last executing test programs: 6m27.399285526s ago: executing program 0 (id=1489): r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) fallocate$auto(r0, 0x0, 0x400000a, 0x4b) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0xa, 0x2, 0x0) socket(0x840000000002, 0x3, 0xff) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) socket(0xa, 0x3, 0x6) mq_open$auto(&(0x7f0000000000)='.\xf1e4\xdf\x16\x95kxE\xd9x\x15\xb0\xf6V\x93\xb4E\x06\xc5}l', 0x56a, 0xb275, 0x0) mq_timedreceive$auto(0x8, 0x0, 0xfffffffd, 0x0, 0x0) mq_timedsend$auto(0x8, 0x0, 0x2000, 0x9, 0x0) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_SEND_BEACONS(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_BEACON_INTERVAL={0x5, 0x26, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x2004800) r2 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) rename$auto(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./file1\x00') fanotify_mark$auto(0xffffffffffffffff, 0x3, 0x2, r2, 0x0) r3 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x101080, 0x0) ioctl$auto_NVRAM_INIT(r3, 0x7040, 0x0) 6m25.355921769s ago: executing program 0 (id=1500): set_mempolicy$auto(0x4006, 0x0, 0x7) r0 = socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) io_uring_setup$auto(0x6, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = gettid() io_uring_setup$auto(0x80, &(0x7f0000000240)={0x1, 0x0, 0x3ff, 0x4, 0x7, 0x5a00, r0, [0x5, 0x5, 0x5], {0x7, 0x8, 0x297, 0x82, 0x1000, 0x2, 0x1, 0x3, 0x2}, {0x1, 0x4, 0x1, 0x1, 0x468a, 0x3, 0x1, 0x316a, 0x1}}) pidfd_open$auto(r1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0}, 0x20000001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x28, 0x5, 0x0) pipe2$auto(0x0, 0x80) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) close_range$auto(0x2, 0x8, 0x0) r2 = open(0x0, 0x0, 0x10a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) ioctl$auto(0xffffffffffffffff, 0x400454d9, 0x5c8c) newfstatat$auto(r2, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x400, 0x0, 0x9, 0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x7fffffff, 0x8001, 0x0, 0xff, 0x1, 0x6, 0x96, 0x7, 0x3ff}, 0x9) rt_sigtimedwait$auto(&(0x7f0000000000)={0x5}, &(0x7f0000000180)={@siginfo_0_0={0x1, 0x7, 0x2, @_kill={r1, r3}}}, &(0x7f0000000200)={0x100000001, 0x3}, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mlockall$auto(0x7) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) 6m22.440486437s ago: executing program 0 (id=1510): mmap$auto(0x4000, 0x400008, 0x4, 0x9b72, 0x9, 0x7fff) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), r0) sendmsg$auto_WG_CMD_SET_DEVICE(r0, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000040)={0x30, r1, 0x21, 0x70bd26, 0x25dfdbff, {}, [@WGDEVICE_A_FLAGS={0x8, 0x5, 0x5}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x841}, 0x80) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mkdir$auto(0x0, 0x40) socket$nl_generic(0x10, 0x3, 0x10) inotify_init1$auto(0x3000000000000) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x4401, 0x0) inotify_add_watch$auto(0x4, 0x0, 0x100400a) r2 = gettid() process_vm_writev$auto(r2, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x400, 0x0) 6m17.403675869s ago: executing program 0 (id=1522): set_mempolicy$auto(0x4006, 0x0, 0x7) r0 = socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) io_uring_setup$auto(0x6, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = gettid() pidfd_open$auto(r1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0}, 0x20000001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x28, 0x5, 0x0) pipe2$auto(0x0, 0x80) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x0, 0x10a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) ioctl$auto(0xffffffffffffffff, 0x400454d9, 0x5c8c) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mlockall$auto(0x7) mmap$auto(0xf5, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) 6m13.244651152s ago: executing program 0 (id=1537): r0 = socket(0x2, 0x80002, 0x73) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x1, 0x2, 0x0) socket(0x18, 0x1, 0x0) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000100), r0) sendmsg$auto_OVS_FLOW_CMD_GET(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x1c, r1, 0x400, 0x70bd26, 0x25dfdbfd, {}, [@OVS_FLOW_ATTR_CLEAR={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x400c040) bind$auto(0x3, &(0x7f0000000080), 0x6b) connect$auto(0x3, &(0x7f00000000c0), 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0xc76, 0x8000) mlock$auto(0x7fffffffffffffff, 0x7) mmap$auto(0x0, 0x8, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) r2 = socket(0xa, 0x2, 0x0) sendmmsg$auto(r2, &(0x7f0000000180)={{&(0x7f0000000040)=[0x200000a, 0x1ff, 0x3a2e69e6, 0x7], 0xb8, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x9}, 0x1, 0x8008) write$auto(0x3, 0x0, 0xfdef) madvise$auto(0x0, 0xffffffffffff0005, 0x19) 6m8.015217234s ago: executing program 0 (id=1570): openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) (fail_nth: 10) syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) 5m52.8297974s ago: executing program 32 (id=1570): openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) (fail_nth: 10) syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) 5m49.482391043s ago: executing program 3 (id=1641): mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) set_mempolicy$auto(0x1, &(0x7f0000000000)=0xdfaf, 0x5) unshare$auto(0x40000080) (fail_nth: 8) 5m48.29315763s ago: executing program 3 (id=1645): openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x29, 0x2, 0x0) statx$auto(0xffffffffffffffff, 0x0, 0x2, 0x4, &(0x7f0000000300)={0x7, 0x1, 0xfffffffffffffff9, 0x7, 0xffffffffffffffff, 0xffffffffffffffff, 0x3, 0x0, 0x401, 0x1, 0x5, 0xde, {0x80000004, 0x800008}, {0x8000000001, 0x8}, {0xfffffffffffffffb, 0x10000}, {0xffffffffffffff60, 0xffff}, 0x2, 0x6, 0x80000000, 0x17e9, 0x709c, 0x104, 0x2, 0x938, 0x8, 0x5, 0xb6a, 0xde57, [0x1b, 0x6, 0x80000001, 0x5, 0x3ff, 0x1c9fb31b, 0xfffffffffffffffc, 0x800, 0x3]}) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8923, 0x24) bpf$auto(0xa, 0xfffffffffffffffe, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) read$auto(0xca, 0x0, 0x200) r2 = socket(0x11, 0x80003, 0x300) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000040), r1) ioperm$auto(0x7ff, 0x1, 0x4000005) r3 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x140, 0x0, 0x8}, 0x18) fdatasync$auto(r3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x5}, 0x24048090) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x7, 0x0, 0x5, 0x3, 0x2000000000010006, 0x0, 0x7, 0x5, 0x2, 0x7, 0xaf, 0x9, 0x2, 0x3, 0x105, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, [0x200000000001b16, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x77, 0x0, 0x0, 0x0, 0x4, 0x0, 0xc06f, 0x7fffffffffffffff, 0x0, 0x0, 0x2, 0x0, 0x7, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x107, 0x6, 0x0, 0xfffffffffffffffe, 0x4, 0x0, 0x80000000000]}, 0x1fe, 0x81) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4040841}, 0x40000) ioprio_set$auto(0x2, 0x0, 0x72e2f0a) syz_open_procfs$namespace(0x0, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x7fffffff) socketpair$auto(0x3, 0x5, 0x7, 0x0) bpf$auto(0x0, 0x0, 0xaf1) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) wait4$auto(0x2, 0xfffffffffffffffe, 0x5, 0x0) socket(0x23, 0x80000, 0x106) 5m46.843625323s ago: executing program 3 (id=1648): set_mempolicy$auto(0x4006, 0x0, 0x7) r0 = socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) io_uring_setup$auto(0x6, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = gettid() pidfd_open$auto(r1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0}, 0x20000001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x28, 0x5, 0x0) pipe2$auto(0x0, 0x80) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x0, 0x10a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000810, 0x3) ioctl$auto(0xffffffffffffffff, 0x400454d9, 0x5c8c) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mlockall$auto(0x7) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) 5m43.304228649s ago: executing program 3 (id=1662): r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x42a82, 0x0) poll$auto(&(0x7f0000000d40)={0x3, 0x500, 0xa}, 0x5, 0x400) ioctl$auto(r0, 0x5100, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd3/uevent\x00', 0xa000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000140)=""/34, 0x22) 5m42.793266882s ago: executing program 3 (id=1668): socket(0x11, 0x80003, 0x300) mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x100000000002, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mlock2$auto(0x1, 0x8001, 0x0) (async) mlock2$auto(0x1, 0x8001, 0x0) open(&(0x7f0000000080)='./cgroup\x00', 0x40001, 0x6) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x6, 0x0, 0x8) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) (async) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) setreuid$auto(0x3, 0x7) fchown$auto(0x5, 0x8, 0x3) (async) fchown$auto(0x5, 0x8, 0x3) 5m40.533160773s ago: executing program 3 (id=1681): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) lseek$auto(r1, 0xbfffffffffffffff, 0x0) socket(0xa, 0x3, 0xff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000", @ANYBLOB="0000f5a1"], 0x14}, 0x1, 0x0, 0x0, 0x40045}, 0x800) socket(0x25, 0x4, 0x806) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r2) r3 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000005c0), r2) setsockopt$auto(0x4, 0x0, 0x60, 0xfffffffffffffffe, 0x0) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="f51b26bd7000fedbdf2517"], 0x14}, 0x1, 0x0, 0x0, 0x8090}, 0x4000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0x2003ed, 0x19) socket$nl_generic(0x10, 0x3, 0x10) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) writev$auto(0x0, &(0x7f0000000380)={0x0, 0x50d}, 0x101) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002dbd7000fddbdf250200000008000300", @ANYRES32=r5, @ANYBLOB="08000a01"], 0x24}, 0x1, 0x0, 0x0, 0x4000023}, 0x80) 5m40.420896457s ago: executing program 33 (id=1681): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) lseek$auto(r1, 0xbfffffffffffffff, 0x0) socket(0xa, 0x3, 0xff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000", @ANYBLOB="0000f5a1"], 0x14}, 0x1, 0x0, 0x0, 0x40045}, 0x800) socket(0x25, 0x4, 0x806) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r2) r3 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000005c0), r2) setsockopt$auto(0x4, 0x0, 0x60, 0xfffffffffffffffe, 0x0) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="f51b26bd7000fedbdf2517"], 0x14}, 0x1, 0x0, 0x0, 0x8090}, 0x4000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0x2003ed, 0x19) socket$nl_generic(0x10, 0x3, 0x10) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) writev$auto(0x0, &(0x7f0000000380)={0x0, 0x50d}, 0x101) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002dbd7000fddbdf250200000008000300", @ANYRES32=r5, @ANYBLOB="08000a01"], 0x24}, 0x1, 0x0, 0x0, 0x4000023}, 0x80) 2m37.017889147s ago: executing program 2 (id=2575): set_mempolicy$auto(0x1, 0x0, 0x5) unshare$auto(0x40000080) socket(0x21, 0x2, 0x2) r0 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ieee80211/phy0/reset\x00', 0x81, 0x0) write$auto(r0, 0x0, 0x1) 2m35.330668481s ago: executing program 2 (id=2579): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) clone$auto(0x7, 0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) mlock$auto(0xfbe8, 0x4) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x2000c041) bind$auto(0xffffffffffffffff, 0x0, 0x6e) rseq$auto(&(0x7f00000003c0)={0xb, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) syz_genetlink_get_family_id$auto_ovs_meter(0x0, 0xffffffffffffffff) setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) unshare$auto(0x3) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) socket$nl_generic(0x10, 0x3, 0x10) mlock$auto(0x7c88, 0x7fff) 2m33.747596864s ago: executing program 2 (id=2583): socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x40000080) socket(0x21, 0x2, 0x2) r0 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ieee80211/phy0/reset\x00', 0x81, 0x0) write$auto(r0, 0x0, 0x1) 2m31.725186089s ago: executing program 2 (id=2590): mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) io_setup$auto(0x1, 0x0) io_uring_setup$auto(0x6, 0x0) io_pgetevents$auto(0x4, 0x8, 0xa31f, 0x0, 0x0, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x80, 0x0) mlockall$auto(0x7) mmap$auto(0x0, 0x8, 0x1000000004, 0x8b72, 0x6, 0x8000) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0) ioctl$auto(r1, 0x40045109, 0x3) ppoll$auto(&(0x7f0000000000)={r0, 0x4, 0x3}, 0x1, 0x0, 0x0, 0x8) chroot$auto(&(0x7f0000000080)='}[,&*}\x00') r3 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/inject\x00', 0x200080, 0x0) io_uring_setup$auto(0x1a9, &(0x7f0000000200)={0xc000, 0xfffffffa, 0x3, 0x80000000, 0xe, 0x3, r3, [0x0, 0x56, 0x9], {0x8001, 0x3ff, 0x8001, 0x7, 0xffff, 0xffff, 0x8, 0x385}, {0xffffff46, 0x7ff, 0x4fe, 0xf2aa, 0x3, 0x101, 0x8e0, 0x100, 0x8a}}) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') umount2$auto(&(0x7f0000000000)='.\x00', 0x1) shmctl$auto(0x6, 0x9, &(0x7f0000000340)={{0x4b3, 0x0, 0xffffffffffffffff, 0x1, 0x6, 0x101}, 0xda, 0x800, 0x5, 0x3, 0xffff, 0x6, 0x3, 0x0, &(0x7f00000002c0)=[0xd55, 0x8b8, 0x5f8dbfc7], &(0x7f0000000300)=[0x8001, 0x8, 0x800]}) mkdir$auto(&(0x7f0000000000)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) lchown$auto(&(0x7f0000000100)='}[,&*}\x00', 0xffffffffffffffff, 0x0) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/config/nullb/features\x00', 0x40240, 0x0) statx$auto(r2, &(0x7f00000003c0)='}[,&*}\x00', 0x5, 0x4, &(0x7f0000000400)={0x5, 0x4, 0xc, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x6, 0x5, 0x3, {0x2, 0x100}, {0xbaf, 0xd7}, {0xf53, 0xfff}, {0x4, 0x3}, 0x8, 0x6, 0x0, 0x7, 0x7, 0xf, 0x1, 0x9b0, 0x7, 0x4, 0x4, 0x2, [0x4, 0x2, 0x8, 0xe, 0x8001, 0x5, 0x8, 0x5c73, 0xfffffffffffffffa]}) lstat$auto(&(0x7f0000000280)='}[,&*}\x00', &(0x7f0000000500)={0x6, 0xcc0d, 0x6, 0x10001, r4, r5, 0x0, 0x2, 0x3, 0x9, 0xfffffffffffff736, 0x0, 0x7, 0x2000000000000000, 0x1ff, 0x4, 0x9ee}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x10080, 0x0) 2m30.860761985s ago: executing program 2 (id=2603): mmap$auto(0x0, 0x4, 0xdf, 0x9b72, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) splice$auto(0x4, 0x0, 0x2, 0x0, 0xfffffffffffffffc, 0x4) r0 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) madvise$auto(0x0, 0x2000040080000004, 0xe) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x3, 0x6) r1 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="1a00279e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmsg$auto_CTRL_CMD_GETFAMILY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002abd77dcb7fcdf2503000000190000000000000001"], 0x24}, 0x1, 0x0, 0x0, 0x4008810}, 0x10000000) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) r2 = socket(0x10, 0x2, 0x0) r3 = socket(0xa, 0x2, 0x3a) connect$auto(0x3, 0x0, 0x55) setsockopt$auto(0x3, 0x1, 0x19, 0xffffffffffffffff, 0x0) sendmsg$auto_NL80211_CMD_DEL_PMK(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x80, 0x0, 0x300, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0xf1f}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x61, 0xcd, "ed24902ee38606f21f105577c16404acc014e328b39742b9b95c48521412e23ce533ebec40c1f3cb3852f231d2fc44e01a723ff84b2cd779a05e901278803206528f3f8bcb12f759b10107d8cd85b1b87fe557d00fbda9c9eb05b05630"}]}, 0x80}, 0x1, 0x0, 0x0, 0x4001}, 0x40000) sendmsg$auto_IPVS_CMD_GET_INFO(r2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000005}, 0x4004010) read$auto(0x3, 0x0, 0x7) 2m30.083442879s ago: executing program 2 (id=2598): close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) splice$auto(0x4, 0x0, 0x2, 0x0, 0xfffffffffffffffc, 0x4) r0 = syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0x2000040080000004, 0xe) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x3, 0x6) r1 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="1a00279e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmsg$auto_CTRL_CMD_GETFAMILY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002abd77dcb7fcdf2503000000190000000000000001"], 0x24}, 0x1, 0x0, 0x0, 0x4008810}, 0x10000000) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) r2 = socket(0x10, 0x2, 0x0) r3 = socket(0xa, 0x2, 0x3a) connect$auto(0x3, 0x0, 0x55) sendmsg$auto_NL80211_CMD_DEL_PMK(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x80, 0x0, 0x300, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0xf1f}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x61, 0xcd, "ed24902ee38606f21f105577c16404acc014e328b39742b9b95c48521412e23ce533ebec40c1f3cb3852f231d2fc44e01a723ff84b2cd779a05e901278803206528f3f8bcb12f759b10107d8cd85b1b87fe557d00fbda9c9eb05b05630"}]}, 0x80}, 0x1, 0x0, 0x0, 0x4001}, 0x40000) sendmsg$auto_IPVS_CMD_GET_INFO(r2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000005}, 0x4004010) 2m14.912453125s ago: executing program 34 (id=2598): close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) splice$auto(0x4, 0x0, 0x2, 0x0, 0xfffffffffffffffc, 0x4) r0 = syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0x2000040080000004, 0xe) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x3, 0x6) r1 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="1a00279e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmsg$auto_CTRL_CMD_GETFAMILY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002abd77dcb7fcdf2503000000190000000000000001"], 0x24}, 0x1, 0x0, 0x0, 0x4008810}, 0x10000000) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) r2 = socket(0x10, 0x2, 0x0) r3 = socket(0xa, 0x2, 0x3a) connect$auto(0x3, 0x0, 0x55) sendmsg$auto_NL80211_CMD_DEL_PMK(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x80, 0x0, 0x300, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0xf1f}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x61, 0xcd, "ed24902ee38606f21f105577c16404acc014e328b39742b9b95c48521412e23ce533ebec40c1f3cb3852f231d2fc44e01a723ff84b2cd779a05e901278803206528f3f8bcb12f759b10107d8cd85b1b87fe557d00fbda9c9eb05b05630"}]}, 0x80}, 0x1, 0x0, 0x0, 0x4001}, 0x40000) sendmsg$auto_IPVS_CMD_GET_INFO(r2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000005}, 0x4004010) 54.242837757s ago: executing program 4 (id=3163): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r0, 0x0, 0x4040000) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) r1 = getpgid(0x0) pidfd_open$auto(r1, 0x7fffffff) socket(0x2a, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) connect$auto(0x3, &(0x7f00000000c0), 0x55) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40) setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x10000000000002d, 0x0) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) gettid() connect$auto(0xffffffffffffffff, 0x0, 0x55) mmap$auto(0x0, 0x5, 0x3, 0x16, 0x3, 0x8400) unshare$auto(0x40000080) write$auto(0xca, &(0x7f0000000300)='\x00', 0x10) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) madvise$auto(0x0, 0x20200, 0x15) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) open(&(0x7f0000000200)='./cgroup\x00', 0x400, 0x23) mkdir$auto(&(0x7f0000000140)='MAC80211_HWSIM\x00', 0x1) rmdir$auto(&(0x7f0000000340)='MAC80211_HWSIM\x00') 50.546916363s ago: executing program 4 (id=3180): mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) io_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) io_pgetevents$auto(0x4, 0x8, 0xa31f, 0x0, 0x0, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x80, 0x0) mlockall$auto(0x7) mmap$auto(0x0, 0x8, 0x1000000004, 0x8b72, 0x6, 0x8000) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0) ioctl$auto(r1, 0x40045109, 0x3) ppoll$auto(&(0x7f0000000000)={r0, 0x4, 0x3}, 0x1, 0x0, 0x0, 0x8) chroot$auto(&(0x7f0000000080)='}[,&*}\x00') r3 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/inject\x00', 0x200080, 0x0) io_uring_setup$auto(0x1a9, &(0x7f0000000200)={0xc000, 0xfffffffa, 0x3, 0x80000000, 0xe, 0x3, r3, [0x0, 0x56, 0x9], {0x8001, 0x3ff, 0x8001, 0x7, 0xffff, 0xffff, 0x8, 0x385}, {0xffffff46, 0x7ff, 0x4fe, 0xf2aa, 0x3, 0x101, 0x8e0, 0x100, 0x8a}}) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') umount2$auto(&(0x7f0000000000)='.