last executing test programs: 5.715478832s ago: executing program 3 (id=3071): socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$auto_nbd(&(0x7f00000006c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NBD_CMD_CONNECT158(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)={0x4c, r0, 0x1, 0x70bd2a, 0x25dffbfb, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x100}, @NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x200000000020}, @NBD_ATTR_INDEX={0x8}, @NBD_ATTR_BACKEND_IDENTIFIER={0x8, 0xa, 'nbd\x00'}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000090}, 0x904) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0xe9, 0x1, 0x9) 5.60385094s ago: executing program 2 (id=3073): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL802154_CMD_TRIGGER_SCAN354(r0, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001580)={0x0, 0x14}, 0x1, 0x0, 0x300, 0x4800}, 0x800) r1 = syz_genetlink_get_family_id$auto_NLBL_CALIPSO(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000dc0), r2) sendmsg$auto_GTP_CMD_DELPDP68(r2, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={&(0x7f0000000e00)={0x2c, r3, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@GTPA_VERSION={0x8, 0x2, 0x800}, @GTPA_NET_NS_FD={0x8}, @GTPA_LINK={0x8, 0x1, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4) sendmsg$auto_GTP_CMD_NEWPDP71(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, r3, 0x20, 0x70bd29, 0x25dfdbfd, {}, [@GTPA_FAMILY={0x5, 0xd, 0x10}, @GTPA_LINK={0x8, 0x1, 0x2}, @GTPA_PEER_ADDRESS={0x8, 0x4, 0xe384}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x810) sendmsg$auto_NLBL_CALIPSO_C_REMOVE358(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='D\x00@\x00', @ANYRES16=r1, @ANYBLOB="080028bd7000fbdbdf25020000000800020012000000080002000700000008000100400000000800010006000000080001000f6700000800020005000000"], 0x44}, 0x1, 0x0, 0x0, 0x4000800}, 0x40000) mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000) mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000) iopl$auto(0x3) tee$auto(0x32c8, 0x7, 0x0, 0x5) mremap$auto(0x0, 0x2, 0x3fd6, 0x3, 0x7fffffffb000) 5.443063881s ago: executing program 0 (id=3074): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) io_uring_setup$auto(0x3ff, 0x3) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) mremap$auto(0x0, 0x7366, 0x3, 0x0, 0x26d) io_setup$auto(0x5, 0x9c25) (async) mbind$auto(0xf000, 0x5c69, 0x100000000, 0x0, 0x6, 0x3) (async) fanotify_init$auto(0xc9bc, 0x0) 5.015399362s ago: executing program 2 (id=3075): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001940), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, r1) sendmsg$auto_NL802154_CMD_GET_SEC_DEVKEY328(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000001980)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x400d1}, 0x4009000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001940), 0xffffffffffffffff) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$auto_ethtool(0x0, r1) (async) sendmsg$auto_NL802154_CMD_GET_SEC_DEVKEY328(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000001980)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x400d1}, 0x4009000) (async) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) (async) 4.425112644s ago: executing program 0 (id=3077): ioperm$auto(0x7, 0x6, 0x2) (async) wait4$auto(0x4, 0xef, 0xfffffffffffffffe, 0xfffffffffffffffb) (async) mprotect$auto(0x1ffff000, 0x2, 0x4) (async) mprotect$auto(0x40, 0x850, 0x3) 4.378653351s ago: executing program 3 (id=3078): open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x121342, 0x0) socket(0x2c, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_MEDIA_GET444(r0, 0x0, 0x4) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto(0x3, 0x5411, 0xfffffffffffff4e0) recvmmsg$auto(0x5, 0x12a, 0x80000000, 0x7ffc, 0x7) 4.17298844s ago: executing program 2 (id=3080): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async) fanotify_init$auto(0x5, 0x2000000000002) (async) socket(0x26, 0x80805, 0x0) (async) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/pid\x00') (async) open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) (async) open(&(0x7f0000000140)='./cgroup\x00', 0xc00, 0x0) (async) fanotify_mark$auto(0x0, 0x1, 0x4c403c47, 0x15b2, 0x800000000000000) (async) r2 = open(&(0x7f00000003c0)='./cgroup\x00', 0x8000, 0xb0) (async) sendmsg$auto_ETHTOOL_MSG_FEC_GET36(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="030712f947105826c14504"], 0x14}, 0x1, 0x0, 0x0, 0x4010}, 0x4000000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) (async) mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0x2, 0x7ffc) keyctl$auto(0x0, 0xffffffffffffffff, 0xd321, 0x4, 0x8) (async) bind$auto(0x6e, 0x8, 0xa) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) (async) execveat$auto(0x100000001, 0x8, 0x7, 0x8000000000000e3a, 0x1000) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_START_AP300(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010029bd7000fbdbdf250700000008000300", @ANYRES32=0x0, @ANYBLOB="0c0099"], 0x28}, 0x1, 0x0, 0x0, 0x4000041}, 0x40000) sendmsg$auto_NL80211_CMD_SET_INTERFACE278(r2, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f00000019c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYBLOB="1c711828ac046ace59598a59fe268a0780e3f2f2079a4e876736eb246b3015c24e5d92c3bca6ae48a18d8935d91ddd0e1812430d8b52a9d5137e801aba9316c44238ee7cff781343a2e380cb9d983c6a7c692d505eafe5866d8503505399ccb75a8166b532a2981dbfff0d3366dace4f12564532b3334287821c6a495787a214b5ff9f2f64b2d3dce933cb0cf73055f588747e33f382a0a08a9abfa6441d63e14269f7fe1518012009fa1f6c2c4a24088ac6acbf3e95899172577b62450e9264fc05926286", @ANYBLOB="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"], 0x114c}, 0x1, 0x0, 0x0, 0x4008}, 0x44045) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) pidfd_send_signal$auto(0x1, 0x6, 0x71, 0x9) socket(0xa, 0x5, 0x0) getsockopt$auto(0x6, 0x40000000080, 0x8000eef7, 0x9, 0x6) (async) getitimer$auto(0x0, 0x206a4ce7) 3.766838394s ago: executing program 0 (id=3081): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) setresgid$auto(0x0, 0x7fffffffffffffff, 0xe6) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) mremap$auto(0x0, 0x2, 0x3fd6, 0x3, 0x7fffffffb000) madvise$auto(0x0, 0x80000001, 0x8) 3.76530463s ago: executing program 3 (id=3082): r0 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x6, 0x40000000029, 0x3a, 0x9, 0x6) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r2 = syz_genetlink_get_family_id$auto_SMC_PNETID(&(0x7f0000000780), r0) sendmsg$auto_SMC_PNETID_FLUSH423(r0, &(0x7f0000000840)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x24, r2, 0x2, 0x70bd25, 0x25dfdbfb, {}, [@SMC_PNETID_IBNAME={0x6, 0x3, '!\x00'}, @SMC_PNETID_NAME={0x8, 0x1, '^\\/\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x80) sendmsg$auto_NL80211_CMD_GET_SCAN243(r0, &(0x7f00000006c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000680)={&(0x7f0000000080)={0x5c8, r1, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_AP_SETTINGS_FLAGS={0x8, 0x135, 0xf0}, @NL80211_ATTR_REG_RULES={0x74, 0x22, "07a8c4e2cc14793ea5d9a782370b379775371458ae9ac7d452c819051b7d3b6cc0b096bda4cada85cdb95fed3761a1e91c10dd436fc29bc360403efeb5fc5055178c7e2c40012abf996aa945131f3f935304fabd1e920ca69d1aad4df1b03c5416d56044c350d107486d71b3300d5bfc"}, @NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0xd0}, @NL80211_ATTR_BEACON_TAIL={0x4da, 0xf, "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"}, @NL80211_ATTR_SAE_PASSWORD={0x4d, 0x115, "1fe1e904b446407b289e87465d341882e2182489359f723bcb96fa951c37d762014f55cf757f1ca80ec2e2f2fe856a8b99bdba4f4a2f41565c1af92a8f3e21959456f37fb0bc051612"}, @NL80211_ATTR_RADAR_BACKGROUND={0x4}]}, 0x5c8}, 0x1, 0x0, 0x0, 0x8010}, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) syz_open_procfs$namespace(0x0, &(0x7f00000022c0)='ns/uts\x00') getsockopt$auto(0x9, 0x4, 0x8, 0x6, 0x4) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) ioperm$auto(0x7, 0x6, 0x2) syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY140(0xffffffffffffffff, 0x0, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_IOAM6(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE113(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x14, r4, 0x1, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4090}, 0x80) sendmsg$auto_IOAM6_CMD_DEL_SCHEMA114(r0, &(0x7f0000000940)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x1c, r4, 0x2, 0x70bd27, 0x25dfdbfe, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x800}]}, 0x1c}}, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000) io_uring_setup$auto(0x0, 0x74) syz_genetlink_get_family_id$auto_vdpa(&(0x7f0000000700), r0) semctl$auto(0x1ff, 0x2, 0x13, 0x4) lsm_list_modules$auto(0x1, 0x6, 0x0) move_pages$auto(0x0, 0x1, 0x0, 0x80, 0x5, 0x2) madvise$auto(0x0, 0xffffffffffff0001, 0x15) 3.446627512s ago: executing program 2 (id=3084): ioperm$auto(0x26, 0xf39d, 0xb) ioperm$auto(0x0, 0x7ff, 0x4) io_setup$auto(0x5, 0x1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) accept$auto(0x3, 0xa, 0x1680000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xfffffffffffffffd, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mlock2$auto(0x1, 0x8001, 0x0) 2.789581278s ago: executing program 1 (id=3086): mmap$auto(0x0, 0x4020209, 0xdf, 0x12, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) eventfd$auto(0x8c) ioperm$auto(0x20007, 0x6, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000580), r0) mmap$auto(0x610, 0x9, 0xffffffff, 0x27d7, 0x1, 0xfffffffffffffffd) sendmsg$auto_IPVS_CMD_NEW_DAEMON125(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x44044}, 0x4008884) sendmsg$auto_NL80211_CMD_ASSOCIATE208(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000}, 0xffffffffffffffc6, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) (async) sendmsg$auto_NL80211_CMD_ASSOCIATE208(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000}, 0xffffffffffffffc6, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) (async) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = socket(0xa, 0x2, 0x73) sendmsg$auto_NL80211_CMD_SET_WOWLAN299(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40008c0}, 