0: Port device batadv1 added [ 116.117205][ T7218] FAULT_INJECTION: forcing a failure. [ 116.117205][ T7218] name failslab, interval 1, probability 0, space 0, times 0 [ 116.136039][ T7218] CPU: 0 UID: 0 PID: 7218 Comm: syz.1.430 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 116.136063][ T7218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 116.136072][ T7218] Call Trace: [ 116.136079][ T7218] [ 116.136085][ T7218] dump_stack_lvl+0x189/0x250 [ 116.136110][ T7218] ? __pfx____ratelimit+0x10/0x10 [ 116.136130][ T7218] ? __pfx_dump_stack_lvl+0x10/0x10 [ 116.136149][ T7218] ? __pfx__printk+0x10/0x10 [ 116.136175][ T7218] ? __pfx___might_resched+0x10/0x10 [ 116.136198][ T7218] should_fail_ex+0x414/0x560 [ 116.136224][ T7218] ? bpf_test_run_xdp_live+0x18e/0x1b10 [ 116.136243][ T7218] should_failslab+0xa8/0x100 [ 116.136265][ T7218] __kvmalloc_node_noprof+0x161/0x5f0 [ 116.136283][ T7218] ? bpf_test_run_xdp_live+0x18e/0x1b10 [ 116.136309][ T7218] bpf_test_run_xdp_live+0x18e/0x1b10 [ 116.136332][ T7218] ? __mutex_unlock_slowpath+0x1cd/0x700 [ 116.136360][ T7218] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 116.136390][ T7218] ? __pfx_bpf_test_run_xdp_live+0x10/0x10 [ 116.136410][ T7218] ? 0xffffffffa02057c0 [ 116.136426][ T7218] ? 0xffffffffa02057c0 [ 116.136509][ T7218] ? __pfx_xdp_test_run_init_page+0x10/0x10 [ 116.136538][ T7218] ? _copy_from_user+0x94/0xb0 [ 116.136557][ T7218] ? bpf_test_init+0x133/0x170 [ 116.136574][ T7218] ? xdp_convert_md_to_buff+0x5b/0x330 [ 116.136596][ T7218] bpf_prog_test_run_xdp+0x713/0x1000 [ 116.136632][ T7218] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 116.136656][ T7218] ? __fget_files+0x2a/0x420 [ 116.136679][ T7218] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 116.136698][ T7218] bpf_prog_test_run+0x2c4/0x340 [ 116.136718][ T7218] __sys_bpf+0x4a4/0x860 [ 116.136742][ T7218] ? __pfx___sys_bpf+0x10/0x10 [ 116.136774][ T7218] ? ksys_write+0x22a/0x250 [ 116.136794][ T7218] ? __pfx_ksys_write+0x10/0x10 [ 116.136808][ T7218] ? rcu_is_watching+0x15/0xb0 [ 116.136833][ T7218] __x64_sys_bpf+0x7c/0x90 [ 116.136855][ T7218] do_syscall_64+0xfa/0x3b0 [ 116.136874][ T7218] ? lockdep_hardirqs_on+0x9c/0x150 [ 116.136893][ T7218] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.136909][ T7218] ? clear_bhb_loop+0x60/0xb0 [ 116.136929][ T7218] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.136945][ T7218] RIP: 0033:0x7feaae18e929 [ 116.136959][ T7218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 116.136973][ T7218] RSP: 002b:00007feaaf02d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 116.136990][ T7218] RAX: ffffffffffffffda RBX: 00007feaae3b5fa0 RCX: 00007feaae18e929 [ 116.137002][ T7218] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a [ 116.137012][ T7218] RBP: 00007feaaf02d090 R08: 0000000000000000 R09: 0000000000000000 [ 116.137022][ T7218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 116.137031][ T7218] R13: 0000000000000000 R14: 00007feaae3b5fa0 R15: 00007ffc2b7b8f98 [ 116.137057][ T7218] [ 116.377519][ T7224] syzkaller1: entered promiscuous mode [ 116.442978][ T7224] syzkaller1: entered allmulticast mode [ 116.857280][ T7235] __nla_validate_parse: 6 callbacks suppressed [ 116.857296][ T7235] netlink: 4 bytes leftover after parsing attributes in process `syz.0.437'. [ 117.228608][ T7249] FAULT_INJECTION: forcing a failure. [ 117.228608][ T7249] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 117.274369][ T7242] netlink: 8 bytes leftover after parsing attributes in process `syz.1.440'. [ 117.285990][ T7237] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 117.346526][ T7249] CPU: 1 UID: 0 PID: 7249 Comm: syz.0.442 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 117.346551][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 117.346561][ T7249] Call Trace: [ 117.346568][ T7249] [ 117.346575][ T7249] dump_stack_lvl+0x189/0x250 [ 117.346598][ T7249] ? __pfx____ratelimit+0x10/0x10 [ 117.346618][ T7249] ? __pfx_dump_stack_lvl+0x10/0x10 [ 117.346636][ T7249] ? __pfx__printk+0x10/0x10 [ 117.346669][ T7249] should_fail_ex+0x414/0x560 [ 117.346696][ T7249] _copy_to_user+0x31/0xb0 [ 117.346718][ T7249] simple_read_from_buffer+0xe1/0x170 [ 117.346743][ T7249] proc_fail_nth_read+0x1df/0x250 [ 117.346767][ T7249] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 117.346791][ T7249] ? rw_verify_area+0x258/0x650 [ 117.346808][ T7249] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 117.346830][ T7249] vfs_read+0x200/0x980 [ 117.346853][ T7249] ? __pfx___mutex_lock+0x10/0x10 [ 117.346875][ T7249] ? __pfx_vfs_read+0x10/0x10 [ 117.346895][ T7249] ? __fget_files+0x2a/0x420 [ 117.346918][ T7249] ? __fget_files+0x3a0/0x420 [ 117.346935][ T7249] ? __fget_files+0x2a/0x420 [ 117.346973][ T7249] ksys_read+0x145/0x250 [ 117.346992][ T7249] ? __pfx_ksys_read+0x10/0x10 [ 117.347009][ T7249] ? rcu_is_watching+0x15/0xb0 [ 117.347028][ T7249] ? trace_sys_enter+0x25/0x120 [ 117.347050][ T7249] do_syscall_64+0xfa/0x3b0 [ 117.347069][ T7249] ? lockdep_hardirqs_on+0x9c/0x150 [ 117.347088][ T7249] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.347104][ T7249] ? clear_bhb_loop+0x60/0xb0 [ 117.347123][ T7249] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.347139][ T7249] RIP: 0033:0x7fe8caf8d33c [ 117.347154][ T7249] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 117.347167][ T7249] RSP: 002b:00007fe8c8dd5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 117.347184][ T7249] RAX: ffffffffffffffda RBX: 00007fe8cb1b6080 RCX: 00007fe8caf8d33c [ 117.347196][ T7249] RDX: 000000000000000f RSI: 00007fe8c8dd50a0 RDI: 0000000000000006 [ 117.347205][ T7249] RBP: 00007fe8c8dd5090 R08: 0000000000000000 R09: 0000000000000000 [ 117.347214][ T7249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 117.347223][ T7249] R13: 0000000000000001 R14: 00007fe8cb1b6080 R15: 00007ffc3a8733c8 [ 117.347252][ T7249] [ 117.435571][ T7254] syzkaller1: entered promiscuous mode [ 117.614053][ T7254] syzkaller1: entered allmulticast mode [ 117.728619][ T7256] FAULT_INJECTION: forcing a failure. [ 117.728619][ T7256] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 117.759706][ T7256] CPU: 0 UID: 0 PID: 7256 Comm: syz.0.446 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 117.759730][ T7256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 117.759740][ T7256] Call Trace: [ 117.759748][ T7256] [ 117.759755][ T7256] dump_stack_lvl+0x189/0x250 [ 117.759779][ T7256] ? __pfx____ratelimit+0x10/0x10 [ 117.759800][ T7256] ? __pfx_dump_stack_lvl+0x10/0x10 [ 117.759819][ T7256] ? __pfx__printk+0x10/0x10 [ 117.759855][ T7256] should_fail_ex+0x414/0x560 [ 117.759883][ T7256] _copy_to_user+0x31/0xb0 [ 117.759904][ T7256] simple_read_from_buffer+0xe1/0x170 [ 117.759930][ T7256] proc_fail_nth_read+0x1df/0x250 [ 117.759955][ T7256] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 117.759980][ T7256] ? rw_verify_area+0x258/0x650 [ 117.759997][ T7256] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 117.760020][ T7256] vfs_read+0x200/0x980 [ 117.760044][ T7256] ? __pfx___mutex_lock+0x10/0x10 [ 117.760066][ T7256] ? __pfx_vfs_read+0x10/0x10 [ 117.760086][ T7256] ? __fget_files+0x2a/0x420 [ 117.760110][ T7256] ? __fget_files+0x3a0/0x420 [ 117.760128][ T7256] ? __fget_files+0x2a/0x420 [ 117.760158][ T7256] ksys_read+0x145/0x250 [ 117.760179][ T7256] ? __pfx_ksys_read+0x10/0x10 [ 117.760204][ T7256] ? do_syscall_64+0xbe/0x3b0 [ 117.760228][ T7256] do_syscall_64+0xfa/0x3b0 [ 117.760247][ T7256] ? lockdep_hardirqs_on+0x9c/0x150 [ 117.760266][ T7256] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.760282][ T7256] ? clear_bhb_loop+0x60/0xb0 [ 117.760303][ T7256] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.760319][ T7256] RIP: 0033:0x7fe8caf8d33c [ 117.760334][ T7256] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 117.760347][ T7256] RSP: 002b:00007fe8c8df6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 117.760364][ T7256] RAX: ffffffffffffffda RBX: 00007fe8cb1b5fa0 RCX: 00007fe8caf8d33c [ 117.760377][ T7256] RDX: 000000000000000f RSI: 00007fe8c8df60a0 RDI: 0000000000000003 [ 117.760387][ T7256] RBP: 00007fe8c8df6090 R08: 0000000000000000 R09: 0000000000000000 [ 117.760398][ T7256] R10: 000000000000002a R11: 0000000000000246 R12: 0000000000000001 [ 117.760408][ T7256] R13: 0000000000000001 R14: 00007fe8cb1b5fa0 R15: 00007ffc3a8733c8 [ 117.760439][ T7256] [ 118.016517][ T7261] netlink: 16 bytes leftover after parsing attributes in process `syz.1.447'. [ 118.141382][ T7262] FAULT_INJECTION: forcing a failure. [ 118.141382][ T7262] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 118.172753][ T7262] CPU: 0 UID: 0 PID: 7262 Comm: syz.2.448 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 118.172779][ T7262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 118.172789][ T7262] Call Trace: [ 118.172796][ T7262] [ 118.172803][ T7262] dump_stack_lvl+0x189/0x250 [ 118.172827][ T7262] ? __pfx____ratelimit+0x10/0x10 [ 118.172847][ T7262] ? __pfx_dump_stack_lvl+0x10/0x10 [ 118.172865][ T7262] ? __pfx__printk+0x10/0x10 [ 118.172885][ T7262] ? __might_fault+0xb0/0x130 [ 118.172914][ T7262] should_fail_ex+0x414/0x560 [ 118.172940][ T7262] _copy_from_iter+0x1db/0x16f0 [ 118.172962][ T7262] ? rcu_is_watching+0x15/0xb0 [ 118.172982][ T7262] ? kmem_cache_alloc_node_noprof+0x217/0x3c0 [ 118.173004][ T7262] ? __pfx__copy_from_iter+0x10/0x10 [ 118.173023][ T7262] ? __build_skb_around+0x257/0x3e0 [ 118.173048][ T7262] ? netlink_sendmsg+0x642/0xb30 [ 118.173066][ T7262] ? skb_put+0x11b/0x210 [ 118.173091][ T7262] netlink_sendmsg+0x6b2/0xb30 [ 118.173121][ T7262] ? __pfx_netlink_sendmsg+0x10/0x10 [ 118.173143][ T7262] ? aa_sock_msg_perm+0x94/0x160 [ 118.173166][ T7262] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 118.173187][ T7262] ? __pfx_netlink_sendmsg+0x10/0x10 [ 118.173208][ T7262] __sock_sendmsg+0x219/0x270 [ 118.173231][ T7262] ____sys_sendmsg+0x505/0x830 [ 118.173259][ T7262] ? __pfx_____sys_sendmsg+0x10/0x10 [ 118.173290][ T7262] ? import_iovec+0x74/0xa0 [ 118.173312][ T7262] ___sys_sendmsg+0x21f/0x2a0 [ 118.173331][ T7262] ? __pfx____sys_sendmsg+0x10/0x10 [ 118.173392][ T7262] ? __fget_files+0x2a/0x420 [ 118.173410][ T7262] ? __fget_files+0x3a0/0x420 [ 118.173440][ T7262] __x64_sys_sendmsg+0x19b/0x260 [ 118.173459][ T7262] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 118.173486][ T7262] ? __pfx_ksys_write+0x10/0x10 [ 118.173501][ T7262] ? rcu_is_watching+0x15/0xb0 [ 118.173524][ T7262] ? do_syscall_64+0xbe/0x3b0 [ 118.173548][ T7262] do_syscall_64+0xfa/0x3b0 [ 118.173567][ T7262] ? lockdep_hardirqs_on+0x9c/0x150 [ 118.173586][ T7262] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.173601][ T7262] ? clear_bhb_loop+0x60/0xb0 [ 118.173620][ T7262] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.173635][ T7262] RIP: 0033:0x7f1c33d8e929 [ 118.173650][ T7262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 118.173665][ T7262] RSP: 002b:00007f1c34c5e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 118.173682][ T7262] RAX: ffffffffffffffda RBX: 00007f1c33fb6080 RCX: 00007f1c33d8e929 [ 118.173695][ T7262] RDX: 0000000000000000 RSI: 0000200000003f40 RDI: 0000000000000005 [ 118.173705][ T7262] RBP: 00007f1c34c5e090 R08: 0000000000000000 R09: 0000000000000000 [ 118.173715][ T7262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 118.173725][ T7262] R13: 0000000000000000 R14: 00007f1c33fb6080 R15: 00007ffd47c094b8 [ 118.173754][ T7262] [ 118.614829][ T7271] FAULT_INJECTION: forcing a failure. [ 118.614829][ T7271] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 118.688339][ T7271] CPU: 1 UID: 0 PID: 7271 Comm: syz.4.452 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 118.688365][ T7271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 118.688375][ T7271] Call Trace: [ 118.688383][ T7271] [ 118.688391][ T7271] dump_stack_lvl+0x189/0x250 [ 118.688415][ T7271] ? __pfx____ratelimit+0x10/0x10 [ 118.688436][ T7271] ? __pfx_dump_stack_lvl+0x10/0x10 [ 118.688454][ T7271] ? __pfx__printk+0x10/0x10 [ 118.688490][ T7271] should_fail_ex+0x414/0x560 [ 118.688517][ T7271] _copy_to_user+0x31/0xb0 [ 118.688540][ T7271] simple_read_from_buffer+0xe1/0x170 [ 118.688565][ T7271] proc_fail_nth_read+0x1df/0x250 [ 118.688590][ T7271] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 118.688615][ T7271] ? rw_verify_area+0x258/0x650 [ 118.688632][ T7271] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 118.688656][ T7271] vfs_read+0x200/0x980 [ 118.688680][ T7271] ? __pfx___mutex_lock+0x10/0x10 [ 118.688702][ T7271] ? __pfx_vfs_read+0x10/0x10 [ 118.688723][ T7271] ? __fget_files+0x2a/0x420 [ 118.688748][ T7271] ? __fget_files+0x3a0/0x420 [ 118.688766][ T7271] ? __fget_files+0x2a/0x420 [ 118.688796][ T7271] ksys_read+0x145/0x250 [ 118.688817][ T7271] ? __pfx_ksys_read+0x10/0x10 [ 118.688842][ T7271] ? do_syscall_64+0xbe/0x3b0 [ 118.688867][ T7271] do_syscall_64+0xfa/0x3b0 [ 118.688885][ T7271] ? lockdep_hardirqs_on+0x9c/0x150 [ 118.688905][ T7271] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.688921][ T7271] ? clear_bhb_loop+0x60/0xb0 [ 118.688942][ T7271] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.688958][ T7271] RIP: 0033:0x7f6719d8d33c [ 118.688973][ T7271] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 118.688987][ T7271] RSP: 002b:00007f6717bf6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 118.689006][ T7271] RAX: ffffffffffffffda RBX: 00007f6719fb5fa0 RCX: 00007f6719d8d33c [ 118.689018][ T7271] RDX: 000000000000000f RSI: 00007f6717bf60a0 RDI: 0000000000000005 [ 118.689029][ T7271] RBP: 00007f6717bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 118.689040][ T7271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 118.689050][ T7271] R13: 0000000000000000 R14: 00007f6719fb5fa0 R15: 00007fff8e12c638 [ 118.689079][ T7271] [ 118.703334][ T7277] netlink: 'syz.3.455': attribute type 1 has an invalid length. [ 118.971678][ T7277] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 119.017113][ T7286] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 119.536254][ T7298] syzkaller1: entered promiscuous mode [ 119.541747][ T7298] syzkaller1: entered allmulticast mode [ 119.651650][ T7309] FAULT_INJECTION: forcing a failure. [ 119.651650][ T7309] name failslab, interval 1, probability 0, space 0, times 0 [ 119.664432][ T7309] CPU: 0 UID: 0 PID: 7309 Comm: syz.1.466 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 119.664456][ T7309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 119.664466][ T7309] Call Trace: [ 119.664473][ T7309] [ 119.664481][ T7309] dump_stack_lvl+0x189/0x250 [ 119.664504][ T7309] ? __pfx____ratelimit+0x10/0x10 [ 119.664526][ T7309] ? __pfx_dump_stack_lvl+0x10/0x10 [ 119.664545][ T7309] ? __pfx__printk+0x10/0x10 [ 119.664574][ T7309] ? ref_tracker_alloc+0x318/0x460 [ 119.664599][ T7309] should_fail_ex+0x414/0x560 [ 119.664626][ T7309] should_failslab+0xa8/0x100 [ 119.664648][ T7309] kmem_cache_alloc_noprof+0x73/0x3c0 [ 119.664667][ T7309] ? skb_clone+0x212/0x3a0 [ 119.664689][ T7309] skb_clone+0x212/0x3a0 [ 119.664710][ T7309] __netlink_deliver_tap+0x404/0x850 [ 119.664745][ T7309] ? netlink_deliver_tap+0x2e/0x1b0 [ 119.664768][ T7309] netlink_deliver_tap+0x19c/0x1b0 [ 119.664790][ T7309] netlink_unicast+0x730/0x8e0 [ 119.664821][ T7309] netlink_sendmsg+0x805/0xb30 [ 119.664853][ T7309] ? __pfx_netlink_sendmsg+0x10/0x10 [ 119.664878][ T7309] ? aa_sock_msg_perm+0x94/0x160 [ 119.664902][ T7309] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 119.664924][ T7309] ? __pfx_netlink_sendmsg+0x10/0x10 [ 119.664946][ T7309] __sock_sendmsg+0x219/0x270 [ 119.664969][ T7309] ____sys_sendmsg+0x505/0x830 [ 119.664998][ T7309] ? __pfx_____sys_sendmsg+0x10/0x10 [ 119.665031][ T7309] ? import_iovec+0x74/0xa0 [ 119.665053][ T7309] ___sys_sendmsg+0x21f/0x2a0 [ 119.665072][ T7309] ? __pfx____sys_sendmsg+0x10/0x10 [ 119.665135][ T7309] ? __fget_files+0x2a/0x420 [ 119.665154][ T7309] ? __fget_files+0x3a0/0x420 [ 119.665186][ T7309] __x64_sys_sendmsg+0x19b/0x260 [ 119.665205][ T7309] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 119.665233][ T7309] ? __pfx_ksys_write+0x10/0x10 [ 119.665249][ T7309] ? rcu_is_watching+0x15/0xb0 [ 119.665274][ T7309] ? do_syscall_64+0xbe/0x3b0 [ 119.665300][ T7309] do_syscall_64+0xfa/0x3b0 [ 119.665318][ T7309] ? lockdep_hardirqs_on+0x9c/0x150 [ 119.665338][ T7309] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.665355][ T7309] ? clear_bhb_loop+0x60/0xb0 [ 119.665374][ T7309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.665391][ T7309] RIP: 0033:0x7feaae18e929 [ 119.665406][ T7309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 119.665421][ T7309] RSP: 002b:00007feaaf02d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 119.665439][ T7309] RAX: ffffffffffffffda RBX: 00007feaae3b5fa0 RCX: 00007feaae18e929 [ 119.665452][ T7309] RDX: 0000000000004000 RSI: 0000200000000040 RDI: 0000000000000003 [ 119.665463][ T7309] RBP: 00007feaaf02d090 R08: 0000000000000000 R09: 0000000000000000 [ 119.665474][ T7309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 119.665484][ T7309] R13: 0000000000000000 R14: 00007feaae3b5fa0 R15: 00007ffc2b7b8f98 [ 119.665514][ T7309] [ 120.143575][ T7325] netlink: 8 bytes leftover after parsing attributes in process `syz.4.471'. [ 120.275816][ T7330] FAULT_INJECTION: forcing a failure. [ 120.275816][ T7330] name failslab, interval 1, probability 0, space 0, times 0 [ 120.356207][ T7330] CPU: 0 UID: 0 PID: 7330 Comm: syz.2.473 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 120.356232][ T7330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 120.356242][ T7330] Call Trace: [ 120.356249][ T7330] [ 120.356257][ T7330] dump_stack_lvl+0x189/0x250 [ 120.356279][ T7330] ? __pfx____ratelimit+0x10/0x10 [ 120.356301][ T7330] ? __pfx_dump_stack_lvl+0x10/0x10 [ 120.356320][ T7330] ? __pfx__printk+0x10/0x10 [ 120.356345][ T7330] ? ref_tracker_alloc+0x318/0x460 [ 120.356370][ T7330] should_fail_ex+0x414/0x560 [ 120.356397][ T7330] should_failslab+0xa8/0x100 [ 120.356419][ T7330] kmem_cache_alloc_noprof+0x73/0x3c0 [ 120.356437][ T7330] ? skb_clone+0x212/0x3a0 [ 120.356458][ T7330] skb_clone+0x212/0x3a0 [ 120.356477][ T7330] __netlink_deliver_tap+0x404/0x850 [ 120.356511][ T7330] ? netlink_deliver_tap+0x2e/0x1b0 [ 120.356534][ T7330] netlink_deliver_tap+0x19c/0x1b0 [ 120.356556][ T7330] netlink_unicast+0x730/0x8e0 [ 120.356587][ T7330] netlink_sendmsg+0x805/0xb30 [ 120.356617][ T7330] ? __pfx_netlink_sendmsg+0x10/0x10 [ 120.356641][ T7330] ? aa_sock_msg_perm+0x94/0x160 [ 120.356665][ T7330] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 120.356686][ T7330] ? __pfx_netlink_sendmsg+0x10/0x10 [ 120.356706][ T7330] __sock_sendmsg+0x219/0x270 [ 120.356729][ T7330] ____sys_sendmsg+0x505/0x830 [ 120.356758][ T7330] ? __pfx_____sys_sendmsg+0x10/0x10 [ 120.356791][ T7330] ? import_iovec+0x74/0xa0 [ 120.356814][ T7330] ___sys_sendmsg+0x21f/0x2a0 [ 120.356833][ T7330] ? __pfx____sys_sendmsg+0x10/0x10 [ 120.356889][ T7330] ? __fget_files+0x2a/0x420 [ 120.356907][ T7330] ? __fget_files+0x3a0/0x420 [ 120.356939][ T7330] __x64_sys_sendmsg+0x19b/0x260 [ 120.356959][ T7330] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 120.356985][ T7330] ? __pfx_ksys_write+0x10/0x10 [ 120.357001][ T7330] ? rcu_is_watching+0x15/0xb0 [ 120.357026][ T7330] ? do_syscall_64+0xbe/0x3b0 [ 120.357050][ T7330] do_syscall_64+0xfa/0x3b0 [ 120.357075][ T7330] ? lockdep_hardirqs_on+0x9c/0x150 [ 120.357094][ T7330] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.357110][ T7330] ? clear_bhb_loop+0x60/0xb0 [ 120.357126][ T7330] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.357142][ T7330] RIP: 0033:0x7f1c33d8e929 [ 120.357155][ T7330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 120.357167][ T7330] RSP: 002b:00007f1c34c7f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 120.357186][ T7330] RAX: ffffffffffffffda RBX: 00007f1c33fb5fa0 RCX: 00007f1c33d8e929 [ 120.357198][ T7330] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000005 [ 120.357208][ T7330] RBP: 00007f1c34c7f090 R08: 0000000000000000 R09: 0000000000000000 [ 120.357219][ T7330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 120.357229][ T7330] R13: 0000000000000000 R14: 00007f1c33fb5fa0 R15: 00007ffd47c094b8 [ 120.357258][ T7330] [ 120.934966][ T7336] ieee802154 phy0 wpan0: encryption failed: -22 [ 120.986653][ T7336] ieee802154 phy0 wpan0: encryption failed: -22 [ 121.039461][ T7341] geneve0: entered promiscuous mode [ 121.047951][ T7341] netlink: 'syz.2.478': attribute type 5 has an invalid length. [ 121.264779][ T7347] netlink: 52 bytes leftover after parsing attributes in process `syz.2.482'. [ 121.299602][ T7350] syzkaller1: entered promiscuous mode [ 121.314352][ T7350] syzkaller1: entered allmulticast mode [ 121.342103][ T7353] netlink: 'syz.1.480': attribute type 13 has an invalid length. [ 121.616491][ T7357] netlink: 16 bytes leftover after parsing attributes in process `syz.3.483'. [ 121.894613][ T7374] netlink: 32 bytes leftover after parsing attributes in process `syz.3.487'. [ 121.945864][ T7374] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 121.953114][ T7374] IPv6: NLM_F_CREATE should be set when creating new route [ 122.017349][ T7379] FAULT_INJECTION: forcing a failure. [ 122.017349][ T7379] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 122.061729][ T7379] CPU: 0 UID: 0 PID: 7379 Comm: syz.2.488 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 122.061754][ T7379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 122.061765][ T7379] Call Trace: [ 122.061772][ T7379] [ 122.061779][ T7379] dump_stack_lvl+0x189/0x250 [ 122.061811][ T7379] ? __pfx____ratelimit+0x10/0x10 [ 122.061832][ T7379] ? __pfx_dump_stack_lvl+0x10/0x10 [ 122.061851][ T7379] ? __pfx__printk+0x10/0x10 [ 122.061886][ T7379] should_fail_ex+0x414/0x560 [ 122.061913][ T7379] _copy_to_user+0x31/0xb0 [ 122.061935][ T7379] ip_tunnel_parm_to_user+0x2c9/0x3d0 [ 122.061959][ T7379] ? __pfx_ip_tunnel_parm_to_user+0x10/0x10 [ 122.061987][ T7379] ? rcu_is_watching+0x15/0xb0 [ 122.062014][ T7379] ip_tunnel_siocdevprivate+0x168/0x180 [ 122.062037][ T7379] ? __pfx_ip_tunnel_siocdevprivate+0x10/0x10 [ 122.062068][ T7379] ? netdev_name_node_lookup+0xdf/0x120 [ 122.062090][ T7379] dev_ifsioc+0xb54/0xf00 [ 122.062121][ T7379] dev_ioctl+0x84c/0x1150 [ 122.062143][ T7379] sock_ioctl+0x719/0x790 [ 122.062171][ T7379] ? __pfx_sock_ioctl+0x10/0x10 [ 122.062192][ T7379] ? __fget_files+0x3a0/0x420 [ 122.062211][ T7379] ? __fget_files+0x2a/0x420 [ 122.062235][ T7379] ? bpf_lsm_file_ioctl+0x9/0x20 [ 122.062252][ T7379] ? __pfx_sock_ioctl+0x10/0x10 [ 122.062270][ T7379] __se_sys_ioctl+0xfc/0x170 [ 122.062290][ T7379] do_syscall_64+0xfa/0x3b0 [ 122.062309][ T7379] ? lockdep_hardirqs_on+0x9c/0x150 [ 122.062328][ T7379] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.062343][ T7379] ? clear_bhb_loop+0x60/0xb0 [ 122.062363][ T7379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.062378][ T7379] RIP: 0033:0x7f1c33d8e929 [ 122.062397][ T7379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.062412][ T7379] RSP: 002b:00007f1c34c7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 122.062432][ T7379] RAX: ffffffffffffffda RBX: 00007f1c33fb5fa0 RCX: 00007f1c33d8e929 [ 122.062444][ T7379] RDX: 0000200000000040 RSI: 00000000000089f0 RDI: 0000000000000003 [ 122.062454][ T7379] RBP: 00007f1c34c7f090 R08: 0000000000000000 R09: 0000000000000000 [ 122.062465][ T7379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 122.062474][ T7379] R13: 0000000000000000 R14: 00007f1c33fb5fa0 R15: 00007ffd47c094b8 [ 122.062502][ T7379] [ 122.336060][ T7386] IPVS: length: 148 != 24 [ 122.416998][ T7390] FAULT_INJECTION: forcing a failure. [ 122.416998][ T7390] name failslab, interval 1, probability 0, space 0, times 0 [ 122.441319][ T7392] netlink: 8 bytes leftover after parsing attributes in process `syz.0.493'. [ 122.496922][ T7390] CPU: 0 UID: 0 PID: 7390 Comm: syz.3.492 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 122.496947][ T7390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 122.496957][ T7390] Call Trace: [ 122.496964][ T7390] [ 122.496972][ T7390] dump_stack_lvl+0x189/0x250 [ 122.496996][ T7390] ? __pfx____ratelimit+0x10/0x10 [ 122.497018][ T7390] ? __pfx_dump_stack_lvl+0x10/0x10 [ 122.497038][ T7390] ? __pfx__printk+0x10/0x10 [ 122.497066][ T7390] ? ref_tracker_alloc+0x318/0x460 [ 122.497092][ T7390] should_fail_ex+0x414/0x560 [ 122.497128][ T7390] should_failslab+0xa8/0x100 [ 122.497150][ T7390] kmem_cache_alloc_noprof+0x73/0x3c0 [ 122.497169][ T7390] ? skb_clone+0x212/0x3a0 [ 122.497189][ T7390] skb_clone+0x212/0x3a0 [ 122.497209][ T7390] __netlink_deliver_tap+0x404/0x850 [ 122.497242][ T7390] ? netlink_deliver_tap+0x2e/0x1b0 [ 