\x00', 0x1) shmctl$auto(0x6, 0x9, &(0x7f0000000340)={{0x4b3, 0x0, 0xffffffffffffffff, 0x1, 0x6, 0x101}, 0xda, 0x800, 0x5, 0x3, 0xffff, 0x6, 0x3, 0x0, &(0x7f00000002c0)=[0xd55, 0x5f8dbfc7], &(0x7f0000000300)=[0x8001, 0x8, 0x800]}) mkdir$auto(&(0x7f0000000000)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) lchown$auto(&(0x7f0000000100)='}[,&*}\x00', 0xffffffffffffffff, 0x0) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/config/nullb/features\x00', 0x40240, 0x0) statx$auto(r2, &(0x7f00000003c0)='}[,&*}\x00', 0x5, 0x4, &(0x7f0000000400)={0x5, 0x4, 0xc, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x6, 0x5, 0x3, {0x2, 0x100}, {0xbaf, 0xd7}, {0xf53, 0xfff}, {0x4, 0x3}, 0x8, 0x6, 0x0, 0x7, 0x7, 0xf, 0x1, 0x9b0, 0x7, 0x4, 0x4, 0x2, [0x4, 0x2, 0x8, 0xe, 0x8001, 0x5, 0x8, 0x5c73, 0xfffffffffffffffa]}) lstat$auto(&(0x7f0000000280)='}[,&*}\x00', &(0x7f0000000500)={0x6, 0xcc0d, 0x6, 0x10001, r4, r5, 0x0, 0x2, 0x3, 0x9, 0xfffffffffffff736, 0x0, 0x7, 0x2000000000000000, 0x1ff, 0x4, 0x9ee}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x10080, 0x0) 49.750994224s ago: executing program 4 (id=3175): r0 = socket(0x22, 0x3, 0x0) bind$auto(r0, &(0x7f0000000300)=@vsock={0x28, 0x0, 0x0, @local}, 0x4) r1 = socket(0xa, 0x3, 0x3a) setsockopt$auto(r1, 0x29, 0xd0, 0x0, 0x400c) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdds\x1cJ\x99\x00:2\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x10, 0x3) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r2 = socket(0x2, 0x2, 0x88) setsockopt$auto(r2, 0x88, 0xa, &(0x7f0000000000)='\xba\xba\xd3\xc8[&P\x9c\xe7AJz\'\x91\xce=B}v+7n\xa2r0\x92\xc3\x0eE\x96\xf63\xec\xe0\xb2\f\xa86v\xeb\xf1\xcb\xd4\xa9\v\xe1\xcc\x18', 0x80000e) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3ff, 0x8000) connect$auto(0x3, &(0x7f00000000c0), 0x55) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32, @ANYBLOB="060006ff003047b7ba4ee1c71ec5a71eccd0f696851dc0712c72fc18c384a0175ae67d2c9f4d2133f819ca8d2e9d1e3eaa76b58ec2766f21cb524fe5ffa0c95feeed277028eed01423a94e0f4e83c3ac5d2591d32c7d1b874f74252c220c883966d085218e8d662e062a578696fa9e01ac953e58cbc928a2b7f7eab10471008a1e260dd78c15426d2f14b4"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x44050}, 0x20004904) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYRESDEC=r2, @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) semtimedop$auto(0x6, &(0x7f0000000100)={0x7, 0xb285, 0x1}, 0x8, &(0x7f0000000280)={0xffffffffffffffff, 0x2}) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) futex$auto(0x0, 0x13, 0x4, 0x0, 0x0, 0xa0000001) 49.351715313s ago: executing program 4 (id=3176): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x2, 0x3a) socket(0xa, 0x2, 0x0) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000140), 0x382, 0x0) mkdir$auto(&(0x7f0000000080)='./file0\x00', 0x7ff) kexec_load$auto(0xff, 0x9, 0x0, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x188140, 0x0) ioctl$auto(r0, 0x40045407, 0x3) r1 = socket(0x1d, 0x2, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getsockopt$auto(r1, 0x6a, 0x2, 0x0, 0x0) timer_create$auto(0x7, 0x0, 0x0) creat$auto(0x0, 0x5) close_range$auto(0x2, 0x8, 0x0) clock_nanosleep$auto(0x3, 0xfec6, &(0x7f0000000100)={0x4, 0x3}, &(0x7f0000000180)={0x2, 0x401}) timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x9}}, 0x0) timer_gettime$auto(0x0, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x11, &(0x7f0000000180), 0x83) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x109140, 0x0) shmctl$auto(0x5, 0x3d1, &(0x7f0000000240)={{0x0, 0x0, 0x0, 0x40, 0x7ff, 0x0, 0xc965}, 0x8, 0x1, 0x8, 0x8, 0xd, 0x9, 0x58e, 0x0, 0x0, 0x0}) socket(0x2, 0x801, 0x106) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 47.542840105s ago: executing program 4 (id=3187): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) open(0x0, 0x22240, 0x154) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) truncate$auto(0x0, 0x5) rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffe, @_sigpoll={0x52, 0x7}}}) socket(0x2a, 0x5, 0x1066) io_uring_setup$auto(0x6, 0x0) r1 = geteuid() msgctl$auto(0x5, 0x9, &(0x7f00000000c0)={{0x475e, 0x0, 0xffffffffffffffff, 0xc36, 0x10006, 0x8, 0x7}, &(0x7f0000000040), &(0x7f0000000080)=0x4, 0x9, 0x1, 0x8, 0x100000004, 0x3, 0x0, 0x3, 0x8f, 0x5, 0x5b11}) chown$auto(&(0x7f0000000000)='./file0\x00', r1, r2) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), 0xffffffffffffffff) mmap$auto(0x0, 0x8, 0x72, 0x8b72, 0x8f1, 0x8000) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0xc0189436, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[], 0x28}}, 0x4) io_uring_setup$auto(0x80000007, 0x0) r5 = socket(0xa, 0x6, 0x0) sysfs$auto(0x4, 0x0, 0xfffffffffffffffb) fsopen$auto(0x0, 0x1) epoll_create$auto(0x4) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) epoll_ctl$auto(0x5, 0x1, r5, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) 46.051080439s ago: executing program 4 (id=3200): r0 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154) fcntl$auto(0x3, 0x400, 0x1) fcntl$auto(0x3, 0x8, 0x9ebfffffffffffff) write$auto(0x1, &(0x7f0000000000)='//\xf2\x00', 0x80000000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NLBL_MGMT_C_LISTDEF(r0, &(0x7f0000000240)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f00000001c0)={0x50, r1, 0x0, 0x70bd2b, 0x25dfdbfd, {}, [@NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0xb96}, @NLBL_MGMT_A_VERSION={0x8, 0x3, 0xfffffffe}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x7f}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x9}, @NLBL_MGMT_A_DOMAIN={0xb, 0x1, '#}!*:-\x00'}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x5}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x5}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x4000811) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x0) socket(0x2, 0x6, 0x0) epoll_create$auto(0x4) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) epoll_ctl$auto(0x5, 0x1, 0xffffffffffffffff, 0x0) connect$auto(0x3, 0x0, 0x55) writev$auto(0x1, &(0x7f0000000100)={0x0, 0xa}, 0x1) sendmsg$auto_NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, 0x0, 0x4000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xc18, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0) ioctl$auto(r2, 0x40085112, 0x2) open(&(0x7f0000000800)='./file0\x00', 0x0, 0x135) fcntl$auto(0x3, 0x400, 0x9ec0000000000000) 45.768043883s ago: executing program 35 (id=3200): r0 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154) fcntl$auto(0x3, 0x400, 0x1) fcntl$auto(0x3, 0x8, 0x9ebfffffffffffff) write$auto(0x1, &(0x7f0000000000)='//\xf2\x00', 0x80000000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NLBL_MGMT_C_LISTDEF(r0, &(0x7f0000000240)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f00000001c0)={0x50, r1, 0x0, 0x70bd2b, 0x25dfdbfd, {}, [@NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0xb96}, @NLBL_MGMT_A_VERSION={0x8, 0x3, 0xfffffffe}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x7f}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x9}, @NLBL_MGMT_A_DOMAIN={0xb, 0x1, '#}!*:-\x00'}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x5}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x5}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x4000811) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x0) socket(0x2, 0x6, 0x0) epoll_create$auto(0x4) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) epoll_ctl$auto(0x5, 0x1, 0xffffffffffffffff, 0x0) connect$auto(0x3, 0x0, 0x55) writev$auto(0x1, &(0x7f0000000100)={0x0, 0xa}, 0x1) sendmsg$auto_NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, 0x0, 0x4000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xc18, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0) ioctl$auto(r2, 0x40085112, 0x2) open(&(0x7f0000000800)='./file0\x00', 0x0, 0x135) fcntl$auto(0x3, 0x400, 0x9ec0000000000000) 6.418897626s ago: executing program 5 (id=3426): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) clone$auto(0x7, 0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) mremap$auto(0x4, 0x2, 0x8000, 0xffffffffffffffff, 0x9) r0 = socket(0x11, 0x3, 0x88) setsockopt$auto(r0, 0x107, 0x16, 0x0, 0x8) close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setrlimit$auto(0xa, &(0x7f0000000040)={0x1, 0xfb3}) clone$auto(0x2, 0x81, 0x0, 0x0, 0x3) 5.558718596s ago: executing program 5 (id=3433): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0xa, 0x801, 0x100) setsockopt$auto(r0, 0x6, 0x5, 0x0, 0xfb3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x28, 0x1, 0x0) getsockopt$auto(r1, 0x28, 0x2, 0x0, 0x0) 5.095756513s ago: executing program 7 (id=3439): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000240), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'macsec0\x00', 0x0}) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r0, &(0x7f0000004100)={0x0, 0x0, &(0x7f00000040c0)={&(0x7f0000004140)={0x2c, r1, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x10, 0x2, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x6}]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040801}, 0x4000000) 4.918754832s ago: executing program 7 (id=3440): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000240), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'macsec0\x00', 0x0}) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r0, &(0x7f0000004100)={0x0, 0x0, &(0x7f00000040c0)={&(0x7f0000004140)={0x2c, r1, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x10, 0x2, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x6}]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040801}, 0x4000000) (fail_nth: 2) 4.364211115s ago: executing program 7 (id=3442): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x6, 0x3, 0x3ff, 0x18, 0x5, 0x9) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0xa, 0x801, 0x106) getsockopt$auto(0x3, 0x0, 0x18, 0x0, 0xffffffffffffffff) mmap$auto(0x7, 0x1c0, 0x1800000000, 0x7fffffff, 0x100000001, 0x1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) lremovexattr$auto(0x0, 0x0) ioperm$auto(0x800, 0x5, 0xd) socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x24004800}, 0x800) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x8, 0x30017, 0x8020000000a, 0x2, 0x5f, 0x20000000000803, 0xffffffffffffffff}, 0x6f0) r1 = openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0) read$auto(r1, 0x0, 0x4000000081) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYRES16=r0], 0x1ac}}, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) splice$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x8, 0x100) 4.163578189s ago: executing program 5 (id=3444): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003040), r0) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000003140)={0x0, 0x7, &(0x7f0000003100)={&(0x7f0000003080)={0x30, r1, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@ETHTOOL_A_CHANNELS_COMBINED_COUNT={0xffffffa6, 0x9, 0x1}, @ETHTOOL_A_CHANNELS_HEADER={0x4}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x6}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000084}, 0x8084) 4.000999844s ago: executing program 6 (id=3445): socket(0x1e, 0x5, 0x0) open(&(0x7f0000000100)='./file0\x00', 0x201c2, 0x10e) socket(0xa, 0x1, 0x1) bpf$auto(0x6, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0xfff, 0x5, 0x10, 0x0) socket(0x15, 0x5, 0x0) madvise$auto(0x1ffff000, 0x7, 0x100000000) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) socket(0xa, 0x6, 0xfffffffb) pselect6$auto(0xffffffff, &(0x7f00000000c0)={[0x2, 0xfff, 0x6, 0xbda3, 0x0, 0x9, 0x5, 0xc7, 0x5, 0x400, 0x7, 0x3, 0x2, 0x7fffffff, 0x87d9, 0xa]}, &(0x7f0000000180)={[0x182, 0x9bbb, 0x0, 0x3, 0x58, 0xb5, 0x8, 0x400, 0x6, 0x4, 0x7ff, 0xa5, 0x2, 0x7de1, 0xed1b, 0x8c5]}, &(0x7f0000000200)={[0x8001, 0x0, 0x36d7, 0x39, 0x0, 0x7ff, 0x8, 0x7fffffff, 0x6, 0xe51d, 0x401, 0xffff, 0x95, 0x39d9eb, 0x8, 0x9]}, &(0x7f0000000280)={0xa}, 0x0) flock$auto(0x6, 0x1) keyctl$auto(0x8, 0xfffffffffffffffd, 0xffffffffffffffff, 0x5092, 0x2) mknod$auto(0x0, 0xc9, 0xc8) execve$auto(0x0, 0x0, 0x0) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) shmget$auto(0x8, 0x10563, 0x568d1af2) madvise$auto(0x0, 0xffffffffffff0004, 0x19) io_uring_setup$auto(0x5, 0x0) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) mremap$auto(0x0, 0x4, 0x3fd6, 0x3, 0x20000000) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) (fail_nth: 1) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x1, 0x8000000000008000) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) 3.638137083s ago: executing program 5 (id=3447): socket(0x1e, 0x5, 0x0) open(&(0x7f0000000100)='./file0\x00', 0x201c2, 0x10e) socket(0xa, 0x1, 0x1) bpf$auto(0x6, 0xffffffffffffffff, 0x0) prctl$auto(0xffffffff, 0x1, 0x4, 0x5, 0x9) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x80004000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000229bd70001cdddf250200020008000308"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0xfff, 0x5, 0x10, 0x0) socket(0x15, 0x5, 0x0) madvise$auto(0x1ffff000, 0x7, 0x100000000) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/handlers\x00', 0x40100, 0x0) read$auto_proc_pagemap_operations_internal(r0, &(0x7f0000001540)=""/209, 0xd1) socket(0xa, 0x6, 0xfffffffb) pselect6$auto(0xffffffff, &(0x7f00000000c0)={[0x2, 0xfff, 0x6, 0xbda3, 0x0, 0x9, 0x5, 0xc7, 0x5, 0x400, 0x7, 0x3, 0x2, 0x7fffffff, 0x87d9, 0xa]}, &(0x7f0000000180)={[0x182, 0x9bbb, 0x0, 0x3, 0x58, 0xb5, 0x8, 0x400, 0x6, 0x4, 0x7ff, 0xa5, 0x2, 0x7de1, 0xed1b, 0x8c5]}, &(0x7f0000000200)={[0x8001, 0x0, 0x36d7, 0x39, 0x0, 0x7ff, 0x8, 0x7fffffff, 0x6, 0xe51d, 0x401, 0xffff, 0x95, 0x39d9eb, 0x8, 0x9]}, &(0x7f0000000280)={0xa}, 0x0) flock$auto(0x6, 0x1) keyctl$auto(0x8, 0xfffffffffffffffd, 0xffffffffffffffff, 0x5092, 0x2) mknod$auto(0x0, 0xc9, 0xc8) execve$auto(0x0, 0x0, 0x0) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) shmget$auto(0x8, 0x10563, 0x568d1af2) madvise$auto(0x0, 0xffffffffffff0004, 0x19) 3.018226677s ago: executing program 6 (id=3449): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0xa, 0x2, 0x88) connect$auto(r0, &(0x7f0000000000)=@ax25={0x3, @default, 0x5}, 0x7) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(r1, &(0x7f0000000240)={0x0, 0xfffffffffffffd7c, &(0x7f0000000200)={&(0x7f0000000180)={0x24, r2, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@OVS_FLOW_ATTR_KEY={0x4}, @OVS_FLOW_ATTR_KEY={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x105, 0x0, 0x0, @fd=r1}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x800) setsockopt$auto(0x3, 0x10000000084, 0x23, 0x0, 0x8) epoll_pwait$auto(0x7, 0xffffffffffffffff, 0x6, 0x4, 0x0, 0x4) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r3 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x28240, 0x0) syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000080), r3) sendmsg$auto_NLBL_UNLABEL_C_ACCEPT(r3, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x4000000}, 0x40000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) inotify_init1$auto(0x1) r4 = socket(0x29, 0x5, 0x0) sendmsg$auto_L2TP_CMD_SESSION_GET(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[], 0x84c}, 0x1, 0x0, 0x0, 0x20008000}, 0x84) prctl$auto(0x666, 0x3, 0xffffffffffffffff, 0x4839, 0x7) close_range$auto(0x2, 0x8, 0x0) 3.015533028s ago: executing program 7 (id=3450): syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB='<\x00', @ANYRES16=r1, @ANYBLOB="010029bd7000fedbdf251600000283000180140002006e65746465767369ae00f903304aa0ede66d300000000000000500030004000000a19b04004000300b8b36efeba247d1abf1bfa0be219eabbbb4ac3031e041e7060fd9d730deab992dfcc7f55ebfd51f8b74b9530d3a97bae7a049d8c7ed0e07817e02dbc577bc980b703b329c445d8c93ebb643a8aa5ebac489ea5a9c"], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4040000) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) timer_create$auto(0x4, 0x0, 0x0) r2 = socket(0x2a, 0x1, 0x0) bind$auto(r2, &(0x7f0000000080), 0x6b) connect$auto(0x3, &(0x7f00000000c0), 0x55) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40) setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) unshare$auto(0x40000080) unshare$auto(0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) gettid() connect$auto(0xffffffffffffffff, 0x0, 0x55) mmap$auto(0x0, 0x5, 0x3, 0x16, 0x3, 0x8400) unshare$auto(0x40000080) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) madvise$auto(0x0, 0x20200, 0x15) 2.653274534s ago: executing program 1 (id=3452): r0 = socket(0x22, 0x3, 0x0) bind$auto(r0, &(0x7f0000000300)=@vsock={0x28, 0x0, 0x0, @local}, 0x4) r1 = socket(0xa, 0x3, 0x3a) setsockopt$auto(r1, 0x29, 0xd0, 0x0, 0x400c) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdds\x1cJ\x99\x00:2\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x10, 0x3) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r2 = socket(0x2, 0x2, 0x88) setsockopt$auto(r2, 0x88, 0xa, &(0x7f0000000000)='\xba\xba\xd3\xc8[&P\x9c\xe7AJz\'\x91\xce=B}v+7n\xa2r0\x92\xc3\x0eE\x96\xf63\xec\xe0\xb2\f\xa86v\xeb\xf1\xcb\xd4\xa9\v\xe1\xcc\x18', 0x80000e) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3ff, 0x8000) connect$auto(0x3, &(0x7f00000000c0), 0x55) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) futex$auto(0x0, 0x13, 0x4, 0x0, 0x0, 0xa0000001) 2.403392676s ago: executing program 1 (id=3453): mmap$auto(0x0, 0x202000d, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) name_to_handle_at$auto(0x5, 0x0, &(0x7f0000000100)={0xa9, 0x3, "f6babc2dd6f0baba3b83ac3f8d6458ff804a81ed5715dc1dda326b5c657297372582e5016d5b70f4f008cc5bc4743f8a42d7a7058052063ae15a323f056d3be5162d14c74bafaf937c6876722814df2823ab9af1c26754773a848c552c23866ddb4c372fadd96235cce438b8d1bb5d50537b0bb3be2f6097644530c852c09e3a2249784818249f4f74021d7440e788d4eec18858591d2adc331d1b84b5b6888e6be06915ee4e81965b"}, 0x0, 0x80000000) rt_tgsigqueueinfo$auto(0x3, 0x96, 0x7, &(0x7f0000000180)={@siginfo_0_0={0x0, 0x9c2a, 0x10001, @_sigsys={0x0, 0x5d35, 0x6}}}) socket(0x200000000000011, 0x2, 0x0) setns(r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1d, 0x2, 0x6) mmap$auto(0x1, 0x4, 0xa7, 0x14, 0xffffffffffff4359, 0x7) sendfile$auto(0x6, 0x3, 0x0, 0xc01) prctl$auto(0x1000000003b, 0x1, 0x9, 0x5, 0x3) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) r1 = gettid() process_vm_readv$auto(r1, &(0x7f0000000040)={0x0, 0x8}, 0x4, &(0x7f00000000c0)={0x0, 0x100000000000002}, 0x6, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x1d) msgrcv$auto(0x4, 0x0, 0x5, 0x8, 0x5) 2.346926483s ago: executing program 6 (id=3454): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x1a9382, 0x0) read$auto(r0, &(0x7f0000000080)='nlctrl\x00', 0x401) mmap$auto(0x0, 0x402000b, 0xdf, 0x10, 0x401, 0x8000) r1 = socket(0x10, 0x2, 0xc) r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="000128bd7000fbdbdf250a000000cc94ac2760a40600"], 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x2000000) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) r3 = socket(0x2, 0x80802, 0x0) setsockopt$auto(r3, 0x11, 0x67, 0x0, 0x8) readv$auto(0xfffffffffffffff3, &(0x7f0000000140)={&(0x7f0000000100)=[0x2d61], 0x8001}, 0x6) r4 = openat$auto_proc_coredump_filter_operations_base(0xffffffffffffff9c, &(0x7f0000000040), 0x264240, 0x0) ioctl$auto(r4, 0x40045542, 0x10001) socketpair$auto(0x1b, 0x8, 0x401, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x23, 0x80805, 0x0) gettid() setuid$auto(0x0) readahead$auto(0xffffffffffffffff, 0x7, 0x80000001) write$auto(0x3, 0x0, 0xfffffdef) 1.687234773s ago: executing program 6 (id=3455): r0 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x3d, 0x4909b6fb, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x2, 0x10000, 0x80, 0x7, 0x0, 0x7, 0x2000, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x0, 0x0, 0xa, 0x70624ce7, 0x0, 0x6, 0xb, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffffd, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x800, 0x0, 0x7, 0xffffffffffffffff, 0x5, 0x8000000000008, 0xfffffffffffffffc, 0x3, 0xa38, 0x4, 0x0, 0xfffffffffffffffc, 0x2, 0x3fffffffff, 0x0, 0x4, 0xffff]}, 0x202, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) ioprio_get$auto(0x3, 0x9) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) waitid$auto(0x11, 0x5, &(0x7f0000000380)={@_si_pad}, 0x100, &(0x7f0000000400)={{0x4, 0xfffffffffffffff5}, {0x8, 0x4}, 0x4, 0xcd2, 0x7f, 0x0, 0x200, 0x8, 0x8, 0x6, 0xffffffffffffff7f, 0xb015, 0x7135b3a9, 0xffffffffffffffff, 0x7, 0xffffffff00000001}) prctl$auto(0x1000000001a, 0x1, 0x9, 0x7, 0x32) listmount$auto(&(0x7f0000000040)={0x2, 0x4, 0xa17d, 0x6, 0x975}, &(0x7f0000000080)=0xfffffffffffffff6, 0x3, 0x3) r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) memfd_secret$auto(0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) r2 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r2, 0x107, 0x13, 0x0, 0x4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1e, 0x2, 0x8000000000000000, 0x0) sendfile$auto(0x6, r1, 0x0, 0xfdef) cachestat$auto(r0, &(0x7f00000000c0)={0xfff, 0x3}, &(0x7f0000000140)={0x4, 0x67, 0x1, 0x6, 0x7}, 0x1) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000000), r0) 1.645414179s ago: executing program 1 (id=3456): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (fail_nth: 15) r0 = socket(0x28, 0x1, 0x0) getsockopt$auto(r0, 0x28, 0x2, 0x0, 0x0) 1.026824935s ago: executing program 6 (id=3457): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x28, 0x1, 0x3000000) getsockopt$auto(r0, 0x28, 0x2, 0x0, 0x0) 826.024755ms ago: executing program 7 (id=3458): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x11, 0x80003, 0x10300) r0 = socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x6, 0x3) close_range$auto(0x0, 0xfffff004, 0x2) socket$nl_generic(0x10, 0x3, 0x10) r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) r2 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r0, 0x8, 0x1ff, r2, @relative_id=0x800013, 0x80e603}, 0x10) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0xc) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) r6 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r6, 0x400, 0x1) sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r4, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000640)={0x14, r5, 0x1, 0x70bd27, 0x25dfdbfd}, 0x14}}, 0x400c080) 814.659979ms ago: executing program 5 (id=3459): r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card2\x00', 0x4280, 0x0) r1 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioprio_set$auto(0x9, 0x2, 0x4) sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010026bd7000fbdbdf2503000000180001801401020073797a5f74756e00000000000000000005000300fb00000005000200e0058238"], 0x3c}, 0x1, 0x0, 0x0, 0x4000840}, 0x2000c840) rename$auto(&(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='./file0\x00') execveat$auto(r1, &(0x7f0000000200)='\x00', 0x0, 0x0, 0x1000) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) semctl$auto(0x4000001ff, 0xffffffffffffffff, 0x13, 0x3) setsockopt$auto(0x200000000000003, 0x1, 0x2c, 0x0, 0x300) poll$auto(&(0x7f0000000040)={r0, 0x7, 0x8}, 0x0, 0x2) r5 = gettid() kill$auto(r5, 0x11) syz_open_procfs$namespace(r5, &(0x7f0000000140)='ns/ipc\x00') ioctl$auto_COMEDI_SETRSUBD(r4, 0x6410, 0x0) mmap$auto(0x4, 0x8, 0x2, 0x5e, 0x7, 0x2) 709.254927ms ago: executing program 1 (id=3460): mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) io_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) io_pgetevents$auto(0x4, 0x8, 0xa31f, 0x0, 0x0, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x80, 0x0) mlockall$auto(0x7) mmap$auto(0x0, 0x8, 0x1000000004, 0x8b72, 0x6, 0x8000) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0) ioctl$auto(r1, 0x40045109, 0x3) ppoll$auto(&(0x7f0000000000)={r0, 0x4, 0x3}, 0x1, 0x0, 0x0, 0x8) chroot$auto(&(0x7f0000000080)='}[,&*}\x00') r3 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/inject\x00', 0x200080, 0x0) io_uring_setup$auto(0x1a9, &(0x7f0000000200)={0xc000, 0xfffffffa, 0x3, 0x80000000, 0xe, 0x3, r3, [0x0, 0x56, 0x9], {0x8001, 0x3ff, 0x8001, 0x7, 0xffff, 0xffff, 0x8, 0x385}, {0xffffff46, 0x7ff, 0x4fe, 0xf2aa, 0x3, 0x101, 0x8e0, 0x100, 0x8a}}) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') umount2$auto(&(0x7f0000000000)='.