0x4048814) (async) sendmsg$auto_NL80211_CMD_SET_WOWLAN299(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40008c0}, 0x4048814) sendmsg$auto_TIPC_NL_PEER_REMOVE453(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000005c0)={0x18, r1, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@TIPC_NLA_NET={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000040) (async) sendmsg$auto_TIPC_NL_PEER_REMOVE453(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000005c0)={0x18, r1, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@TIPC_NLA_NET={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000040) syz_genetlink_get_family_id$auto_ethtool(0x0, r0) readlink$auto(0x8000000, 0x2fc, 0x781b) sendmsg$auto_TIPC_NL_NET_GET450(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000980)={0x1328, r1, 0x800, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_MON={0x72, 0x9, "1449c27a34ad6064074c30b84c2ecefeb99c20e8f84e805bd122e1322fbd951c568de9173bb6951d25c82a767a73a063ac29515cb8cb947ac6440a41bfcf9f1962539246219fbe808003c33b43438ae6925f79fcef6c2f9ac8b65dd47cd79c9b71af8d355abbd0f786a869f82773"}, @TIPC_NLA_LINK={0x1004, 0x4, "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"}, @TIPC_NLA_MEDIA={0xe6, 0x5, "4f45d16593fd69602a1c2cbc39e3159fe378cb207941207ff83babcee2ada704261d4ee697423811cf67b5d4f17f3b16c5a55353aa160b2f2710e83e9e32f4a953ecc0ce0a8a2eee79ac8688916d3c5432dc686d37438886e79cd6f1531a16178cff14b8ba4b8b81b6e83d457cf2a355dc2e15e8ba0351aa0a38e69426ce77690e5282ea67a60143da7310eac42ff2f6ec47d6e9f632170d536842f7d093ab00f56c6852e928beba0a1544b15e8f80138c54702d724e86d8a3af54aec169721bb471d2b7a1a851849ec762a9ddd115df34de3fb7b49a3a15332f06a7ec83cecc1164"}, @TIPC_NLA_MON={0x25, 0x9, "ccde18c8cb8a221558924b5b07e70683dd3e98b0d622df51fc8a95ad4ac6852728"}, @TIPC_NLA_MEDIA={0x46, 0x5, "99fc2f0b850ebd0eb6c70427886bcb1540ca303c132cfc7eb250e52a74c458f489899ce34a61c0a4a95c7948cc70705d9df2d64b4fe52247d9a9ec0ad065e9e1d519"}, @TIPC_NLA_NODE={0x5a, 0x6, "a20bdf58c297b8511774884fbd977c62ecab1ea63b864c2945bc791303dad4deeb6835eb25c330758b5669c253b57fce6a1df1b2313f6edd09f18d80461566d16d281cda5a86fe8d6d3cd8c88d5b9da75c417f1b7df7"}, @TIPC_NLA_MON={0xe7, 0x9, "95fc20392f8c98cbd150114240fbe261d4e967620ce5eaf9fb51b53f5ecf35e3437e2e94ad9bcd74e93a1e2f3402c8ef61463797a5da5a4640445b9ffdc75569e3c7f97cf89704b053cb38d31ea968dbe97b1f9be2890c136d84f2e14b417702a1cd10a7ce68aaf4ec3cbc5da70e8d991a31184a61771a7d48e1bbef9a9d8e66697d3e0805ac96569a217d084cf5951032a68122644072a6705b8050363dd6db8de02a50c82bb8c0b50e9ccb311beac8c0b253c981be379c91a6ad58358f40a8c9ffb8fb5b2857ec89e92e5050620b5faa4513e5ad531d0adda5ff463a30aabc6c69c1"}]}, 0x1328}, 0x1, 0x0, 0x0, 0x800}, 0x4045090) 2.389163919s ago: executing program 3 (id=3087): syz_open_procfs$namespace(0x0, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) io_submit$auto(0x4, 0x9, 0x3) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000080), r0) sendmsg$auto_CTRL_CMD_GETFAMILY21(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, r1, 0x20, 0x70bd26, 0x25dfdbfe, {}, [@CTRL_ATTR_FAMILY_NAME={0xb, 0x2, 'ns/uts\x00'}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x6}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x1}, @CTRL_ATTR_FAMILY_NAME={0xe, 0x2, ']!%^\\*[S\\\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x40044}, 0x8000) open(&(0x7f0000004080)='./file0\x00', 0x40, 0x23) socket(0x5, 0x6, 0xfffffff9) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x10) io_uring_setup$auto(0x8001, 0x8) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) fstatfs$auto(0x3, 0x8) mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/uts\x00') ioctl$auto(0x1, 0x541b, 0x8) connect$auto(0x5, 0x11, 0x36) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x9) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket$nl_generic(0x10, 0x3, 0x10) socket(0x25, 0x1, 0x3) setsockopt$auto(0x4, 0x0, 0x80, 0x7, 0x1003f) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setfsgid$auto(0x0) 2.162609517s ago: executing program 1 (id=3088): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) semctl$auto(0x1ff, 0x2, 0x13, 0x4) mincore$auto(0x0, 0x8000000000005b, 0x2) eventfd2$auto(0x5, 0x6) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x1, 0x0) sendfile$auto(0x200, 0x0, 0x20000000, 0x5) mbind$auto(0x1000, 0x8, 0x1, 0x9, 0x9, 0x1) 1.803826576s ago: executing program 2 (id=3089): mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000) (async) fork$auto() (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) ioperm$auto(0xde, 0x9, 0x3) (async) mq_notify$auto(0x1, 0x5) (async) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) getcpu$auto(0x0, 0x0, 0x9) (async) fork$auto() (async) waitid$auto(0x0, 0x1005, 0x880f, 0x3, 0x5) 1.794834116s ago: executing program 0 (id=3090): open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x121342, 0x0) socket(0x2c, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_MEDIA_GET444(r0, 0x0, 0x4) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto(0x3, 0x5411, 0xfffffffffffff4e0) recvmmsg$auto(0x5, 0x12a, 0x80000000, 0x7ffc, 0x7) 1.689672942s ago: executing program 1 (id=3091): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) personality$auto(0xfffffffffffff801) mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) personality$auto(0x0) execveat$auto(0x0, 0x8, 0x7, 0xe3a, 0x1000) socket(0x1, 0x2, 0x0) socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) setsockopt$auto(0x4, 0x0, 0x12, 0x7, 0x70) pselect6$auto(0x6, 0x5, 0x3, 0x7, 0xba, 0x0) lsm_list_modules$auto(0x69, 0x8bfa, 0xc) 1.202939414s ago: executing program 0 (id=3092): syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x4, 0x6, 0x5, 0x8, 0x6) request_key$auto(0x9, 0x7, 0x5, 0x231b) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) settimeofday$auto(0x5ff7, 0x8000000000000000) 937.157859ms ago: executing program 2 (id=3093): unshare$auto(0x20000) mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) execveat$auto(0x0, 0x8, 0x7, 0xe3a, 0x1000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x0, 0x2, 0x8, 0x3, 0x7effffffb000) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) mremap$auto(0x0, 0x2, 0x8, 0x3, 0x7effffffb000) mmap$auto(0x8, 0x7, 0x8, 0x11, 0x9, 0x7ff) 931.002343ms ago: executing program 3 (id=3094): mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x8, 0x8000) fremovexattr$auto(0x0, 0x7fff) geteuid$auto() 866.619987ms ago: executing program 1 (id=3095): bpf$auto(0x8000000000000018, 0x9, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x1, 0x0) recvfrom$auto(0x0, 0x7, 0x33, 0x7fffffff, 0x0, 0x5) r0 = socket$nl_generic(0x10, 0x3, 0x10) membarrier$auto(0x4, 0x8000000000000000, 0x0) r1 = syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000000), r0) shutdown$auto(0x4, 0x8001) sendmsg$auto_HWSIM_CMD_NEW_RADIO79(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRESHEX=r0, @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x9014}, 0x8040) 423.475939ms ago: executing program 1 (id=3096): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) adjtimex$auto(0xc6) vmsplice$auto(0x1, 0x5, 0x32b, 0x2000000000000006) madvise$auto(0x7, 0x6, 0x8) (async) madvise$auto(0x7, 0x6, 0x8) timer_settime$auto(0x8, 0x5, 0x59f9, 0x7) 303.957677ms ago: executing program 0 (id=3097): nanosleep$auto(0x8, 0x80) symlink$auto(0xebc4, 0xc) nanosleep$auto(0x9, 0x5) nanosleep$auto(0x7, 0x2) nanosleep$auto(0x0, 0x0) nanosleep$auto(0x8, 0x8) nanosleep$auto(0x4, 0x9) clone$auto(0x100000001, 0x6, 0xe8, 0x3, 0x4) mmap$auto(0x2dc35f35, 0x5, 0x8, 0x16, 0x7, 0x0) nanosleep$auto(0x80, 0x401) nanosleep$auto(0x4, 0x49300) nanosleep$auto(0x800, 0x9) close_range$auto(0x0, 0xf1, 0x0) close_range$auto(0x100000000, 0xffffffffffffffff, 0x3) nanosleep$auto(0x8, 0x1) close_range$auto(0x5, 0xfbd0, 0xffffffffffffffff) close_range$auto(0xfffffffffffffff9, 0x1, 0x4) nanosleep$auto(0xfff, 0x7fffffffffffffff) r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) ioctl$NS_GET_PARENT(r0, 0xb702, 0x0) close_range$auto(0x1, 0x5363da50, 0x4) r1 = socket(0x21, 0x1, 0x3db) mincore$auto(0x8, 0x4, 0xffff) clone$auto(0x5e, 0x0, 0x10000, 0x1, 0x5) nanosleep$auto(0x5, 0x800) syz_genetlink_get_family_id$auto_SEG6(&(0x7f0000000000), r1) nanosleep$auto(0x4, 0x4) close_range$auto(0x7c, 0x0, 0x5) close_range$auto(0xe, 0x100000001, 0x8) clone$auto(0x72, 0xd071, 0x3e7e, 0xd, 0xff80000) 243.353964ms ago: executing program 3 (id=3098): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r2 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) socket(0x22, 0x2, 0x3) getsockname$auto(0x3, 0x6, 0xe) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0) sendmsg$auto_NL80211_CMD_NOTIFY_RADAR259(r0, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000040}, 0xc, &(0x7f0000000300)={&(0x7f0000000080)={0x248, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NL80211_ATTR_FILS_ERP_REALM={0xbd, 0xfa, "00c8eb6373a7ce4087e1e9109bbec0db183ac0aec2759d76131fbc0561c8a84538d4f0d5fb93bb5adffcdb055f245694593e40c7accdae992ca522983f01fe394ef040c19145e92c75a5059dd3047a8033009c6bf0b49ca83d52c1070161c0aae0e15120375757f9ff28a914f1c930f00dc7ca59c9264b727bf13a9d24e84d2b2d698ae1054df8d0c7e1f6424c339c923e5d8c8f8be5519ae5648c5bbc8784ed2e2e810709794f5c7f009c80cff995436f01bf68ab16e42992"}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x1000}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0xd}, @NL80211_ATTR_WOWLAN_TRIGGERS={0xcf, 0x75, "b1950b4e9630202f5a1c863af96a0a42deed9ddd68e4f8ce6796ebbe43df2756eb66056b2d4f0e4fc1c33daa6d436a0fc685c68a08afa4e13dc0021c65c9089910f88241c8828afecbb8e8129f2d66f875398eaf77c6d51c9b2184b5699b899b40f53045a31e0a8732912d329aa06b3a08e7ba4ae96ae2d69e3fc74fb6a9397826b4875af3099f5354cf8f13e1fdd5f11d6cf24e2294d9d2ddd7b9e698a667fe738414ec84402d65affbe7ea9df6e9525d5f968977774c288d6fe75ab6e93a6f2103e9fbed06ac179292b2"}, @NL80211_ATTR_CSA_IES={0x46, 0xb9, "a7152640181d7ffeba6de8c6ff6ab5dbd5b916da2a7af3bf637305c635f0548357db721c15e3cbef0b6b5796bfd6059068431ca1999d4f08f9d9389c8a77c941c689"}, @NL80211_ATTR_BSS_BASIC_RATES={0xa, 0x24, "9c26069c12e6"}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r2}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x80}, @NL80211_ATTR_COLOR_CHANGE_COLOR={0x5, 0x130, 