122.497263][ T7390] netlink_deliver_tap+0x19c/0x1b0 [ 122.497285][ T7390] netlink_unicast+0x730/0x8e0 [ 122.497315][ T7390] netlink_sendmsg+0x805/0xb30 [ 122.497344][ T7390] ? __pfx_netlink_sendmsg+0x10/0x10 [ 122.497368][ T7390] ? aa_sock_msg_perm+0x94/0x160 [ 122.497392][ T7390] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 122.497412][ T7390] ? __pfx_netlink_sendmsg+0x10/0x10 [ 122.497433][ T7390] __sock_sendmsg+0x219/0x270 [ 122.497456][ T7390] ____sys_sendmsg+0x505/0x830 [ 122.497485][ T7390] ? __pfx_____sys_sendmsg+0x10/0x10 [ 122.497519][ T7390] ? import_iovec+0x74/0xa0 [ 122.497543][ T7390] ___sys_sendmsg+0x21f/0x2a0 [ 122.497562][ T7390] ? __pfx____sys_sendmsg+0x10/0x10 [ 122.497620][ T7390] ? __fget_files+0x2a/0x420 [ 122.497639][ T7390] ? __fget_files+0x3a0/0x420 [ 122.497670][ T7390] __x64_sys_sendmsg+0x19b/0x260 [ 122.497689][ T7390] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 122.497716][ T7390] ? __pfx_ksys_write+0x10/0x10 [ 122.497731][ T7390] ? rcu_is_watching+0x15/0xb0 [ 122.497756][ T7390] ? do_syscall_64+0xbe/0x3b0 [ 122.497781][ T7390] do_syscall_64+0xfa/0x3b0 [ 122.497800][ T7390] ? lockdep_hardirqs_on+0x9c/0x150 [ 122.497820][ T7390] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.497837][ T7390] ? clear_bhb_loop+0x60/0xb0 [ 122.497857][ T7390] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.497872][ T7390] RIP: 0033:0x7ff3c558e929 [ 122.497888][ T7390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.497903][ T7390] RSP: 002b:00007ff3c33f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 122.497921][ T7390] RAX: ffffffffffffffda RBX: 00007ff3c57b5fa0 RCX: 00007ff3c558e929 [ 122.497933][ T7390] RDX: 0000000004000000 RSI: 00002000000002c0 RDI: 0000000000000004 [ 122.497944][ T7390] RBP: 00007ff3c33f6090 R08: 0000000000000000 R09: 0000000000000000 [ 122.497954][ T7390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 122.497964][ T7390] R13: 0000000000000000 R14: 00007ff3c57b5fa0 R15: 00007fff2bb2ea68 [ 122.497994][ T7390] [ 122.499101][ T7394] netlink: 8 bytes leftover after parsing attributes in process `syz.0.493'. [ 122.513803][ T7398] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 122.876770][ T7408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.497'. [ 122.886661][ T7407] syzkaller1: entered promiscuous mode [ 122.916305][ T7407] syzkaller1: entered allmulticast mode [ 123.183186][ T7414] netlink: 'syz.1.498': attribute type 21 has an invalid length. [ 123.511503][ T7421] netlink: 8 bytes leftover after parsing attributes in process `syz.3.500'. [ 123.556373][ T7421] netlink: 8 bytes leftover after parsing attributes in process `syz.3.500'. [ 123.580897][ T7420] tipc: Enabled bearer , priority 0 [ 123.587367][ T7425] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 123.619209][ T7419] tipc: Disabling bearer [ 124.343471][ T7453] syzkaller1: entered promiscuous mode [ 124.366537][ T7453] syzkaller1: entered allmulticast mode [ 124.439333][ T7458] FAULT_INJECTION: forcing a failure. [ 124.439333][ T7458] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 124.494324][ T7458] CPU: 0 UID: 0 PID: 7458 Comm: syz.1.512 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 124.494349][ T7458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 124.494360][ T7458] Call Trace: [ 124.494368][ T7458] [ 124.494375][ T7458] dump_stack_lvl+0x189/0x250 [ 124.494399][ T7458] ? __pfx____ratelimit+0x10/0x10 [ 124.494421][ T7458] ? __pfx_dump_stack_lvl+0x10/0x10 [ 124.494441][ T7458] ? __pfx__printk+0x10/0x10 [ 124.494475][ T7458] should_fail_ex+0x414/0x560 [ 124.494502][ T7458] _copy_to_user+0x31/0xb0 [ 124.494524][ T7458] map_get_next_key+0x48b/0x5f0 [ 124.494541][ T7458] ? map_get_next_key+0x269/0x5f0 [ 124.494561][ T7458] __sys_bpf+0x7bf/0x860 [ 124.494585][ T7458] ? __pfx___sys_bpf+0x10/0x10 [ 124.494621][ T7458] ? ksys_write+0x22a/0x250 [ 124.494642][ T7458] ? __pfx_ksys_write+0x10/0x10 [ 124.494659][ T7458] ? rcu_is_watching+0x15/0xb0 [ 124.494685][ T7458] __x64_sys_bpf+0x7c/0x90 [ 124.494708][ T7458] do_syscall_64+0xfa/0x3b0 [ 124.494726][ T7458] ? lockdep_hardirqs_on+0x9c/0x150 [ 124.494746][ T7458] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.494762][ T7458] ? clear_bhb_loop+0x60/0xb0 [ 124.494783][ T7458] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.494799][ T7458] RIP: 0033:0x7feaae18e929 [ 124.494830][ T7458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 124.494845][ T7458] RSP: 002b:00007feaaf02d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 124.494864][ T7458] RAX: ffffffffffffffda RBX: 00007feaae3b5fa0 RCX: 00007feaae18e929 [ 124.494876][ T7458] RDX: 0000000000000020 RSI: 00002000000001c0 RDI: 0000000000000004 [ 124.494887][ T7458] RBP: 00007feaaf02d090 R08: 0000000000000000 R09: 0000000000000000 [ 124.494898][ T7458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 124.494908][ T7458] R13: 0000000000000000 R14: 00007feaae3b5fa0 R15: 00007ffc2b7b8f98 [ 124.494937][ T7458] [ 124.723012][ T7462] netlink: 156 bytes leftover after parsing attributes in process `syz.4.515'. [ 124.865547][ T7464] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 124.913169][ T7468] netlink: 8 bytes leftover after parsing attributes in process `syz.2.517'. [ 124.951040][ T5924] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01) [ 124.971347][ T5924] wlan1: send auth to 08:02:11:00:00:00 (try 1/3) [ 124.996371][ T7464] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 125.016481][ T6961] wlan1: authenticated [ 125.033916][ T6961] wlan1: associate with 08:02:11:00:00:00 (try 1/3) [ 125.077645][ T7464] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 125.087592][ T36] wlan1: RX AssocResp from 08:02:11:00:00:00 (capab=0x1 status=0 aid=1) [ 125.122162][ T36] wlan1: associated [ 125.144328][ T7465] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 125.170822][ T7472] syzkaller0: entered promiscuous mode [ 125.179407][ T7472] syzkaller0: entered allmulticast mode [ 125.185277][ T7484] FAULT_INJECTION: forcing a failure. [ 125.185277][ T7484] name failslab, interval 1, probability 0, space 0, times 0 [ 125.211397][ T7484] CPU: 0 UID: 0 PID: 7484 Comm: syz.2.522 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 125.211420][ T7484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 125.211431][ T7484] Call Trace: [ 125.211438][ T7484] [ 125.211446][ T7484] dump_stack_lvl+0x189/0x250 [ 125.211469][ T7484] ? __pfx____ratelimit+0x10/0x10 [ 125.211490][ T7484] ? __pfx_dump_stack_lvl+0x10/0x10 [ 125.211509][ T7484] ? __pfx__printk+0x10/0x10 [ 125.211533][ T7484] ? __pfx___might_resched+0x10/0x10 [ 125.211551][ T7484] ? fs_reclaim_acquire+0x7d/0x100 [ 125.211577][ T7484] should_fail_ex+0x414/0x560 [ 125.211602][ T7484] should_failslab+0xa8/0x100 [ 125.211624][ T7484] __kmalloc_cache_node_noprof+0x73/0x3d0 [ 125.211642][ T7484] ? __kvmalloc_node_noprof+0x527/0x5f0 [ 125.211658][ T7484] ? page_pool_create_percpu+0x76/0xbe0 [ 125.211681][ T7484] page_pool_create_percpu+0x76/0xbe0 [ 125.211698][ T7484] ? __kvmalloc_node_noprof+0x331/0x5f0 [ 125.211717][ T7484] ? bpf_test_run_xdp_live+0x1b5/0x1b10 [ 125.211743][ T7484] bpf_test_run_xdp_live+0x1ca/0x1b10 [ 125.211767][ T7484] ? __mutex_unlock_slowpath+0x1cd/0x700 [ 125.211796][ T7484] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 125.211826][ T7484] ? __pfx_bpf_test_run_xdp_live+0x10/0x10 [ 125.211853][ T7484] ? 0xffffffffa02057c0 [ 125.211869][ T7484] ? 0xffffffffa02057c0 [ 125.211931][ T7484] ? __pfx_xdp_test_run_init_page+0x10/0x10 [ 125.211961][ T7484] ? _copy_from_user+0x94/0xb0 [ 125.211980][ T7484] ? bpf_test_init+0x133/0x170 [ 125.211999][ T7484] ? xdp_convert_md_to_buff+0x5b/0x330 [ 125.212022][ T7484] bpf_prog_test_run_xdp+0x713/0x1000 [ 125.212060][ T7484] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 125.212086][ T7484] ? __fget_files+0x2a/0x420 [ 125.212112][ T7484] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 125.212134][ T7484] bpf_prog_test_run+0x2c4/0x340 [ 125.212156][ T7484] __sys_bpf+0x4a4/0x860 [ 125.212181][ T7484] ? __pfx___sys_bpf+0x10/0x10 [ 125.212217][ T7484] ? ksys_write+0x22a/0x250 [ 125.212238][ T7484] ? __pfx_ksys_write+0x10/0x10 [ 125.212254][ T7484] ? rcu_is_watching+0x15/0xb0 [ 125.212281][ T7484] __x64_sys_bpf+0x7c/0x90 [ 125.212303][ T7484] do_syscall_64+0xfa/0x3b0 [ 125.212322][ T7484] ? lockdep_hardirqs_on+0x9c/0x150 [ 125.212341][ T7484] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.212358][ T7484] ? clear_bhb_loop+0x60/0xb0 [ 125.212379][ T7484] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.212399][ T7484] RIP: 0033:0x7f1c33d8e929 [ 125.212414][ T7484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.212428][ T7484] RSP: 002b:00007f1c34c7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 125.212446][ T7484] RAX: ffffffffffffffda RBX: 00007f1c33fb5fa0 RCX: 00007f1c33d8e929 [ 125.212459][ T7484] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a [ 125.212470][ T7484] RBP: 00007f1c34c7f090 R08: 0000000000000000 R09: 0000000000000000 [ 125.212481][ T7484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 125.212491][ T7484] R13: 0000000000000000 R14: 00007f1c33fb5fa0 R15: 00007ffd47c094b8 [ 125.212519][ T7484] [ 126.024992][ T7506] netlink: 56 bytes leftover after parsing attributes in process `syz.4.528'. [ 126.034733][ T7506] netlink: 56 bytes leftover after parsing attributes in process `syz.4.528'. [ 126.960435][ T7496] netlink: 20 bytes leftover after parsing attributes in process `syz.3.526'. [ 126.992016][ T7512] syzkaller1: entered promiscuous mode [ 127.002029][ T7512] syzkaller1: entered allmulticast mode [ 127.155574][ T7519] netlink: 8 bytes leftover after parsing attributes in process `syz.3.531'. [ 127.169787][ T7522] netlink: 20 bytes leftover after parsing attributes in process `syz.0.533'. [ 128.204787][ T7564] netlink: 8 bytes leftover after parsing attributes in process `syz.4.539'. [ 128.457808][ T7577] syzkaller1: entered promiscuous mode [ 128.479171][ T7577] syzkaller1: entered allmulticast mode [ 128.526149][ T7571] erspan0: entered promiscuous mode [ 128.596748][ T7582] netlink: 4 bytes leftover after parsing attributes in process `syz.1.547'. [ 128.656695][ T7582] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 129.018531][ T7596] netlink: 'syz.4.549': attribute type 3 has an invalid length. [ 129.059401][ T7590] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 129.291412][ T7609] netlink: 40 bytes leftover after parsing attributes in process `syz.3.550'. [ 129.346633][ T7620] netlink: 3 bytes leftover after parsing attributes in process `syz.1.553'. [ 129.395298][ T7620] netlink: 4 bytes leftover after parsing attributes in process `syz.1.553'. [ 129.422954][ T7620] netlink: 3 bytes leftover after parsing attributes in process `syz.1.553'. [ 129.475061][ T7620] netlink: 4 bytes leftover after parsing attributes in process `syz.1.553'. [ 129.596299][ T7628] af_packet: tpacket_rcv: packet too big, clamped from 1 to 4294967272. macoff=96 [ 129.744456][ T7637] FAULT_INJECTION: forcing a failure. [ 129.744456][ T7637] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 129.763882][ T7635] xt_TCPMSS: Only works on TCP SYN packets [ 129.800304][ T7639] netlink: 'syz.1.559': attribute type 1 has an invalid length. [ 129.812948][ T7637] CPU: 0 UID: 0 PID: 7637 Comm: syz.2.560 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 129.812972][ T7637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 129.812983][ T7637] Call Trace: [ 129.812989][ T7637] [ 129.812996][ T7637] dump_stack_lvl+0x189/0x250 [ 129.813021][ T7637] ? __pfx____ratelimit+0x10/0x10 [ 129.813042][ T7637] ? __pfx_dump_stack_lvl+0x10/0x10 [ 129.813060][ T7637] ? __pfx__printk+0x10/0x10 [ 129.813094][ T7637] should_fail_ex+0x414/0x560 [ 129.813123][ T7637] _copy_to_user+0x31/0xb0 [ 129.813145][ T7637] simple_read_from_buffer+0xe1/0x170 [ 129.813171][ T7637] proc_fail_nth_read+0x1df/0x250 [ 129.813196][ T7637] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 129.813221][ T7637] ? rw_verify_area+0x258/0x650 [ 129.813239][ T7637] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 129.813261][ T7637] vfs_read+0x200/0x980 [ 129.813285][ T7637] ? __pfx___mutex_lock+0x10/0x10 [ 129.813307][ T7637] ? __pfx_vfs_read+0x10/0x10 [ 129.813327][ T7637] ? __fget_files+0x2a/0x420 [ 129.813353][ T7637] ? __fget_files+0x3a0/0x420 [ 129.813371][ T7637] ? __fget_files+0x2a/0x420 [ 129.813400][ T7637] ksys_read+0x145/0x250 [ 129.813420][ T7637] ? __pfx_ksys_read+0x10/0x10 [ 129.813436][ T7637] ? rcu_is_watching+0x15/0xb0 [ 129.813461][ T7637] ? do_syscall_64+0xbe/0x3b0 [ 129.813486][ T7637] do_syscall_64+0xfa/0x3b0 [ 129.813511][ T7637] ? lockdep_hardirqs_on+0x9c/0x150 [ 129.813531][ T7637] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.813547][ T7637] ? clear_bhb_loop+0x60/0xb0 [ 129.813568][ T7637] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.813584][ T7637] RIP: 0033:0x7f1c33d8d33c [ 129.813600][ T7637] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 129.813614][ T7637] RSP: 002b:00007f1c34c7f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 129.813632][ T7637] RAX: ffffffffffffffda RBX: 00007f1c33fb5fa0 RCX: 00007f1c33d8d33c [ 129.813645][ T7637] RDX: 000000000000000f RSI: 00007f1c34c7f0a0 RDI: 0000000000000006 [ 129.813656][ T7637] RBP: 00007f1c34c7f090 R08: 0000000000000000 R09: 0000000000000000 [ 129.813667][ T7637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 129.813677][ T7637] R13: 0000000000000000 R14: 00007f1c33fb5fa0 R15: 00007ffd47c094b8 [ 129.813712][ T7637] [ 130.733072][ T7677] FAULT_INJECTION: forcing a failure. [ 130.733072][ T7677] name failslab, interval 1, probability 0, space 0, times 0 [ 130.807072][ T7677] CPU: 0 UID: 0 PID: 7677 Comm: syz.0.567 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 130.807097][ T7677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 130.807108][ T7677] Call Trace: [ 130.807115][ T7677] [ 130.807122][ T7677] dump_stack_lvl+0x189/0x250 [ 130.807146][ T7677] ? __pfx____ratelimit+0x10/0x10 [ 130.807167][ T7677] ? __pfx_dump_stack_lvl+0x10/0x10 [ 130.807186][ T7677] ? __pfx__printk+0x10/0x10 [ 130.807212][ T7677] ? __pfx___might_resched+0x10/0x10 [ 130.807231][ T7677] ? fs_reclaim_acquire+0x7d/0x100 [ 130.807256][ T7677] should_fail_ex+0x414/0x560 [ 130.807281][ T7677] ? page_pool_create_percpu+0x32a/0xbe0 [ 130.807298][ T7677] should_failslab+0xa8/0x100 [ 130.807319][ T7677] __kvmalloc_node_noprof+0x161/0x5f0 [ 130.807345][ T7677] ? page_pool_create_percpu+0x32a/0xbe0 [ 130.807365][ T7677] page_pool_create_percpu+0x32a/0xbe0 [ 130.807380][ T7677] ? bpf_test_run_xdp_live+0x1b5/0x1b10 [ 130.807407][ T7677] bpf_test_run_xdp_live+0x1ca/0x1b10 [ 130.807432][ T7677] ? __mutex_unlock_slowpath+0x1cd/0x700 [ 130.807461][ T7677] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 130.807493][ T7677] ? __pfx_bpf_test_run_xdp_live+0x10/0x10 [ 130.807512][ T7677] ? 0xffffffffa02057c0 [ 130.807526][ T7677] ? 0xffffffffa02057c0 [ 130.807589][ T7677] ? __pfx_xdp_test_run_init_page+0x10/0x10 [ 130.807617][ T7677] ? _copy_from_user+0x94/0xb0 [ 130.807635][ T7677] ? bpf_test_init+0x133/0x170 [ 130.807653][ T7677] ? xdp_convert_md_to_buff+0x5b/0x330 [ 130.807676][ T7677] bpf_prog_test_run_xdp+0x713/0x1000 [ 130.807712][ T7677] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 130.807738][ T7677] ? __fget_files+0x2a/0x420 [ 130.807763][ T7677] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 130.807785][ T7677] bpf_prog_test_run+0x2c4/0x340 [ 130.807807][ T7677] __sys_bpf+0x4a4/0x860 [ 130.807831][ T7677] ? __pfx___sys_bpf+0x10/0x10 [ 130.807866][ T7677] ? ksys_write+0x22a/0x250 [ 130.807888][ T7677] ? __pfx_ksys_write+0x10/0x10 [ 130.807903][ T7677] ? rcu_is_watching+0x15/0xb0 [ 130.807930][ T7677] __x64_sys_bpf+0x7c/0x90 [ 130.807952][ T7677] do_syscall_64+0xfa/0x3b0 [ 130.807971][ T7677] ? lockdep_hardirqs_on+0x9c/0x150 [ 130.807989][ T7677] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 130.808006][ T7677] ? clear_bhb_loop+0x60/0xb0 [ 130.808026][ T7677] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 130.808042][ T7677] RIP: 0033:0x7fe8caf8e929 [ 130.808057][ T7677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 130.808071][ T7677] RSP: 002b:00007fe8c8df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 130.808089][ T7677] RAX: ffffffffffffffda RBX: 00007fe8cb1b5fa0 RCX: 00007fe8caf8e929 [ 130.808103][ T7677] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a [ 130.808113][ T7677] RBP: 00007fe8c8df6090 R08: 0000000000000000 R09: 0000000000000000 [ 130.808124][ T7677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 130.808135][ T7677] R13: 0000000000000000 R14: 00007fe8cb1b5fa0 R15: 00007ffc3a8733c8 [ 130.808164][ T7677] [ 130.808228][ T7677] page_pool_create_percpu() gave up with errno -12 [ 131.043623][ T7666] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 131.141324][ T95] block nbd0: Possible stuck request ffff888025647000: control (read@0,1024B). Runtime 30 seconds [ 131.152665][ T95] block nbd0: Possible stuck request ffff8880256471c0: control (read@1024,1024B). Runtime 30 seconds [ 131.164244][ T95] block nbd0: Possible stuck request ffff888025647380: control (read@2048,1024B). Runtime 30 seconds [ 131.175987][ T95] block nbd0: Possible stuck request ffff888025647540: control (read@3072,1024B). Runtime 30 seconds [ 131.308427][ T7689] FAULT_INJECTION: forcing a failure. [ 131.308427][ T7689] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 131.321593][ T7689] CPU: 1 UID: 0 PID: 7689 Comm: syz.0.570 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 131.321616][ T7689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 131.321626][ T7689] Call Trace: [ 131.321634][ T7689] [ 131.321642][ T7689] dump_stack_lvl+0x189/0x250 [ 131.321666][ T7689] ? __pfx____ratelimit+0x10/0x10 [ 131.321688][ T7689] ? __pfx_dump_stack_lvl+0x10/0x10 [ 131.321711][ T7689] ? __pfx__printk+0x10/0x10 [ 131.321746][ T7689] should_fail_ex+0x414/0x560 [ 131.321774][ T7689] _copy_to_user+0x31/0xb0 [ 131.321796][ T7689] simple_read_from_buffer+0xe1/0x170 [ 131.321822][ T7689] proc_fail_nth_read+0x1df/0x250 [ 131.321847][ T7689] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 131.321871][ T7689] ? rw_verify_area+0x258/0x650 [ 131.321889][ T7689] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 131.321910][ T7689] vfs_read+0x200/0x980 [ 131.321932][ T7689] ? __pfx___mutex_lock+0x10/0x10 [ 131.321953][ T7689] ? __pfx_vfs_read+0x10/0x10 [ 131.321974][ T7689] ? __fget_files+0x2a/0x420 [ 131.321998][ T7689] ? __fget_files+0x3a0/0x420 [ 131.322016][ T7689] ? __fget_files+0x2a/0x420 [ 131.322046][ T7689] ksys_read+0x145/0x250 [ 131.322067][ T7689] ? __pfx_ksys_read+0x10/0x10 [ 131.322081][ T7689] ? rcu_is_watching+0x15/0xb0 [ 131.322107][ T7689] ? do_syscall_64+0xbe/0x3b0 [ 131.322132][ T7689] do_syscall_64+0xfa/0x3b0 [ 131.322150][ T7689] ? lockdep_hardirqs_on+0x9c/0x150 [ 131.322169][ T7689] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.322186][ T7689] ? clear_bhb_loop+0x60/0xb0 [ 131.322206][ T7689] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.322221][ T7689] RIP: 0033:0x7fe8caf8d33c [ 131.322236][ T7689] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 131.322250][ T7689] RSP: 002b:00007fe8c8df6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 131.322268][ T7689] RAX: ffffffffffffffda RBX: 00007fe8cb1b5fa0 RCX: 00007fe8caf8d33c [ 131.322280][ T7689] RDX: 000000000000000f RSI: 00007fe8c8df60a0 RDI: 0000000000000004 [ 131.322291][ T7689] RBP: 00007fe8c8df6090 R08: 0000000000000000 R09: 0000000000000000 [ 131.322302][ T7689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 131.322312][ T7689] R13: 0000000000000000 R14: 00007fe8cb1b5fa0 R15: 00007ffc3a8733c8 [ 131.322343][ T7689] [ 131.652668][ T7666] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 131.937311][ T7696] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0) [ 131.939391][ T6961] bond0: (slave bond_slave_0): interface is now down [ 131.956037][ T6961] bond0: (slave bond_slave_1): interface is now down [ 131.981052][ T7666] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 131.992169][ T48] bond0: (slave bond_slave_0): interface is now down [ 132.017013][ T48] bond0: (slave bond_slave_1): interface is now down [ 132.052834][ T13] bond0: (slave bond_slave_0): interface is now down [ 132.067658][ T13] bond0: (slave bond_slave_1): interface is now down [ 132.105047][ T13] bond0: now running without any active interface! [ 132.129729][ T7666] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 132.185422][ T7722] FAULT_INJECTION: forcing a failure. [ 132.185422][ T7722] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 132.231464][ T7722] CPU: 0 UID: 0 PID: 7722 Comm: syz.0.577 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 132.231489][ T7722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 132.231500][ T7722] Call Trace: [ 132.231506][ T7722] [ 132.231514][ T7722] dump_stack_lvl+0x189/0x250 [ 132.231538][ T7722] ? __pfx____ratelimit+0x10/0x10 [ 132.231560][ T7722] ? __pfx_dump_stack_lvl+0x10/0x10 [ 132.231580][ T7722] ? __pfx__printk+0x10/0x10 [ 132.231615][ T7722] should_fail_ex+0x414/0x560 [ 132.231642][ T7722] _copy_to_user+0x31/0xb0 [ 132.231664][ T7722] simple_read_from_buffer+0xe1/0x170 [ 132.231689][ T7722] proc_fail_nth_read+0x1df/0x250 [ 132.231715][ T7722] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 132.231740][ T7722] ? rw_verify_area+0x258/0x650 [ 132.231758][ T7722] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 132.231781][ T7722] vfs_read+0x200/0x980 [ 132.231806][ T7722] ? __pfx___mutex_lock+0x10/0x10 [ 132.231828][ T7722] ? __pfx_vfs_read+0x10/0x10 [ 132.231848][ T7722] ? __fget_files+0x2a/0x420 [ 132.231873][ T7722] ? __fget_files+0x3a0/0x420 [ 132.231891][ T7722] ? __fget_files+0x2a/0x420 [ 132.231920][ T7722] ksys_read+0x145/0x250 [ 132.231942][ T7722] ? __pfx_ksys_read+0x10/0x10 [ 132.231965][ T7722] ? rcu_is_watching+0x15/0xb0 [ 132.231990][ T7722] ? do_syscall_64+0xbe/0x3b0 [ 132.232015][ T7722] do_syscall_64+0xfa/0x3b0 [ 132.232033][ T7722] ? lockdep_hardirqs_on+0x9c/0x150 [ 132.232053][ T7722] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.232069][ T7722] ? clear_bhb_loop+0x60/0xb0 [ 132.232090][ T7722] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.232106][ T7722] RIP: 0033:0x7fe8caf8d33c [ 132.232122][ T7722] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 132.232137][ T7722] RSP: 002b:00007fe8c8df6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 132.232155][ T7722] RAX: ffffffffffffffda RBX: 00007fe8cb1b5fa0 RCX: 00007fe8caf8d33c [ 132.232168][ T7722] RDX: 000000000000000f RSI: 00007fe8c8df60a0 RDI: 0000000000000006 [ 132.232179][ T7722] RBP: 00007fe8c8df6090 R08: 0000000000000000 R09: 0000000000000000 [ 132.232190][ T7722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 132.232200][ T7722] R13: 0000000000000000 R14: 00007fe8cb1b5fa0 R15: 00007ffc3a8733c8 [ 132.232230][ T7722] [ 132.851451][ T48] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 132.878812][ T7735] netlink: 'syz.0.581': attribute type 4 has an invalid length. [ 132.899922][ T3564] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 133.011397][ T3564] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 133.047020][ T3564] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 133.815847][ T7773] FAULT_INJECTION: forcing a failure. [ 133.815847][ T7773] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 133.854151][ T7773] CPU: 0 UID: 0 PID: 7773 Comm: syz.0.593 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 133.854177][ T7773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 133.854187][ T7773] Call Trace: [ 133.854195][ T7773] [ 133.854203][ T7773] dump_stack_lvl+0x189/0x250 [ 133.854227][ T7773] ? __pfx____ratelimit+0x10/0x10 [ 133.854249][ T7773] ? __pfx_dump_stack_lvl+0x10/0x10 [ 133.854267][ T7773] ? __pfx__printk+0x10/0x10 [ 133.854289][ T7773] ? __might_fault+0xb0/0x130 [ 133.854319][ T7773] should_fail_ex+0x414/0x560 [ 133.854346][ T7773] _copy_from_iter+0x1db/0x16f0 [ 133.854368][ T7773] ? rcu_is_watching+0x15/0xb0 [ 133.854388][ T7773] ? kmem_cache_alloc_node_noprof+0x217/0x3c0 [ 133.854410][ T7773] ? __pfx__copy_from_iter+0x10/0x10 [ 133.854429][ T7773] ? __build_skb_around+0x257/0x3e0 [ 133.854454][ T7773] ? netlink_sendmsg+0x642/0xb30 [ 133.854472][ T7773] ? skb_put+0x11b/0x210 [ 133.854497][ T7773] netlink_sendmsg+0x6b2/0xb30 [ 133.854528][ T7773] ? __pfx_netlink_sendmsg+0x10/0x10 [ 133.854552][ T7773] ? aa_sock_msg_perm+0x94/0x160 [ 133.854576][ T7773] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 133.854597][ T7773] ? __pfx_netlink_sendmsg+0x10/0x10 [ 133.854619][ T7773] __sock_sendmsg+0x219/0x270 [ 133.854642][ T7773] ____sys_sendmsg+0x505/0x830 [ 133.854670][ T7773] ? __pfx_____sys_sendmsg+0x10/0x10 [ 133.854703][ T7773] ? import_iovec+0x74/0xa0 [ 133.854726][ T7773] ___sys_sendmsg+0x21f/0x2a0 [ 133.854745][ T7773] ? __pfx____sys_sendmsg+0x10/0x10 [ 133.854816][ T7773] ? __fget_files+0x2a/0x420 [ 133.854835][ T7773] ? __fget_files+0x3a0/0x420 [ 133.854865][ T7773] __x64_sys_sendmsg+0x19b/0x260 [ 133.854885][ T7773] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 133.854911][ T7773] ? __pfx_ksys_write+0x10/0x10 [ 133.854927][ T7773] ? rcu_is_watching+0x15/0xb0 [ 133.854951][ T7773] ? do_syscall_64+0xbe/0x3b0 [ 133.854976][ T7773] do_syscall_64+0xfa/0x3b0 [ 133.854995][ T7773] ? lockdep_hardirqs_on+0x9c/0x150 [ 133.855013][ T7773] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.855029][ T7773] ? clear_bhb_loop+0x60/0xb0 [ 133.855049][ T7773] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.855063][ T7773] RIP: 0033:0x7fe8caf8e929 [ 133.855078][ T7773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.855093][ T7773] RSP: 002b:00007fe8c8df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 133.855111][ T7773] RAX: ffffffffffffffda RBX: 00007fe8cb1b5fa0 RCX: 00007fe8caf8e929 [ 133.855123][ T7773] RDX: 0000000000000000 RSI: 0000200000000d80 RDI: 0000000000000004 [ 133.855134][ T7773] RBP: 00007fe8c8df6090 R08: 0000000000000000 R09: 0000000000000000 [ 133.855145][ T7773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 133.855155][ T7773] R13: 0000000000000000 R14: 00007fe8cb1b5fa0 R15: 00007ffc3a8733c8 [ 133.855184][ T7773] [ 133.890444][ T7776] __nla_validate_parse: 6 callbacks suppressed [ 133.890459][ T7776] netlink: 4 bytes leftover after parsing attributes in process `syz.1.595'. [ 134.512070][ T7798] netlink: 8 bytes leftover after parsing attributes in process `syz.0.602'. [ 134.529420][ T7798] FAULT_INJECTION: forcing a failure. [ 134.529420][ T7798] name failslab, interval 1, probability 0, space 0, times 0 [ 134.530838][ T7790] netlink: 60 bytes leftover after parsing attributes in process `syz.4.601'. [ 134.557664][ T7797] netlink: 60 bytes leftover after parsing attributes in process `syz.4.601'. [ 134.589442][ T7798] CPU: 1 UID: 0 PID: 7798 Comm: syz.0.602 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 134.589465][ T7798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 134.589474][ T7798] Call Trace: [ 134.589481][ T7798] [ 134.589488][ T7798] dump_stack_lvl+0x189/0x250 [ 134.589511][ T7798] ? __pfx____ratelimit+0x10/0x10 [ 134.589531][ T7798] ? __pfx_dump_stack_lvl+0x10/0x10 [ 134.589549][ T7798] ? __pfx__printk+0x10/0x10 [ 134.589574][ T7798] ? __pfx___might_resched+0x10/0x10 [ 134.589591][ T7798] ? fs_reclaim_acquire+0x7d/0x100 [ 134.589614][ T7798] should_fail_ex+0x414/0x560 [ 134.589639][ T7798] should_failslab+0xa8/0x100 [ 134.589661][ T7798] kmem_cache_alloc_node_noprof+0x76/0x3c0 [ 134.589681][ T7798] ? __alloc_skb+0x112/0x2d0 [ 134.589705][ T7798] __alloc_skb+0x112/0x2d0 [ 134.589730][ T7798] netlink_ack+0x146/0xa50 [ 134.589758][ T7798] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 134.589776][ T7798] ? ref_tracker_free+0x63a/0x7d0 [ 134.589796][ T7798] ? __copy_skb_header+0xa7/0x550 [ 134.589814][ T7798] ? __pfx_ref_tracker_free+0x10/0x10 [ 134.589835][ T7798] ? __skb_clone+0x63/0x7a0 [ 134.589859][ T7798] netlink_rcv_skb+0x28c/0x470 [ 134.589879][ T7798] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 134.589901][ T7798] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 134.589934][ T7798] ? netlink_deliver_tap+0x2e/0x1b0 [ 134.589953][ T7798] ? netlink_deliver_tap+0x2e/0x1b0 [ 134.589979][ T7798] netlink_unicast+0x75c/0x8e0 [ 134.590010][ T7798] netlink_sendmsg+0x805/0xb30 [ 134.590039][ T7798] ? __pfx_netlink_sendmsg+0x10/0x10 [ 134.590062][ T7798] ? aa_sock_msg_perm+0x94/0x160 [ 134.590086][ T7798] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 134.590109][ T7798] ? __pfx_netlink_sendmsg+0x10/0x10 [ 134.590128][ T7798] __sock_sendmsg+0x219/0x270 [ 134.590151][ T7798] ____sys_sendmsg+0x505/0x830 [ 134.590179][ T7798] ? __pfx_____sys_sendmsg+0x10/0x10 [ 134.590211][ T7798] ? import_iovec+0x74/0xa0 [ 134.590234][ T7798] ___sys_sendmsg+0x21f/0x2a0 [ 134.590253][ T7798] ? __pfx____sys_sendmsg+0x10/0x10 [ 134.590308][ T7798] ? __fget_files+0x2a/0x420 [ 134.590328][ T7798] ? __fget_files+0x3a0/0x420 [ 134.590359][ T7798] __x64_sys_sendmsg+0x19b/0x260 [ 134.590379][ T7798] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 134.590406][ T7798] ? __pfx_ksys_write+0x10/0x10 [ 134.590421][ T7798] ? rcu_is_watching+0x15/0xb0 [ 134.590447][ T7798] ? do_syscall_64+0xbe/0x3b0 [ 134.590471][ T7798] do_syscall_64+0xfa/0x3b0 [ 134.590490][ T7798] ? lockdep_hardirqs_on+0x9c/0x150 [ 134.590510][ T7798] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 134.590526][ T7798] ? clear_bhb_loop+0x60/0xb0 [ 134.590547][ T7798] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 134.590563][ T7798] RIP: 0033:0x7fe8caf8e929 [ 134.590579][ T7798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 134.590594][ T7798] RSP: 002b:00007fe8c8df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 134.590613][ T7798] RAX: ffffffffffffffda RBX: 00007fe8cb1b5fa0 RCX: 00007fe8caf8e929 [ 134.590626][ T7798] RDX: 000000002000400c RSI: 00002000000000c0 RDI: 0000000000000003 [ 134.590638][ T7798] RBP: 00007fe8c8df6090 R08: 0000000000000000 R09: 0000000000000000 [ 134.590649][ T7798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 134.590659][ T7798] R13: 0000000000000000 R14: 00007fe8cb1b5fa0 R15: 00007ffc3a8733c8 [ 134.590689][ T7798] [ 134.924800][ T7797] netlink: 12 bytes leftover after parsing attributes in process `syz.4.601'. [ 135.015857][ T7805] netlink: 'syz.3.605': attribute type 1 has an invalid length. [ 135.174887][ T7812] netlink: 156 bytes leftover after parsing attributes in process `syz.0.606'. [ 135.357497][ T7822] FAULT_INJECTION: forcing a failure. [ 135.357497][ T7822] name failslab, interval 1, probability 0, space 0, times 0 [ 135.370399][ T7822] CPU: 1 UID: 0 PID: 7822 Comm: syz.0.611 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 135.370423][ T7822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 135.370434][ T7822] Call Trace: [ 135.370442][ T7822] [ 135.370449][ T7822] dump_stack_lvl+0x189/0x250 [ 135.370473][ T7822] ? __pfx____ratelimit+0x10/0x10 [ 135.370495][ T7822] ? __pfx_dump_stack_lvl+0x10/0x10 [ 135.370514][ T7822] ? __pfx__printk+0x10/0x10 [ 135.370538][ T7822] ? __lock_acquire+0xab9/0xd20 [ 135.370564][ T7822] should_fail_ex+0x414/0x560 [ 135.370591][ T7822] should_failslab+0xa8/0x100 [ 135.370615][ T7822] kmem_cache_alloc_noprof+0x73/0x3c0 [ 135.370633][ T7822] ? skb_clone+0x212/0x3a0 [ 135.370662][ T7822] skb_clone+0x212/0x3a0 [ 135.370677][ T7822] ? macvlan_broadcast+0x247/0x630 [ 135.370702][ T7822] macvlan_broadcast+0x25a/0x630 [ 135.370737][ T7822] macvlan_start_xmit+0x298/0x6e0 [ 135.370762][ T7822] ? __pfx_macvlan_start_xmit+0x10/0x10 [ 135.370794][ T7822] dev_hard_start_xmit+0x2d7/0x830 [ 135.370830][ T7822] __dev_queue_xmit+0x1b8d/0x3b50 [ 135.370861][ T7822] ? __dev_queue_xmit+0x27b/0x3b50 [ 135.370886][ T7822] ? __might_fault+0xb0/0x130 [ 135.370910][ T7822] ? __pfx___dev_queue_xmit+0x10/0x10 [ 135.370939][ T7822] ? _copy_from_iter+0x24c/0x16f0 [ 135.370958][ T7822] ? trace_kmalloc+0x1f/0xd0 [ 135.370973][ T7822] ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0 [ 135.371000][ T7822] ? __pfx__copy_from_iter+0x10/0x10 [ 135.371020][ T7822] ? eth_header+0x11b/0x200 [ 135.371043][ T7822] ? __asan_memcpy+0x40/0x70 [ 135.371059][ T7822] ? pppoe_sendmsg+0x53a/0x790 [ 135.371083][ T7822] pppoe_sendmsg+0x58b/0x790 [ 135.371107][ T7822] ? __pfx_pppoe_sendmsg+0x10/0x10 [ 135.371124][ T7822] ? aa_sock_msg_perm+0x94/0x160 [ 135.371147][ T7822] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 135.371169][ T7822] ? __pfx_pppoe_sendmsg+0x10/0x10 [ 135.371187][ T7822] __sock_sendmsg+0x219/0x270 [ 135.371211][ T7822] ____sys_sendmsg+0x52d/0x830 [ 135.371240][ T7822] ? __pfx_____sys_sendmsg+0x10/0x10 [ 135.371274][ T7822] ? import_iovec+0x74/0xa0 [ 135.371296][ T7822] ___sys_sendmsg+0x21f/0x2a0 [ 135.371315][ T7822] ? __pfx____sys_sendmsg+0x10/0x10 [ 135.371367][ T7822] ? __fget_files+0x2a/0x420 [ 135.371386][ T7822] ? __fget_files+0x3a0/0x420 [ 135.371417][ T7822] __sys_sendmmsg+0x227/0x430 [ 135.371440][ T7822] ? __pfx___sys_sendmmsg+0x10/0x10 [ 135.371454][ T7822] ? __mutex_unlock_slowpath+0x1cd/0x700 [ 135.371505][ T7822] ? ksys_write+0x22a/0x250 [ 135.371527][ T7822] ? __pfx_ksys_write+0x10/0x10 [ 135.371542][ T7822] ? rcu_is_watching+0x15/0xb0 [ 135.371569][ T7822] __x64_sys_sendmmsg+0xa0/0xc0 [ 135.371588][ T7822] do_syscall_64+0xfa/0x3b0 [ 135.371606][ T7822] ? lockdep_hardirqs_on+0x9c/0x150 [ 135.371625][ T7822] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 135.371641][ T7822] ? clear_bhb_loop+0x60/0xb0 [ 135.371668][ T7822] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 135.371683][ T7822] RIP: 0033:0x7fe8caf8e929 [ 135.371699][ T7822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 135.371713][ T7822] RSP: 002b:00007fe8c8df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 135.371731][ T7822] RAX: ffffffffffffffda RBX: 00007fe8cb1b5fa0 RCX: 00007fe8caf8e929 [ 135.371744][ T7822] RDX: 0000000000000484 RSI: 0000200000001340 RDI: 0000000000000003 [ 135.371754][ T7822] RBP: 00007fe8c8df6090 R08: 0000000000000000 R09: 0000000000000000 [ 135.371764][ T7822] R10: 0000000024048084 R11: 0000000000000246 R12: 0000000000000001 [ 135.371775][ T7822] R13: 0000000000000000 R14: 00007fe8cb1b5fa0 R15: 00007ffc3a8733c8 [ 135.371802][ T7822] [ 135.739460][ T7821] syzkaller0: entered promiscuous mode [ 135.745001][ T7821] syzkaller0: entered allmulticast mode [ 135.867894][ T7829] netlink: 4 bytes leftover after parsing attributes in process `syz.4.613'. [ 136.267916][ T7840] netlink: 4 bytes leftover after parsing attributes in process `syz.3.617'. [ 136.287970][ T7840] chnl_net:caif_netlink_parms(): no params data found [ 136.380055][ T7844] netlink: 40 bytes leftover after parsing attributes in process `syz.4.618'. [ 136.777576][ T7866] FAULT_INJECTION: forcing a failure. [ 136.777576][ T7866] name failslab, interval 1, probability 0, space 0, times 0 [ 136.827224][ T7866] CPU: 1 UID: 0 PID: 7866 Comm: syz.4.627 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 136.827254][ T7866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 136.827264][ T7866] Call Trace: [ 136.827272][ T7866] [ 136.827279][ T7866] dump_stack_lvl+0x189/0x250 [ 136.827305][ T7866] ? __pfx____ratelimit+0x10/0x10 [ 136.827326][ T7866] ? __pfx_dump_stack_lvl+0x10/0x10 [ 136.827345][ T7866] ? __pfx__printk+0x10/0x10 [ 136.827374][ T7866] ? __pfx___might_resched+0x10/0x10 [ 136.827392][ T7866] ? fs_reclaim_acquire+0x7d/0x100 [ 136.827418][ T7866] should_fail_ex+0x414/0x560 [ 136.827446][ T7866] should_failslab+0xa8/0x100 [ 136.827468][ T7866] kmem_cache_alloc_noprof+0x73/0x3c0 [ 136.827487][ T7866] ? ep_insert+0x424/0x1790 [ 136.827509][ T7866] ep_insert+0x424/0x1790 [ 136.827540][ T7866] ? __pfx_ep_insert+0x10/0x10 [ 136.827558][ T7866] ? __pfx___mutex_lock+0x10/0x10 [ 136.827589][ T7866] ? __fget_files+0x3a0/0x420 [ 136.827608][ T7866] ? __fget_files+0x2a/0x420 [ 136.827636][ T7866] do_epoll_ctl+0x7f4/0xe90 [ 136.827664][ T7866] __x64_sys_epoll_ctl+0x163/0x1a0 [ 136.827683][ T7866] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 136.827697][ T7866] ? rcu_is_watching+0x15/0xb0 [ 136.827719][ T7866] ? do_syscall_64+0xbe/0x3b0 [ 136.827741][ T7866] do_syscall_64+0xfa/0x3b0 [ 136.827757][ T7866] ? lockdep_hardirqs_on+0x9c/0x150 [ 136.827780][ T7866] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.827794][ T7866] ? clear_bhb_loop+0x60/0xb0 [ 136.827812][ T7866] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.827825][ T7866] RIP: 0033:0x7f6719d8e929 [ 136.827840][ T7866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 136.827852][ T7866] RSP: 002b:00007f6717bf6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 136.827869][ T7866] RAX: ffffffffffffffda RBX: 00007f6719fb5fa0 RCX: 00007f6719d8e929 [ 136.827880][ T7866] RDX: 0000000000000009 RSI: 0000000000000001 RDI: 000000000000000a [ 136.827889][ T7866] RBP: 00007f6717bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 136.827898][ T7866] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000001 [ 136.827906][ T7866] R13: 0000000000000000 R14: 00007f6719fb5fa0 R15: 00007fff8e12c638 [ 136.827934][ T7866] [ 137.400603][ T7883] pimreg: entered allmulticast mode [ 137.409741][ T7883] pimreg: left allmulticast mode [ 137.615918][ T7892] netlink: 156 bytes leftover after parsing attributes in process `syz.2.634'. [ 137.627548][ T7892] FAULT_INJECTION: forcing a failure. [ 137.627548][ T7892] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 137.641558][ T7892] CPU: 0 UID: 0 PID: 7892 Comm: syz.2.634 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 137.641581][ T7892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 137.641591][ T7892] Call Trace: [ 137.641598][ T7892] [ 137.641606][ T7892] dump_stack_lvl+0x189/0x250 [ 137.641630][ T7892] ? __pfx____ratelimit+0x10/0x10 [ 137.641651][ T7892] ? __pfx_dump_stack_lvl+0x10/0x10 [ 137.641669][ T7892] ? __pfx__printk+0x10/0x10 [ 137.641710][ T7892] should_fail_ex+0x414/0x560 [ 137.641740][ T7892] _copy_to_user+0x31/0xb0 [ 137.641761][ T7892] simple_read_from_buffer+0xe1/0x170 [ 137.641787][ T7892] proc_fail_nth_read+0x1df/0x250 [ 137.641813][ T7892] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 137.641838][ T7892] ? rw_verify_area+0x258/0x650 [ 137.641856][ T7892] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 137.641879][ T7892] vfs_read+0x200/0x980 [ 137.641904][ T7892] ? __pfx___mutex_lock+0x10/0x10 [ 137.641925][ T7892] ? __pfx_vfs_read+0x10/0x10 [ 137.641946][ T7892] ? __fget_files+0x2a/0x420 [ 137.641971][ T7892] ? __fget_files+0x3a0/0x420 [ 137.641990][ T7892] ? __fget_files+0x2a/0x420 [ 137.642019][ T7892] ksys_read+0x145/0x250 [ 137.642041][ T7892] ? __pfx_ksys_read+0x10/0x10 [ 137.642055][ T7892] ? rcu_is_watching+0x15/0xb0 [ 137.642081][ T7892] ? do_syscall_64+0xbe/0x3b0 [ 137.642105][ T7892] do_syscall_64+0xfa/0x3b0 [ 137.642124][ T7892] ? lockdep_hardirqs_on+0x9c/0x150 [ 137.642143][ T7892] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 137.642160][ T7892] ? clear_bhb_loop+0x60/0xb0 [ 137.642180][ T7892] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 137.642196][ T7892] RIP: 0033:0x7f1c33d8d33c [ 137.642212][ T7892] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 137.642226][ T7892] RSP: 002b:00007f1c34c7f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 137.642245][ T7892] RAX: ffffffffffffffda RBX: 00007f1c33fb5fa0 RCX: 00007f1c33d8d33c [ 137.642257][ T7892] RDX: 000000000000000f RSI: 00007f1c34c7f0a0 RDI: 0000000000000004 [ 137.642268][ T7892] RBP: 00007f1c34c7f090 R08: 0000000000000000 R09: 0000000000000000 [ 137.642279][ T7892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 137.642289][ T7892] R13: 0000000000000000 R14: 00007f1c33fb5fa0 R15: 00007ffd47c094b8 [ 137.642319][ T7892] [ 138.120440][ T7900] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 138.324242][ T7911] FAULT_INJECTION: forcing a failure. [ 138.324242][ T7911] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 138.373683][ T7911] CPU: 1 UID: 0 PID: 7911 Comm: syz.0.640 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 138.373708][ T7911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 138.373719][ T7911] Call Trace: [ 138.373726][ T7911] [ 138.373734][ T7911] dump_stack_lvl+0x189/0x250 [ 138.373758][ T7911] ? __pfx____ratelimit+0x10/0x10 [ 138.373780][ T7911] ? __pfx_dump_stack_lvl+0x10/0x10 [ 138.373799][ T7911] ? __pfx__printk+0x10/0x10 [ 138.373834][ T7911] should_fail_ex+0x414/0x560 [ 138.373861][ T7911] _copy_to_user+0x31/0xb0 [ 138.373882][ T7911] simple_read_from_buffer+0xe1/0x170 [ 138.373907][ T7911] proc_fail_nth_read+0x1df/0x250 [ 138.373932][ T7911] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 138.373956][ T7911] ? rw_verify_area+0x258/0x650 [ 138.373973][ T7911] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 138.373996][ T7911] vfs_read+0x200/0x980 [ 138.374019][ T7911] ? __pfx___mutex_lock+0x10/0x10 [ 138.374042][ T7911] ? __pfx_vfs_read+0x10/0x10 [ 138.374062][ T7911] ? __fget_files+0x2a/0x420 [ 138.374087][ T7911] ? __fget_files+0x3a0/0x420 [ 138.374105][ T7911] ? __fget_files+0x2a/0x420 [ 138.374133][ T7911] ksys_read+0x145/0x250 [ 138.374154][ T7911] ? __pfx_ksys_read+0x10/0x10 [ 138.374178][ T7911] ? do_syscall_64+0xbe/0x3b0 [ 138.374202][ T7911] do_syscall_64+0xfa/0x3b0 [ 138.374221][ T7911] ? lockdep_hardirqs_on+0x9c/0x150 [ 138.374240][ T7911] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.374255][ T7911] ? clear_bhb_loop+0x60/0xb0 [ 138.374275][ T7911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.374292][ T7911] RIP: 0033:0x7fe8caf8d33c [ 138.374307][ T7911] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 138.374321][ T7911] RSP: 002b:00007fe8c8df6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 138.374340][ T7911] RAX: ffffffffffffffda RBX: 00007fe8cb1b5fa0 RCX: 00007fe8caf8d33c [ 138.374353][ T7911] RDX: 000000000000000f RSI: 00007fe8c8df60a0 RDI: 0000000000000005 [ 138.374363][ T7911] RBP: 00007fe8c8df6090 R08: 0000000000000000 R09: 0000000000000000 [ 138.374387][ T7911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 138.374398][ T7911] R13: 0000000000000000 R14: 00007fe8cb1b5fa0 R15: 00007ffc3a8733c8 [ 138.374428][ T7911] [ 138.818905][ T7927] netlink: 'syz.2.649': attribute type 3 has an invalid length. [ 139.000157][ T7933] __nla_validate_parse: 2 callbacks suppressed [ 139.000174][ T7933] netlink: 156 bytes leftover after parsing attributes in process `syz.2.651'. [ 139.594608][ T7958] netlink: 12 bytes leftover after parsing attributes in process `syz.2.658'. [ 139.626401][ T7960] netlink: 8 bytes leftover after parsing attributes in process `syz.0.659'. [ 140.844479][ T7999] netlink: 'syz.4.675': attribute type 1 has an invalid length. [ 140.852332][ T7999] netlink: 8 bytes leftover after parsing attributes in process `syz.4.675'. [ 141.109358][ T8006] netlink: 28 bytes leftover after parsing attributes in process `syz.2.665'. [ 141.498375][ T8019] netlink: 8 bytes leftover after parsing attributes in process `syz.1.681'. [ 142.015093][ T8045] FAULT_INJECTION: forcing a failure. [ 142.015093][ T8045] name failslab, interval 1, probability 0, space 0, times 0 [ 142.068797][ T8038] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 142.116538][ T8045] CPU: 1 UID: 0 PID: 8045 Comm: syz.3.687 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 142.116563][ T8045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 142.116573][ T8045] Call Trace: [ 142.116581][ T8045] [ 142.116588][ T8045] dump_stack_lvl+0x189/0x250 [ 142.116613][ T8045] ? __pfx____ratelimit+0x10/0x10 [ 142.116633][ T8045] ? __pfx_dump_stack_lvl+0x10/0x10 [ 142.116651][ T8045] ? __pfx__printk+0x10/0x10 [ 142.116677][ T8045] ? __pfx___might_resched+0x10/0x10 [ 142.116699][ T8045] should_fail_ex+0x414/0x560 [ 142.116727][ T8045] should_failslab+0xa8/0x100 [ 142.116750][ T8045] __kmalloc_noprof+0xcb/0x4f0 [ 142.116767][ T8045] ? __kasan_kmalloc+0x93/0xb0 [ 142.116783][ T8045] ? nla_strdup+0x9d/0x140 [ 142.116801][ T8045] nla_strdup+0x9d/0x140 [ 142.116818][ T8045] nf_tables_newtable+0x491/0x1890 [ 142.116838][ T8045] ? nfnetlink_subsys_unregister+0x192/0x1b0 [ 142.116875][ T8045] nfnetlink_rcv+0x1132/0x2520 [ 142.116924][ T8045] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 142.116958][ T8045] ? ref_tracker_free+0x63a/0x7d0 [ 142.117010][ T8045] ? __netlink_deliver_tap+0x807/0x850 [ 142.117039][ T8045] ? netlink_deliver_tap+0x2e/0x1b0 [ 142.117059][ T8045] ? netlink_deliver_tap+0x2e/0x1b0 [ 142.117082][ T8045] netlink_unicast+0x75c/0x8e0 [ 142.117112][ T8045] netlink_sendmsg+0x805/0xb30 [ 142.117143][ T8045] ? __pfx_netlink_sendmsg+0x10/0x10 [ 142.117168][ T8045] ? aa_sock_msg_perm+0x94/0x160 [ 142.117191][ T8045] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 142.117212][ T8045] ? __pfx_netlink_sendmsg+0x10/0x10 [ 142.117234][ T8045] __sock_sendmsg+0x219/0x270 [ 142.117258][ T8045] ____sys_sendmsg+0x505/0x830 [ 142.117288][ T8045] ? __pfx_____sys_sendmsg+0x10/0x10 [ 142.117329][ T8045] ? import_iovec+0x74/0xa0 [ 142.117354][ T8045] ___sys_sendmsg+0x21f/0x2a0 [ 142.117373][ T8045] ? __pfx____sys_sendmsg+0x10/0x10 [ 142.117428][ T8045] ? __fget_files+0x2a/0x420 [ 142.117448][ T8045] ? __fget_files+0x3a0/0x420 [ 142.117479][ T8045] __x64_sys_sendmsg+0x19b/0x260 [ 142.117499][ T8045] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 142.117525][ T8045] ? __pfx_ksys_write+0x10/0x10 [ 142.117541][ T8045] ? rcu_is_watching+0x15/0xb0 [ 142.117566][ T8045] ? do_syscall_64+0xbe/0x3b0 [ 142.117591][ T8045] do_syscall_64+0xfa/0x3b0 [ 142.117609][ T8045] ? lockdep_hardirqs_on+0x9c/0x150 [ 142.117628][ T8045] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.117645][ T8045] ? clear_bhb_loop+0x60/0xb0 [ 142.117664][ T8045] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.117680][ T8045] RIP: 0033:0x7ff3c558e929 [ 142.117697][ T8045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 142.117712][ T8045] RSP: 002b:00007ff3c33f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 142.117729][ T8045] RAX: ffffffffffffffda RBX: 00007ff3c57b5fa0 RCX: 00007ff3c558e929 [ 142.117742][ T8045] RDX: 0000000004000914 RSI: 000020000000c2c0 RDI: 0000000000000003 [ 142.117753][ T8045] RBP: 00007ff3c33f6090 R08: 0000000000000000 R09: 0000000000000000 [ 142.117763][ T8045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 142.117773][ T8045] R13: 0000000000000000 R14: 00007ff3c57b5fa0 R15: 00007fff2bb2ea68 [ 142.117801][ T8045] [ 142.556371][ T8055] netlink: 68 bytes leftover after parsing attributes in process `syz.2.690'. [ 142.580091][ T8057] netlink: 156 bytes leftover after parsing attributes in process `syz.3.691'. [ 142.590171][ T8055] netlink: 24 bytes leftover after parsing attributes in process `syz.2.690'. [ 142.637035][ T8059] netlink: 4 bytes leftover after parsing attributes in process `syz.3.693'. [ 142.845839][ T8068] sctp: [Deprecated]: syz.1.696 (pid 8068) Use of struct sctp_assoc_value in delayed_ack socket option. [ 142.845839][ T8068] Use struct sctp_sack_info instead [ 142.860954][ T8071] FAULT_INJECTION: forcing a failure. [ 142.860954][ T8071] name failslab, interval 1, probability 0, space 0, times 0 [ 142.907985][ T8071] CPU: 0 UID: 0 PID: 8071 Comm: syz.4.697 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 142.908019][ T8071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 142.908029][ T8071] Call Trace: [ 142.908036][ T8071] [ 142.908044][ T8071] dump_stack_lvl+0x189/0x250 [ 142.908068][ T8071] ? __pfx____ratelimit+0x10/0x10 [ 142.908090][ T8071] ? __pfx_dump_stack_lvl+0x10/0x10 [ 142.908108][ T8071] ? __pfx__printk+0x10/0x10 [ 142.908135][ T8071] ? __pfx___might_resched+0x10/0x10 [ 142.908153][ T8071] ? fs_reclaim_acquire+0x7d/0x100 [ 142.908180][ T8071] should_fail_ex+0x414/0x560 [ 142.908207][ T8071] should_failslab+0xa8/0x100 [ 142.908229][ T8071] kmem_cache_alloc_node_noprof+0x76/0x3c0 [ 142.908248][ T8071] ? __alloc_skb+0x112/0x2d0 [ 142.908274][ T8071] __alloc_skb+0x112/0x2d0 [ 142.908299][ T8071] netlink_ack+0x146/0xa50 [ 142.908339][ T8071] netlink_rcv_skb+0x28c/0x470 [ 142.908361][ T8071] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 142.908381][ T8071] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 142.908413][ T8071] ? bpf_lsm_capable+0x9/0x20 [ 142.908431][ T8071] ? security_capable+0x7e/0x2e0 [ 142.908460][ T8071] nfnetlink_rcv+0x26a/0x2520 [ 142.908481][ T8071] ? __dev_queue_xmit+0x1d79/0x3b50 [ 142.908510][ T8071] ? __dev_queue_xmit+0x27b/0x3b50 [ 142.908527][ T8071] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.908555][ T8071] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 142.908572][ T8071] ? __pfx___dev_queue_xmit+0x10/0x10 [ 142.908604][ T8071] ? ref_tracker_free+0x63a/0x7d0 [ 142.908625][ T8071] ? __copy_skb_header+0xa7/0x550 [ 142.908643][ T8071] ? __pfx_ref_tracker_free+0x10/0x10 [ 142.908664][ T8071] ? __skb_clone+0x63/0x7a0 [ 142.908685][ T8071] ? __skb_clone+0x483/0x7a0 [ 142.908709][ T8071] ? skb_clone+0x246/0x3a0 [ 142.908729][ T8071] ? __netlink_deliver_tap+0x807/0x850 [ 142.908749][ T8071] ? netlink_deliver_tap+0x2e/0x1b0 [ 142.908775][ T8071] ? netlink_deliver_tap+0x2e/0x1b0 [ 142.908795][ T8071] ? netlink_deliver_tap+0x2e/0x1b0 [ 142.908826][ T8071] netlink_unicast+0x75c/0x8e0 [ 142.908857][ T8071] netlink_sendmsg+0x805/0xb30 [ 142.908888][ T8071] ? __pfx_netlink_sendmsg+0x10/0x10 [ 142.908912][ T8071] ? aa_sock_msg_perm+0x94/0x160 [ 142.908937][ T8071] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 142.908958][ T8071] ? __pfx_netlink_sendmsg+0x10/0x10 [ 142.908979][ T8071] __sock_sendmsg+0x219/0x270 [ 142.909008][ T8071] ____sys_sendmsg+0x505/0x830 [ 142.909037][ T8071] ? __pfx_____sys_sendmsg+0x10/0x10 [ 142.909070][ T8071] ? import_iovec+0x74/0xa0 [ 142.909093][ T8071] ___sys_sendmsg+0x21f/0x2a0 [ 142.909112][ T8071] ? __pfx____sys_sendmsg+0x10/0x10 [ 142.909166][ T8071] ? __fget_files+0x2a/0x420 [ 142.909186][ T8071] ? __fget_files+0x3a0/0x420 [ 142.909217][ T8071] __x64_sys_sendmsg+0x19b/0x260 [ 142.909236][ T8071] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 142.909262][ T8071] ? __pfx_ksys_write+0x10/0x10 [ 142.909278][ T8071] ? rcu_is_watching+0x15/0xb0 [ 142.909302][ T8071] ? do_syscall_64+0xbe/0x3b0 [ 142.909326][ T8071] do_syscall_64+0xfa/0x3b0 [ 142.909346][ T8071] ? lockdep_hardirqs_on+0x9c/0x150 [ 142.909365][ T8071] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.909381][ T8071] ? clear_bhb_loop+0x60/0xb0 [ 142.909402][ T8071] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.909418][ T8071] RIP: 0033:0x7f6719d8e929 [ 142.909433][ T8071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 142.909447][ T8071] RSP: 002b:00007f6717bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 142.909465][ T8071] RAX: ffffffffffffffda RBX: 00007f6719fb5fa0 RCX: 00007f6719d8e929 [ 142.909478][ T8071] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003 [ 142.909489][ T8071] RBP: 00007f6717bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 142.909500][ T8071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 142.909510][ T8071] R13: 0000000000000000 R14: 00007f6719fb5fa0 R15: 00007fff8e12c638 [ 142.909538][ T8071] [ 143.588720][ T8081] syzkaller0: tun_chr_ioctl cmd 1074812118 [ 143.679095][ T8081] openvswitch: netlink: Actions may not be safe on all matching packets [ 143.680709][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805a3d1800: rx timeout, send abort [ 144.180814][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805a3d1c00: rx timeout, send abort [ 144.196228][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805a3d1800: abort rx timeout. Force session deactivation [ 144.690646][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805a3d1c00: abort rx timeout. Force session deactivation [ 144.949385][ T8137] __nla_validate_parse: 6 callbacks suppressed [ 144.949403][ T8137] netlink: 8 bytes leftover after parsing attributes in process `syz.3.718'. [ 145.047312][ T8140] netlink: 4 bytes leftover after parsing attributes in process `syz.4.717'. [ 145.360054][ T8155] xt_NFQUEUE: number of total queues is 0 [ 145.458026][ T8158] netlink: 16 bytes leftover after parsing attributes in process `syz.3.724'. [ 145.531608][ T5862] Bluetooth: hci4: link tx timeout [ 145.537966][ T5862] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa [ 145.609846][ T8167] FAULT_INJECTION: forcing a failure. [ 145.609846][ T8167] name failslab, interval 1, probability 0, space 0, times 0 [ 145.670819][ T8167] CPU: 0 UID: 0 PID: 8167 Comm: syz.0.728 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 145.670845][ T8167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 145.670855][ T8167] Call Trace: [ 145.670862][ T8167] [ 145.670870][ T8167] dump_stack_lvl+0x189/0x250 [ 145.670894][ T8167] ? __pfx____ratelimit+0x10/0x10 [ 145.670915][ T8167] ? __pfx_dump_stack_lvl+0x10/0x10 [ 145.670935][ T8167] ? __pfx__printk+0x10/0x10 [ 145.670967][ T8167] ? __pfx___might_resched+0x10/0x10 [ 145.670986][ T8167] ? fs_reclaim_acquire+0x7d/0x100 [ 145.671016][ T8167] should_fail_ex+0x414/0x560 [ 145.671044][ T8167] should_failslab+0xa8/0x100 [ 145.671066][ T8167] __kmalloc_noprof+0xcb/0x4f0 [ 145.671084][ T8167] ? tomoyo_encode+0x28b/0x550 [ 145.671106][ T8167] tomoyo_encode+0x28b/0x550 [ 145.671129][ T8167] tomoyo_realpath_from_path+0x58d/0x5d0 [ 145.671148][ T8167] ? tomoyo_domain+0xd9/0x130 [ 145.671171][ T8167] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 145.671193][ T8167] tomoyo_path_number_perm+0x1e8/0x5a0 [ 145.671217][ T8167] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 145.671257][ T8167] ? __lock_acquire+0xab9/0xd20 [ 145.671297][ T8167] ? __fget_files+0x2a/0x420 [ 145.671320][ T8167] ? __fget_files+0x2a/0x420 [ 145.671338][ T8167] ? __fget_files+0x3a0/0x420 [ 145.671356][ T8167] ? __fget_files+0x2a/0x420 [ 145.671378][ T8167] security_file_ioctl+0xcb/0x2d0 [ 145.671400][ T8167] __se_sys_ioctl+0x47/0x170 [ 145.671421][ T8167] do_syscall_64+0xfa/0x3b0 [ 145.671440][ T8167] ? lockdep_hardirqs_on+0x9c/0x150 [ 145.671460][ T8167] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.671477][ T8167] ? clear_bhb_loop+0x60/0xb0 [ 145.671497][ T8167] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.671513][ T8167] RIP: 0033:0x7fe8caf8e929 [ 145.671529][ T8167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 145.671543][ T8167] RSP: 002b:00007fe8c8df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 145.671562][ T8167] RAX: ffffffffffffffda RBX: 00007fe8cb1b5fa0 RCX: 00007fe8caf8e929 [ 145.671575][ T8167] RDX: 0000200000000700 RSI: 0000000000008914 RDI: 0000000000000004 [ 145.671586][ T8167] RBP: 00007fe8c8df6090 R08: 0000000000000000 R09: 0000000000000000 [ 145.671597][ T8167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 145.671607][ T8167] R13: 0000000000000000 R14: 00007fe8cb1b5fa0 R15: 00007ffc3a8733c8 [ 145.671638][ T8167] [ 145.671657][ T8167] ERROR: Out of memory at tomoyo_realpath_from_path. [ 145.745975][ T8169] netlink: 28 bytes leftover after parsing attributes in process `syz.2.726'. [ 145.942172][ T30] audit: type=1804 audit(1752266530.630:2): pid=8178 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.731" name="/newroot/146/memory.events" dev="tmpfs" ino=756 res=1 errno=0 [ 146.051509][ T30] audit: type=1800 audit(1752266530.660:3): pid=8178 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.731" name="memory.events" dev="tmpfs" ino=756 res=0 errno=0 [ 146.404626][ T8193] FAULT_INJECTION: forcing a failure. [ 146.404626][ T8193] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 146.442025][ T8193] CPU: 0 UID: 0 PID: 8193 Comm: syz.1.735 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 146.442051][ T8193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 146.442061][ T8193] Call Trace: [ 146.442068][ T8193] [ 146.442076][ T8193] dump_stack_lvl+0x189/0x250 [ 146.442100][ T8193] ? __pfx____ratelimit+0x10/0x10 [ 146.442122][ T8193] ? __pfx_dump_stack_lvl+0x10/0x10 [ 146.442141][ T8193] ? __pfx__printk+0x10/0x10 [ 146.442162][ T8193] ? __might_fault+0xb0/0x130 [ 146.442195][ T8193] should_fail_ex+0x414/0x560 [ 146.442223][ T8193] _copy_from_user+0x2d/0xb0 [ 146.442244][ T8193] kstrtouint_from_user+0xc4/0x170 [ 146.442270][ T8193] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 146.442313][ T8193] proc_fail_nth_write+0x88/0x240 [ 146.442336][ T8193] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 146.442364][ T8193] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 146.442388][ T8193] vfs_write+0x27e/0xa90 [ 146.442416][ T8193] ? __pfx_vfs_write+0x10/0x10 [ 146.442436][ T8193] ? __fget_files+0x2a/0x420 [ 146.442461][ T8193] ? __fget_files+0x3a0/0x420 [ 146.442480][ T8193] ? __fget_files+0x2a/0x420 [ 146.442514][ T8193] ksys_write+0x145/0x250 [ 146.442534][ T8193] ? __pfx_ksys_write+0x10/0x10 [ 146.442549][ T8193] ? rcu_is_watching+0x15/0xb0 [ 146.442574][ T8193] ? do_syscall_64+0xbe/0x3b0 [ 146.442598][ T8193] do_syscall_64+0xfa/0x3b0 [ 146.442615][ T8193] ? lockdep_hardirqs_on+0x9c/0x150 [ 146.442635][ T8193] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.442650][ T8193] ? clear_bhb_loop+0x60/0xb0 [ 146.442671][ T8193] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.442687][ T8193] RIP: 0033:0x7feaae18d3df [ 146.442702][ T8193] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 146.442716][ T8193] RSP: 002b:00007feaaf02d030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 146.442734][ T8193] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007feaae18d3df [ 146.442747][ T8193] RDX: 0000000000000001 RSI: 00007feaaf02d0a0 RDI: 0000000000000005 [ 146.442757][ T8193] RBP: 00007feaaf02d090 R08: 0000000000000000 R09: 0000000000000000 [ 146.442767][ T8193] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 146.442777][ T8193] R13: 0000000000000000 R14: 00007feaae3b5fa0 R15: 00007ffc2b7b8f98 [ 146.442807][ T8193] [ 147.056499][ T8212] netlink: 'syz.1.740': attribute type 4 has an invalid length. [ 147.298933][ T8217] netlink: 20 bytes leftover after parsing attributes in process `syz.1.743'. [ 147.553916][ T8229] openvswitch: netlink: Unexpected mask (mask=1040, allowed=10048) [ 147.586814][ T8223] can: request_module (can-proto-0) failed. [ 147.592861][ T5166] Bluetooth: hci4: command 0x0406 tx timeout [ 147.760328][ T8237] netlink: 'syz.1.749': attribute type 1 has an invalid length. [ 147.790235][ T8237] NCSI netlink: No device for ifindex 0 [ 147.803985][ T8240] syzkaller1: entered promiscuous mode [ 147.810122][ T8240] syzkaller1: entered allmulticast mode [ 147.952803][ T8246] netlink: 8 bytes leftover after parsing attributes in process `syz.3.752'. [ 147.992780][ T8246] netlink: 16 bytes leftover after parsing attributes in process `syz.3.752'. [ 148.001657][ T8246] netlink: 40 bytes leftover after parsing attributes in process `syz.3.752'. [ 148.048324][ T8246] netlink: 540 bytes leftover after parsing attributes in process `syz.3.752'. [ 149.183615][ T8296] netlink: 16 bytes leftover after parsing attributes in process `syz.0.768'. [ 149.259373][ T8299] FAULT_INJECTION: forcing a failure. [ 149.259373][ T8299] name failslab, interval 1, probability 0, space 0, times 0 [ 149.302644][ T8299] CPU: 0 UID: 0 PID: 8299 Comm: syz.3.769 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 149.302669][ T8299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 149.302679][ T8299] Call Trace: [ 149.302687][ T8299] [ 149.302695][ T8299] dump_stack_lvl+0x189/0x250 [ 149.302720][ T8299] ? __pfx____ratelimit+0x10/0x10 [ 149.302742][ T8299] ? __pfx_dump_stack_lvl+0x10/0x10 [ 149.302761][ T8299] ? __pfx__printk+0x10/0x10 [ 149.302789][ T8299] ? __pfx___might_resched+0x10/0x10 [ 149.302807][ T8299] ? fs_reclaim_acquire+0x7d/0x100 [ 149.302833][ T8299] should_fail_ex+0x414/0x560 [ 149.302861][ T8299] should_failslab+0xa8/0x100 [ 149.302884][ T8299] __kmalloc_cache_noprof+0x70/0x3d0 [ 149.302902][ T8299] ? netlbl_mgmt_add_common+0x6a1/0x13b0 [ 149.302931][ T8299] netlbl_mgmt_add_common+0x6a1/0x13b0 [ 149.302962][ T8299] ? end_current_label_crit_section+0x152/0x180 [ 149.302990][ T8299] netlbl_mgmt_add+0x2ae/0x340 [ 149.303015][ T8299] ? __pfx_netlbl_mgmt_add+0x10/0x10 [ 149.303041][ T8299] ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0 [ 149.303070][ T8299] genl_family_rcv_msg_doit+0x212/0x300 [ 149.303095][ T8299] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 149.303128][ T8299] ? bpf_lsm_capable+0x9/0x20 [ 149.303145][ T8299] ? security_capable+0x7e/0x2e0 [ 149.303175][ T8299] genl_rcv_msg+0x60e/0x790 [ 149.303200][ T8299] ? __pfx_genl_rcv_msg+0x10/0x10 [ 149.303216][ T8299] ? __pfx_netlbl_mgmt_add+0x10/0x10 [ 149.303255][ T8299] netlink_rcv_skb+0x208/0x470 [ 149.303277][ T8299] ? __pfx_genl_rcv_msg+0x10/0x10 [ 149.303296][ T8299] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 149.303340][ T8299] ? down_read+0x1ad/0x2e0 [ 149.303366][ T8299] genl_rcv+0x28/0x40 [ 149.303381][ T8299] netlink_unicast+0x75c/0x8e0 [ 149.303417][ T8299] netlink_sendmsg+0x805/0xb30 [ 149.303446][ T8299] ? __pfx_netlink_sendmsg+0x10/0x10 [ 149.303470][ T8299] ? aa_sock_msg_perm+0x94/0x160 [ 149.303493][ T8299] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 149.303513][ T8299] ? __pfx_netlink_sendmsg+0x10/0x10 [ 149.303533][ T8299] __sock_sendmsg+0x219/0x270 [ 149.303555][ T8299] ____sys_sendmsg+0x505/0x830 [ 149.303582][ T8299] ? __pfx_____sys_sendmsg+0x10/0x10 [ 149.303614][ T8299] ? import_iovec+0x74/0xa0 [ 149.303636][ T8299] ___sys_sendmsg+0x21f/0x2a0 [ 149.303653][ T8299] ? __pfx____sys_sendmsg+0x10/0x10 [ 149.303704][ T8299] ? __fget_files+0x2a/0x420 [ 149.303722][ T8299] ? __fget_files+0x3a0/0x420 [ 149.303752][ T8299] __x64_sys_sendmsg+0x19b/0x260 [ 149.303771][ T8299] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 149.303798][ T8299] ? __pfx_ksys_write+0x10/0x10 [ 149.303813][ T8299] ? rcu_is_watching+0x15/0xb0 [ 149.303837][ T8299] ? do_syscall_64+0xbe/0x3b0 [ 149.303861][ T8299] do_syscall_64+0xfa/0x3b0 [ 149.303880][ T8299] ? lockdep_hardirqs_on+0x9c/0x150 [ 149.303900][ T8299] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.303916][ T8299] ? clear_bhb_loop+0x60/0xb0 [ 149.303937][ T8299] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.303954][ T8299] RIP: 0033:0x7ff3c558e929 [ 149.303969][ T8299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.303984][ T8299] RSP: 002b:00007ff3c33f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 149.304002][ T8299] RAX: ffffffffffffffda RBX: 00007ff3c57b5fa0 RCX: 00007ff3c558e929 [ 149.304015][ T8299] RDX: 0000000000000000 RSI: 0000200000000d80 RDI: 0000000000000004 [ 149.304026][ T8299] RBP: 00007ff3c33f6090 R08: 0000000000000000 R09: 0000000000000000 [ 149.304037][ T8299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 149.304047][ T8299] R13: 0000000000000000 R14: 00007ff3c57b5fa0 R15: 00007fff2bb2ea68 [ 149.304078][ T8299] [ 149.932137][ T8309] wg1 speed is unknown, defaulting to 1000 [ 150.016595][ T8313] __nla_validate_parse: 1 callbacks suppressed [ 150.016612][ T8313] netlink: 156 bytes leftover after parsing attributes in process `syz.4.773'. [ 150.035738][ T8309] wg1 speed is unknown, defaulting to 1000 [ 150.095037][ T8309] wg1 speed is unknown, defaulting to 1000 [ 150.116241][ T8309] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 150.185158][ T8320] FAULT_INJECTION: forcing a failure. [ 150.185158][ T8320] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 150.214943][ T8309] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 150.240613][ T8320] CPU: 1 UID: 0 PID: 8320 Comm: syz.2.776 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 150.240638][ T8320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 150.240648][ T8320] Call Trace: [ 150.240656][ T8320] [ 150.240663][ T8320] dump_stack_lvl+0x189/0x250 [ 150.240688][ T8320] ? __pfx____ratelimit+0x10/0x10 [ 150.240709][ T8320] ? __pfx_dump_stack_lvl+0x10/0x10 [ 150.240728][ T8320] ? __pfx__printk+0x10/0x10 [ 150.240750][ T8320] ? __might_fault+0xb0/0x130 [ 150.240781][ T8320] should_fail_ex+0x414/0x560 [ 150.240808][ T8320] _copy_from_user+0x2d/0xb0 [ 150.240827][ T8320] sock_do_ioctl+0x182/0x300 [ 150.240850][ T8320] ? __pfx_sock_do_ioctl+0x10/0x10 [ 150.240866][ T8320] ? __lock_acquire+0xab9/0xd20 [ 150.240901][ T8320] sock_ioctl+0x576/0x790 [ 150.240922][ T8320] ? __pfx_sock_ioctl+0x10/0x10 [ 150.240940][ T8320] ? __fget_files+0x2a/0x420 [ 150.240959][ T8320] ? __fget_files+0x3a0/0x420 [ 150.240978][ T8320] ? __fget_files+0x2a/0x420 [ 150.241001][ T8320] ? bpf_lsm_file_ioctl+0x9/0x20 [ 150.241018][ T8320] ? __pfx_sock_ioctl+0x10/0x10 [ 150.241036][ T8320] __se_sys_ioctl+0xfc/0x170 [ 150.241056][ T8320] do_syscall_64+0xfa/0x3b0 [ 150.241076][ T8320] ? lockdep_hardirqs_on+0x9c/0x150 [ 150.241095][ T8320] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.241112][ T8320] ? clear_bhb_loop+0x60/0xb0 [ 150.241132][ T8320] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.241148][ T8320] RIP: 0033:0x7f1c33d8e929 [ 150.241163][ T8320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 150.241177][ T8320] RSP: 002b:00007f1c34c7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 150.241196][ T8320] RAX: ffffffffffffffda RBX: 00007f1c33fb5fa0 RCX: 00007f1c33d8e929 [ 150.241208][ T8320] RDX: 0000200000000700 RSI: 0000000000008914 RDI: 0000000000000004 [ 150.241219][ T8320] RBP: 00007f1c34c7f090 R08: 0000000000000000 R09: 0000000000000000 [ 150.241230][ T8320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 150.241240][ T8320] R13: 0000000000000000 R14: 00007f1c33fb5fa0 R15: 00007ffd47c094b8 [ 150.241269][ T8320] [ 150.281477][ T8309] wg1 speed is unknown, defaulting to 1000 [ 150.516353][ T8331] FAULT_INJECTION: forcing a failure. [ 150.516353][ T8331] name failslab, interval 1, probability 0, space 0, times 0 [ 150.551501][ T8309] wg1 speed is unknown, defaulting to 1000 [ 150.576908][ T8331] CPU: 1 UID: 0 PID: 8331 Comm: syz.2.778 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 150.576932][ T8331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 150.576943][ T8331] Call Trace: [ 150.576949][ T8331] [ 150.576957][ T8331] dump_stack_lvl+0x189/0x250 [ 150.576981][ T8331] ? __pfx____ratelimit+0x10/0x10 [ 150.577003][ T8331] ? __pfx_dump_stack_lvl+0x10/0x10 [ 150.577023][ T8331] ? __pfx__printk+0x10/0x10 [ 150.577050][ T8331] ? __pfx___might_resched+0x10/0x10 [ 150.577074][ T8331] should_fail_ex+0x414/0x560 [ 150.577101][ T8331] should_failslab+0xa8/0x100 [ 150.577124][ T8331] __kmalloc_node_track_caller_noprof+0xcc/0x4e0 [ 150.577144][ T8331] ? llcp_sock_bind+0x33a/0x6c0 [ 150.577172][ T8331] kmemdup_noprof+0x2b/0x70 [ 150.577196][ T8331] llcp_sock_bind+0x33a/0x6c0 [ 150.577223][ T8331] ? aa_sk_perm+0x81e/0x950 [ 150.577246][ T8331] ? __pfx_llcp_sock_bind+0x10/0x10 [ 150.577284][ T8331] ? bpf_lsm_socket_bind+0x9/0x20 [ 150.577309][ T8331] __sys_bind+0x2c3/0x3e0 [ 150.577332][ T8331] ? __pfx___sys_bind+0x10/0x10 [ 150.577366][ T8331] ? __pfx_ksys_write+0x10/0x10 [ 150.577382][ T8331] ? rcu_is_watching+0x15/0xb0 [ 150.577410][ T8331] __x64_sys_bind+0x7a/0x90 [ 150.577430][ T8331] do_syscall_64+0xfa/0x3b0 [ 150.577449][ T8331] ? lockdep_hardirqs_on+0x9c/0x150 [ 150.577468][ T8331] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.577485][ T8331] ? clear_bhb_loop+0x60/0xb0 [ 150.577506][ T8331] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.577521][ T8331] RIP: 0033:0x7f1c33d8e929 [ 150.577542][ T8331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 150.577557][ T8331] RSP: 002b:00007f1c34c7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 150.577576][ T8331] RAX: ffffffffffffffda RBX: 00007f1c33fb5fa0 RCX: 00007f1c33d8e929 [ 150.577588][ T8331] RDX: 0000000000000060 RSI: 0000200000000080 RDI: 0000000000000005 [ 150.577600][ T8331] RBP: 00007f1c34c7f090 R08: 0000000000000000 R09: 0000000000000000 [ 150.577610][ T8331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 150.577621][ T8331] R13: 0000000000000000 R14: 00007f1c33fb5fa0 R15: 00007ffd47c094b8 [ 150.577651][ T8331] [ 150.908913][ T8309] wg1 speed is unknown, defaulting to 1000 [ 150.927005][ T8340] netlink: 8 bytes leftover after parsing attributes in process `syz.1.780'. [ 151.055351][ T8344] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 151.093287][ T8309] wg1 speed is unknown, defaulting to 1000 [ 151.101482][ T8309] wg1 speed is unknown, defaulting to 1000 [ 151.242358][ T8350] netlink: 4 bytes leftover after parsing attributes in process `syz.0.786'. [ 151.268011][ T8350] netlink: 12 bytes leftover after parsing attributes in process `syz.0.786'. [ 151.385644][ T8359] wg1 speed is unknown, defaulting to 1000 [ 151.691097][ T8366] wg1 speed is unknown, defaulting to 1000 [ 151.773461][ T12] ------------[ cut here ]------------ [ 151.778952][ T12] WARNING: CPU: 1 PID: 12 at net/mac80211/mlme.c:4353 ieee80211_mgd_probe_ap_send+0x52c/0x600 [ 151.789286][ T12] Modules linked in: [ 151.793424][ T12] CPU: 1 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 151.805449][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 151.815591][ T12] Workqueue: events_unbound cfg80211_wiphy_work [ 151.821847][ T12] RIP: 0010:ieee80211_mgd_probe_ap_send+0x52c/0x600 [ 151.828676][ T12] Code: c1 f6 90 0f 0b 90 eb b5 e8 01 61 c1 f6 90 0f 0b 90 e9 bd fb ff ff e8 f3 60 c1 f6 90 0f 0b 90 e9 37 ff ff ff e8 e5 60 c1 f6 90 <0f> 0b 90 e9 93 fc ff ff 48 c7 c1 30 6c a2 8f 80 e1 07 80 c1 03 38 [ 151.848488][ T12] RSP: 0018:ffffc900001179e0 EFLAGS: 00010293 [ 151.855688][ T12] RAX: ffffffff8afed6eb RBX: 0000000000000001 RCX: ffff88801d2dda00 [ 151.864559][ T12] RDX: 0000000000000000 RSI: ffffffff8db8e0a6 RDI: ffff88801d2dda00 [ 151.872615][ T12] RBP: dffffc0000000000 R08: ffff88801d2dda00 R09: 000000000000000c [ 151.880591][ T12] R10: 000000000000000c R11: 0000000000000000 R12: 1ffff110066ea38e [ 151.888756][ T12] R13: ffff888033750d80 R14: ffff888033752a22 R15: ffff888033751c70 [ 151.896785][ T12] FS: 0000000000000000(0000) GS:ffff888125d0f000(0000) knlGS:0000000000000000 [ 151.905760][ T12] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 151.912348][ T12] CR2: 0000000000000000 CR3: 0000000076faa000 CR4: 00000000003526f0 [ 151.921226][ T12] Call Trace: [ 151.924573][ T12] [ 151.927517][ T12] cfg80211_wiphy_work+0x2dc/0x460 [ 151.933182][ T12] ? process_scheduled_works+0x9ef/0x17b0 [ 151.938922][ T12] process_scheduled_works+0xae1/0x17b0 [ 151.944927][ T12] ? __pfx_process_scheduled_works+0x10/0x10 [ 151.950937][ T12] worker_thread+0x8a0/0xda0 [ 151.956655][ T12] kthread+0x70e/0x8a0 [ 151.960745][ T12] ? __pfx_worker_thread+0x10/0x10 [ 151.966795][ T12] ? __pfx_kthread+0x10/0x10 [ 151.971409][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 151.976665][ T12] ? lockdep_hardirqs_on+0x9c/0x150 [ 151.981869][ T12] ? __pfx_kthread+0x10/0x10 [ 151.986528][ T12] ret_from_fork+0x3fc/0x770 [ 151.991128][ T12] ? __pfx_ret_from_fork+0x10/0x10 [ 151.996381][ T12] ? __switch_to_asm+0x39/0x70 [ 152.001154][ T12] ? __switch_to_asm+0x33/0x70 [ 152.006276][ T12] ? __pfx_kthread+0x10/0x10 [ 152.010881][ T12] ret_from_fork_asm+0x1a/0x30 [ 152.015713][ T12] [ 152.018747][ T12] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 152.026030][ T12] CPU: 1 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted 6.16.0-rc5-syzkaller-01302-gfadd1e6231b1 #0 PREEMPT(full) [ 152.037998][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 152.048039][ T12] Workqueue: events_unbound cfg80211_wiphy_work [ 152.054275][ T12] Call Trace: [ 152.057539][ T12] [ 152.060455][ T12] dump_stack_lvl+0x99/0x250 [ 152.065034][ T12] ? __asan_memcpy+0x40/0x70 [ 152.069610][ T12] ? __pfx_dump_stack_lvl+0x10/0x10 [ 152.074793][ T12] ? __pfx__printk+0x10/0x10 [ 152.079391][ T12] panic+0x2db/0x790 [ 152.083279][ T12] ? __pfx_panic+0x10/0x10 [ 152.087678][ T12] ? show_trace_log_lvl+0x4fb/0x550 [ 152.092873][ T12] ? ret_from_fork_asm+0x1a/0x30 [ 152.097802][ T12] __warn+0x31b/0x4b0 [ 152.101765][ T12] ? ieee80211_mgd_probe_ap_send+0x52c/0x600 [ 152.107737][ T12] ? ieee80211_mgd_probe_ap_send+0x52c/0x600 [ 152.113706][ T12] report_bug+0x2be/0x4f0 [ 152.118022][ T12] ? ieee80211_mgd_probe_ap_send+0x52c/0x600 [ 152.123990][ T12] ? ieee80211_mgd_probe_ap_send+0x52c/0x600 [ 152.129963][ T12] ? ieee80211_mgd_probe_ap_send+0x52e/0x600 [ 152.135930][ T12] handle_bug+0x84/0x160 [ 152.140164][ T12] exc_invalid_op+0x1a/0x50 [ 152.144652][ T12] asm_exc_invalid_op+0x1a/0x20 [ 152.149487][ T12] RIP: 0010:ieee80211_mgd_probe_ap_send+0x52c/0x600 [ 152.156060][ T12] Code: c1 f6 90 0f 0b 90 eb b5 e8 01 61 c1 f6 90 0f 0b 90 e9 bd fb ff ff e8 f3 60 c1 f6 90 0f 0b 90 e9 37 ff ff ff e8 e5 60 c1 f6 90 <0f> 0b 90 e9 93 fc ff ff 48 c7 c1 30 6c a2 8f 80 e1 07 80 c1 03 38 [ 152.175654][ T12] RSP: 0018:ffffc900001179e0 EFLAGS: 00010293 [ 152.181705][ T12] RAX: ffffffff8afed6eb RBX: 0000000000000001 RCX: ffff88801d2dda00 [ 152.189659][ T12] RDX: 0000000000000000 RSI: ffffffff8db8e0a6 RDI: ffff88801d2dda00 [ 152.197611][ T12] RBP: dffffc0000000000 R08: ffff88801d2dda00 R09: 000000000000000c [ 152.205563][ T12] R10: 000000000000000c R11: 0000000000000000 R12: 1ffff110066ea38e [ 152.213515][ T12] R13: ffff888033750d80 R14: ffff888033752a22 R15: ffff888033751c70 [ 152.221478][ T12] ? ieee80211_mgd_probe_ap_send+0x52b/0x600 [ 152.227458][ T12] cfg80211_wiphy_work+0x2dc/0x460 [ 152.232555][ T12] ? process_scheduled_works+0x9ef/0x17b0 [ 152.238262][ T12] process_scheduled_works+0xae1/0x17b0 [ 152.243813][ T12] ? __pfx_process_scheduled_works+0x10/0x10 [ 152.249790][ T12] worker_thread+0x8a0/0xda0 [ 152.254386][ T12] kthread+0x70e/0x8a0 [ 152.258447][ T12] ? __pfx_worker_thread+0x10/0x10 [ 152.263541][ T12] ? __pfx_kthread+0x10/0x10 [ 152.268120][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 152.273302][ T12] ? lockdep_hardirqs_on+0x9c/0x150 [ 152.278486][ T12] ? __pfx_kthread+0x10/0x10 [ 152.283062][ T12] ret_from_fork+0x3fc/0x770 [ 152.287639][ T12] ? __pfx_ret_from_fork+0x10/0x10 [ 152.292737][ T12] ? __switch_to_asm+0x39/0x70 [ 152.297483][ T12] ? __switch_to_asm+0x33/0x70 [ 152.302228][ T12] ? __pfx_kthread+0x10/0x10 [ 152.306803][ T12] ret_from_fork_asm+0x1a/0x30 [ 152.311564][ T12] [ 152.314807][ T12] Kernel Offset: disabled [ 152.319113][ T12] Rebooting in 86400 seconds..