\x00', 0x1) shmctl$auto(0x6, 0x9, &(0x7f0000000340)={{0x4b3, 0x0, 0xffffffffffffffff, 0x1, 0x6, 0x101}, 0xda, 0x800, 0x5, 0x3, 0xffff, 0x6, 0x3, 0x0, &(0x7f00000002c0)=[0xd55, 0x8b8, 0x5f8dbfc7], &(0x7f0000000300)=[0x8001, 0x8, 0x800]}) mkdir$auto(&(0x7f0000000000)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', 0x0, 0xf, 0x0) lchown$auto(&(0x7f0000000100)='}[,&*}\x00', 0xffffffffffffffff, 0x0) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/config/nullb/features\x00', 0x40240, 0x0) statx$auto(r2, &(0x7f00000003c0)='}[,&*}\x00', 0x5, 0x4, &(0x7f0000000400)={0x5, 0x4, 0xc, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x6, 0x5, 0x3, {0x2, 0x100}, {0xbaf, 0xd7}, {0xf53, 0xfff}, {0x4, 0x3}, 0x8, 0x6, 0x0, 0x7, 0x7, 0xf, 0x1, 0x9b0, 0x7, 0x4, 0x4, 0x2, [0x4, 0x2, 0x8, 0xe, 0x8001, 0x5, 0x8, 0x5c73, 0xfffffffffffffffa]}) lstat$auto(&(0x7f0000000280)='}[,&*}\x00', &(0x7f0000000500)={0x6, 0xcc0d, 0x6, 0x10001, r4, r5, 0x0, 0x2, 0x3, 0x9, 0xfffffffffffff736, 0x0, 0x7, 0x2000000000000000, 0x1ff, 0x4, 0x9ee}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x10080, 0x0) 570.001784ms ago: executing program 6 (id=3461): r0 = socket(0x22, 0x3, 0x0) bind$auto(r0, 0x0, 0x4) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x88, 0xa, 0x0, 0x80000e) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x0) close_range$auto(0x2, 0x8, 0x0) 387.404571ms ago: executing program 1 (id=3462): openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/radio18\x00', 0x28001, 0x0) close_range$auto(0x2, 0x8000, 0xfffffffc) 222.056589ms ago: executing program 1 (id=3463): mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) statx$auto(0x2, 0x0, 0x1000, 0xbdfa, 0x0) r0 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r0, 0x29, 0x1b, 0x0, 0x201) prctl$auto(0x1000000003b, 0x1, 0x4, 0x16, 0x6) ioperm$auto(0x7, 0x6, 0x863) mq_open$auto(&(0x7f0000000000)='-\x00', 0x9d2, 0x0, 0x0) 168.485947ms ago: executing program 5 (id=3464): socket(0x10, 0x2, 0x0) (async) r0 = socket(0x10, 0x2, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) (async) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0x2275, 0x38) (async) ioctl$auto(0x3, 0x2275, 0x38) bpf$auto(0x5, &(0x7f0000000300)=@bpf_attr_3={0x1c, 0x4, 0xf, 0x63, 0x400, 0x0, 0x1, 0x80f0c8, 0x20, "38c1d5cbcb006b5e2c9baced3908a5b2", 0x0, 0x113e33f2, 0xffffffffffffffff, 0xe4, 0x7, 0x5, 0x6, 0x8, 0x0, 0x3, @attach_btf_obj_fd=r0, 0xa, 0xffff, 0x8, 0x0, 0x2002, r1}, 0x47) (async) bpf$auto(0x5, &(0x7f0000000300)=@bpf_attr_3={0x1c, 0x4, 0xf, 0x63, 0x400, 0x0, 0x1, 0x80f0c8, 0x20, "38c1d5cbcb006b5e2c9baced3908a5b2", 0x0, 0x113e33f2, 0xffffffffffffffff, 0xe4, 0x7, 0x5, 0x6, 0x8, 0x0, 0x3, @attach_btf_obj_fd=r0, 0xa, 0xffff, 0x8, 0x0, 0x2002, r1}, 0x47) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0xfffffffffffffffe, 0x5, 0x3, 0x15, 0x80000001, 0x0) io_uring_setup$auto(0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) setsockopt$auto(r0, 0x5, 0x73, &(0x7f0000000080)='.\x00', 0x7) r4 = open(0x0, 0x22040, 0x75) socket(0x840000000002, 0x3, 0xff) (async) socket(0x840000000002, 0x3, 0xff) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), r4) sendmsg$auto_IEEE802154_LLSEC_LIST_KEY(r3, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000340)={&(0x7f00000004c0)=ANY=[], 0x54}, 0x1, 0x0, 0x0, 0x5}, 0x400c084) connect$auto(0x3, &(0x7f0000000000), 0x55) (async) connect$auto(0x3, &(0x7f0000000000), 0x55) getrandom$auto(0x0, 0x6000000, 0x3) setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x2) sendmsg$auto_MACSEC_CMD_DEL_RXSA(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x148}, 0x1, 0x0, 0x0, 0x80}, 0x80) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x89b1, 0x0) setgroups$auto(0xc00000000, 0xfffffffffffffffc) (async) setgroups$auto(0xc00000000, 0xfffffffffffffffc) setresgid$auto(0x0, 0x800000a0, 0x8) fchmod$auto(0x3, 0x800000000000) r6 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000280)='/dev/radio18\x00', 0x288103, 0x0) read$auto(r6, 0x0, 0x7) r7 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x0, 0x0) ioctl$auto_USB_RAW_IOCTL_EPS_INFO(r7, 0x83c0550b, 0x0) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f00000001c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010027bd7000fbdbdf250a000000ef00030007000180980539851ad8aa1ecb0d7648ca54dee20386d37837c081c8e9d99d0328638091c8eb53b673476a3d6c3dd93223f06d2df209003d4ed92938434b9c58c968bfc4288d38758e5acc9761dd13f5dcb4c2062cc995a8d8e1e1c7aa2980ab7657772fcb9db6d9003a2488b1f70b1147f0f9eda05ec1e298c97b4e141f5a58c9c38f101392df7ca58d9322b5acac7dd988f2c9bdbc3b2e06b38fca00adee10556cf4c8cd4878e2107f7182cae0b18ca5c348cdcd0e2f5264dd6f17632e221b0e3184"], 0x20}, 0x1, 0x0, 0x0, 0x4801}, 0x0) (async) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f00000001c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010027bd7000fbdbdf250a000000ef00030007000180980539851ad8aa1ecb0d7648ca54dee20386d37837c081c8e9d99d0328638091c8eb53b673476a3d6c3dd93223f06d2df209003d4ed92938434b9c58c968bfc4288d38758e5acc9761dd13f5dcb4c2062cc995a8d8e1e1c7aa2980ab7657772fcb9db6d9003a2488b1f70b1147f0f9eda05ec1e298c97b4e141f5a58c9c38f101392df7ca58d9322b5acac7dd988f2c9bdbc3b2e06b38fca00adee10556cf4c8cd4878e2107f7182cae0b18ca5c348cdcd0e2f5264dd6f17632e221b0e3184"], 0x20}, 0x1, 0x0, 0x0, 0x4801}, 0x0) 0s ago: executing program 7 (id=3465): truncate$auto(&(0x7f0000000000)='./cgroup/../file0\x00', 0x3) (fail_nth: 3) kernel console output (not intermixed with test programs): :3e) already exists on: batadv_slave_0 [ 603.925261][T15277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 603.936878][T15277] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 603.949623][T15277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 603.960141][T15277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 603.970290][T15277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 603.980768][T15277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 603.991393][T15277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 604.002693][T15277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 604.012954][T15277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 604.023778][T15277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 604.033698][T15277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 604.044212][T15277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 604.054313][T15277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 604.064807][T15277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 604.076885][T15277] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 604.095447][T15277] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 604.104637][T15277] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 604.168188][T15277] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 604.176957][T15277] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 604.578986][ T1311] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 604.633884][ T1311] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 604.771654][ T6176] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 604.788620][ T6176] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 605.148326][T15391] warn_unsupported: 4 callbacks suppressed [ 605.148346][T15391] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15391 comm: syz.5.2688) [ 605.455582][T15389] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15389 comm: syz.4.2686) [ 605.491286][ T5833] Bluetooth: hci3: command tx timeout [ 605.526685][ T5833] Bluetooth: hci4: unexpected event 0x03 length: 72 > 11 [ 605.555911][T15406] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15406 comm: syz.5.2690) [ 605.770674][ T29] audit: type=1800 audit(4294967685.159:67): pid=15418 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2689" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 605.774899][T15413] Process accounting resumed [ 605.795952][T15413] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15413 comm: syz.1.2693) [ 605.909372][T15423] netlink: 93 bytes leftover after parsing attributes in process `syz.4.2691'. [ 605.959557][T15417] netlink: 93 bytes leftover after parsing attributes in process `syz.4.2691'. [ 606.036295][T15411] cifs: Unknown parameter '[ï' [ 606.042458][T15420] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15420 comm: syz.1.2694) [ 606.126471][ T5833] Bluetooth: hci0: unexpected event 0x03 length: 72 > 11 [ 606.305359][T15410] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15410 comm: syz.4.2691) [ 606.396470][T15415] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15415 comm: syz.5.2692) [ 606.419535][T15430] cifs: Unknown parameter '[ï' [ 606.564028][T15430] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15430 comm: syz.1.2695) [ 606.761608][T15445] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2699'. [ 606.794598][T15438] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15438 comm: syz.5.2698) [ 607.260393][T15448] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15448 comm: syz.5.2701) [ 607.320162][ T5833] Bluetooth: hci3: unexpected event 0x10 length: 11 > 1 [ 607.322649][ T5833] Bluetooth: hci3: hardware error 0x00 [ 607.484273][T15457] Process accounting resumed [ 607.609349][T15456] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2702'. [ 607.653314][ T54] Bluetooth: hci0: unexpected event 0x03 length: 72 > 11 [ 607.838958][T15464] Process accounting paused [ 607.902443][T15470] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2705'. [ 607.942264][T15468] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2705'. [ 609.275605][T15502] Process accounting resumed [ 609.408762][ T5833] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 610.259606][T15503] warn_unsupported: 10 callbacks suppressed [ 610.259628][T15503] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15503 comm: syz.1.2714) [ 610.377254][T15509] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15509 comm: syz.6.2716) [ 610.385480][T15525] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2719'. [ 610.549888][T15525] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15525 comm: syz.1.2719) [ 610.736943][T15519] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15519 comm: syz.5.2717) [ 610.870828][T15526] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15526 comm: syz.6.2721) [ 611.536379][T15531] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15531 comm: syz.1.2722) [ 611.648014][T15542] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15542 comm: syz.6.2723) [ 611.854438][T15555] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2727'. [ 611.858487][T15559] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2726'. [ 612.045311][T15553] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15553 comm: syz.6.2727) [ 612.412656][T15562] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15562 comm: syz.5.2724) [ 612.548851][T15559] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15559 comm: syz.1.2726) [ 612.656528][ T5833] Bluetooth: hci0: unexpected event 0x03 length: 72 > 11 [ 612.846959][T15573] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2731'. [ 612.932897][T15573] cifs: Unknown parameter '[ï' [ 614.195268][T15616] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2739'. [ 614.718431][ T5833] Bluetooth: hci1: unexpected event 0x03 length: 72 > 11 [ 615.179160][T15625] netlink: 93 bytes leftover after parsing attributes in process `syz.5.2741'. [ 615.237126][T15622] netlink: 93 bytes leftover after parsing attributes in process `syz.5.2741'. [ 615.269232][T15635] cifs: Unknown parameter '[ï' [ 615.287096][T15627] warn_unsupported: 11 callbacks suppressed [ 615.287117][T15627] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15627 comm: syz.1.2743) [ 615.579130][T15635] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15635 comm: syz.5.2741) [ 615.699355][T15636] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15636 comm: syz.6.2745) [ 615.768539][T15649] netlink: 330 bytes leftover after parsing attributes in process `syz.6.2749'. [ 615.808538][T15649] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15649 comm: syz.6.2749) [ 616.066568][T15641] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15641 comm: iou-sqp-15640) [ 616.213874][T15658] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15658 comm: iou-sqp-15655) [ 616.295078][T15661] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2760'. [ 616.383391][T15661] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15661 comm: syz.1.2760) [ 616.576254][T15670] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2753'. [ 616.731427][T15651] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15651 comm: syz.6.2750) [ 616.791211][T15674] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2754'. [ 617.081625][T15677] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2755'. [ 617.104167][T15676] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2755'. [ 617.278449][T15677] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15677 comm: syz.6.2755) [ 617.378725][T15665] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15665 comm: syz.1.2753) [ 617.778358][T15683] openvswitch: netlink: Key type 261 is out of range max 32 [ 618.676611][ T5833] Bluetooth: hci1: Received unexpected HCI Event 0x00 [ 619.046290][T15718] netlink: 93 bytes leftover after parsing attributes in process `syz.5.2766'. [ 619.073888][T15714] netlink: 93 bytes leftover after parsing attributes in process `syz.5.2766'. [ 619.238033][T15723] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2768'. [ 619.309546][T15725] netlink: 330 bytes leftover after parsing attributes in process `syz.6.2769'. [ 619.630519][T15726] Process accounting resumed [ 620.320633][T15736] openvswitch: netlink: Key type 261 is out of range max 32 [ 620.848932][ T5833] Bluetooth: hci4: unexpected event 0x03 length: 72 > 11 [ 620.869591][T15737] warn_unsupported: 16 callbacks suppressed [ 620.869614][T15737] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15737 comm: syz.6.2774) [ 621.015826][T15731] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15731 comm: syz.5.2772) [ 621.054853][T15757] netlink: 330 bytes leftover after parsing attributes in process `syz.6.2777'. [ 621.079799][T15759] netlink: 93 bytes leftover after parsing attributes in process `syz.4.2776'. [ 621.115768][T15757] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15757 comm: syz.6.2777) [ 621.299169][T15755] cifs: Unknown parameter '[ï' [ 621.406094][T15740] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15740 comm: syz.1.2775) [ 621.442842][T15767] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2779'. [ 621.471861][T15764] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2779'. [ 621.579823][ T5833] Bluetooth: hci4: unexpected event 0x03 length: 72 > 11 [ 621.625830][T15763] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15763 comm: syz.6.2779) [ 621.753811][T15777] FAULT_INJECTION: forcing a failure. [ 621.753811][T15777] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 621.772518][T15771] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15771 comm: syz.1.2780) [ 621.785392][T15777] CPU: 1 UID: 0 PID: 15777 Comm: syz.6.2782 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 621.796202][T15777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 621.806284][T15777] Call Trace: [ 621.809581][T15777] [ 621.812530][T15777] dump_stack_lvl+0x16c/0x1f0 [ 621.817243][T15777] should_fail_ex+0x497/0x5b0 [ 621.821961][T15777] _copy_from_iter+0x29b/0x1400 [ 621.826850][T15777] ? trace_lock_acquire+0x14e/0x1f0 [ 621.832099][T15777] ? __pfx__copy_from_iter+0x10/0x10 [ 621.837420][T15777] ? __virt_addr_valid+0x1a4/0x590 [ 621.842577][T15777] ? __virt_addr_valid+0x5e/0x590 [ 621.847646][T15777] ? __phys_addr_symbol+0x30/0x80 [ 621.852713][T15777] ? __check_object_size+0x488/0x710 [ 621.858042][T15777] kernfs_fop_write_iter+0x19d/0x500 [ 621.863371][T15777] vfs_write+0x5ae/0x1150 [ 621.867737][T15777] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 621.873585][T15777] ? __pfx___mutex_lock+0x10/0x10 [ 621.878662][T15777] ? __pfx_vfs_write+0x10/0x10 [ 621.883483][T15777] ksys_write+0x12b/0x250 [ 621.887845][T15777] ? __pfx_ksys_write+0x10/0x10 [ 621.892739][T15777] do_syscall_64+0xcd/0x250 [ 621.897281][T15777] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 621.903204][T15777] RIP: 0033:0x7fc576f85d19 [ 621.907642][T15777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 621.927286][T15777] RSP: 002b:00007fc577e7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 621.935737][T15777] RAX: ffffffffffffffda RBX: 00007fc577175fa0 RCX: 00007fc576f85d19 [ 621.943741][T15777] RDX: 0000000000000001 RSI: 0000000020000040 RDI: 0000000000000003 [ 621.951742][T15777] RBP: 00007fc577e7f090 R08: 0000000000000000 R09: 0000000000000000 [ 621.959739][T15777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 621.967834][T15777] R13: 0000000000000000 R14: 00007fc577175fa0 R15: 00007ffe3723cd68 [ 621.975856][T15777] [ 622.062983][T15777] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15777 comm: syz.6.2782) [ 622.279251][T15779] __nla_validate_parse: 1 callbacks suppressed [ 622.279277][T15779] netlink: 93 bytes leftover after parsing attributes in process `syz.4.2781'. [ 622.311702][T15773] netlink: 93 bytes leftover after parsing attributes in process `syz.4.2781'. [ 622.334550][T15783] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15783 comm: syz.6.2784) [ 622.338022][T15787] cifs: Unknown parameter '[ï' [ 622.626487][T15786] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15786 comm: syz.1.2783) [ 622.851091][T15795] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2787'. [ 622.907083][T15761] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15761 comm: syz.5.2778) [ 623.155585][T15799] Process accounting resumed [ 623.335827][T15812] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2792'. [ 623.437448][T15814] openvswitch: netlink: Key type 261 is out of range max 32 [ 624.694719][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.701763][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.869529][T15837] Process accounting resumed [ 625.300940][T15850] netlink: 330 bytes leftover after parsing attributes in process `syz.6.2804'. [ 626.014672][T15864] warn_unsupported: 19 callbacks suppressed [ 626.014694][T15864] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15864 comm: syz.1.2815) [ 626.037974][T15867] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2807'. [ 626.286078][T15852] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15852 comm: syz.5.2806) [ 626.793649][T15874] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15874 comm: syz.5.2809) [ 626.809749][T15867] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15867 comm: syz.6.2807) [ 626.857064][T15868] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15868 comm: syz.1.2808) [ 627.035317][ T5833] Bluetooth: hci0: Received unexpected HCI Event 0x00 [ 627.045401][T15888] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2812'. [ 627.110268][T15884] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15884 comm: syz.5.2811) [ 627.123985][T15888] cifs: Unknown parameter '[ï' [ 627.219752][T15888] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15888 comm: syz.6.2812) [ 627.299279][T15891] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2813'. [ 627.303548][T15890] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2813'. [ 627.404968][T15889] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15889 comm: syz.1.2813) [ 627.671141][T15898] openvswitch: netlink: Key type 261 is out of range max 32 [ 627.795689][T15902] openvswitch: netlink: Key type 261 is out of range max 32 [ 628.003334][T15903] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15903 comm: syz.6.2816) [ 628.129327][T15901] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15901 comm: syz.5.2814) [ 628.318430][T15915] openvswitch: netlink: Key type 261 is out of range max 32 [ 629.699305][T15954] netlink: 93 bytes leftover after parsing attributes in process `syz.5.2829'. [ 630.071909][T15966] openvswitch: netlink: Key type 261 is out of range max 32 [ 631.214694][T15994] warn_unsupported: 19 callbacks suppressed [ 631.214715][T15994] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15994 comm: syz.6.2843) [ 631.238792][T15991] openvswitch: netlink: Key type 261 is out of range max 32 [ 631.426694][T16002] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16002 comm: syz.6.2845) [ 