0x5}, @NL80211_ATTR_SSID={0x22, 0x34, "f487f24be7bd4b371b73dcf22e7f0f316ad7604c5376eecaa33e64217047"}]}, 0x248}, 0x1, 0x0, 0x0, 0x40054}, 0x40080) 0s ago: executing program 1 (id=3099): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_IOAM6(0x0, 0xffffffffffffffff) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA115(r0, 0x0, 0x40000) ioperm$auto(0x7, 0x6, 0x4000000000002) mmap$auto(0x0, 0x8, 0x72, 0x8b72, 0x4, 0x8000) open(&(0x7f0000000000)='./file0\x00', 0x7ffd, 0x0) lstat$auto(0x20000000, 0x3) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HANDSHAKE_CMD_ACCEPT72(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r2, 0x1, 0x70bd2d, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20000004}, 0x40000d0) kernel console output (not intermixed with test programs): 49] hsr_slave_0: left promiscuous mode [ 835.928033][ T5449] hsr_slave_1: left promiscuous mode [ 836.158157][ T5449] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 836.165656][ T5449] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 836.257606][ T5449] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 836.274891][ T5449] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 836.627387][ T5449] veth1_macvtap: left promiscuous mode [ 836.638820][ T5449] veth0_macvtap: left promiscuous mode [ 836.667637][ T5449] veth1_vlan: left promiscuous mode [ 836.681203][ T5449] veth0_vlan: left promiscuous mode [ 836.932882][ T5244] Bluetooth: hci1: command tx timeout [ 841.193197][ T5449] team0 (unregistering): Port device team_slave_1 removed [ 841.637304][ T5449] team0 (unregistering): Port device team_slave_0 removed [ 844.790715][T14775] FAULT_INJECTION: forcing a failure. [ 844.790715][T14775] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 844.833837][T14775] CPU: 1 UID: 0 PID: 14775 Comm: syz.3.1975 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 844.844349][T14775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 844.854458][T14775] Call Trace: [ 844.857860][T14775] [ 844.860833][T14775] dump_stack_lvl+0x16c/0x1f0 [ 844.865585][T14775] should_fail_ex+0x497/0x5b0 [ 844.870429][T14775] _copy_from_user+0x30/0xf0 [ 844.875105][T14775] do_sock_getsockopt+0x319/0x870 [ 844.880201][T14775] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 844.885830][T14775] ? __fget_light+0x173/0x210 [ 844.890582][T14775] __sys_getsockopt+0x1a1/0x270 [ 844.895513][T14775] ? __pfx___sys_getsockopt+0x10/0x10 [ 844.900965][T14775] ? fput+0x30/0x390 [ 844.904932][T14775] ? ksys_write+0x1ab/0x260 [ 844.909602][T14775] ? __pfx_ksys_write+0x10/0x10 [ 844.914533][T14775] __x64_sys_getsockopt+0xbd/0x160 [ 844.919713][T14775] ? do_syscall_64+0x91/0x250 [ 844.924537][T14775] ? lockdep_hardirqs_on+0x7c/0x110 [ 844.929813][T14775] do_syscall_64+0xcd/0x250 [ 844.934379][T14775] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 844.940354][T14775] RIP: 0033:0x7f957437def9 [ 844.944908][T14775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 844.964586][T14775] RSP: 002b:00007f9575133038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 844.973064][T14775] RAX: ffffffffffffffda RBX: 00007f9574535f80 RCX: 00007f957437def9 [ 844.981095][T14775] RDX: 0000000000000014 RSI: 0000000000000084 RDI: 0000000000000003 [ 844.989124][T14775] RBP: 00007f9575133090 R08: 0000000000000003 R09: 0000000000000000 [ 844.997153][T14775] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 845.005183][T14775] R13: 0000000000000000 R14: 00007f9574535f80 R15: 00007ffe9d45fb98 [ 845.013233][T14775] [ 845.410774][T14564] bridge0: port 1(bridge_slave_0) entered blocking state [ 845.418184][T14564] bridge0: port 1(bridge_slave_0) entered disabled state [ 845.425550][T14564] bridge_slave_0: entered allmulticast mode [ 845.434287][T14564] bridge_slave_0: entered promiscuous mode [ 845.460378][T14564] bridge0: port 2(bridge_slave_1) entered blocking state [ 845.469976][T14564] bridge0: port 2(bridge_slave_1) entered disabled state [ 845.485066][T14564] bridge_slave_1: entered allmulticast mode [ 845.535468][T14564] bridge_slave_1: entered promiscuous mode [ 845.936220][T14564] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 846.026681][T14564] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 846.368794][T14564] team0: Port device team_slave_0 added [ 846.402821][T14564] team0: Port device team_slave_1 added [ 846.650050][T14564] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 846.657075][T14564] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 846.770726][T14564] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 846.871624][T14564] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 846.888160][T14564] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 846.929635][T14564] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 847.285775][T14564] hsr_slave_0: entered promiscuous mode [ 847.326265][T14564] hsr_slave_1: entered promiscuous mode [ 847.456737][T14823] FAULT_INJECTION: forcing a failure. [ 847.456737][T14823] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 847.497203][T14823] CPU: 1 UID: 0 PID: 14823 Comm: syz.2.1984 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 847.507716][T14823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 847.517838][T14823] Call Trace: [ 847.521158][T14823] [ 847.524126][T14823] dump_stack_lvl+0x16c/0x1f0 [ 847.528870][T14823] should_fail_ex+0x497/0x5b0 [ 847.533614][T14823] _copy_from_user+0x30/0xf0 [ 847.538275][T14823] sctp_getsockopt+0x20e7/0x7ae0 [ 847.543359][T14823] ? __pfx_mark_lock+0x10/0x10 [ 847.548192][T14823] ? aa_label_sk_perm+0x19d/0x5a0 [ 847.553296][T14823] ? __pfx_sctp_getsockopt+0x10/0x10 [ 847.558658][T14823] ? __pfx___lock_acquire+0x10/0x10 [ 847.563929][T14823] ? __lock_acquire+0xbdd/0x3cb0 [ 847.568951][T14823] ? find_held_lock+0x2d/0x110 [ 847.573778][T14823] ? __might_fault+0x13b/0x190 [ 847.578617][T14823] ? __pfx_lock_release+0x10/0x10 [ 847.583884][T14823] ? __pfx___might_resched+0x10/0x10 [ 847.589292][T14823] ? __pfx_aa_sk_perm+0x10/0x10 [ 847.594207][T14823] ? __might_fault+0xe3/0x190 [ 847.598964][T14823] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 847.604942][T14823] ? do_sock_getsockopt+0x3fe/0x870 [ 847.610200][T14823] do_sock_getsockopt+0x3fe/0x870 [ 847.615306][T14823] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 847.620940][T14823] ? __fget_light+0x173/0x210 [ 847.625688][T14823] __sys_getsockopt+0x1a1/0x270 [ 847.630618][T14823] ? __pfx___sys_getsockopt+0x10/0x10 [ 847.636063][T14823] ? fput+0x30/0x390 [ 847.640016][T14823] ? ksys_write+0x1ab/0x260 [ 847.644591][T14823] ? __pfx_ksys_write+0x10/0x10 [ 847.649613][T14823] __x64_sys_getsockopt+0xbd/0x160 [ 847.654902][T14823] ? do_syscall_64+0x91/0x250 [ 847.659663][T14823] ? lockdep_hardirqs_on+0x7c/0x110 [ 847.664943][T14823] do_syscall_64+0xcd/0x250 [ 847.669512][T14823] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 847.675481][T14823] RIP: 0033:0x7feb2e37def9 [ 847.679975][T14823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 847.699644][T14823] RSP: 002b:00007feb2f254038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 847.708123][T14823] RAX: ffffffffffffffda RBX: 00007feb2e535f80 RCX: 00007feb2e37def9 [ 847.716150][T14823] RDX: 0000000000000014 RSI: 0000000000000084 RDI: 0000000000000003 [ 847.724181][T14823] RBP: 00007feb2f254090 R08: 0000000000000003 R09: 0000000000000000 [ 847.732210][T14823] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 847.740234][T14823] R13: 0000000000000000 R14: 00007feb2e535f80 R15: 00007ffc1664f448 [ 847.748652][T14823] [ 851.054307][T14564] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 851.154770][T14564] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 851.214130][T14564] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 851.279852][T14564] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 851.833978][T14564] 8021q: adding VLAN 0 to HW filter on device bond0 [ 852.031508][T14564] 8021q: adding VLAN 0 to HW filter on device team0 [ 852.110981][ T5449] bridge0: port 1(bridge_slave_0) entered blocking state [ 852.118314][ T5449] bridge0: port 1(bridge_slave_0) entered forwarding state [ 852.144492][ T5449] bridge0: port 2(bridge_slave_1) entered blocking state [ 852.151929][ T5449] bridge0: port 2(bridge_slave_1) entered forwarding state [ 852.925950][T14564] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 853.148386][T14564] veth0_vlan: entered promiscuous mode [ 853.363692][T14564] veth1_vlan: entered promiscuous mode [ 854.000558][ T5539] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 854.101130][T14564] veth0_macvtap: entered promiscuous mode [ 854.144124][T14564] veth1_macvtap: entered promiscuous mode [ 854.350044][ T5539] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 854.861592][ T5539] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 854.978658][T14564] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 855.008103][T14564] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 855.038446][T14564] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 855.078814][T14564] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 855.118006][T14564] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 855.147952][T14564] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 855.180871][T14564] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 855.246411][ T5237] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 855.258334][ T5237] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 855.268218][ T5237] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 855.279451][ T5237] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 855.288669][ T5237] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 855.296327][ T5237] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 855.564730][ T5539] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 855.656913][T14564] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 855.688081][T14564] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 855.708646][T14564] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 855.738616][T14564] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 855.760580][T14564] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 