631.455943][T15990] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15990 comm: syz.1.2850) [ 631.537233][T16002] Process accounting resumed [ 631.552479][T16006] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16006 comm: syz.1.2846) [ 631.564756][T16002] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16002 comm: syz.6.2845) [ 631.697435][T16006] Process accounting resumed [ 631.705197][T15992] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15992 comm: syz.5.2842) [ 631.708162][T16006] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16006 comm: syz.1.2846) [ 632.016476][T16017] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16017 comm: syz.1.2851) [ 632.545162][T16008] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16008 comm: syz.6.2847) [ 632.739144][T16014] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16014 comm: syz.5.2849) [ 633.431480][T16056] Process accounting resumed [ 633.721625][T16070] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2861'. [ 634.882052][T16091] openvswitch: netlink: Key type 261 is out of range max 32 [ 635.483331][T16110] openvswitch: netlink: Key type 261 is out of range max 32 [ 635.505437][T16105] Process accounting resumed [ 635.904272][T16113] Process accounting resumed [ 636.058608][T16093] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2869'. [ 636.275098][T16093] warn_unsupported: 21 callbacks suppressed [ 636.275119][T16093] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16093 comm: syz.1.2869) [ 636.356084][T16120] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16120 comm: syz.6.2876) [ 636.535171][T16131] openvswitch: netlink: Key type 261 is out of range max 32 [ 636.622704][T16129] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16129 comm: syz.6.2881) [ 636.769611][T16128] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16128 comm: syz.1.2880) [ 636.798481][T16134] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16134 comm: syz.6.2882) [ 636.920902][T16121] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16121 comm: syz.4.2878) [ 637.014719][T16125] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16125 comm: syz.5.2879) [ 637.307018][T16146] openvswitch: netlink: Key type 261 is out of range max 32 [ 637.477205][T16145] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16145 comm: syz.5.2886) [ 637.746526][T16138] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16138 comm: syz.1.2883) [ 637.762013][T16141] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16141 comm: syz.4.2885) [ 638.150751][T16165] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2890'. [ 638.181679][T16160] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2890'. [ 638.218660][T16166] Process accounting resumed [ 638.748882][T16177] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2893'. [ 639.017543][T16193] openvswitch: netlink: Key type 261 is out of range max 32 [ 640.108015][T16210] Process accounting resumed [ 640.499689][T16220] netlink: 330 bytes leftover after parsing attributes in process `syz.6.2905'. [ 640.544282][T16220] : renamed from gre0 (while UP) [ 640.835724][T16224] openvswitch: netlink: Key type 261 is out of range max 32 [ 641.521193][T16228] warn_unsupported: 24 callbacks suppressed [ 641.521215][T16228] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16228 comm: syz.6.2908) [ 641.689637][T16236] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16236 comm: syz.4.2911) [ 641.722105][T16247] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16247 comm: syz.6.2912) [ 641.802504][T16248] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16248 comm: syz.4.2913) [ 641.844604][T16247] Process accounting resumed [ 641.865131][T16247] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16247 comm: syz.6.2912) [ 641.902576][T16233] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16233 comm: syz.5.2909) [ 642.486974][T16109] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16109 comm: syz.1.2869) [ 642.592707][T16246] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16246 comm: syz.1.2910) [ 642.692243][T16255] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16255 comm: syz.5.2916) [ 642.786858][T16253] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16253 comm: syz.6.2915) [ 642.981581][T16265] openvswitch: netlink: Key type 261 is out of range max 32 [ 643.077078][T16267] FAULT_INJECTION: forcing a failure. [ 643.077078][T16267] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 643.101818][T16267] CPU: 1 UID: 0 PID: 16267 Comm: syz.6.2919 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 643.112649][T16267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 643.122736][T16267] Call Trace: [ 643.126029][T16267] [ 643.128978][T16267] dump_stack_lvl+0x16c/0x1f0 [ 643.133692][T16267] should_fail_ex+0x497/0x5b0 [ 643.138400][T16267] _copy_from_user+0x2e/0xd0 [ 643.143035][T16267] br_dev_read_uargs+0x149/0x3b0 [ 643.148013][T16267] ? __lock_acquire+0x15a9/0x3c40 [ 643.153075][T16267] ? __pfx_br_dev_read_uargs+0x10/0x10 [ 643.158646][T16267] br_dev_siocdevprivate+0xe8/0x17a0 [ 643.163952][T16267] ? __pfx___lock_acquire+0x10/0x10 [ 643.169169][T16267] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 643.174997][T16267] ? lock_acquire.part.0+0x11b/0x380 [ 643.180293][T16267] ? __mutex_trylock_common+0xea/0x250 [ 643.185842][T16267] ? __pfx___mutex_trylock_common+0x10/0x10 [ 643.191741][T16267] ? netdev_name_node_lookup+0xf0/0x140 [ 643.197293][T16267] ? trace_contention_end+0xee/0x140 [ 643.202584][T16267] dev_ifsioc+0x529/0x10b0 [ 643.207036][T16267] ? __pfx_dev_ifsioc+0x10/0x10 [ 643.211905][T16267] ? __pfx___mutex_lock+0x10/0x10 [ 643.216942][T16267] ? __pfx_lock_release+0x10/0x10 [ 643.221987][T16267] ? netdev_name_node_lookup_rcu+0xf0/0x140 [ 643.227893][T16267] dev_ioctl+0x1b2/0x10c0 [ 643.232232][T16267] sock_ioctl+0x5b9/0x6c0 [ 643.236566][T16267] ? __pfx_sock_ioctl+0x10/0x10 [ 643.241529][T16267] ? __fget_files+0x206/0x3a0 [ 643.246229][T16267] ? __pfx_sock_ioctl+0x10/0x10 [ 643.251102][T16267] __x64_sys_ioctl+0x190/0x200 [ 643.255897][T16267] do_syscall_64+0xcd/0x250 [ 643.260424][T16267] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 643.266330][T16267] RIP: 0033:0x7fc576f85d19 [ 643.270783][T16267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 643.290398][T16267] RSP: 002b:00007fc577e7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 643.298842][T16267] RAX: ffffffffffffffda RBX: 00007fc577175fa0 RCX: 00007fc576f85d19 [ 643.306826][T16267] RDX: 0000000020000040 RSI: 00000000000089fc RDI: 0000000000000006 [ 643.314813][T16267] RBP: 00007fc577e7f090 R08: 0000000000000000 R09: 0000000000000000 [ 643.322797][T16267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 643.330777][T16267] R13: 0000000000000000 R14: 00007fc577175fa0 R15: 00007ffe3723cd68 [ 643.338765][T16267] [ 643.596814][T16278] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2921'. [ 643.905041][T16272] kexec: Could not allocate control_code_buffer [ 643.987169][T16284] Process accounting resumed [ 644.332898][T16287] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2924'. [ 644.349525][T16290] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2924'. [ 644.803042][T16306] openvswitch: netlink: Key type 261 is out of range max 32 [ 645.736219][T16319] Process accounting resumed [ 645.992296][T16329] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2936'. [ 646.458342][T16335] netlink: 93 bytes leftover after parsing attributes in process `syz.5.2937'. [ 646.541402][T16333] warn_unsupported: 24 callbacks suppressed [ 646.541424][T16333] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16333 comm: syz.5.2937) [ 646.759189][T16328] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16328 comm: syz.4.2936) [ 646.858035][T16334] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16334 comm: syz.6.2938) [ 647.169396][T16342] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16342 comm: syz.5.2939) [ 647.259449][T16354] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2941'. [ 647.280060][T16351] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2941'. [ 647.301847][ T5833] Bluetooth: hci1: unexpected event 0x10 length: 11 > 1 [ 647.303954][T16354] cifs: Unknown parameter '[ï' [ 647.304685][ T54] Bluetooth: hci1: hardware error 0x00 [ 647.414651][T16288] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16288 comm: syz.1.2925) [ 647.511770][T16352] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16352 comm: syz.4.2940) [ 647.536976][T16354] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16354 comm: syz.6.2941) [ 647.594857][T16359] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16359 comm: syz.4.2944) [ 647.678835][T16359] Process accounting resumed [ 647.683589][T16359] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16359 comm: syz.4.2944) [ 647.849680][T16357] netlink: 93 bytes leftover after parsing attributes in process `syz.5.2942'. [ 647.944825][T16360] cifs: Unknown parameter '[ï' [ 647.987372][T16365] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16365 comm: syz.4.2946) [ 648.414253][T16378] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2949'. [ 648.729243][T16387] FAULT_INJECTION: forcing a failure. [ 648.729243][T16387] name failslab, interval 1, probability 0, space 0, times 0 [ 648.753679][T16387] CPU: 1 UID: 0 PID: 16387 Comm: syz.1.2951 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 648.764507][T16387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 648.774590][T16387] Call Trace: [ 648.777882][T16387] [ 648.780853][T16387] dump_stack_lvl+0x16c/0x1f0 [ 648.785570][T16387] should_fail_ex+0x497/0x5b0 [ 648.790286][T16387] ? fs_reclaim_acquire+0xae/0x150 [ 648.795438][T16387] should_failslab+0xc2/0x120 [ 648.800153][T16387] __kmalloc_noprof+0xce/0x4f0 [ 648.804958][T16387] ? d_absolute_path+0x137/0x1b0 [ 648.809934][T16387] ? tomoyo_encode2+0x100/0x3e0 [ 648.814822][T16387] tomoyo_encode2+0x100/0x3e0 [ 648.819540][T16387] tomoyo_realpath_from_path+0x1a7/0x710 [ 648.825212][T16387] tomoyo_path_number_perm+0x248/0x5b0 [ 648.830708][T16387] ? tomoyo_path_number_perm+0x235/0x5b0 [ 648.836383][T16387] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 648.842436][T16387] ? __pfx_lock_release+0x10/0x10 [ 648.847506][T16387] ? trace_lock_acquire+0x14e/0x1f0 [ 648.852751][T16387] ? lock_acquire+0x2f/0xb0 [ 648.857285][T16387] ? __fget_files+0x40/0x3a0 [ 648.861916][T16387] ? __fget_files+0x206/0x3a0 [ 648.866628][T16387] security_file_ioctl+0x9b/0x240 [ 648.871689][T16387] __x64_sys_ioctl+0xb7/0x200 [ 648.876415][T16387] do_syscall_64+0xcd/0x250 [ 648.880957][T16387] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 648.886887][T16387] RIP: 0033:0x7fd23d785d19 [ 648.891336][T16387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 648.910981][T16387] RSP: 002b:00007fd23e5e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 648.919437][T16387] RAX: ffffffffffffffda RBX: 00007fd23d975fa0 RCX: 00007fd23d785d19 [ 648.927442][T16387] RDX: 0000000020001680 RSI: 0000000090009427 RDI: 0000000000000003 [ 648.935456][T16387] RBP: 00007fd23e5e9090 R08: 0000000000000000 R09: 0000000000000000 [ 648.943554][T16387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 648.951559][T16387] R13: 0000000000000000 R14: 00007fd23d975fa0 R15: 00007ffe7b960d28 [ 648.959587][T16387] [ 648.989370][T16387] ERROR: Out of memory at tomoyo_realpath_from_path. [ 649.309210][ T5833] Bluetooth: hci4: unexpected event 0x10 length: 11 > 1 [ 649.312091][T15087] Bluetooth: hci4: hardware error 0x00 [ 649.408596][ T54] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 649.513801][T16403] netlink: 93 bytes leftover after parsing attributes in process `syz.4.2954'. [ 649.533459][T16403] cifs: Unknown parameter '[ï' [ 649.751606][T16412] openvswitch: netlink: Key type 261 is out of range max 32 [ 650.642052][T16444] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2964'. [ 650.927346][T16445] Process accounting resumed [ 651.031904][T16448] openvswitch: netlink: Key type 261 is out of range max 32 [ 651.241542][T16421] kexec: Could not allocate control_code_buffer [ 651.303768][T16452] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2968'. [ 651.333901][T16455] FAULT_INJECTION: forcing a failure. [ 651.333901][T16455] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 651.338929][T16451] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2968'. [ 651.366347][T16455] CPU: 1 UID: 0 PID: 16455 Comm: syz.4.2969 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 651.377171][T16455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 651.387255][T16455] Call Trace: [ 651.390555][T16455] [ 651.393502][T16455] dump_stack_lvl+0x16c/0x1f0 [ 651.398215][T16455] should_fail_ex+0x497/0x5b0 [ 651.402932][T16455] _copy_from_user+0x2e/0xd0 [ 651.407559][T16455] copy_msghdr_from_user+0x99/0x160 [ 651.412794][T16455] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 651.418648][T16455] ___sys_sendmsg+0xff/0x1e0 [ 651.423274][T16455] ? __pfx____sys_sendmsg+0x10/0x10 [ 651.428519][T16455] ? __pfx_lock_release+0x10/0x10 [ 651.433575][T16455] ? trace_lock_acquire+0x14e/0x1f0 [ 651.438818][T16455] ? __fget_files+0x206/0x3a0 [ 651.443534][T16455] __sys_sendmsg+0x16e/0x220 [ 651.448165][T16455] ? __pfx___sys_sendmsg+0x10/0x10 [ 651.453337][T16455] do_syscall_64+0xcd/0x250 [ 651.457040][T15087] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 651.457861][T16455] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 651.470063][T16455] RIP: 0033:0x7fdc53185d19 [ 651.474501][T16455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 651.494140][T16455] RSP: 002b:00007fdc53fbf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 651.502589][T16455] RAX: ffffffffffffffda RBX: 00007fdc53375fa0 RCX: 00007fdc53185d19 [ 651.510590][T16455] RDX: 0000000004000000 RSI: 0000000020004100 RDI: 0000000000000003 [ 651.518587][T16455] RBP: 00007fdc53fbf090 R08: 0000000000000000 R09: 0000000000000000 [ 651.526581][T16455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 651.534573][T16455] R13: 0000000000000000 R14: 00007fdc53375fa0 R15: 00007fff037ca3d8 [ 651.542581][T16455] [ 651.636639][T16455] warn_unsupported: 27 callbacks suppressed [ 651.636661][T16455] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16455 comm: syz.4.2969) [ 651.653505][T16447] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16447 comm: syz.5.2967) [ 651.663798][T16459] openvswitch: netlink: Key type 261 is out of range max 32 [ 651.692857][T16450] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16450 comm: syz.1.2968) [ 651.924273][T16465] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2979'. [ 652.071564][T16458] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16458 comm: syz.6.2970) [ 652.082312][T16461] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16461 comm: syz.5.2971) [ 652.141517][T16462] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16462 comm: syz.1.2972) [ 652.254087][T16469] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16469 comm: syz.5.2974) [ 652.344078][T16477] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16477 comm: syz.5.2976) [ 652.416003][T16476] Process accounting resumed [ 652.433038][T16476] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16476 comm: syz.5.2976) [ 652.453304][T16475] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16475 comm: syz.6.2973) [ 652.705211][T16482] netlink: 93 bytes leftover after parsing attributes in process `syz.5.2977'. [ 652.729459][T16481] netlink: 93 bytes leftover after parsing attributes in process `syz.5.2977'. [ 652.814055][T16489] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2978'. [ 653.037505][T16491] openvswitch: netlink: Key type 261 is out of range max 32 [ 653.109263][T16488] netlink: 93 bytes leftover after parsing attributes in process `syz.4.2980'. [ 653.144741][T16488] cifs: Unknown parameter '[ï' [ 653.716310][T16504] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2985'. [ 654.143498][T16524] openvswitch: netlink: Key type 261 is out of range max 32 [ 654.667041][T16553] __nla_validate_parse: 1 callbacks suppressed [ 654.667065][T16553] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2997'. [ 655.277726][T16564] netlink: 338 bytes leftover after parsing attributes in process `syz.6.2999'. [ 655.349942][T16564] Process accounting resumed [ 655.597697][T16567] netlink: 93 bytes leftover after parsing attributes in process `syz.5.3000'. [ 655.957582][T16579] netlink: 93 bytes leftover after parsing attributes in process `syz.4.3003'. [ 656.153770][T16583] netlink: 93 bytes leftover after parsing attributes in process `syz.5.3004'. [ 656.192910][T16583] cifs: Unknown parameter '[ï' [ 656.643729][T16607] warn_unsupported: 36 callbacks suppressed [ 656.643752][T16607] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16607 comm: syz.4.3012) [ 656.691176][T16605] openvswitch: netlink: Key type 261 is out of range max 32 [ 656.827551][T16614] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16614 comm: syz.5.3014) [ 657.040084][T16618] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16618 comm: syz.5.3015) [ 657.051982][T16604] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16604 comm: syz.1.3011) [ 657.067046][T16612] netlink: 93 bytes leftover after parsing attributes in process `syz.4.3013'. [ 657.208363][T16611] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16611 comm: syz.4.3013) [ 657.294775][T16620] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16620 comm: syz.6.3008) [ 657.337289][T16625] netlink: 93 bytes leftover after parsing attributes in process `syz.5.3016'. [ 657.373498][T16624] netlink: 93 bytes leftover after parsing attributes in process `syz.5.3016'. [ 657.497871][T16628] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16628 comm: syz.4.3018) [ 657.502101][T16625] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16625 comm: syz.5.3016) [ 657.639937][T16621] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16621 comm: syz.1.3017) [ 657.649473][T16632] netlink: 93 bytes leftover after parsing attributes in process `syz.6.3019'. [ 657.675571][T16632] cifs: Unknown parameter '[ï' [ 657.763171][T16631] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16631 comm: syz.6.3019) [ 657.988330][T16653] netlink: 93 bytes leftover after parsing attributes in process `syz.6.3022'. [ 660.069851][T15087] Bluetooth: hci0: Received unexpected HCI Event 0x00 [ 660.211667][T16686] __nla_validate_parse: 1 callbacks suppressed [ 660.211690][T16686] netlink: 93 bytes leftover after parsing attributes in process `syz.1.3031'. [ 660.264087][T16688] cifs: Unknown parameter '[ï' [ 661.681430][T16694] warn_unsupported: 14 callbacks suppressed [ 661.681452][T16694] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16694 comm: syz.4.3032) [ 661.782830][T16704] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16704 comm: syz.1.3044) [ 661.849642][T16711] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16711 comm: syz.4.3037) [ 661.871867][T16710] netlink: 93 bytes leftover after parsing attributes in process `syz.5.3036'. [ 661.897524][T16708] netlink: 93 bytes leftover after parsing attributes in process `syz.5.3036'. [ 662.044741][T16703] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16703 comm: syz.5.3036) [ 662.106332][T16698] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16698 comm: syz.6.3035) [ 662.120429][T16720] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16720 comm: syz.4.3039) [ 662.139054][T16715] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16715 comm: syz.1.3038) [ 662.460500][T16721] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16721 comm: syz.5.3040) [ 662.632005][T16726] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16726 comm: syz.4.3041) [ 662.686644][T16743] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16743 comm: iou-sqp-16740) [ 662.957466][T16751] netlink: 338 bytes leftover after parsing attributes in process `syz.4.3048'. [ 663.050609][T16751] Process accounting resumed [ 663.468536][T16766] program syz.6.3053 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 664.632642][T16814] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3067'. [ 664.870507][T16818] netlink: 338 bytes leftover after parsing attributes in process `syz.4.3068'. [ 665.019768][T16817] Process accounting resumed [ 665.020190][T16821] netlink: 338 bytes leftover after parsing attributes in process `syz.6.3069'. [ 665.226916][T16821] Process accounting resumed [ 665.980030][T16845] program syz.4.3075 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 666.753058][T16848] warn_unsupported: 38 callbacks suppressed [ 666.753081][T16848] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16848 comm: syz.1.3079) [ 666.774658][T16861] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16861 comm: syz.5.3082) [ 666.876946][T16856] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16856 comm: syz.4.3080) [ 667.132107][T16867] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16867 comm: syz.5.3083) [ 667.218387][T16873] netlink: 93 bytes leftover after parsing attributes in process `syz.1.3084'. [ 667.240370][T16866] netlink: 93 bytes leftover after parsing attributes in process `syz.1.3084'. [ 667.321844][T16877] netlink: 93 bytes leftover after parsing attributes in process `syz.4.3085'. [ 667.342607][T16872] netlink: 93 bytes leftover after parsing attributes in process `syz.4.3085'. [ 667.363805][T16859] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16859 