855.791811][T14564] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 855.830570][T14564] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 855.873626][T14564] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 855.893113][T14564] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 855.922531][T14564] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 855.947179][T14564] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 856.432142][T10405] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 856.468665][T10405] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 856.662895][ T5539] bridge_slave_1: left allmulticast mode [ 856.681674][ T5539] bridge_slave_1: left promiscuous mode [ 856.687623][ T5539] bridge0: port 2(bridge_slave_1) entered disabled state [ 856.904675][ T5539] bridge_slave_0: left allmulticast mode [ 856.918858][ T5539] bridge_slave_0: left promiscuous mode [ 856.924854][ T5539] bridge0: port 1(bridge_slave_0) entered disabled state [ 857.399614][ T5244] Bluetooth: hci2: command tx timeout [ 859.041609][ T5539] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 859.073985][ T5539] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 859.106517][ T5539] bond0 (unregistering): Released all slaves [ 859.218982][ T5449] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 859.237581][ T5449] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 859.491914][ T5244] Bluetooth: hci2: command tx timeout [ 859.681180][T15053] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2021'. [ 860.233267][T14991] chnl_net:caif_netlink_parms(): no params data found [ 861.566501][ T5244] Bluetooth: hci2: command tx timeout [ 861.917936][ T5539] hsr_slave_0: left promiscuous mode [ 862.018367][ T5539] hsr_slave_1: left promiscuous mode [ 862.111679][ T5539] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 862.123214][ T5539] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 862.179231][ T5539] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 862.186733][ T5539] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 862.350742][ T5539] veth1_macvtap: left promiscuous mode [ 862.356464][ T5539] veth0_macvtap: left promiscuous mode [ 862.398297][ T5539] veth1_vlan: left promiscuous mode [ 862.403831][ T5539] veth0_vlan: left promiscuous mode [ 863.638528][ T5244] Bluetooth: hci2: command tx timeout [ 866.359222][ T5539] team0 (unregistering): Port device team_slave_1 removed [ 866.621281][ T5539] team0 (unregistering): Port device team_slave_0 removed [ 870.581513][T14991] bridge0: port 1(bridge_slave_0) entered blocking state [ 870.609425][T14991] bridge0: port 1(bridge_slave_0) entered disabled state [ 870.616776][T14991] bridge_slave_0: entered allmulticast mode [ 870.650401][T14991] bridge_slave_0: entered promiscuous mode [ 870.681315][T14991] bridge0: port 2(bridge_slave_1) entered blocking state [ 870.718224][T14991] bridge0: port 2(bridge_slave_1) entered disabled state [ 870.732553][T14991] bridge_slave_1: entered allmulticast mode [ 870.770992][T14991] bridge_slave_1: entered promiscuous mode [ 871.154523][T14991] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 871.225740][T14991] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 871.642754][T14991] team0: Port device team_slave_0 added [ 871.677097][T14991] team0: Port device team_slave_1 added [ 871.896703][T14991] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 871.915780][T14991] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 871.997982][T14991] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 872.022590][T14991] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 872.048051][T14991] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 872.119869][T14991] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 872.454842][T14991] hsr_slave_0: entered promiscuous mode [ 872.484651][T14991] hsr_slave_1: entered promiscuous mode [ 872.573629][T14991] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 872.596989][T14991] Cannot create hsr debugfs directory [ 874.639915][T14991] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 874.710823][T14991] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 874.817599][T14991] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 874.894888][T14991] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 875.387185][T14991] 8021q: adding VLAN 0 to HW filter on device bond0 [ 875.501061][T14991] 8021q: adding VLAN 0 to HW filter on device team0 [ 875.607327][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 875.614754][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 875.671903][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 875.679331][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 875.966477][ T1270] ieee802154 phy0 wpan0: encryption failed: -22 [ 875.973490][ T1270] ieee802154 phy1 wpan1: encryption failed: -22 [ 876.761415][T14991] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 877.039362][T14991] veth0_vlan: entered promiscuous mode [ 877.116487][T14991] veth1_vlan: entered promiscuous mode [ 877.290948][T14991] veth0_macvtap: entered promiscuous mode [ 877.333941][T14991] veth1_macvtap: entered promiscuous mode [ 877.422181][T14991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 877.457984][T14991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 877.479140][T14991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 877.507942][T14991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 877.528430][T14991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 877.558273][T14991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 877.591484][T14991] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 877.700419][T14991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 877.740116][T14991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 877.771060][T14991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 877.799102][T14991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 877.828210][T14991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 877.858064][T14991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 877.890555][T14991] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 877.926991][T14991] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 877.967947][T14991] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 877.976749][T14991] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 878.013225][T14991] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 878.520001][ T5539] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 878.560388][ T5539] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 878.678087][T10400] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 878.693080][T10400] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 880.708707][T15308] Invalid ELF header magic: != ELF [ 885.878330][T10405] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 886.182761][T10405] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 886.897914][ T5237] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 886.908969][ T5237] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 886.951054][ T5237] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 886.968492][ T5237] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 886.988851][ T5237] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 887.008453][ T5237] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 887.252084][T10405] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 887.270133][T15494] svc: failed to register nfsdv3 RPC service (errno 111). [ 887.284484][T15494] svc: failed to register nfsaclv3 RPC service (errno 111). [ 887.811769][T10405] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 888.715014][T15489] chnl_net:caif_netlink_parms(): no params data found [ 889.049729][ T5237] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 889.070657][ T5237] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 889.080508][ T5237] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 889.089810][ T5237] Bluetooth: hci0: command tx timeout [ 889.097669][ T5237] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 889.106256][ T5237] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 889.115151][ T5237] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 889.240342][T10405] bridge_slave_1: left allmulticast mode [ 889.246206][T10405] bridge_slave_1: left promiscuous mode [ 889.268242][T10405] bridge0: port 2(bridge_slave_1) entered disabled state [ 889.379859][T10405] bridge_slave_0: left allmulticast mode [ 889.385603][T10405] bridge_slave_0: left promiscuous mode [ 889.403489][T10405] bridge0: port 1(bridge_slave_0) entered disabled state [ 891.038609][T10405] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 891.053717][T10405] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 891.073448][T10405] bond0 (unregistering): Released all slaves [ 891.164780][ T5237] Bluetooth: hci0: command tx timeout [ 891.176037][ T5244] Bluetooth: hci2: command tx timeout [ 891.674171][T15489] bridge0: port 1(bridge_slave_0) entered blocking state [ 891.695809][T15489] bridge0: port 1(bridge_slave_0) entered disabled state [ 891.729311][T15489] bridge_slave_0: entered allmulticast mode [ 891.749852][T15489] bridge_slave_0: entered promiscuous mode [ 891.781894][T15489] bridge0: port 2(bridge_slave_1) entered blocking state [ 891.801908][T15489] bridge0: port 2(bridge_slave_1) entered disabled state [ 891.818448][T15489] bridge_slave_1: entered allmulticast mode [ 891.837140][T15489] bridge_slave_1: entered promiscuous mode [ 892.379729][T10405] hsr_slave_0: left promiscuous mode [ 892.429737][T10405] hsr_slave_1: left promiscuous mode [ 892.466367][T10405] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 892.497941][T10405] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 892.512833][T10405] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 892.548751][T10405] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 892.621877][T10405] veth1_macvtap: left promiscuous mode [ 892.627642][T10405] veth0_macvtap: left promiscuous mode [ 892.655019][T10405] veth1_vlan: left promiscuous mode [ 892.663048][T10405] veth0_vlan: left promiscuous mode [ 893.248910][ T5244] Bluetooth: hci2: command tx timeout [ 893.255023][ T5237] Bluetooth: hci0: command tx timeout [ 893.547906][T15575] Invalid ELF header magic: != ELF [ 893.844398][T10405] team0 (unregistering): Port device team_slave_1 removed [ 893.914386][T10405] team0 (unregistering): Port device team_slave_0 removed [ 894.507189][T15579] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2111'. [ 894.756567][T15489] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 894.783186][T15489] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 895.082391][T15489] team0: Port device team_slave_0 added [ 895.107995][T15489] team0: Port device team_slave_1 added [ 895.316889][T15489] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 895.325878][T15489] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 895.346836][ T5244] Bluetooth: hci2: command tx timeout [ 895.352944][T15489] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 895.365864][ T5237] Bluetooth: hci0: command tx timeout [ 895.391121][T15489] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 895.398637][T15489] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 895.429287][T15489] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 895.647612][T15489] hsr_slave_0: entered promiscuous mode [ 895.659024][T15489] hsr_slave_1: entered promiscuous mode [ 895.679447][T15489] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 895.702923][T15489] Cannot create hsr debugfs directory [ 896.294546][T15517] chnl_net:caif_netlink_parms(): no params data found [ 896.616478][ T5539] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 896.766891][T15634] netlink: zone id is out of range [ 896.772365][T15634] netlink: get zone limit has 4 unknown bytes [ 896.794604][ T5539] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 896.894283][T15635] delete_channel: no stack [ 897.030781][ T5539] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 897.305851][ T5539] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 897.323754][T15517] bridge0: port 1(bridge_slave_0) entered blocking state [ 897.339268][T15517] bridge0: port 1(bridge_slave_0) entered disabled state [ 897.346627][T15517] bridge_slave_0: entered allmulticast mode [ 897.369041][T15517] bridge_slave_0: entered promiscuous mode [ 897.382844][T15517] bridge0: port 2(bridge_slave_1) entered blocking state [ 897.395361][T15517] bridge0: port 2(bridge_slave_1) entered disabled state [ 897.403203][ T5237] Bluetooth: hci2: command tx timeout [ 897.411410][T15517] bridge_slave_1: entered allmulticast mode [ 897.428210][T15517] bridge_slave_1: entered promiscuous mode [ 897.744673][T15517] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 898.210194][T15517] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 898.734562][T15517] team0: Port device team_slave_0 added [ 898.783258][T15517] team0: Port device team_slave_1 added [ 899.187545][ T5539] bridge_slave_1: left allmulticast mode [ 899.198039][ T5539] bridge_slave_1: left promiscuous mode [ 899.203983][ T5539] bridge0: port 2(bridge_slave_1) entered disabled state [ 899.233953][ T5539] bridge_slave_0: left allmulticast mode [ 899.248053][ T5539] bridge_slave_0: left promiscuous mode [ 899.254000][ T5539] bridge0: port 1(bridge_slave_0) entered disabled state [ 900.838740][ T5539] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 900.928226][ T5539] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 900.951622][ T5539] bond0 (unregistering): Released all slaves [ 901.217121][T15517] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 901.224541][T15517] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 901.297694][T15517] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 901.486990][T15517] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 901.497919][T15517] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 901.538094][T15517] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 902.027786][T15517] hsr_slave_0: entered promiscuous mode [ 902.046074][T15517] hsr_slave_1: entered promiscuous mode [ 902.068704][T15517] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 902.098077][T15517] Cannot create hsr debugfs directory [ 902.396254][T15489] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 902.514232][T15489] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 902.690426][ T5539] hsr_slave_0: left promiscuous mode [ 902.717704][ T5539] hsr_slave_1: left promiscuous mode [ 902.768034][ T5539] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 902.775552][ T5539] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 902.830697][ T5539] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 902.861530][ T5539] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 902.973214][ T5539] veth1_macvtap: left promiscuous mode [ 902.987083][ T5539] veth0_macvtap: left promiscuous mode [ 903.005843][ T5539] veth1_vlan: left promiscuous mode [ 903.017101][ T5539] veth0_vlan: left promiscuous mode [ 905.104318][ T5539] team0 (unregistering): Port device team_slave_1 removed [ 905.414725][ T5539] team0 (unregistering): Port device team_slave_0 removed [ 906.868952][T15489] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 906.902929][T15713] tc_dump_action: action bad kind [ 907.036775][T15489] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 908.697494][T15489] 8021q: adding VLAN 0 to HW filter on device bond0 [ 908.758122][ T5244] Bluetooth: hci4: command 0x0406 tx timeout [ 908.823362][T15489] 8021q: adding VLAN 0 to HW filter on device team0 [ 908.853073][ T5449] bridge0: port 1(bridge_slave_0) entered blocking state [ 908.860376][ T5449] bridge0: port 1(bridge_slave_0) entered forwarding state [ 908.905168][ T5449] bridge0: port 2(bridge_slave_1) entered blocking state [ 908.912517][ T5449] bridge0: port 2(bridge_slave_1) entered forwarding state [ 909.584072][T15489] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 909.782938][T15489] veth0_vlan: entered promiscuous mode [ 909.873459][T15489] veth1_vlan: entered promiscuous mode [ 910.185836][T15517] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 910.364092][T15517] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 910.669012][T15517] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 910.692714][T15787] cgroup: fork rejected by pids controller in /syz1 [ 911.053409][T15489] veth0_macvtap: entered promiscuous mode [ 911.082005][T15517] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 911.394119][T15489] veth1_macvtap: entered promiscuous mode [ 911.525761][T15489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 911.574910][T15489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 911.612036][T15489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 911.625855][T15489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 911.650676][T15489] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 911.686649][T15489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 911.720107][T15489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 911.741913][T15489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 911.767972][T15489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 911.790427][T15489] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 911.891422][T15489] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 911.914921][T15489] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 911.932745][T15489] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 911.954174][T15489] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 912.954731][T15517] 8021q: adding VLAN 0 to HW filter on device bond0 [ 913.091462][ T5540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 913.121477][ T5540] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 913.185148][T15517] 8021q: adding VLAN 0 to HW filter on device team0 [ 913.271302][ T5449] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 913.294523][ T5449] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 913.457323][ T5540] bridge0: port 1(bridge_slave_0) entered blocking state [ 913.464689][ T5540] bridge0: port 1(bridge_slave_0) entered forwarding state [ 913.523324][ T5540] bridge0: port 2(bridge_slave_1) entered blocking state [ 913.530664][ T5540] bridge0: port 2(bridge_slave_1) entered forwarding state [ 914.436893][T15517] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 914.698331][T15517] veth0_vlan: entered promiscuous mode [ 914.764265][T15517] veth1_vlan: entered promiscuous mode [ 914.771737][T15881] Invalid ELF header magic: != ELF [ 914.963466][T15517] veth0_macvtap: entered promiscuous mode [ 915.044736][T15517] veth1_macvtap: entered promiscuous mode [ 915.182157][T15517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 915.213269][T15517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 915.263339][T15517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 915.298104][T15517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 915.328127][T15517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 915.368050][T15517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 915.401884][T15517] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 915.444515][T15517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 915.478617][T15517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 915.520848][T15517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 915.556333][T15517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 915.587981][T15517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 915.608631][T15517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 915.632486][T15517] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 915.726125][T15517] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 915.768736][T15517] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 915.789917][T15517] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 915.826822][T15517] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 916.316284][ T5540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 916.341793][ T5540] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 916.481985][ T5540] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 916.516772][ T5540] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 920.329121][T15995] Invalid ELF header magic: != ELF [ 921.394980][T16015] sysfs: cannot create duplicate filename '/class/ieee80211/ns!pid_for_children' [ 921.463178][T16015] CPU: 0 UID: 0 PID: 16015 Comm: syz.0.2175 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 921.473695][T16015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 921.483803][T16015] Call Trace: [ 921.487144][T16015] [ 921.490120][T16015] dump_stack_lvl+0x16c/0x1f0 [ 921.494867][T16015] sysfs_warn_dup+0x7f/0xa0 [ 921.499450][T16015] sysfs_do_create_link_sd+0x124/0x140 [ 921.504992][T16015] sysfs_create_link+0x61/0xc0 [ 921.509854][T16015] device_add+0x62e/0x1a70 [ 921.514343][T16015] ? __pfx_device_add+0x10/0x10 [ 921.519274][T16015] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 921.525258][T16015] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 921.531324][T16015] wiphy_register+0x20d7/0x2d30 [ 921.536284][T16015] ? __pfx_wiphy_register+0x10/0x10 [ 921.541679][T16015] ieee80211_register_hw+0x2959/0x3fb0 [ 921.547422][T16015] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 921.553414][T16015] ? lockdep_init_map_type+0x16d/0x7d0 [ 921.558955][T16015] ? rcu_is_watching+0x12/0xc0 [ 921.563854][T16015] ? __hrtimer_init+0x106/0x2c0 [ 921.568757][T16015] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 921.574634][T16015] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 921.580743][T16015] ? __kmalloc_node_track_caller_noprof+0x22d/0x440 [ 921.587395][T16015] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 921.592730][T16015] hwsim_new_radio_nl+0xb42/0x12b0 [ 921.597891][T16015] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 921.603507][T16015] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 921.610917][T16015] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 921.618328][T16015] genl_family_rcv_msg_doit+0x202/0x2f0 [ 921.623917][T16015] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 921.630026][T16015] ? bpf_lsm_capable+0x9/0x10 [ 921.634740][T16015] ? security_capable+0x7e/0x260 [ 921.639719][T16015] ? ns_capable+0xd7/0x110 [ 921.644166][T16015] genl_rcv_msg+0x565/0x800 [ 921.648709][T16015] ? __pfx_genl_rcv_msg+0x10/0x10 [ 921.653768][T16015] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 921.659421][T16015] netlink_rcv_skb+0x165/0x410 [ 921.664231][T16015] ? __pfx_genl_rcv_msg+0x10/0x10 [ 921.669298][T16015] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 921.674633][T16015] ? down_read+0xc9/0x330 [ 921.678999][T16015] ? __pfx_down_read+0x10/0x10 [ 921.683816][T16015] ? netlink_deliver_tap+0x1ae/0xcf0 [ 921.689422][T16015] genl_rcv+0x28/0x40 [ 921.693520][T16015] netlink_unicast+0x53c/0x7f0 [ 921.698325][T16015] ? __pfx_netlink_unicast+0x10/0x10 [ 921.703702][T16015] ? __phys_addr_symbol+0x30/0x80 [ 921.708815][T16015] ? __check_object_size+0x497/0x720 [ 921.714236][T16015] netlink_sendmsg+0x8b8/0xd70 [ 921.719044][T16015] ? __pfx_netlink_sendmsg+0x10/0x10 [ 921.724425][T16015] ____sys_sendmsg+0x9ae/0xb40 [ 921.729228][T16015] ? copy_msghdr_from_user+0x10b/0x160 [ 921.734726][T16015] ? __pfx_____sys_sendmsg+0x10/0x10 [ 921.740051][T16015] ? __pfx_key_default_cmp+0x10/0x10 [ 921.745379][T16015] ? __pfx___lock_acquire+0x10/0x10 [ 921.750631][T16015] ___sys_sendmsg+0x135/0x1e0 [ 921.755398][T16015] ? __pfx____sys_sendmsg+0x10/0x10 [ 921.760721][T16015] ? find_held_lock+0x2d/0x110 [ 921.765549][T16015] ? __fget_light+0x173/0x210 [ 921.770360][T16015] __sys_sendmsg+0x117/0x1f0 [ 921.774988][T16015] ? __pfx___sys_sendmsg+0x10/0x10 [ 921.780232][T16015] ? __x64_sys_futex+0x1e1/0x4c0 [ 921.785312][T16015] do_syscall_64+0xcd/0x250 [ 921.789853][T16015] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 921.795788][T16015] RIP: 0033:0x7f70f557def9 [ 921.800225][T16015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 921.819869][T16015] RSP: 002b:00007f70f62ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 921.828309][T16015] RAX: ffffffffffffffda RBX: 00007f70f5736130 RCX: 00007f70f557def9 [ 921.836318][T16015] RDX: 0000000000000014 RSI: 0000000020000100 RDI: 0000000000000003 [ 921.844340][T16015] RBP: 00007f70f55f0b76 R08: 0000000000000000 R09: 0000000000000000 [ 921.852341][T16015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 921.860422][T16015] R13: 0000000000000000 R14: 00007f70f5736130 R15: 00007ffef9571328 [ 921.868435][T16015] [ 926.644374][T16083] tc_dump_action: action bad kind [ 931.902119][T16176] unsupported nlmsg_type 40 [ 935.603382][T16233] GUP no longer grows the stack in syz.2.2231 (16233): 4000-10000 (0) [ 935.653216][T16233] CPU: 0 UID: 0 PID: 16233 Comm: syz.2.2231 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 935.663746][T16233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 935.673859][T16233] Call Trace: [ 935.677194][T16233] [ 935.680169][T16233] dump_stack_lvl+0x16c/0x1f0 [ 935.684928][T16233] gup_vma_lookup+0x1d2/0x220 [ 935.689682][T16233] __get_user_pages+0x261/0x15c0 [ 935.694704][T16233] ? __pfx___get_user_pages+0x10/0x10 [ 935.700317][T16233] ? down_read_killable+0xcc/0x380 [ 935.705856][T16233] ? __pfx_down_read_killable+0x10/0x10 [ 935.711510][T16233] __gup_longterm_locked+0x22e/0x1b30 [ 935.716983][T16233] ? __pfx_lock_release+0x10/0x10 [ 935.722088][T16233] ? __pfx___lock_acquire+0x10/0x10 [ 935.727379][T16233] ? __pfx___gup_longterm_locked+0x10/0x10 [ 935.733287][T16233] gup_fast_fallback+0x153d/0x24e0 [ 935.738517][T16233] ? __pfx_gup_fast_fallback+0x10/0x10 [ 935.744191][T16233] ? hlock_class+0x4e/0x130 [ 935.748774][T16233] ? __lock_acquire+0x1620/0x3cb0 [ 935.753887][T16233] get_user_pages_fast+0xa8/0x100 [ 935.759101][T16233] ? __pfx_get_user_pages_fast+0x10/0x10 [ 935.764846][T16233] get_futex_key+0x1e3/0x1090 [ 935.769620][T16233] ? __pfx_get_futex_key+0x10/0x10 [ 935.774812][T16233] ? find_held_lock+0x2d/0x110 [ 935.779654][T16233] futex_wait_setup+0xb8/0x250 [ 935.784491][T16233] ? __pfx_lock_release+0x10/0x10 [ 935.789687][T16233] ? __pfx_futex_wait_setup+0x10/0x10 [ 935.795149][T16233] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 935.801073][T16233] __futex_wait+0x267/0x3c0 [ 935.805665][T16233] ? __pfx___futex_wait+0x10/0x10 [ 935.810809][T16233] ? __pfx_futex_wake_mark+0x10/0x10 [ 935.816187][T16233] ? ktime_add_safe+0x60/0x70 [ 935.820955][T16233] futex_wait+0xe9/0x380 [ 935.825279][T16233] ? __pfx_futex_wait+0x10/0x10 [ 935.830226][T16233] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 935.835538][T16233] do_futex+0x22b/0x350 [ 935.839787][T16233] ? __pfx_do_futex+0x10/0x10 [ 935.844648][T16233] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 935.849845][T16233] __x64_sys_futex+0x1e1/0x4c0 [ 935.854714][T16233] ? __pfx___x64_sys_futex+0x10/0x10 [ 935.860167][T16233] do_syscall_64+0xcd/0x250 [ 935.864731][T16233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 935.870699][T16233] RIP: 0033:0x7fb48d97def9 [ 935.875172][T16233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 935.894892][T16233] RSP: 002b:00007fb48e85c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 935.903418][T16233] RAX: ffffffffffffffda RBX: 00007fb48db35f80 RCX: 00007fb48d97def9 [ 935.911456][T16233] RDX: 0000000000000007 RSI: 0000000000000109 RDI: 0000000000000200 [ 935.919491][T16233] RBP: 00007fb48d9f0b76 R08: 000000080000006d R09: 0000000000000008 [ 935.927520][T16233] R10: 0000000000004d7b R11: 0000000000000246 R12: 0000000000000000 [ 935.935584][T16233] R13: 0000000000000000 R14: 00007fb48db35f80 R15: 00007ffe4e855da8 [ 935.943731][T16233] [ 936.322252][T16236] mmap: syz.0.2233 (16236): VmData 37728256 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 937.418880][ T1270] ieee802154 phy0 wpan0: encryption failed: -22 [ 937.425572][ T1270] ieee802154 phy1 wpan1: encryption failed: -22 [ 940.892021][T16294] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2251'. [ 944.752955][T16340] netlink: zone id is out of range [ 944.792785][T16340] netlink: zone id is out of range [ 944.834438][T16340] netlink: zone id is out of range [ 944.884918][T16340] netlink: zone id is out of range [ 944.910976][T16340] netlink: zone id is out of range [ 944.950413][T16340] netlink: zone id is out of range [ 944.988623][T16340] netlink: zone id is out of range [ 945.048005][T16340] netlink: zone id is out of range [ 945.063883][T16340] netlink: zone id is out of range [ 945.096328][T16340] netlink: get zone limit has 4 unknown bytes [ 946.010057][T16367] tc_dump_action: action bad kind [ 952.168806][T16317] delete_channel: no stack [ 954.841398][ T5237] Bluetooth: hci1: command 0x0406 tx timeout [ 960.368188][T16584] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2329'. [ 960.780170][T10398] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 961.237757][T10398] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 961.837720][T10398] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 961.943215][ T5237] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 961.959247][ T5237] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 961.975251][ T5237] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 961.986949][ T5237] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 962.000594][ T5237] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 962.010964][ T5237] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 962.471686][T10398] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 964.121206][ T5244] Bluetooth: hci0: command tx timeout [ 964.395975][T16605] chnl_net:caif_netlink_parms(): no params data found [ 964.445612][T10398] bridge_slave_1: left allmulticast mode [ 964.452064][T10398] bridge_slave_1: left promiscuous mode [ 964.485106][T10398] bridge0: port 2(bridge_slave_1) entered disabled state [ 964.661341][T10398] bridge_slave_0: left allmulticast mode [ 964.667323][T10398] bridge_slave_0: left promiscuous mode [ 964.682137][T10398] bridge0: port 1(bridge_slave_0) entered disabled state [ 964.894351][T16645] svc: failed to register nfsdv3 RPC service (errno 111). [ 964.959546][T16645] svc: failed to register nfsaclv3 RPC service (errno 111). [ 966.198061][ T5244] Bluetooth: hci0: command tx timeout [ 966.871001][T10398] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 966.923783][T10398] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 966.999449][T10398] bond0 (unregistering): Released all slaves [ 968.277975][ T5244] Bluetooth: hci0: command tx timeout [ 968.848185][T16605] bridge0: port 1(bridge_slave_0) entered blocking state [ 968.878275][T16605] bridge0: port 1(bridge_slave_0) entered disabled state [ 968.885633][T16605] bridge_slave_0: entered allmulticast mode [ 968.948503][T16605] bridge_slave_0: entered promiscuous mode [ 968.971898][T16605] bridge0: port 2(bridge_slave_1) entered blocking state [ 968.988152][T16605] bridge0: port 2(bridge_slave_1) entered disabled state [ 968.995509][T16605] bridge_slave_1: entered allmulticast mode [ 969.004996][T16605] bridge_slave_1: entered promiscuous mode [ 969.722649][T16605] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 969.794766][T10398] hsr_slave_0: left promiscuous mode [ 969.846302][T10398] hsr_slave_1: left promiscuous mode [ 969.894465][T10398] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 969.924293][T10398] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 969.952726][T10398] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 969.975597][T10398] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 970.055642][T10398] veth1_macvtap: left promiscuous mode [ 970.061437][T10398] veth0_macvtap: left promiscuous mode [ 970.081069][T10398] veth1_vlan: left promiscuous mode [ 970.086585][T10398] veth0_vlan: left promiscuous mode [ 970.358266][ T5244] Bluetooth: hci0: command tx timeout [ 972.580130][T10398] team0 (unregistering): Port device team_slave_1 removed [ 972.809100][T10398] team0 (unregistering): Port device team_slave_0 removed [ 974.876924][T16605] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 975.419403][T16605] team0: Port device team_slave_0 added [ 975.456010][T16605] team0: Port device team_slave_1 added [ 975.907242][T16605] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 975.954542][T16605] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 976.028263][T16605] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 976.071344][T16605] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 976.087875][T16605] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 976.188033][T16605] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 976.777362][T16605] hsr_slave_0: entered promiscuous mode [ 976.938780][T16605] hsr_slave_1: entered promiscuous mode [ 977.048535][T16605] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 977.078088][T16605] Cannot create hsr debugfs directory [ 978.259673][T16785] ptrace attach of ""[14564] was attempted by "./syz-executor exec"[16785] [ 979.588997][T16796] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 979.807073][T16796] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 980.498442][ T5237] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 980.517768][ T5237] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 980.527517][ T5237] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 980.541743][ T5237] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 980.561394][ T5237] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 980.570201][ T5237] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 981.154658][T10398] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 981.378098][T10398] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 981.469148][T16834] FAULT_INJECTION: forcing a failure. [ 981.469148][T16834] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 981.577076][T10398] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 981.697962][T16834] CPU: 1 UID: 0 PID: 16834 Comm: syz.2.2377 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 981.708562][T16834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 981.718765][T16834] Call Trace: [ 981.722087][T16834] [ 981.725067][T16834] dump_stack_lvl+0x16c/0x1f0 [ 981.729818][T16834] should_fail_ex+0x497/0x5b0 [ 981.734567][T16834] _copy_from_user+0x30/0xf0 [ 981.739233][T16834] move_addr_to_kernel+0x68/0x160 [ 981.744322][T16834] __sys_bind+0xc4/0x220 [ 981.748628][T16834] ? __pfx___sys_bind+0x10/0x10 [ 981.753559][T16834] ? __pfx_ksys_write+0x10/0x10 [ 981.758503][T16834] __x64_sys_bind+0x72/0xb0 [ 981.763065][T16834] ? lockdep_hardirqs_on+0x7c/0x110 [ 981.768344][T16834] do_syscall_64+0xcd/0x250 [ 981.772916][T16834] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 981.778890][T16834] RIP: 0033:0x7fb48d97def9 [ 981.783355][T16834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 981.803025][T16834] RSP: 002b:00007fb48e85c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 981.811505][T16834] RAX: ffffffffffffffda RBX: 00007fb48db35f80 RCX: 00007fb48d97def9 [ 981.819530][T16834] RDX: 000000000000007f RSI: 000000000000000a RDI: 0000000000000003 [ 981.827566][T16834] RBP: 00007fb48e85c090 R08: 0000000000000000 R09: 0000000000000000 [ 981.835608][T16834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 981.843638][T16834] R13: 0000000000000000 R14: 00007fb48db35f80 R15: 00007ffe4e855da8 [ 981.851719][T16834] [ 982.176283][T10398] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 982.208626][T16605] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 982.309094][T16605] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 982.377591][T16605] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 982.557318][T16605] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 982.678714][ T5244] Bluetooth: hci1: command tx timeout [ 983.285293][T16822] chnl_net:caif_netlink_parms(): no params data found [ 983.435465][T10398] bridge_slave_1: left allmulticast mode [ 983.459515][T10398] bridge_slave_1: left promiscuous mode [ 983.465489][T10398] bridge0: port 2(bridge_slave_1) entered disabled state [ 983.766543][T10398] bridge_slave_0: left allmulticast mode [ 983.776293][T10398] bridge_slave_0: left promiscuous mode [ 983.808530][T10398] bridge0: port 1(bridge_slave_0) entered disabled state [ 984.758120][ T5244] Bluetooth: hci1: command tx timeout [ 986.029046][T16885] FAULT_INJECTION: forcing a failure. [ 986.029046][T16885] name failslab, interval 1, probability 0, space 0, times 0 [ 986.042481][T16885] CPU: 0 UID: 0 PID: 16885 Comm: syz.0.2388 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 986.052937][T16885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 986.063018][T16885] Call Trace: [ 986.066469][T16885] [ 986.069433][T16885] dump_stack_lvl+0x116/0x1f0 [ 986.074246][T16885] should_fail_ex+0x497/0x5b0 [ 986.078972][T16885] should_failslab+0xc2/0x120 [ 986.083687][T16885] __kmalloc_node_track_caller_noprof+0xcf/0x440 [ 986.090053][T16885] ? netlink_realloc_groups+0x1a8/0x2a0 [ 986.095655][T16885] krealloc_noprof+0x5d/0x100 [ 986.100377][T16885] netlink_realloc_groups+0x1a8/0x2a0 [ 986.105800][T16885] netlink_bind+0x7aa/0x9e0 [ 986.110355][T16885] ? __pfx_netlink_bind+0x10/0x10 [ 986.115435][T16885] __sys_bind+0x1eb/0x220 [ 986.119799][T16885] ? __pfx___sys_bind+0x10/0x10 [ 986.124698][T16885] ? __pfx_ksys_write+0x10/0x10 [ 986.131419][T16885] __x64_sys_bind+0x72/0xb0 [ 986.135956][T16885] ? lockdep_hardirqs_on+0x7c/0x110 [ 986.141202][T16885] do_syscall_64+0xcd/0x250 [ 986.145739][T16885] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 986.151766][T16885] RIP: 0033:0x7f70f557def9 [ 986.156204][T16885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 986.175863][T16885] RSP: 002b:00007f70f62f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 986.184315][T16885] RAX: ffffffffffffffda RBX: 00007f70f5735f80 RCX: 00007f70f557def9 [ 986.192454][T16885] RDX: 000000000000007f RSI: 000000000000000a RDI: 0000000000000003 [ 986.200455][T16885] RBP: 00007f70f62f0090 R08: 0000000000000000 R09: 0000000000000000 [ 986.208498][T16885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 986.216494][T16885] R13: 0000000000000000 R14: 00007f70f5735f80 R15: 00007ffef9571328 [ 986.224513][T16885] [ 986.805976][T16889] netlink: 217 bytes leftover after parsing attributes in process `syz.0.2389'. [ 986.838819][ T5244] Bluetooth: hci1: command tx timeout [ 987.272581][T10398] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 987.579728][T10398] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 987.850828][T10398] bond0 (unregistering): Released all slaves [ 988.917993][ T5244] Bluetooth: hci1: command tx timeout [ 991.023369][ T5237] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 991.034464][ T5237] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 991.044209][ T5237] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 991.061516][ T5237] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 991.069983][ T5237] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 991.077662][ T5237] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 991.346572][T16822] bridge0: port 1(bridge_slave_0) entered blocking state [ 991.367504][T16822] bridge0: port 1(bridge_slave_0) entered disabled state [ 991.380008][T16822] bridge_slave_0: entered allmulticast mode [ 991.410267][T16822] bridge_slave_0: entered promiscuous mode [ 991.440645][T16822] bridge0: port 2(bridge_slave_1) entered blocking state [ 991.457092][T16822] bridge0: port 2(bridge_slave_1) entered disabled state [ 991.478193][T16822] bridge_slave_1: entered allmulticast mode [ 991.486678][T16822] bridge_slave_1: entered promiscuous mode [ 992.083783][T16605] 8021q: adding VLAN 0 to HW filter on device bond0 [ 992.121474][T16822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 992.172190][T16822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 992.220421][T10398] hsr_slave_0: left promiscuous mode [ 992.445096][T10398] hsr_slave_1: left promiscuous mode [ 992.588556][T10398] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 992.596649][T10398] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 992.650205][T10398] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 992.657705][T10398] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 992.721142][T10398] veth1_macvtap: left promiscuous mode [ 992.726885][T10398] veth0_macvtap: left promiscuous mode [ 