comm: syz.6.3081) [ 667.391058][T16866] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16866 comm: syz.1.3084) [ 667.418464][T16877] cifs: Unknown parameter '[ï' [ 667.463563][T16878] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16878 comm: syz.5.3086) [ 667.566706][T16871] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16871 comm: syz.4.3085) [ 667.720709][T16891] FAULT_INJECTION: forcing a failure. [ 667.720709][T16891] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 667.746136][T16891] CPU: 1 UID: 0 PID: 16891 Comm: syz.4.3090 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 667.756975][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 667.767067][T16891] Call Trace: [ 667.770384][T16891] [ 667.773356][T16891] dump_stack_lvl+0x16c/0x1f0 [ 667.778084][T16891] should_fail_ex+0x497/0x5b0 [ 667.782805][T16891] ? fs_reclaim_acquire+0xae/0x150 [ 667.787952][T16891] should_fail_alloc_page+0xe7/0x130 [ 667.793267][T16891] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 667.799447][T16891] ? __pfx_mark_lock+0x10/0x10 [ 667.804233][T16891] __alloc_pages_noprof+0x190/0x25b0 [ 667.809541][T16891] ? __pfx_mark_lock+0x10/0x10 [ 667.814323][T16891] ? lock_acquire.part.0+0x11b/0x380 [ 667.819619][T16891] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 667.825368][T16891] ? hlock_class+0x4e/0x130 [ 667.829889][T16891] ? __lock_acquire+0xcc5/0x3c40 [ 667.834842][T16891] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 667.840740][T16891] ? policy_nodemask+0xea/0x4e0 [ 667.845602][T16891] alloc_pages_mpol_noprof+0x2c9/0x610 [ 667.851077][T16891] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 667.857076][T16891] ? find_held_lock+0x2d/0x110 [ 667.861875][T16891] folio_alloc_mpol_noprof+0x36/0xd0 [ 667.867190][T16891] shmem_alloc_folio+0x135/0x160 [ 667.872163][T16891] shmem_alloc_and_add_folio+0x48b/0xc00 [ 667.877818][T16891] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 667.883732][T16891] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 667.889898][T16891] ? shmem_huge_global_enabled+0x176/0x250 [ 667.895723][T16891] ? shmem_allowable_huge_orders+0xcd/0x3e0 [ 667.901633][T16891] shmem_get_folio_gfp+0x689/0x1530 [ 667.906845][T16891] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 667.912485][T16891] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 667.917862][T16891] ? __pfx___might_resched+0x10/0x10 [ 667.923155][T16891] shmem_fallocate+0x7c0/0xfb0 [ 667.927934][T16891] ? __pfx_shmem_fallocate+0x10/0x10 [ 667.933226][T16891] ? __pfx___lock_acquire+0x10/0x10 [ 667.938450][T16891] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 667.944087][T16891] ? rcu_is_watching+0x12/0xc0 [ 667.948865][T16891] ? trace_lock_acquire+0x14e/0x1f0 [ 667.954073][T16891] ? __x64_sys_fallocate+0xd5/0x150 [ 667.959289][T16891] ? __pfx_shmem_fallocate+0x10/0x10 [ 667.964579][T16891] vfs_fallocate+0x459/0xf90 [ 667.969193][T16891] __x64_sys_fallocate+0xd5/0x150 [ 667.974239][T16891] do_syscall_64+0xcd/0x250 [ 667.978761][T16891] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 667.984673][T16891] RIP: 0033:0x7fdc53185d19 [ 667.989100][T16891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 668.008718][T16891] RSP: 002b:00007fdc53fbf038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 668.017139][T16891] RAX: ffffffffffffffda RBX: 00007fdc53375fa0 RCX: 00007fdc53185d19 [ 668.025122][T16891] RDX: 000000000000000d RSI: 0000000000000000 RDI: 8000000000000003 [ 668.033098][T16891] RBP: 00007fdc53fbf090 R08: 0000000000000000 R09: 0000000000000000 [ 668.041071][T16891] R10: 00000000000cbd5d R11: 0000000000000246 R12: 0000000000000002 [ 668.049045][T16891] R13: 0000000000000000 R14: 00007fdc53375fa0 R15: 00007fff037ca3d8 [ 668.057033][T16891] [ 668.142324][T16892] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16892 comm: syz.4.3090) [ 668.199569][T16884] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16884 comm: syz.6.3087) [ 669.933256][T16952] netlink: 93 bytes leftover after parsing attributes in process `syz.1.3107'. [ 669.958861][T16949] netlink: 93 bytes leftover after parsing attributes in process `syz.1.3107'. [ 669.985575][T16952] cifs: Unknown parameter '[ï' [ 670.174929][T16957] FAULT_INJECTION: forcing a failure. [ 670.174929][T16957] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 670.188401][T16957] CPU: 0 UID: 0 PID: 16957 Comm: syz.5.3110 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 670.199209][T16957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 670.209293][T16957] Call Trace: [ 670.212593][T16957] [ 670.215542][T16957] dump_stack_lvl+0x16c/0x1f0 [ 670.220252][T16957] should_fail_ex+0x497/0x5b0 [ 670.224963][T16957] _copy_from_user+0x2e/0xd0 [ 670.229591][T16957] smc_setsockopt+0x308/0xc00 [ 670.234295][T16957] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 670.240216][T16957] ? __pfx_smc_setsockopt+0x10/0x10 [ 670.245447][T16957] ? __pfx_smc_setsockopt+0x10/0x10 [ 670.250671][T16957] do_sock_setsockopt+0x222/0x480 [ 670.255726][T16957] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 670.261316][T16957] ? lock_acquire+0x2f/0xb0 [ 670.265845][T16957] __sys_setsockopt+0x1a0/0x230 [ 670.270716][T16957] __x64_sys_setsockopt+0xbd/0x160 [ 670.275838][T16957] ? do_syscall_64+0x91/0x250 [ 670.280523][T16957] ? lockdep_hardirqs_on+0x7c/0x110 [ 670.285726][T16957] do_syscall_64+0xcd/0x250 [ 670.290241][T16957] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 670.296144][T16957] RIP: 0033:0x7f4e65185d19 [ 670.300561][T16957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 670.320170][T16957] RSP: 002b:00007f4e66036038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 670.328592][T16957] RAX: ffffffffffffffda RBX: 00007f4e65375fa0 RCX: 00007f4e65185d19 [ 670.336562][T16957] RDX: 0000000000000017 RSI: 8000000000000006 RDI: 0000000000000003 [ 670.344538][T16957] RBP: 00007f4e66036090 R08: 00000000007ffffc R09: 0000000000000000 [ 670.352516][T16957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 670.360489][T16957] R13: 0000000000000000 R14: 00007f4e65375fa0 R15: 00007ffc83714178 [ 670.368477][T16957] [ 670.420459][T16960] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3117'. [ 671.562882][T16995] FAULT_INJECTION: forcing a failure. [ 671.562882][T16995] name failslab, interval 1, probability 0, space 0, times 0 [ 671.577886][T16995] CPU: 0 UID: 0 PID: 16995 Comm: syz.6.3122 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 671.588699][T16995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 671.598784][T16995] Call Trace: [ 671.602098][T16995] [ 671.605059][T16995] dump_stack_lvl+0x16c/0x1f0 [ 671.609782][T16995] should_fail_ex+0x497/0x5b0 [ 671.614505][T16995] ? fs_reclaim_acquire+0xae/0x150 [ 671.619655][T16995] should_failslab+0xc2/0x120 [ 671.624370][T16995] __kmalloc_noprof+0xce/0x4f0 [ 671.629169][T16995] ? d_absolute_path+0x137/0x1b0 [ 671.634142][T16995] ? tomoyo_encode2+0x100/0x3e0 [ 671.639025][T16995] tomoyo_encode2+0x100/0x3e0 [ 671.643734][T16995] tomoyo_realpath_from_path+0x1a7/0x710 [ 671.649404][T16995] tomoyo_path_number_perm+0x248/0x5b0 [ 671.654904][T16995] ? tomoyo_path_number_perm+0x235/0x5b0 [ 671.660581][T16995] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 671.666639][T16995] ? __pfx_lock_release+0x10/0x10 [ 671.671709][T16995] ? trace_lock_acquire+0x14e/0x1f0 [ 671.676953][T16995] ? lock_acquire+0x2f/0xb0 [ 671.681484][T16995] ? __fget_files+0x40/0x3a0 [ 671.686114][T16995] ? __fget_files+0x206/0x3a0 [ 671.690825][T16995] ? 0xffffffff81000000 [ 671.695197][T16995] ? 0xffffffff81000000 [ 671.699376][T16995] security_file_ioctl+0x9b/0x240 [ 671.704434][T16995] __x64_sys_ioctl+0xb7/0x200 [ 671.709156][T16995] do_syscall_64+0xcd/0x250 [ 671.713700][T16995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 671.719627][T16995] RIP: 0033:0x7fc576f85d19 [ 671.724066][T16995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 671.743711][T16995] RSP: 002b:00007fc577e7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 671.752163][T16995] RAX: ffffffffffffffda RBX: 00007fc577175fa0 RCX: 00007fc576f85d19 [ 671.760167][T16995] RDX: ffffffff81000000 RSI: 00000000c0045002 RDI: 0000000000000003 [ 671.761994][T17004] random: crng reseeded on system resumption [ 671.768146][T16995] RBP: 00007fc577e7f090 R08: 0000000000000000 R09: 0000000000000000 [ 671.768169][T16995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 671.768184][T16995] R13: 0000000000000000 R14: 00007fc577175fa0 R15: 00007ffe3723cd68 [ 671.768211][T16995] ? 0xffffffff81000000 [ 671.768235][T16995] [ 671.771942][T16995] ERROR: Out of memory at tomoyo_realpath_from_path. [ 671.817856][T16993] netlink: 93 bytes leftover after parsing attributes in process `syz.4.3119'. [ 671.838533][T16987] netlink: 93 bytes leftover after parsing attributes in process `syz.4.3119'. [ 671.855228][T16995] warn_unsupported: 31 callbacks suppressed [ 671.855248][T16995] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16995 comm: syz.6.3122) [ 671.874451][T16999] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16999 comm: syz.1.3121) [ 671.891437][T17005] cifs: Unknown parameter '[ï' [ 671.996777][T16986] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 16986 comm: syz.4.3119) [ 672.160827][T17010] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17010 comm: syz.1.3125) [ 672.257041][T17008] netlink: 93 bytes leftover after parsing attributes in process `syz.6.3124'. [ 672.283679][T17008] cifs: Unknown parameter '[ï' [ 672.391152][T17008] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17008 comm: syz.6.3124) [ 672.424981][T17004] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17004 comm: syz.5.3123) [ 672.539888][T17014] netlink: 'syz.4.3126': attribute type 5 has an invalid length. [ 672.585292][T17016] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17016 comm: syz.1.3127) [ 672.637829][T17022] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17022 comm: syz.5.3129) [ 673.047308][T17018] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17018 comm: syz.4.3126) [ 673.154165][T17031] netlink: 93 bytes leftover after parsing attributes in process `syz.5.3131'. [ 673.218300][T17034] netlink: 93 bytes leftover after parsing attributes in process `syz.5.3131'. [ 673.266082][T17028] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17028 comm: syz.1.3130) [ 673.801235][T17049] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3136'. [ 674.046826][T17057] __vm_enough_memory: pid: 17057, comm: syz.6.3138, bytes: 4503599627366400 not enough memory for the allocation [ 675.140422][T17091] netlink: 93 bytes leftover after parsing attributes in process `syz.6.3149'. [ 675.163346][T17089] netlink: 93 bytes leftover after parsing attributes in process `syz.6.3149'. [ 675.211197][T17091] cifs: Unknown parameter '[ï' [ 675.622221][T17092] netlink: 93 bytes leftover after parsing attributes in process `syz.4.3150'. [ 675.710699][T17092] cifs: Unknown parameter '[ï' [ 676.769462][T17129] netlink: 93 bytes leftover after parsing attributes in process `syz.4.3160'. [ 676.817723][T17134] netlink: 93 bytes leftover after parsing attributes in process `syz.4.3160'. [ 677.030678][T17126] warn_unsupported: 28 callbacks suppressed [ 677.030700][T17126] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17126 comm: syz.1.3159) [ 677.076543][T17128] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17128 comm: syz.4.3160) [ 677.263477][T17114] kexec: Could not allocate control_code_buffer [ 677.265701][T17132] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17132 comm: syz.6.3161) [ 677.313349][T17114] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17114 comm: syz.5.3155) [ 677.339435][T17138] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17138 comm: syz.1.3162) [ 677.505147][T17142] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17142 comm: syz.5.3165) [ 678.162833][T17150] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17150 comm: syz.1.3164) [ 678.480979][T17153] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17153 comm: syz.6.3166) [ 679.644880][T17163] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17163 comm: syz.6.3169) [ 680.305710][T17160] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17160 comm: syz.1.3168) [ 681.298781][T17179] netlink: 93 bytes leftover after parsing attributes in process `syz.5.3172'. [ 681.341135][T17179] cifs: Unknown parameter '[ï' [ 681.352466][T17176] netlink: 93 bytes leftover after parsing attributes in process `syz.5.3172'. [ 682.062438][T17183] netlink: 93 bytes leftover after parsing attributes in process `syz.6.3173'. [ 682.145770][T17173] Process accounting paused [ 682.154942][T17186] cifs: Unknown parameter '[ï' [ 682.191029][T17184] warn_unsupported: 7 callbacks suppressed [ 682.191050][T17184] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17184 comm: syz.5.3174) [ 682.318418][T17198] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3177'. [ 682.379549][T17182] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17182 comm: syz.6.3173) [ 682.639050][T17205] Process accounting paused [ 682.659355][T17136] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17136 comm: syz.6.3161) [ 683.084667][T17217] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3183'. [ 683.758571][T17196] kexec: Could not allocate control_code_buffer [ 683.809222][T17196] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17196 comm: syz.4.3176) [ 684.167442][T17206] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17206 comm: syz.6.3179) [ 684.391772][T11618] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11618 comm: syz-executor) [ 684.512746][T17238] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17238 comm: syz.6.3191) [ 684.547690][T14546] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 14546 comm: syz.4.2468) [ 684.669175][T17250] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3193'. [ 684.777876][T12005] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12005 comm: syz.4.1735) [ 684.855663][T17225] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17225 comm: syz.4.3187) [ 686.137374][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 686.143894][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 686.226705][ T54] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 686.257525][ T54] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 686.267186][ T54] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 686.283798][ T54] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 686.301659][ T54] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 686.315927][ T54] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 686.509033][T17256] kexec: Could not allocate control_code_buffer [ 686.758330][T17284] chnl_net:caif_netlink_parms(): no params data found [ 686.785786][T17290] netlink: 93 bytes leftover after parsing attributes in process `syz.5.3206'. [ 686.819637][T17290] cifs: Unknown parameter '[ï' [ 686.899960][T17296] FAULT_INJECTION: forcing a failure. [ 686.899960][T17296] name failslab, interval 1, probability 0, space 0, times 0 [ 686.926862][T17296] CPU: 0 UID: 0 PID: 17296 Comm: syz.6.3207 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 686.937679][T17296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 686.947768][T17296] Call Trace: [ 686.951069][T17296] [ 686.954018][T17296] dump_stack_lvl+0x16c/0x1f0 [ 686.958755][T17296] should_fail_ex+0x497/0x5b0 [ 686.963471][T17296] ? fs_reclaim_acquire+0xae/0x150 [ 686.968618][T17296] should_failslab+0xc2/0x120 [ 686.973338][T17296] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 686.978753][T17296] ? security_file_alloc+0x34/0x2b0 [ 686.983996][T17296] security_file_alloc+0x34/0x2b0 [ 686.989058][T17296] init_file+0x93/0x480 [ 686.993258][T17296] alloc_empty_file+0x91/0x1e0 [ 686.998062][T17296] path_openat+0xe1/0x2d60 [ 687.002504][T17296] ? hlock_class+0x4e/0x130 [ 687.007040][T17296] ? __lock_acquire+0x15a9/0x3c40 [ 687.012120][T17296] ? __pfx_path_openat+0x10/0x10 [ 687.017096][T17296] ? __pfx___lock_acquire+0x10/0x10 [ 687.022331][T17296] ? lock_acquire.part.0+0x11b/0x380 [ 687.027641][T17296] ? find_held_lock+0x2d/0x110 [ 687.032450][T17296] do_filp_open+0x20c/0x470 [ 687.036980][T17296] ? __pfx_do_filp_open+0x10/0x10 [ 687.042103][T17296] ? find_held_lock+0x2d/0x110 [ 687.046895][T17296] ? alloc_fd+0x41f/0x760 [ 687.051236][T17296] do_sys_openat2+0x17a/0x1e0 [ 687.055928][T17296] ? __pfx_do_sys_openat2+0x10/0x10 [ 687.061144][T17296] ? __fget_files+0x206/0x3a0 [ 687.065835][T17296] __x64_sys_openat+0x175/0x210 [ 687.070699][T17296] ? __pfx___x64_sys_openat+0x10/0x10 [ 687.076088][T17296] ? ksys_write+0x1ba/0x250 [ 687.080606][T17296] do_syscall_64+0xcd/0x250 [ 687.085135][T17296] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 687.091037][T17296] RIP: 0033:0x7fc576f85d19 [ 687.095454][T17296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 687.115071][T17296] RSP: 002b:00007fc577e7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 687.123488][T17296] RAX: ffffffffffffffda RBX: 00007fc577175fa0 RCX: 00007fc576f85d19 [ 687.131460][T17296] RDX: 0000000000080400 RSI: 0000000020000140 RDI: ffffffffffffff9c [ 687.139448][T17296] RBP: 00007fc577e7f090 R08: 0000000000000000 R09: 0000000000000000 [ 687.147440][T17296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 687.155428][T17296] R13: 0000000000000000 R14: 00007fc577175fa0 R15: 00007ffe3723cd68 [ 687.163425][T17296] [ 687.181299][T17284] bridge0: port 1(bridge_slave_0) entered blocking state [ 687.188637][T17284] bridge0: port 1(bridge_slave_0) entered disabled state [ 687.196022][T17284] bridge_slave_0: entered allmulticast mode [ 687.203370][T17284] bridge_slave_0: entered promiscuous mode [ 687.210956][T17301] FAULT_INJECTION: forcing a failure. [ 687.210956][T17301] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 687.226029][T17301] CPU: 1 UID: 0 PID: 17301 Comm: syz.1.3208 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 687.236830][T17301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 687.240064][T17284] bridge0: port 2(bridge_slave_1) entered blocking state [ 687.246979][T17301] Call Trace: [ 687.246991][T17301] [ 687.247002][T17301] dump_stack_lvl+0x16c/0x1f0 [ 687.247035][T17301] should_fail_ex+0x497/0x5b0 [ 687.261096][T17296] warn_unsupported: 5 callbacks suppressed [ 687.261114][T17296] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17296 comm: syz.6.3207) [ 687.264927][T17301] _copy_to_user+0x32/0xd0 [ 687.264967][T17301] simple_read_from_buffer+0xd0/0x160 [ 687.265006][T17301] proc_fail_nth_read+0x198/0x270 [ 687.265042][T17301] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 687.265079][T17301] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 687.265114][T17301] vfs_read+0x1df/0xbe0 [ 687.265143][T17301] ? __fget_files+0x1fc/0x3a0 [ 687.265178][T17301] ? __pfx___mutex_lock+0x10/0x10 [ 687.265210][T17301] ? __pfx_vfs_read+0x10/0x10 [ 687.265246][T17301] ? __fget_files+0x206/0x3a0 [ 687.265285][T17301] ksys_read+0x12b/0x250 [ 687.265312][T17301] ? __pfx_ksys_read+0x10/0x10 [ 687.275782][T17301] do_syscall_64+0xcd/0x250 [ 687.304431][T17284] bridge0: port 2(bridge_slave_1) entered disabled state [ 687.307793][T17301] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 687.323861][T17284] bridge_slave_1: entered allmulticast mode [ 687.327136][T17301] RIP: 0033:0x7fd23d78472c [ 687.327168][T17301] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 687.392836][T17301] RSP: 002b:00007fd23e5e9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 687.401260][T17301] RAX: ffffffffffffffda RBX: 00007fd23d975fa0 RCX: 00007fd23d78472c [ 687.409235][T17301] RDX: 000000000000000f RSI: 00007fd23e5e90a0 RDI: 0000000000000004 [ 687.417205][T17301] RBP: 00007fd23e5e9090 R08: 0000000000000000 R09: 0000000000000000 [ 687.425175][T17301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 687.433152][T17301] R13: 0000000000000000 R14: 00007fd23d975fa0 R15: 00007ffe7b960d28 [ 687.441151][T17301] [ 687.458273][T17284] bridge_slave_1: entered promiscuous mode [ 687.533852][T17309] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3210'. [ 687.610016][T17284] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 687.641008][T17284] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 687.763183][T17284] team0: Port device team_slave_0 added [ 687.786248][T17284] team0: Port device team_slave_1 added [ 687.871249][T17284] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 687.889210][T17307] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17307 comm: syz.6.3210) [ 687.892022][T17284] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 687.976312][T17284] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 688.007509][T17284] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 688.028248][T17284] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 688.062603][T17284] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 688.233126][T17284] hsr_slave_0: entered promiscuous mode [ 688.263584][T17284] hsr_slave_1: entered promiscuous mode [ 688.330821][T17284] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 688.358309][T17284] Cannot create hsr debugfs directory [ 688.368259][ T54] Bluetooth: hci2: command tx timeout [ 689.079322][T17284] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 689.106315][T17284] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 689.150961][T17284] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 689.169578][T17320] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17320 comm: syz.6.3215) [ 689.223223][T17284] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 689.456774][T17284] 8021q: adding VLAN 0 to HW filter on device bond0 [ 689.466204][T17335] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17335 comm: syz.6.3219) [ 689.504161][T17284] 8021q: adding VLAN 0 to HW filter on device team0 [ 689.598650][ T1311] bridge0: port 1(bridge_slave_0) entered blocking state [ 689.605820][ T1311] bridge0: port 1(bridge_slave_0) entered forwarding state [ 689.633412][ T1311] bridge0: port 2(bridge_slave_1) entered blocking state [ 689.640607][ T1311] bridge0: port 2(bridge_slave_1) entered forwarding state [ 689.709493][T17338] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17338 comm: syz.6.3220) [ 689.721148][T17343] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3221'. [ 689.795380][T17284] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 689.814611][T17345] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3222'. [ 689.849090][T17284] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 689.953332][T17349] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17349 comm: syz.6.3223) [ 690.184783][T17284] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 690.429202][T17364] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17364 comm: syz.6.3224) [ 690.450787][ T54] Bluetooth: hci2: command tx timeout [ 690.643319][T17375] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17375 comm: syz.6.3228) [ 690.676794][T17284] veth0_vlan: entered promiscuous mode [ 690.694700][T17284] veth1_vlan: entered promiscuous mode [ 690.722463][T17284] veth0_macvtap: entered promiscuous mode [ 690.731201][T17284] veth1_macvtap: entered promiscuous mode [ 690.746342][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 690.756962][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 690.767162][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 690.778305][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 690.788440][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 690.799172][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 690.809292][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 690.819997][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 690.830069][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 690.841363][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 690.852473][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 690.863428][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 690.873603][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 690.884373][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 690.894515][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 690.905248][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 690.915384][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 690.926720][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 690.941136][T17284] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 690.954448][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 690.964995][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 690.974925][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 690.985454][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 690.995389][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 691.005992][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 691.015954][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 691.027091][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 691.037745][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 691.048341][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 691.058351][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 691.069092][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 691.079000][T17284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 691.089597][T17284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 691.101325][T17284] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 691.116184][T17284] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 691.125038][T17284] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 691.134535][T17284] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 691.144003][T17284] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 691.226487][T17392] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17392 comm: syz.6.3231) [ 691.303601][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 691.348531][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 691.464326][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 691.483734][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 692.457016][T17395] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17395 comm: syz.6.3232) [ 692.528828][ T54] Bluetooth: hci2: command tx timeout [ 692.737603][T17412] openvswitch: netlink: Key type 261 is out of range max 32 [ 692.862979][T17416] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3234'. [ 692.873744][T17411] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17411 comm: syz.6.3236) [ 693.261685][T17422] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17422 comm: syz.6.3237) [ 693.484296][T17431] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17431 comm: syz.6.3240) [ 693.973496][T17442] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17442 comm: syz.6.3242) [ 694.487320][T17457] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3247'. [ 694.517953][T17454] openvswitch: netlink: Key type 261 is out of range max 32 [ 694.612969][ T54] Bluetooth: hci2: command tx timeout [ 694.782739][T17462] netlink: 350 bytes leftover after parsing attributes in process `syz.7.3248'. [ 694.793528][T17462] netlink: 342 bytes leftover after parsing attributes in process `syz.7.3248'. [ 694.856826][T17464] FAULT_INJECTION: forcing a failure. [ 694.856826][T17464] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 694.870213][T17464] CPU: 1 UID: 0 PID: 17464 Comm: syz.7.3249 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 694.881019][T17464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 694.886047][T17455] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17455 comm: syz.6.3243) [ 694.891077][T17464] Call Trace: [ 694.891089][T17464] [ 694.891100][T17464] dump_stack_lvl+0x16c/0x1f0 [ 694.913525][T17464] should_fail_ex+0x497/0x5b0 [ 694.918226][T17464] _copy_from_user+0x2e/0xd0 [ 694.922840][T17464] move_addr_to_kernel+0x68/0x160 [ 694.927871][T17464] __copy_msghdr+0x386/0x470 [ 694.932471][T17464] copy_msghdr_from_user+0xc2/0x160 [ 694.937680][T17464] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 694.943497][T17464] ? __lock_acquire+0xcc5/0x3c40 [ 694.948478][T17464] ___sys_sendmsg+0xff/0x1e0 [ 694.953087][T17464] ? __pfx____sys_sendmsg+0x10/0x10 [ 694.958309][T17464] ? trace_lock_acquire+0x14e/0x1f0 [ 694.963545][T17464] __sys_sendmmsg+0x201/0x420 [ 694.968243][T17464] ? __pfx___sys_sendmmsg+0x10/0x10 [ 694.973464][T17464] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 694.979467][T17464] ? fput+0x67/0x440 [ 694.983374][T17464] ? ksys_write+0x1ba/0x250 [ 694.987886][T17464] ? __pfx_ksys_write+0x10/0x10 [ 694.992744][T17464] __x64_sys_sendmmsg+0x9c/0x100 [ 694.997692][T17464] ? lockdep_hardirqs_on+0x7c/0x110 [ 695.002897][T17464] do_syscall_64+0xcd/0x250 [ 695.007410][T17464] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 695.013309][T17464] RIP: 0033:0x7f8ba5b85d19 [ 695.017724][T17464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 695.037342][T17464] RSP: 002b:00007f8ba6a7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 695.045763][T17464] RAX: ffffffffffffffda RBX: 00007f8ba5d75fa0 RCX: 00007f8ba5b85d19 [ 695.053741][T17464] RDX: 0000000000000001 RSI: 0000000020000180 RDI: 0000000000000004 [ 695.061715][T17464] RBP: 00007f8ba6a7f090 R08: 0000000000000000 R09: 0000000000000000 [ 695.069689][T17464] R10: 000000000000000a R11: 0000000000000246 R12: 0000000000000001 [ 695.077657][T17464] R13: 0000000000000000 R14: 00007f8ba5d75fa0 R15: 00007ffdfb6d5698 [ 695.085649][T17464] [ 695.592165][T17467] Process accounting paused [ 695.817966][T17495] Process accounting resumed [ 695.823411][T17496] netlink: 330 bytes leftover after parsing attributes in process `syz.5.3258'. [ 696.226449][T17509] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3262'. [ 697.994146][T17547] openvswitch: netlink: Key type 261 is out of range max 32 [ 698.107750][T17555] openvswitch: netlink: IP tunnel dst address not specified [ 698.698230][T17573] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3281'. [ 698.904420][ T29] audit: type=1800 audit(4294967778.209:68): pid=17570 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3279" name="discovery_nqn" dev="configfs" ino=53212 res=0 errno=0 [ 699.494658][T17593] openvswitch: netlink: Key type 261 is out of range max 32 [ 700.301346][T17620] FAULT_INJECTION: forcing a failure. [ 700.301346][T17620] name failslab, interval 1, probability 0, space 0, times 0 [ 700.328346][T17620] CPU: 0 UID: 0 PID: 17620 Comm: syz.5.3294 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 700.339193][T17620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 700.349280][T17620] Call Trace: [ 700.352668][T17620] [ 700.355635][T17620] dump_stack_lvl+0x16c/0x1f0 [ 700.360352][T17620] should_fail_ex+0x497/0x5b0 [ 700.365062][T17620] ? fs_reclaim_acquire+0xae/0x150 [ 700.370311][T17620] should_failslab+0xc2/0x120 [ 700.375030][T17620] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 700.380449][T17620] ? getname_flags.part.0+0x4c/0x550 [ 700.385782][T17620] getname_flags.part.0+0x4c/0x550 [ 700.390929][T17620] ? do_user_addr_fault+0xdc7/0x13f0 [ 700.396246][T17620] getname+0x8d/0xe0 [ 700.400175][T17620] do_sys_openat2+0x104/0x1e0 [ 700.404891][T17620] ? __pfx_do_sys_openat2+0x10/0x10 [ 700.410131][T17620] ? do_user_addr_fault+0xe50/0x13f0 [ 700.415446][T17620] ? __pfx_lock_release+0x10/0x10 [ 700.420515][T17620] __x64_sys_openat+0x175/0x210 [ 700.425403][T17620] ? __pfx___x64_sys_openat+0x10/0x10 [ 700.430804][T17620] ? do_user_addr_fault+0x83d/0x13f0 [ 700.436108][T17620] do_syscall_64+0xcd/0x250 [ 700.440624][T17620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 700.446537][T17620] RIP: 0033:0x7f4e65185d19 [ 700.450968][T17620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 700.470582][T17620] RSP: 002b:00007f4e66036038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 700.479005][T17620] RAX: ffffffffffffffda RBX: 00007f4e65375fa0 RCX: 00007f4e65185d19 [ 700.486977][T17620] RDX: 0000000000080800 RSI: 0000000020000240 RDI: ffffffffffffff9c [ 700.494974][T17620] RBP: 00007f4e66036090 R08: 0000000000000000 R09: 0000000000000000 [ 700.502947][T17620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 700.510920][T17620] R13: 0000000000000001 R14: 00007f4e65375fa0 R15: 00007ffc83714178 [ 700.518906][T17620] [ 701.341236][T17637] openvswitch: netlink: Key type 261 is out of range max 32 [ 701.540521][T17654] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3303'. [ 701.723417][T17661] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3304'. [ 701.848938][T17667] FAULT_INJECTION: forcing a failure. [ 701.848938][T17667] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 701.884898][T17667] CPU: 0 UID: 0 PID: 17667 Comm: syz.6.3306 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 701.895739][T17667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 701.905829][T17667] Call Trace: [ 701.909137][T17667] [ 701.912094][T17667] dump_stack_lvl+0x16c/0x1f0 [ 701.916809][T17667] should_fail_ex+0x497/0x5b0 [ 701.921528][T17667] _copy_to_user+0x32/0xd0 [ 701.925991][T17667] simple_read_from_buffer+0xd0/0x160 [ 701.931413][T17667] proc_fail_nth_read+0x198/0x270 [ 701.936483][T17667] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 701.942078][T17667] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 701.947672][T17667] vfs_read+0x1df/0xbe0 [ 701.951870][T17667] ? __fget_files+0x1fc/0x3a0 [ 701.956597][T17667] ? __pfx___mutex_lock+0x10/0x10 [ 701.961665][T17667] ? __pfx_vfs_read+0x10/0x10 [ 701.966389][T17667] ? __fget_files+0x206/0x3a0 [ 701.971103][T17667] ksys_read+0x12b/0x250 [ 701.975367][T17667] ? __pfx_ksys_read+0x10/0x10 [ 701.980144][T17667] ? syscall_user_dispatch+0x77/0x140 [ 701.985559][T17667] do_syscall_64+0xcd/0x250 [ 701.990090][T17667] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 701.996006][T17667] RIP: 0033:0x7fc576f8472c [ 702.000435][T17667] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 702.020053][T17667] RSP: 002b:00007fc577e7f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 702.028475][T17667] RAX: ffffffffffffffda RBX: 00007fc577175fa0 RCX: 00007fc576f8472c [ 702.036447][T17667] RDX: 000000000000000f RSI: 00007fc577e7f0a0 RDI: 0000000000000004 [ 702.044420][T17667] RBP: 00007fc577e7f090 R08: 0000000000000000 R09: 0000000000000000 [ 702.052410][T17667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 702.060382][T17667] R13: 0000000000000000 R14: 00007fc577175fa0 R15: 00007ffe3723cd68 [ 702.068370][T17667] [ 702.526844][T17686] workqueue: name exceeds WQ_NAME_LEN. Truncating to: ‡BþPÆ®ŽCŸß*x$åÁ›ý”‹YµË]R&ñv [ 703.852039][T17738] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3327'. [ 704.349087][T17753] FAULT_INJECTION: forcing a failure. [ 704.349087][T17753] name failslab, interval 1, probability 0, space 0, times 0 [ 704.379496][T17753] CPU: 0 UID: 0 PID: 17753 Comm: syz.7.3331 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 704.390313][T17753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 704.400416][T17753] Call Trace: [ 704.403721][T17753] [ 704.406683][T17753] dump_stack_lvl+0x16c/0x1f0 [ 704.411398][T17753] should_fail_ex+0x497/0x5b0 [ 704.416100][T17753] ? fs_reclaim_acquire+0xae/0x150 [ 704.421227][T17753] should_failslab+0xc2/0x120 [ 704.425945][T17753] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 704.431357][T17753] ? getname_flags.part.0+0x4c/0x550 [ 704.436699][T17753] getname_flags.part.0+0x4c/0x550 [ 704.441859][T17753] getname+0x8d/0xe0 [ 704.445790][T17753] do_sys_openat2+0x104/0x1e0 [ 704.450517][T17753] ? __pfx_do_sys_openat2+0x10/0x10 [ 704.455752][T17753] ? __fget_files+0x206/0x3a0 [ 704.460469][T17753] __x64_sys_open+0x154/0x1e0 [ 704.465186][T17753] ? __pfx___x64_sys_open+0x10/0x10 [ 704.470434][T17753] do_syscall_64+0xcd/0x250 [ 704.474974][T17753] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 704.480907][T17753] RIP: 0033:0x7f8ba5b85d19 [ 704.485344][T17753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 704.504979][T17753] RSP: 002b:00007f8ba6a7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 704.513404][T17753] RAX: ffffffffffffffda RBX: 00007f8ba5d75fa0 RCX: 00007f8ba5b85d19 [ 704.521377][T17753] RDX: 0000000000000050 RSI: 0000000000182340 RDI: 0000000020000080 [ 704.529350][T17753] RBP: 00007f8ba6a7f090 R08: 0000000000000000 R09: 0000000000000000 [ 704.537411][T17753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 704.545387][T17753] R13: 0000000000000000 R14: 00007f8ba5d75fa0 R15: 00007ffdfb6d5698 [ 704.553376][T17753] [ 705.521726][T17782] FAULT_INJECTION: forcing a failure. [ 705.521726][T17782] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 705.547103][T17782] CPU: 1 UID: 0 PID: 17782 Comm: syz.5.3340 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 705.557927][T17782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 705.560296][T17776] openvswitch: netlink: Key type 261 is out of range max 32 [ 705.567997][T17782] Call Trace: [ 705.568012][T17782] [ 705.568022][T17782] dump_stack_lvl+0x16c/0x1f0 [ 705.568056][T17782] should_fail_ex+0x497/0x5b0 [ 705.568089][T17782] _copy_to_user+0x32/0xd0 [ 705.568122][T17782] simple_read_from_buffer+0xd0/0x160 [ 705.568162][T17782] proc_fail_nth_read+0x198/0x270 [ 705.568199][T17782] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 705.568240][T17782] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 705.568276][T17782] vfs_read+0x1df/0xbe0 [ 705.568305][T17782] ? reacquire_held_locks+0x20b/0x4c0 [ 705.568341][T17782] ? do_user_addr_fault+0xdc7/0x13f0 [ 705.568368][T17782] ? __pfx_vfs_read+0x10/0x10 [ 705.568393][T17782] ? inode_to_bdi+0x9e/0x160 [ 705.568424][T17782] ? generic_fadvise+0x2c2/0x740 [ 705.568457][T17782] ? __pfx_generic_fadvise+0x10/0x10 [ 705.568490][T17782] ? do_user_addr_fault+0xe50/0x13f0 [ 705.568514][T17782] ? __pfx_lock_release+0x10/0x10 [ 705.568558][T17782] ksys_read+0x12b/0x250 [ 705.568585][T17782] ? __pfx_ksys_read+0x10/0x10 [ 705.568621][T17782] do_syscall_64+0xcd/0x250 [ 705.568653][T17782] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 705.568693][T17782] RIP: 0033:0x7f4e6518472c [ 705.568715][T17782] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 705.568739][T17782] RSP: 002b:00007f4e66036030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 705.568767][T17782] RAX: ffffffffffffffda RBX: 00007f4e65375fa0 RCX: 00007f4e6518472c [ 705.568786][T17782] RDX: 000000000000000f RSI: 00007f4e660360a0 RDI: 0000000000000001 [ 705.568804][T17782] RBP: 00007f4e66036090 R08: 0000000000000000 R09: 0000000000000000 [ 705.568822][T17782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 705.568838][T17782] R13: 0000000000000000 R14: 00007f4e65375fa0 R15: 00007ffc83714178 [ 705.568872][T17782] [ 706.389426][T17799] FAULT_INJECTION: forcing a failure. [ 706.389426][T17799] name failslab, interval 1, probability 0, space 0, times 0 [ 706.442925][T17799] CPU: 1 UID: 0 PID: 17799 Comm: syz.1.3345 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 706.453753][T17799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 706.463843][T17799] Call Trace: [ 706.467151][T17799] [ 706.470112][T17799] dump_stack_lvl+0x16c/0x1f0 [ 706.474832][T17799] should_fail_ex+0x497/0x5b0 [ 706.479552][T17799] ? fs_reclaim_acquire+0xae/0x150 [ 706.484705][T17799] should_failslab+0xc2/0x120 [ 706.489428][T17799] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 706.494837][T17799] ? getname_flags.part.0+0x4c/0x550 [ 706.500174][T17799] getname_flags.part.0+0x4c/0x550 [ 706.505322][T17799] ? do_user_addr_fault+0xdc7/0x13f0 [ 706.510630][T17799] getname+0x8d/0xe0 [ 706.514539][T17799] do_sys_openat2+0x104/0x1e0 [ 706.519236][T17799] ? __pfx_do_sys_openat2+0x10/0x10 [ 706.524451][T17799] ? do_user_addr_fault+0xe50/0x13f0 [ 706.529739][T17799] ? __pfx_lock_release+0x10/0x10 [ 706.534782][T17799] __x64_sys_openat+0x175/0x210 [ 706.539643][T17799] ? __pfx___x64_sys_openat+0x10/0x10 [ 706.545031][T17799] ? do_user_addr_fault+0x83d/0x13f0 [ 706.550325][T17799] do_syscall_64+0xcd/0x250 [ 706.554841][T17799] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 706.560741][T17799] RIP: 0033:0x7fd23d785d19 [ 706.565158][T17799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 706.584861][T17799] RSP: 002b:00007fd23e5e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 706.593283][T17799] RAX: ffffffffffffffda RBX: 00007fd23d975fa0 RCX: 00007fd23d785d19 [ 706.601264][T17799] RDX: 0000000000000200 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 706.609240][T17799] RBP: 00007fd23e5e9090 R08: 0000000000000000 R09: 0000000000000000 [ 706.617214][T17799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 706.625188][T17799] R13: 0000000000000001 R14: 00007fd23d975fa0 R15: 00007ffe7b960d28 [ 706.633264][T17799] [ 707.290420][T17819] openvswitch: netlink: Key type 261 is out of range max 32 [ 707.511159][T17823] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3352'. [ 707.758341][T17824] openvswitch: netlink: Key type 261 is out of range max 32 [ 708.596775][T17847] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3357'. [ 708.698182][T15087] Bluetooth: hci0: command 0x0406 tx timeout [ 709.787658][T17804] kexec: Could not allocate control_code_buffer [ 709.856039][T17877] FAULT_INJECTION: forcing a failure. [ 709.856039][T17877] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 709.958809][T17877] CPU: 1 UID: 0 PID: 17877 Comm: syz.5.3364 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 709.969655][T17877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 709.979738][T17877] Call Trace: [ 709.983044][T17877] [ 709.986003][T17877] dump_stack_lvl+0x16c/0x1f0 [ 709.990725][T17877] should_fail_ex+0x497/0x5b0 [ 709.995444][T17877] ? fs_reclaim_acquire+0xae/0x150 [ 710.000595][T17877] should_fail_alloc_page+0xe7/0x130 [ 710.005923][T17877] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 710.012117][T17877] __alloc_pages_noprof+0x190/0x25b0 [ 710.017443][T17877] ? __pfx_mark_lock+0x10/0x10 [ 710.022251][T17877] ? find_held_lock+0x2d/0x110 [ 710.027054][T17877] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 710.032815][T17877] ? __pfx_lock_release+0x10/0x10 [ 710.037881][T17877] ? trace_lock_acquire+0x14e/0x1f0 [ 710.043124][T17877] ? hlock_class+0x4e/0x130 [ 710.047672][T17877] ? __lock_acquire+0xcc5/0x3c40 [ 710.052666][T17877] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 710.058602][T17877] ? policy_nodemask+0xea/0x4e0 [ 710.063490][T17877] alloc_pages_mpol_noprof+0x2c9/0x610 [ 710.068978][T17877] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 710.074986][T17877] ? find_held_lock+0x2d/0x110 [ 710.079771][T17877] folio_alloc_mpol_noprof+0x36/0xd0 [ 710.085079][T17877] shmem_alloc_folio+0x135/0x160 [ 710.090036][T17877] shmem_alloc_and_add_folio+0x48b/0xc00 [ 710.095679][T17877] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 710.101583][T17877] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 710.107740][T17877] ? shmem_huge_global_enabled+0x176/0x250 [ 710.113562][T17877] ? shmem_allowable_huge_orders+0xcd/0x3e0 [ 710.119471][T17877] shmem_get_folio_gfp+0x689/0x1530 [ 710.124681][T17877] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 710.130327][T17877] shmem_fault+0x200/0xae0 [ 710.134751][T17877] ? __pfx_shmem_fault+0x10/0x10 [ 710.139699][T17877] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 710.145335][T17877] ? rcu_is_watching+0x12/0xc0 [ 710.150108][T17877] ? __pfx_filemap_map_pages+0x10/0x10 [ 710.155575][T17877] __do_fault+0x10a/0x490 [ 710.159912][T17877] ? __pfx_filemap_map_pages+0x10/0x10 [ 710.165376][T17877] do_pte_missing+0xebd/0x3e00 [ 710.170162][T17877] __handle_mm_fault+0x103c/0x2a40 [ 710.175291][T17877] ? find_held_lock+0x2d/0x110 [ 710.180068][T17877] ? __pfx___handle_mm_fault+0x10/0x10 [ 710.185536][T17877] ? follow_page_pte+0x3c3/0x1b20 [ 710.190567][T17877] ? __pfx_lock_release+0x10/0x10 [ 710.195616][T17877] ? follow_page_pte+0x3f7/0x1b20 [ 710.200657][T17877] handle_mm_fault+0x3fa/0xaa0 [ 710.205437][T17877] __get_user_pages+0x8d9/0x3b50 [ 710.210395][T17877] ? __pfx_mt_find+0x10/0x10 [ 710.214995][T17877] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 710.220632][T17877] ? __pfx___get_user_pages+0x10/0x10 [ 710.226015][T17877] ? __mm_populate+0x21d/0x380 [ 710.230794][T17877] populate_vma_page_range+0x27f/0x3a0 [ 710.236264][T17877] ? __pfx_populate_vma_page_range+0x10/0x10 [ 710.242271][T17877] ? __pfx_find_vma_intersection+0x10/0x10 [ 710.248117][T17877] ? do_mlock+0x340/0x7d0 [ 710.252479][T17877] __mm_populate+0x1d6/0x380 [ 710.257086][T17877] ? __pfx___mm_populate+0x10/0x10 [ 710.262218][T17877] ? up_write+0x1b2/0x520 [ 710.266557][T17877] do_mlock+0x40a/0x7d0 [ 710.270726][T17877] ? __fget_files+0x206/0x3a0 [ 710.275421][T17877] ? __pfx_do_mlock+0x10/0x10 [ 710.280123][T17877] ? fput+0x67/0x440 [ 710.284035][T17877] ? ksys_write+0x1ba/0x250 [ 710.288555][T17877] ? __pfx_ksys_write+0x10/0x10 [ 710.293420][T17877] __x64_sys_mlock+0x59/0x80 [ 710.298024][T17877] do_syscall_64+0xcd/0x250 [ 710.302544][T17877] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 710.308456][T17877] RIP: 0033:0x7f4e65185d19 [ 710.312888][T17877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 710.332497][T17877] RSP: 002b:00007f4e66015038 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 710.340917][T17877] RAX: ffffffffffffffda RBX: 00007f4e65376080 RCX: 00007f4e65185d19 [ 710.348889][T17877] RDX: 0000000000000000 RSI: 0000000000007fff RDI: 0000000000007c88 [ 710.356861][T17877] RBP: 00007f4e66015090 R08: 0000000000000000 R09: 0000000000000000 [ 710.364835][T17877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 710.372851][T17877] R13: 0000000000000000 R14: 00007f4e65376080 R15: 00007ffc83714178 [ 710.380844][T17877] [ 710.489115][T17881] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3365'. [ 711.059644][T17891] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3366'. [ 711.244473][T17881] bond0: (slave bond_slave_1): Releasing backup interface [ 712.110199][T17909] FAULT_INJECTION: forcing a failure. [ 712.110199][T17909] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 712.202176][T17909] CPU: 1 UID: 0 PID: 17909 Comm: syz.1.3372 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 712.213009][T17909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 712.223090][T17909] Call Trace: [ 712.226395][T17909] [ 712.229349][T17909] dump_stack_lvl+0x16c/0x1f0 [ 712.234056][T17909] should_fail_ex+0x497/0x5b0 [ 712.238772][T17909] _copy_to_user+0x32/0xd0 [ 712.243237][T17909] simple_read_from_buffer+0xd0/0x160 [ 712.248658][T17909] proc_fail_nth_read+0x198/0x270 [ 712.253730][T17909] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 712.259321][T17909] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 712.264989][T17909] vfs_read+0x1df/0xbe0 [ 712.269171][T17909] ? __fget_files+0x1fc/0x3a0 [ 712.273883][T17909] ? __pfx___mutex_lock+0x10/0x10 [ 712.278943][T17909] ? __pfx_vfs_read+0x10/0x10 [ 712.283667][T17909] ? __fget_files+0x206/0x3a0 [ 712.288388][T17909] ksys_read+0x12b/0x250 [ 712.292671][T17909] ? __pfx_ksys_read+0x10/0x10 [ 712.297563][T17909] do_syscall_64+0xcd/0x250 [ 712.302106][T17909] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 712.308037][T17909] RIP: 0033:0x7fd23d78472c [ 712.312472][T17909] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 712.332110][T17909] RSP: 002b:00007fd23e5e9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 712.340554][T17909] RAX: ffffffffffffffda RBX: 00007fd23d975fa0 RCX: 00007fd23d78472c [ 712.348558][T17909] RDX: 000000000000000f RSI: 00007fd23e5e90a0 RDI: 0000000000000004 [ 712.356560][T17909] RBP: 00007fd23e5e9090 R08: 0000000000000000 R09: 0000000000000000 [ 712.364563][T17909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 712.372568][T17909] R13: 0000000000000000 R14: 00007fd23d975fa0 R15: 00007ffe7b960d28 [ 712.380590][T17909] [ 712.583242][T17909] Process accounting resumed [ 712.648121][T17909] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17909 comm: syz.1.3372) [ 713.084881][T17893] Process accounting resumed [ 713.138796][T17913] openvswitch: netlink: Key type 261 is out of range max 32 [ 713.158345][T17893] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17893 comm: syz.5.3367) [ 713.183450][T17918] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17918 comm: syz.1.3375) [ 713.588562][T17924] netlink: 322 bytes leftover after parsing attributes in process `syz.1.3377'. [ 713.668237][ T29] audit: type=1800 audit(4294967793.049:69): pid=17926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3377" name="features" dev="configfs" ino=54802 res=0 errno=0 [ 713.783064][T17921] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17921 comm: syz.5.3376) [ 713.881025][T17923] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17923 comm: syz.1.3377) [ 714.024146][T17927] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17927 comm: syz.5.3379) [ 714.106820][T17932] netlink: 322 bytes leftover after parsing attributes in process `syz.1.3380'. [ 714.153588][T17932] vcan0: entered promiscuous mode [ 714.399227][T17934] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17934 comm: syz.5.3381) [ 714.759984][T17940] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17940 comm: syz.5.3383) [ 715.089050][T17945] FAULT_INJECTION: forcing a failure. [ 715.089050][T17945] name failslab, interval 1, probability 0, space 0, times 0 [ 715.258422][T17945] CPU: 1 UID: 0 PID: 17945 Comm: syz.5.3385 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 715.269271][T17945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 715.279367][T17945] Call Trace: [ 715.282680][T17945] [ 715.285641][T17945] dump_stack_lvl+0x16c/0x1f0 [ 715.290371][T17945] should_fail_ex+0x497/0x5b0 [ 715.295174][T17945] ? fs_reclaim_acquire+0xae/0x150 [ 715.300334][T17945] should_failslab+0xc2/0x120 [ 715.305063][T17945] __kmalloc_node_noprof+0xd1/0x520 [ 715.310302][T17945] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 715.315812][T17945] ? __pfx_lock_release+0x10/0x10 [ 715.320886][T17945] __kvmalloc_node_noprof+0xad/0x1a0 [ 715.326210][T17945] ? __pfx_devkmsg_open+0x10/0x10 [ 715.331253][T17945] devkmsg_open+0xc2/0x280 [ 715.335764][T17945] memory_open+0x172/0x1e0 [ 715.340191][T17945] ? __pfx_memory_open+0x10/0x10 [ 715.345138][T17945] chrdev_open+0x237/0x6a0 [ 715.349563][T17945] ? __pfx_apparmor_file_open+0x10/0x10 [ 715.355124][T17945] ? __pfx_chrdev_open+0x10/0x10 [ 715.360078][T17945] do_dentry_open+0xf59/0x1ea0 [ 715.364849][T17945] ? __pfx_chrdev_open+0x10/0x10 [ 715.369797][T17945] ? inode_permission+0xdd/0x5f0 [ 715.374751][T17945] vfs_open+0x82/0x3f0 [ 715.378831][T17945] ? may_open+0x1f2/0x400 [ 715.383177][T17945] path_openat+0x1e6a/0x2d60 [ 715.387782][T17945] ? __pfx_path_openat+0x10/0x10 [ 715.392724][T17945] ? __pfx___lock_acquire+0x10/0x10 [ 715.397937][T17945] ? lock_acquire.part.0+0x11b/0x380 [ 715.403231][T17945] ? find_held_lock+0x2d/0x110 [ 715.408009][T17945] do_filp_open+0x20c/0x470 [ 715.412523][T17945] ? __pfx_do_filp_open+0x10/0x10 [ 715.417552][T17945] ? find_held_lock+0x2d/0x110 [ 715.422379][T17945] ? alloc_fd+0x41f/0x760 [ 715.426727][T17945] do_sys_openat2+0x17a/0x1e0 [ 715.431417][T17945] ? __pfx_do_sys_openat2+0x10/0x10 [ 715.436631][T17945] ? do_user_addr_fault+0xe50/0x13f0 [ 715.441981][T17945] ? __pfx_lock_release+0x10/0x10 [ 715.447036][T17945] __x64_sys_openat+0x175/0x210 [ 715.451908][T17945] ? __pfx___x64_sys_openat+0x10/0x10 [ 715.457296][T17945] ? do_user_addr_fault+0x83d/0x13f0 [ 715.462596][T17945] do_syscall_64+0xcd/0x250 [ 715.467178][T17945] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 715.473109][T17945] RIP: 0033:0x7f4e65185d19 [ 715.477546][T17945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 715.497338][T17945] RSP: 002b:00007f4e66036038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 715.505762][T17945] RAX: ffffffffffffffda RBX: 00007f4e65375fa0 RCX: 00007f4e65185d19 [ 715.513741][T17945] RDX: 0000000000000840 RSI: 0000000020000040 RDI: ffffffffffffff9c [ 715.521719][T17945] RBP: 00007f4e66036090 R08: 0000000000000000 R09: 0000000000000000 [ 715.529696][T17945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 715.537672][T17945] R13: 0000000000000001 R14: 00007f4e65375fa0 R15: 00007ffc83714178 [ 715.545661][T17945] [ 715.778012][T17955] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3387'. [ 715.889278][T17944] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17944 comm: syz.5.3385) [ 715.945128][T17946] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17946 comm: syz.1.3380) [ 717.310508][T17978] FAULT_INJECTION: forcing a failure. [ 717.310508][T17978] name failslab, interval 1, probability 0, space 0, times 0 [ 717.358159][T17978] CPU: 0 UID: 0 PID: 17978 Comm: syz.1.3393 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 717.368987][T17978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 717.379078][T17978] Call Trace: [ 717.382382][T17978] [ 717.385334][T17978] dump_stack_lvl+0x16c/0x1f0 [ 717.390050][T17978] should_fail_ex+0x497/0x5b0 [ 717.394767][T17978] ? fs_reclaim_acquire+0xae/0x150 [ 717.399915][T17978] should_failslab+0xc2/0x120 [ 717.404630][T17978] __kmalloc_node_noprof+0xd1/0x520 [ 717.409871][T17978] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 717.415370][T17978] __kvmalloc_node_noprof+0xad/0x1a0 [ 717.420692][T17978] seq_read_iter+0x82a/0x12b0 [ 717.425406][T17978] ? __pfx_aa_file_perm+0x10/0x10 [ 717.430461][T17978] seq_read+0x39f/0x4e0 [ 717.434647][T17978] ? __pfx_seq_read+0x10/0x10 [ 717.439377][T17978] ? __pfx_seq_read+0x10/0x10 [ 717.444085][T17978] vfs_read+0x1df/0xbe0 [ 717.448293][T17978] ? __fget_files+0x1fc/0x3a0 [ 717.453005][T17978] ? __pfx___mutex_lock+0x10/0x10 [ 717.458060][T17978] ? __pfx_vfs_read+0x10/0x10 [ 717.462771][T17978] ? __fget_files+0x206/0x3a0 [ 717.467493][T17978] ksys_read+0x12b/0x250 [ 717.471768][T17978] ? __pfx_ksys_read+0x10/0x10 [ 717.476577][T17978] do_syscall_64+0xcd/0x250 [ 717.481120][T17978] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 717.487057][T17978] RIP: 0033:0x7fd23d785d19 [ 717.491504][T17978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 717.511158][T17978] RSP: 002b:00007fd23e5e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 717.519613][T17978] RAX: ffffffffffffffda RBX: 00007fd23d975fa0 RCX: 00007fd23d785d19 [ 717.527614][T17978] RDX: 0000000000400000 RSI: 0000000000000000 RDI: 0000000000000003 [ 717.535611][T17978] RBP: 00007fd23e5e9090 R08: 0000000000000000 R09: 0000000000000000 [ 717.543614][T17978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 717.551617][T17978] R13: 0000000000000000 R14: 00007fd23d975fa0 R15: 00007ffe7b960d28 [ 717.559637][T17978] [ 717.763145][T17988] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3396'. [ 718.038794][T17983] warn_unsupported: 2 callbacks suppressed [ 718.038816][T17983] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17983 comm: syz.1.3393) [ 718.132413][T17987] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17987 comm: syz.5.3396) [ 718.308831][T17994] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3397'. [ 718.611823][T17996] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17996 comm: syz.5.3398) [ 719.065654][T18006] ecryptfs_miscdev_write: Invalid packet size [192] [ 719.270298][T18001] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18001 comm: syz.1.3397) [ 719.489300][T18016] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3402'. [ 719.529439][T18016] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3402'. [ 719.558520][T18016] FAULT_INJECTION: forcing a failure. [ 719.558520][T18016] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 719.601625][T18016] CPU: 0 UID: 0 PID: 18016 Comm: syz.1.3402 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 719.612449][T18016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 719.622534][T18016] Call Trace: [ 719.625832][T18016] [ 719.628782][T18016] dump_stack_lvl+0x16c/0x1f0 [ 719.633492][T18016] should_fail_ex+0x497/0x5b0 [ 719.638210][T18016] _copy_to_user+0x32/0xd0 [ 719.642667][T18016] simple_read_from_buffer+0xd0/0x160 [ 719.648080][T18016] proc_fail_nth_read+0x198/0x270 [ 719.653143][T18016] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 719.658742][T18016] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 719.664324][T18016] vfs_read+0x1df/0xbe0 [ 719.668517][T18016] ? __fget_files+0x1fc/0x3a0 [ 719.673232][T18016] ? __pfx___mutex_lock+0x10/0x10 [ 719.678282][T18016] ? __pfx_vfs_read+0x10/0x10 [ 719.682996][T18016] ? __fget_files+0x206/0x3a0 [ 719.687709][T18016] ksys_read+0x12b/0x250 [ 719.691986][T18016] ? __pfx_ksys_read+0x10/0x10 [ 719.696785][T18016] do_syscall_64+0xcd/0x250 [ 719.701324][T18016] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 719.707257][T18016] RIP: 0033:0x7fd23d78472c [ 719.711702][T18016] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 719.731343][T18016] RSP: 002b:00007fd23e5e9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 719.739796][T18016] RAX: ffffffffffffffda RBX: 00007fd23d975fa0 RCX: 00007fd23d78472c [ 719.747799][T18016] RDX: 000000000000000f RSI: 00007fd23e5e90a0 RDI: 0000000000000004 [ 719.755804][T18016] RBP: 00007fd23e5e9090 R08: 0000000000000000 R09: 0000000000000000 [ 719.763801][T18016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 719.771798][T18016] R13: 0000000000000000 R14: 00007fd23d975fa0 R15: 00007ffe7b960d28 [ 719.779816][T18016] [ 720.108782][T18015] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18015 comm: syz.1.3402) [ 720.320323][T17856] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17856 comm: syz.1.3357) [ 720.512534][T18025] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18025 comm: syz.1.3405) [ 720.708986][T18033] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3407'. [ 720.745484][T18033] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3407'. [ 720.923194][T18036] openvswitch: netlink: Key type 261 is out of range max 32 [ 720.928686][T18033] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18033 comm: syz.1.3407) [ 721.306693][T18043] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3410'. [ 721.602762][T18038] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18038 comm: syz.1.3409) [ 721.938359][T18052] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3413'. [ 722.069984][T18058] sg_write: data in/out 288788827/174 bytes for SCSI command 0xf7-- guessing data in; [ 722.069984][T18058] program syz.7.3414 not setting count and/or reply_len properly [ 722.502674][T18054] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18054 comm: syz.1.3412) [ 723.464451][ T29] audit: type=1800 audit(4294967802.849:70): pid=18078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.3418" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 723.529237][T18078] FAULT_INJECTION: forcing a failure. [ 723.529237][T18078] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 723.547693][T18078] CPU: 1 UID: 0 PID: 18078 Comm: syz.7.3418 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 723.558527][T18078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 723.568612][T18078] Call Trace: [ 723.571910][T18078] [ 723.574860][T18078] dump_stack_lvl+0x16c/0x1f0 [ 723.579580][T18078] should_fail_ex+0x497/0x5b0 [ 723.584298][T18078] _copy_to_user+0x32/0xd0 [ 723.588761][T18078] simple_read_from_buffer+0xd0/0x160 [ 723.594189][T18078] proc_fail_nth_read+0x198/0x270 [ 723.599261][T18078] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 723.604843][T18078] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 723.610408][T18078] vfs_read+0x1df/0xbe0 [ 723.614574][T18078] ? __fget_files+0x1fc/0x3a0 [ 723.619264][T18078] ? __pfx___mutex_lock+0x10/0x10 [ 723.624303][T18078] ? __pfx_vfs_read+0x10/0x10 [ 723.628993][T18078] ? __fget_files+0x206/0x3a0 [ 723.633685][T18078] ksys_read+0x12b/0x250 [ 723.637940][T18078] ? __pfx_ksys_read+0x10/0x10 [ 723.642719][T18078] do_syscall_64+0xcd/0x250 [ 723.647235][T18078] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 723.653145][T18078] RIP: 0033:0x7f8ba5b8472c [ 723.657562][T18078] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 723.677176][T18078] RSP: 002b:00007f8ba6a3d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 723.685596][T18078] RAX: ffffffffffffffda RBX: 00007f8ba5d76160 RCX: 00007f8ba5b8472c [ 723.693581][T18078] RDX: 000000000000000f RSI: 00007f8ba6a3d0a0 RDI: 0000000000000008 [ 723.701564][T18078] RBP: 00007f8ba6a3d090 R08: 0000000000000000 R09: 0000000000000000 [ 723.709540][T18078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 723.717514][T18078] R13: 0000000000000000 R14: 00007f8ba5d76160 R15: 00007ffdfb6d5698 [ 723.725504][T18078] [ 724.060311][T18064] warn_unsupported: 2 callbacks suppressed [ 724.060333][T18064] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18064 comm: syz.1.3415) [ 724.132151][T18082] FAULT_INJECTION: forcing a failure. [ 724.132151][T18082] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 724.181794][T18082] CPU: 1 UID: 0 PID: 18082 Comm: syz.5.3416 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 724.192623][T18082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 724.202717][T18082] Call Trace: [ 724.206021][T18082] [ 724.208974][T18082] dump_stack_lvl+0x16c/0x1f0 [ 724.213693][T18082] should_fail_ex+0x497/0x5b0 [ 724.218415][T18082] _copy_to_user+0x32/0xd0 [ 724.222867][T18082] simple_read_from_buffer+0xd0/0x160 [ 724.228277][T18082] proc_fail_nth_read+0x198/0x270 [ 724.233337][T18082] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 724.236521][T17875] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 17875 comm: syz.5.3364) [ 724.238904][T18082] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 724.238938][T18082] vfs_read+0x1df/0xbe0 [ 724.238965][T18082] ? __fget_files+0x1fc/0x3a0 [ 724.238991][T18082] ? __pfx___mutex_lock+0x10/0x10 [ 724.239019][T18082] ? __pfx_vfs_read+0x10/0x10 [ 724.239054][T18082] ? __fget_files+0x206/0x3a0 [ 724.239093][T18082] ksys_read+0x12b/0x250 [ 724.239120][T18082] ? __pfx_ksys_read+0x10/0x10 [ 724.239157][T18082] do_syscall_64+0xcd/0x250 [ 724.239190][T18082] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 724.239221][T18082] RIP: 0033:0x7f4e6518472c [ 724.239244][T18082] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 724.239268][T18082] RSP: 002b:00007f4e66036030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 724.239294][T18082] RAX: ffffffffffffffda RBX: 00007f4e65375fa0 RCX: 00007f4e6518472c [ 724.239313][T18082] RDX: 000000000000000f RSI: 00007f4e660360a0 RDI: 0000000000000007 [ 724.239329][T18082] RBP: 00007f4e66036090 R08: 0000000000000000 R09: 0000000000000000 [ 724.239346][T18082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 724.239361][T18082] R13: 0000000000000000 R14: 00007f4e65375fa0 R15: 00007ffc83714178 [ 724.239394][T18082] [ 724.385346][T18092] netlink: 'syz.6.3420': attribute type 2 has an invalid length. [ 724.417951][T18084] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18084 comm: syz.5.3416) [ 724.449944][T18081] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18081 comm: syz.5.3416) [ 724.478336][T18088] can: request_module (can-proto-5) failed. [ 724.517112][T18089] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18089 comm: syz.1.3421) [ 724.647624][T18104] FAULT_INJECTION: forcing a failure. [ 724.647624][T18104] name failslab, interval 1, probability 0, space 0, times 0 [ 724.708278][T18104] CPU: 1 UID: 0 PID: 18104 Comm: syz.7.3423 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 724.719096][T18104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 724.729154][T18104] Call Trace: [ 724.732438][T18104] [ 724.735372][T18104] dump_stack_lvl+0x16c/0x1f0 [ 724.740062][T18104] should_fail_ex+0x497/0x5b0 [ 724.744761][T18104] ? fs_reclaim_acquire+0xae/0x150 [ 724.749882][T18104] should_failslab+0xc2/0x120 [ 724.754577][T18104] __kmalloc_noprof+0xce/0x4f0 [ 724.759351][T18104] ? d_absolute_path+0x137/0x1b0 [ 724.764299][T18104] ? tomoyo_encode2+0x100/0x3e0 [ 724.769160][T18104] tomoyo_encode2+0x100/0x3e0 [ 724.773843][T18104] tomoyo_realpath_from_path+0x1a7/0x710 [ 724.779488][T18104] tomoyo_path_number_perm+0x248/0x5b0 [ 724.784960][T18104] ? tomoyo_path_number_perm+0x235/0x5b0 [ 724.790606][T18104] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 724.796620][T18104] ? __pfx_lock_release+0x10/0x10 [ 724.801657][T18104] ? trace_lock_acquire+0x14e/0x1f0 [ 724.806868][T18104] ? lock_acquire+0x2f/0xb0 [ 724.811371][T18104] ? __fget_files+0x40/0x3a0 [ 724.815970][T18104] ? __fget_files+0x206/0x3a0 [ 724.820655][T18104] security_file_ioctl+0x9b/0x240 [ 724.825688][T18104] __x64_sys_ioctl+0xb7/0x200 [ 724.830383][T18104] do_syscall_64+0xcd/0x250 [ 724.834905][T18104] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 724.840805][T18104] RIP: 0033:0x7f8ba5b85d19 [ 724.845228][T18104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 724.864846][T18104] RSP: 002b:00007f8ba6a7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 724.873356][T18104] RAX: ffffffffffffffda RBX: 00007f8ba5d75fa0 RCX: 00007f8ba5b85d19 [ 724.881502][T18104] RDX: 0000000000000038 RSI: 0000000080104d12 RDI: 0000000000000003 [ 724.889473][T18104] RBP: 00007f8ba6a7f090 R08: 0000000000000000 R09: 0000000000000000 [ 724.897444][T18104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 724.905421][T18104] R13: 0000000000000000 R14: 00007f8ba5d75fa0 R15: 00007ffdfb6d5698 [ 724.913406][T18104] [ 724.922578][T18102] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18102 comm: syz.5.3422) [ 724.994930][T18104] ERROR: Out of memory at tomoyo_realpath_from_path. [ 725.064942][T18108] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3425'. [ 725.100795][T18106] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3424'. [ 725.704648][T18110] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18110 comm: syz.5.3426) [ 725.815801][T18106] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18106 comm: syz.1.3424) [ 726.043289][T18134] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18134 comm: syz.1.3435) [ 726.568669][T18151] FAULT_INJECTION: forcing a failure. [ 726.568669][T18151] name failslab, interval 1, probability 0, space 0, times 0 [ 726.602004][T18151] CPU: 1 UID: 0 PID: 18151 Comm: syz.7.3440 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 726.612830][T18151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 726.622910][T18151] Call Trace: [ 726.626212][T18151] [ 726.629165][T18151] dump_stack_lvl+0x16c/0x1f0 [ 726.633882][T18151] should_fail_ex+0x497/0x5b0 [ 726.638587][T18151] ? fs_reclaim_acquire+0xae/0x150 [ 726.643733][T18151] should_failslab+0xc2/0x120 [ 726.648448][T18151] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 726.654293][T18151] ? __alloc_skb+0x2b3/0x380 [ 726.658924][T18151] __alloc_skb+0x2b3/0x380 [ 726.663371][T18151] ? __pfx___alloc_skb+0x10/0x10 [ 726.668343][T18151] ? lock_acquire+0x2f/0xb0 [ 726.672881][T18151] netlink_alloc_large_skb+0x69/0x130 [ 726.678276][T18151] netlink_sendmsg+0x689/0xd70 [ 726.683051][T18151] ? __pfx_netlink_sendmsg+0x10/0x10 [ 726.688359][T18151] ____sys_sendmsg+0x9ae/0xb40 [ 726.693134][T18151] ? copy_msghdr_from_user+0x10b/0x160 [ 726.698603][T18151] ? __pfx_____sys_sendmsg+0x10/0x10 [ 726.703903][T18151] ___sys_sendmsg+0x135/0x1e0 [ 726.708591][T18151] ? __pfx____sys_sendmsg+0x10/0x10 [ 726.713811][T18151] ? __pfx_lock_release+0x10/0x10 [ 726.718852][T18151] ? trace_lock_acquire+0x14e/0x1f0 [ 726.724066][T18151] ? __fget_files+0x206/0x3a0 [ 726.728756][T18151] __sys_sendmsg+0x16e/0x220 [ 726.733357][T18151] ? __pfx___sys_sendmsg+0x10/0x10 [ 726.738496][T18151] do_syscall_64+0xcd/0x250 [ 726.743011][T18151] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 726.748913][T18151] RIP: 0033:0x7f8ba5b85d19 [ 726.753335][T18151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 726.772953][T18151] RSP: 002b:00007f8ba6a7f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 726.781374][T18151] RAX: ffffffffffffffda RBX: 00007f8ba5d75fa0 RCX: 00007f8ba5b85d19 [ 726.789350][T18151] RDX: 0000000004000000 RSI: 0000000020004100 RDI: 0000000000000003 [ 726.797323][T18151] RBP: 00007f8ba6a7f090 R08: 0000000000000000 R09: 0000000000000000 [ 726.805299][T18151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 726.813274][T18151] R13: 0000000000000000 R14: 00007f8ba5d75fa0 R15: 00007ffdfb6d5698 [ 726.821269][T18151] [ 727.099298][T18157] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3443'. [ 727.166484][T18138] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18138 comm: syz.5.3433) [ 727.461786][T18161] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3444'. [ 727.803558][T18164] FAULT_INJECTION: forcing a failure. [ 727.803558][T18164] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 727.878694][T18164] CPU: 0 UID: 0 PID: 18164 Comm: syz.6.3445 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 727.889577][T18164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 727.899666][T18164] Call Trace: [ 727.902987][T18164] [ 727.905948][T18164] dump_stack_lvl+0x16c/0x1f0 [ 727.910670][T18164] should_fail_ex+0x497/0x5b0 [ 727.915408][T18164] _copy_to_user+0x32/0xd0 [ 727.919871][T18164] simple_read_from_buffer+0xd0/0x160 [ 727.925292][T18164] proc_fail_nth_read+0x198/0x270 [ 727.930362][T18164] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 727.935949][T18164] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 727.941530][T18164] vfs_read+0x1df/0xbe0 [ 727.945717][T18164] ? __fget_files+0x1fc/0x3a0 [ 727.950428][T18164] ? __pfx___mutex_lock+0x10/0x10 [ 727.955485][T18164] ? __pfx_vfs_read+0x10/0x10 [ 727.960204][T18164] ? __fget_files+0x206/0x3a0 [ 727.964935][T18164] ksys_read+0x12b/0x250 [ 727.969217][T18164] ? __pfx_ksys_read+0x10/0x10 [ 727.974033][T18164] do_syscall_64+0xcd/0x250 [ 727.978577][T18164] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 727.984511][T18164] RIP: 0033:0x7fc576f8472c [ 727.988954][T18164] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 728.008600][T18164] RSP: 002b:00007fc577e7f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 728.017062][T18164] RAX: ffffffffffffffda RBX: 00007fc577175fa0 RCX: 00007fc576f8472c [ 728.025066][T18164] RDX: 000000000000000f RSI: 00007fc577e7f0a0 RDI: 0000000000000007 [ 728.033068][T18164] RBP: 00007fc577e7f090 R08: 0000000000000000 R09: 0000000000000000 [ 728.041075][T18164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 728.049082][T18164] R13: 0000000000000000 R14: 00007fc577175fa0 R15: 00007ffe3723cd68 [ 728.057111][T18164] [ 728.567826][T18190] openvswitch: netlink: Key type 261 is out of range max 32 [ 729.214727][T18206] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3454'. [ 729.650860][T18202] warn_unsupported: 6 callbacks suppressed [ 729.650882][T18202] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18202 comm: syz.1.3453) [ 729.788825][T18212] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3455'. [ 729.804669][T18214] FAULT_INJECTION: forcing a failure. [ 729.804669][T18214] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 729.824490][T18212] veth1_macvtap: entered allmulticast mode [ 729.852282][T18214] CPU: 0 UID: 0 PID: 18214 Comm: syz.1.3456 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 729.863116][T18214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 729.873223][T18214] Call Trace: [ 729.876525][T18214] [ 729.879484][T18214] dump_stack_lvl+0x16c/0x1f0 [ 729.884204][T18214] should_fail_ex+0x497/0x5b0 [ 729.888921][T18214] ? fs_reclaim_acquire+0xae/0x150 [ 729.894069][T18214] should_fail_alloc_page+0xe7/0x130 [ 729.899406][T18214] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 729.905625][T18214] ? mark_lock+0xb5/0xc60 [ 729.909991][T18214] ? __pfx_mark_lock+0x10/0x10 [ 729.914820][T18214] __alloc_pages_noprof+0x190/0x25b0 [ 729.920120][T18214] ? __pfx_mark_lock+0x10/0x10 [ 729.924906][T18214] ? hlock_class+0x4e/0x130 [ 729.929417][T18214] ? mark_lock+0xb5/0xc60 [ 729.933764][T18214] ? __pfx_mark_lock+0x10/0x10 [ 729.938551][T18214] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 729.944305][T18214] ? hlock_class+0x4e/0x130 [ 729.948822][T18214] ? mark_lock+0xb5/0xc60 [ 729.953170][T18214] ? hlock_class+0x4e/0x130 [ 729.957683][T18214] ? __lock_acquire+0xcc5/0x3c40 [ 729.962635][T18214] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 729.968541][T18214] ? policy_nodemask+0xea/0x4e0 [ 729.973412][T18214] alloc_pages_mpol_noprof+0x2c9/0x610 [ 729.978890][T18214] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 729.984885][T18214] ? hlock_class+0x4e/0x130 [ 729.989407][T18214] folio_alloc_mpol_noprof+0x36/0xd0 [ 729.994708][T18214] vma_alloc_folio_noprof+0xee/0x1b0 [ 730.000018][T18214] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 730.005925][T18214] ? find_held_lock+0x2d/0x110 [ 730.010724][T18214] do_pte_missing+0x2017/0x3e00 [ 730.015592][T18214] __handle_mm_fault+0x103c/0x2a40 [ 730.020716][T18214] ? find_held_lock+0x2d/0x110 [ 730.025489][T18214] ? __pfx___handle_mm_fault+0x10/0x10 [ 730.030957][T18214] ? follow_page_pte+0x3c3/0x1b20 [ 730.035991][T18214] ? __pfx_lock_release+0x10/0x10 [ 730.041041][T18214] ? follow_page_pte+0x3f7/0x1b20 [ 730.046082][T18214] handle_mm_fault+0x3fa/0xaa0 [ 730.050870][T18214] __get_user_pages+0x8d9/0x3b50 [ 730.055827][T18214] ? __pfx_mt_find+0x10/0x10 [ 730.060433][T18214] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 730.066069][T18214] ? __pfx___get_user_pages+0x10/0x10 [ 730.071458][T18214] ? __mm_populate+0x21d/0x380 [ 730.076239][T18214] populate_vma_page_range+0x27f/0x3a0 [ 730.081737][T18214] ? __pfx_populate_vma_page_range+0x10/0x10 [ 730.087746][T18214] ? __pfx_find_vma_intersection+0x10/0x10 [ 730.093585][T18214] ? vm_mmap_pgoff+0x25b/0x360 [ 730.098384][T18214] __mm_populate+0x1d6/0x380 [ 730.102999][T18214] ? __pfx___mm_populate+0x10/0x10 [ 730.108127][T18214] ? up_write+0x1b2/0x520 [ 730.112468][T18214] vm_mmap_pgoff+0x293/0x360 [ 730.117069][T18214] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 730.122190][T18214] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 730.128011][T18214] ksys_mmap_pgoff+0x7d/0x5c0 [ 730.132704][T18214] __x64_sys_mmap+0x125/0x190 [ 730.137393][T18214] do_syscall_64+0xcd/0x250 [ 730.141906][T18214] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 730.147811][T18214] RIP: 0033:0x7fd23d785d19 [ 730.152239][T18214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 730.171862][T18214] RSP: 002b:00007fd23e5e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 730.180286][T18214] RAX: ffffffffffffffda RBX: 00007fd23d975fa0 RCX: 00007fd23d785d19 [ 730.188262][T18214] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 730.196232][T18214] RBP: 00007fd23e5e9090 R08: 0000000000000002 R09: 0000000000008000 [ 730.204202][T18214] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002 [ 730.212174][T18214] R13: 0000000000000001 R14: 00007fd23d975fa0 R15: 00007ffe7b960d28 [ 730.220162][T18214] [ 730.264401][T18212] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3455'. [ 730.471500][T18179] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18179 comm: syz.5.3447) [ 730.615122][T18213] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18213 comm: syz.1.3456) [ 730.845026][T18226] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3459'. [ 730.936840][T18223] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18223 comm: syz.1.3460) [ 731.061735][T18232] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18232 comm: syz.1.3462) [ 731.153506][T18226] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18226 comm: syz.5.3459) [ 731.332654][T18235] [ 731.335035][T18235] ====================================================== [ 731.342169][T18235] WARNING: possible circular locking dependency detected [ 731.349205][T18235] 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 Not tainted [ 731.356337][T18235] ------------------------------------------------------ [ 731.363371][T18235] syz.1.3463/18235 is trying to acquire lock: [ 731.369458][T18235] ffffffff8fabdc08 (rtnl_mutex){+.+.}-{4:4}, at: do_ipv6_setsockopt+0x1f4d/0x4660 [ 731.378771][T18235] [ 731.378771][T18235] but task is already holding lock: [ 731.386157][T18235] ffff8880792d7228 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x101/0xc00 [ 731.396320][T18235] [ 731.396320][T18235] which lock already depends on the new lock. [ 731.396320][T18235] [ 731.406835][T18235] [ 731.406835][T18235] the existing dependency chain (in reverse order) is: [ 731.415871][T18235] [ 731.415871][T18235] -> #2 (&smc->clcsock_release_lock){+.+.}-{4:4}: [ 731.424514][T18235] __mutex_lock+0x19b/0xa60 [ 731.429591][T18235] smc_switch_to_fallback+0x2d/0xa00 [ 731.435527][T18235] smc_sendmsg+0x13d/0x520 [ 731.440512][T18235] ____sys_sendmsg+0x9ae/0xb40 [ 731.445835][T18235] ___sys_sendmsg+0x135/0x1e0 [ 731.451069][T18235] __sys_sendmsg+0x16e/0x220 [ 731.456216][T18235] do_syscall_64+0xcd/0x250 [ 731.461291][T18235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 731.467750][T18235] [ 731.467750][T18235] -> #1 (sk_lock-AF_INET){+.+.}-{0:0}: [ 731.475443][T18235] lock_sock_nested+0x3a/0xf0 [ 731.480686][T18235] sockopt_lock_sock+0x54/0x70 [ 731.486013][T18235] do_ip_setsockopt+0x101/0x38c0 [ 731.491506][T18235] ip_setsockopt+0x59/0xf0 [ 731.496474][T18235] raw_setsockopt+0xb8/0x290 [ 731.501660][T18235] do_sock_setsockopt+0x222/0x480 [ 731.507243][T18235] __sys_setsockopt+0x1a0/0x230 [ 731.512652][T18235] __x64_sys_setsockopt+0xbd/0x160 [ 731.518320][T18235] do_syscall_64+0xcd/0x250 [ 731.523388][T18235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 731.529834][T18235] [ 731.529834][T18235] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 731.537081][T18235] __lock_acquire+0x249e/0x3c40 [ 731.542496][T18235] lock_acquire.part.0+0x11b/0x380 [ 731.548157][T18235] __mutex_lock+0x19b/0xa60 [ 731.553214][T18235] do_ipv6_setsockopt+0x1f4d/0x4660 [ 731.558973][T18235] ipv6_setsockopt+0xcb/0x170 [ 731.564212][T18235] tcp_setsockopt+0xa4/0x100 [ 731.569362][T18235] smc_setsockopt+0x1b4/0xc00 [ 731.574605][T18235] do_sock_setsockopt+0x222/0x480 [ 731.580196][T18235] __sys_setsockopt+0x1a0/0x230 [ 731.585687][T18235] __x64_sys_setsockopt+0xbd/0x160 [ 731.591362][T18235] do_syscall_64+0xcd/0x250 [ 731.596421][T18235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 731.602873][T18235] [ 731.602873][T18235] other info that might help us debug this: [ 731.602873][T18235] [ 731.603600][T18243] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3464'. [ 731.613093][T18235] Chain exists of: [ 731.613093][T18235] rtnl_mutex --> sk_lock-AF_INET --> &smc->clcsock_release_lock [ 731.613093][T18235] [ 731.613135][T18235] Possible unsafe locking scenario: [ 731.613135][T18235] [ 731.613142][T18235] CPU0 CPU1 [ 731.613148][T18235] ---- ---- [ 731.613155][T18235] lock(&smc->clcsock_release_lock [ 731.633220][T18240] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3464'. [ 731.635573][T18235] ); [ 731.635582][T18235] lock(sk_lock-AF_INET); [ 731.677357][T18235] lock(&smc->clcsock_release_lock); [ 731.685279][T18235] lock(rtnl_mutex); [ 731.689293][T18235] [ 731.689293][T18235] *** DEADLOCK *** [ 731.689293][T18235] [ 731.697450][T18235] 1 lock held by syz.1.3463/18235: [ 731.702581][T18235] #0: ffff8880792d7228 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x101/0xc00 [ 731.713166][T18235] [ 731.713166][T18235] stack backtrace: [ 731.719072][T18235] CPU: 1 UID: 0 PID: 18235 Comm: syz.1.3463 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 731.729857][T18235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 731.739939][T18235] Call Trace: [ 731.743239][T18235] [ 731.746195][T18235] dump_stack_lvl+0x116/0x1f0 [ 731.750907][T18235] print_circular_bug+0x41c/0x610 [ 731.755979][T18235] check_noncircular+0x31a/0x400 [ 731.760964][T18235] ? __pfx_check_noncircular+0x10/0x10 [ 731.767245][T18235] ? hlock_class+0x4e/0x130 [ 731.771788][T18235] ? __pfx_mark_lock+0x10/0x10 [ 731.776590][T18235] ? hlock_class+0x4e/0x130 [ 731.780279][T18243] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18243 comm: syz.5.3464) [ 731.781110][T18235] ? lockdep_lock+0xc6/0x200 [ 731.781144][T18235] ? __pfx_lockdep_lock+0x10/0x10 [ 731.781171][T18235] ? __pfx_mark_lock+0x10/0x10 [ 731.781206][T18235] __lock_acquire+0x249e/0x3c40 [ 731.781247][T18235] ? __pfx___lock_acquire+0x10/0x10 [ 731.781285][T18235] ? __lock_acquire+0x15a9/0x3c40 [ 731.781323][T18235] lock_acquire.part.0+0x11b/0x380 [ 731.781348][T18235] ? do_ipv6_setsockopt+0x1f4d/0x4660 [ 731.781379][T18235] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 731.781404][T18235] ? rcu_is_watching+0x12/0xc0 [ 731.781436][T18235] ? trace_lock_acquire+0x14e/0x1f0 [ 731.781468][T18235] ? do_ipv6_setsockopt+0x1f4d/0x4660 [ 731.781497][T18235] ? lock_acquire+0x2f/0xb0 [ 731.781520][T18235] ? do_ipv6_setsockopt+0x1f4d/0x4660 [ 731.781550][T18235] __mutex_lock+0x19b/0xa60 [ 731.781579][T18235] ? do_ipv6_setsockopt+0x1f4d/0x4660 [ 731.781608][T18235] ? __pfx_mark_lock+0x10/0x10 [ 731.781645][T18235] ? do_ipv6_setsockopt+0x1f4d/0x4660 [ 731.781674][T18235] ? __pfx___mutex_lock+0x10/0x10 [ 731.781704][T18235] ? __pfx_register_lock_class+0x10/0x10 [ 731.781736][T18235] ? finish_task_switch.isra.0+0x217/0xcc0 [ 731.781763][T18235] ? __switch_to+0x749/0x1190 [ 731.781796][T18235] ? hlock_class+0x4e/0x130 [ 731.781828][T18235] ? do_ipv6_setsockopt+0x1f4d/0x4660 [ 731.781855][T18235] ? rtnl_lock+0x9/0x20 [ 731.781890][T18235] do_ipv6_setsockopt+0x1f4d/0x4660 [ 731.781920][T18235] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 731.929916][T18235] ? lock_acquire.part.0+0x11b/0x380 [ 731.935240][T18235] ? __mutex_trylock_common+0xea/0x250 [ 731.940736][T18235] ? __pfx___mutex_trylock_common+0x10/0x10 [ 731.946662][T18235] ? smc_setsockopt+0x101/0xc00 [ 731.951555][T18235] ? rcu_is_watching+0x12/0xc0 [ 731.956321][T18249] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18249 comm: syz.5.3467) [ 731.967885][T18235] ? trace_contention_end+0xee/0x140 [ 731.973209][T18235] ? __mutex_lock+0x1cc/0xa60 [ 731.977919][T18235] ? __pfx___futex_wait+0x10/0x10 [ 731.982977][T18235] ? smc_setsockopt+0x101/0xc00 [ 731.987868][T18235] ? __pfx___mutex_lock+0x10/0x10 [ 731.992940][T18235] ? ipv6_setsockopt+0xcb/0x170 [ 731.997829][T18235] ipv6_setsockopt+0xcb/0x170 [ 732.002541][T18235] tcp_setsockopt+0xa4/0x100 [ 732.007164][T18235] smc_setsockopt+0x1b4/0xc00 [ 732.011884][T18235] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 732.017828][T18235] ? __pfx_smc_setsockopt+0x10/0x10 [ 732.023074][T18235] ? __pfx_smc_setsockopt+0x10/0x10 [ 732.028311][T18235] do_sock_setsockopt+0x222/0x480 [ 732.033372][T18235] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 732.038965][T18235] ? lock_acquire+0x2f/0xb0 [ 732.043497][T18235] __sys_setsockopt+0x1a0/0x230 [ 732.048387][T18235] __x64_sys_setsockopt+0xbd/0x160 [ 732.053535][T18235] ? do_syscall_64+0x91/0x250 [ 732.058247][T18235] ? lockdep_hardirqs_on+0x7c/0x110 [ 732.063488][T18235] do_syscall_64+0xcd/0x250 [ 732.068034][T18235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 732.073967][T18235] RIP: 0033:0x7fd23d785d19 [ 732.078421][T18235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 732.098064][T18235] RSP: 002b:00007fd23e5e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 732.106516][T18235] RAX: ffffffffffffffda RBX: 00007fd23d975fa0 RCX: 00007fd23d785d19 [ 732.114519][T18235] RDX: 000000000000001b RSI: 0000000000000029 RDI: 0000000000000003 [ 732.122514][T18235] RBP: 00007fd23d801a20 R08: 0000000000000201 R09: 0000000000000000 [ 732.130507][T18235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 732.138508][T18235] R13: 0000000000000000 R14: 00007fd23d975fa0 R15: 00007ffe7b960d28 [ 732.146517][T18235] [ 732.151869][T18250] FAULT_INJECTION: forcing a failure. [ 732.151869][T18250] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 732.167700][T18250] CPU: 1 UID: 0 PID: 18250 Comm: syz.7.3465 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 732.178506][T18250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 732.188580][T18250] Call Trace: [ 732.191883][T18250] [ 732.194832][T18250] dump_stack_lvl+0x16c/0x1f0 [ 732.199544][T18250] should_fail_ex+0x497/0x5b0 [ 732.204259][T18250] _copy_to_user+0x32/0xd0 [ 732.208712][T18250] simple_read_from_buffer+0xd0/0x160 [ 732.214117][T18250] proc_fail_nth_read+0x198/0x270 [ 732.219179][T18250] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 732.224759][T18250] ? bpf_lsm_file_permission+0x9/0x10 [ 732.230165][T18250] ? security_file_permission+0x71/0x210 [ 732.235827][T18250] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 732.241409][T18250] vfs_read+0x1df/0xbe0 [ 732.245595][T18250] ? __fget_files+0x1fc/0x3a0 [ 732.250317][T18250] ? __pfx___mutex_lock+0x10/0x10 [ 732.255379][T18250] ? __pfx_vfs_read+0x10/0x10 [ 732.260087][T18250] ? __fget_files+0x206/0x3a0 [ 732.264889][T18250] ksys_read+0x12b/0x250 [ 732.269164][T18250] ? __pfx_ksys_read+0x10/0x10 [ 732.273964][T18250] ? do_user_addr_fault+0x83d/0x13f0 [ 732.279263][T18250] ? rcu_is_watching+0x12/0xc0 [ 732.284035][T18250] do_syscall_64+0xcd/0x250 [ 732.288544][T18250] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 732.294443][T18250] RIP: 0033:0x7f8ba5b8472c [ 732.298857][T18250] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 732.318467][T18250] RSP: 002b:00007f8ba6a7f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 732.326880][T18250] RAX: ffffffffffffffda RBX: 00007f8ba5d75fa0 RCX: 00007f8ba5b8472c [ 732.334850][T18250] RDX: 000000000000000f RSI: 00007f8ba6a7f0a0 RDI: 0000000000000003 [ 732.342819][T18250] RBP: 00007f8ba6a7f090 R08: 0000000000000000 R09: 0000000000000000 [ 732.350786][T18250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 732.358752][T18250] R13: 0000000000000001 R14: 00007f8ba5d75fa0 R15: 00007ffdfb6d5698 [ 732.366727][T18250] [ 732.408644][T18235] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18235 comm: syz.1.3463) [ 732.423295][T18253] openvswitch: netlink: Key type 261 is out of range max 32 [ 732.668358][T18252] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 18252 comm: syz.5.3468)