992.744179][T10398] veth1_vlan: left promiscuous mode [ 992.757590][T10398] veth0_vlan: left promiscuous mode [ 993.158167][ T5244] Bluetooth: hci3: command tx timeout [ 994.916412][T16980] FAULT_INJECTION: forcing a failure. [ 994.916412][T16980] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 995.052977][T16980] CPU: 1 UID: 0 PID: 16980 Comm: syz.2.2395 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 995.063589][T16980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 995.073702][T16980] Call Trace: [ 995.077029][T16980] [ 995.080000][T16980] dump_stack_lvl+0x16c/0x1f0 [ 995.084747][T16980] should_fail_ex+0x497/0x5b0 [ 995.089574][T16980] _copy_to_user+0x30/0xc0 [ 995.094103][T16980] simple_read_from_buffer+0xd0/0x160 [ 995.099545][T16980] proc_fail_nth_read+0x198/0x270 [ 995.104651][T16980] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 995.110282][T16980] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 995.115934][T16980] vfs_read+0x1ce/0xbd0 [ 995.120154][T16980] ? __fdget_pos+0xe8/0x170 [ 995.124723][T16980] ? __pfx_vfs_read+0x10/0x10 [ 995.129557][T16980] ? __pfx___mutex_lock+0x10/0x10 [ 995.134644][T16980] ? __fget_files+0x244/0x3f0 [ 995.139402][T16980] ksys_read+0x12f/0x260 [ 995.143708][T16980] ? __pfx_ksys_read+0x10/0x10 [ 995.148547][T16980] do_syscall_64+0xcd/0x250 [ 995.153116][T16980] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 995.159095][T16980] RIP: 0033:0x7fb48d97c93c [ 995.163560][T16980] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 995.183324][T16980] RSP: 002b:00007fb48e85c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 995.191797][T16980] RAX: ffffffffffffffda RBX: 00007fb48db35f80 RCX: 00007fb48d97c93c [ 995.199915][T16980] RDX: 000000000000000f RSI: 00007fb48e85c0a0 RDI: 0000000000000004 [ 995.207941][T16980] RBP: 00007fb48e85c090 R08: 0000000000000000 R09: 0000000000000000 [ 995.215989][T16980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 995.224022][T16980] R13: 0000000000000000 R14: 00007fb48db35f80 R15: 00007ffe4e855da8 [ 995.232071][T16980] [ 995.244200][ T5244] Bluetooth: hci3: command tx timeout [ 995.685227][T10398] team0 (unregistering): Port device team_slave_1 removed [ 995.838622][T10398] team0 (unregistering): Port device team_slave_0 removed [ 997.318997][ T5244] Bluetooth: hci3: command tx timeout [ 997.975122][T16822] team0: Port device team_slave_0 added [ 998.000831][T16822] team0: Port device team_slave_1 added [ 998.255926][T16822] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 998.268313][T16822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 998.308670][T16822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 998.375964][T16822] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 998.395145][T16822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 998.451737][T16822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 998.501586][T16605] 8021q: adding VLAN 0 to HW filter on device team0 [ 998.669097][ T5539] bridge0: port 1(bridge_slave_0) entered blocking state [ 998.676410][ T5539] bridge0: port 1(bridge_slave_0) entered forwarding state [ 998.847568][ T1270] ieee802154 phy0 wpan0: encryption failed: -22 [ 998.854559][ T1270] ieee802154 phy1 wpan1: encryption failed: -22 [ 999.036400][T16822] hsr_slave_0: entered promiscuous mode [ 999.051653][T16822] hsr_slave_1: entered promiscuous mode [ 999.069320][ T5539] bridge0: port 2(bridge_slave_1) entered blocking state [ 999.076781][ T5539] bridge0: port 2(bridge_slave_1) entered forwarding state [ 999.353309][T16927] chnl_net:caif_netlink_parms(): no params data found [ 999.399248][ T5244] Bluetooth: hci3: command tx timeout [ 1000.083050][T10398] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1000.663741][T10398] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1001.151877][T10398] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1001.183948][T16927] bridge0: port 1(bridge_slave_0) entered blocking state [ 1001.198152][T16927] bridge0: port 1(bridge_slave_0) entered disabled state [ 1001.205489][T16927] bridge_slave_0: entered allmulticast mode [ 1001.214733][T16927] bridge_slave_0: entered promiscuous mode [ 1001.232498][T16927] bridge0: port 2(bridge_slave_1) entered blocking state [ 1001.243846][T16927] bridge0: port 2(bridge_slave_1) entered disabled state [ 1001.260519][T16927] bridge_slave_1: entered allmulticast mode [ 1001.274361][T16927] bridge_slave_1: entered promiscuous mode [ 1001.538302][T10398] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1001.755235][T16927] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1001.965990][T16927] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1002.301275][T16927] team0: Port device team_slave_0 added [ 1002.431345][T16927] team0: Port device team_slave_1 added [ 1002.954436][T16605] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1002.976362][T16927] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1003.008266][T16927] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1003.064192][T16927] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1003.101663][T16927] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1003.118591][T16927] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1003.187859][T16927] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1003.224414][T10398] bridge_slave_1: left allmulticast mode [ 1003.230310][T10398] bridge_slave_1: left promiscuous mode [ 1003.236233][T10398] bridge0: port 2(bridge_slave_1) entered disabled state [ 1003.500361][T10398] bridge_slave_0: left allmulticast mode [ 1003.506093][T10398] bridge_slave_0: left promiscuous mode [ 1003.518499][T10398] bridge0: port 1(bridge_slave_0) entered disabled state [ 1005.054078][T10398] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1005.119178][T10398] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1005.201108][T10398] bond0 (unregistering): Released all slaves [ 1005.971434][T16927] hsr_slave_0: entered promiscuous mode [ 1006.011012][T16927] hsr_slave_1: entered promiscuous mode [ 1006.062214][T16927] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1006.078112][T16927] Cannot create hsr debugfs directory [ 1006.486432][T16822] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1006.858510][T16822] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1006.877293][T16822] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1007.136374][T16822] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1007.185802][T16605] veth0_vlan: entered promiscuous mode [ 1007.641788][T16605] veth1_vlan: entered promiscuous mode [ 1007.687314][T10398] hsr_slave_0: left promiscuous mode [ 1007.778648][T10398] hsr_slave_1: left promiscuous mode [ 1007.808363][T10398] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1007.815943][T10398] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1007.842971][T10398] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1007.864502][T10398] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1007.941351][T10398] veth1_macvtap: left promiscuous mode [ 1007.947032][T10398] veth0_macvtap: left promiscuous mode [ 1007.968597][T10398] veth1_vlan: left promiscuous mode [ 1007.974085][T10398] veth0_vlan: left promiscuous mode [ 1010.736655][T10398] team0 (unregistering): Port device team_slave_1 removed [ 1010.906200][T10398] team0 (unregistering): Port device team_slave_0 removed [ 1012.334705][T16883] syz.2.2387 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1012.447857][T16883] CPU: 0 UID: 0 PID: 16883 Comm: syz.2.2387 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 1012.458374][T16883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 1012.468564][T16883] Call Trace: [ 1012.471895][T16883] [ 1012.474868][T16883] dump_stack_lvl+0x16c/0x1f0 [ 1012.479617][T16883] dump_header+0x101/0x900 [ 1012.484110][T16883] oom_kill_process+0x270/0xa60 [ 1012.489037][T16883] out_of_memory+0x343/0x16b0 [ 1012.493775][T16883] ? mutex_trylock+0x110/0x140 [ 1012.498609][T16883] ? __pfx_out_of_memory+0x10/0x10 [ 1012.503790][T16883] ? find_held_lock+0x2d/0x110 [ 1012.508757][T16883] mem_cgroup_out_of_memory+0x207/0x270 [ 1012.514393][T16883] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 1012.520560][T16883] ? do_raw_spin_unlock+0x172/0x230 [ 1012.525838][T16883] try_charge_memcg+0x5b9/0xaf0 [ 1012.530733][T16883] ? __pfx_try_charge_memcg+0x10/0x10 [ 1012.536158][T16883] ? get_mem_cgroup_from_mm+0x129/0x5f0 [ 1012.541750][T16883] __mem_cgroup_charge+0x99/0x270 [ 1012.546811][T16883] shmem_alloc_and_add_folio+0x214/0xce0 [ 1012.552488][T16883] ? filemap_get_entry+0x1b2/0x3c0 [ 1012.557637][T16883] ? __pfx_filemap_get_entry+0x10/0x10 [ 1012.563138][T16883] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 1012.569331][T16883] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1012.575296][T16883] ? __shmem_is_huge+0x213/0x300 [ 1012.580305][T16883] shmem_get_folio_gfp+0xa62/0x15e0 [ 1012.585553][T16883] ? find_held_lock+0x2d/0x110 [ 1012.590377][T16883] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 1012.596040][T16883] ? inode_update_timestamps+0x165/0x580 [ 1012.601715][T16883] ? __pfx_lock_release+0x10/0x10 [ 1012.606782][T16883] shmem_write_begin+0x15a/0x2f0 [ 1012.611756][T16883] ? __pfx_shmem_write_begin+0x10/0x10 [ 1012.617269][T16883] ? lockdep_hardirqs_on+0x7c/0x110 [ 1012.622636][T16883] ? balance_dirty_pages_ratelimited_flags+0x92/0x1270 [ 1012.629531][T16883] ? ktime_get_coarse_real_ts64+0x147/0x200 [ 1012.635464][T16883] generic_perform_write+0x315/0x970 [ 1012.640801][T16883] ? __pfx_generic_perform_write+0x10/0x10 [ 1012.646637][T16883] ? __mark_inode_dirty+0x2ae/0xe60 [ 1012.651884][T16883] ? generic_update_time+0xcf/0xf0 [ 1012.657065][T16883] ? mnt_put_write_access_file+0x45/0xf0 [ 1012.662739][T16883] shmem_file_write_iter+0x10e/0x140 [ 1012.668153][T16883] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 1012.673996][T16883] __kernel_write_iter+0x318/0xa80 [ 1012.679149][T16883] ? __pfx___kernel_write_iter+0x10/0x10 [ 1012.684861][T16883] ? get_dump_page+0x15c/0x220 [ 1012.689680][T16883] dump_user_range+0x389/0x8a0 [ 1012.694496][T16883] ? __pfx_dump_user_range+0x10/0x10 [ 1012.700001][T16883] ? dump_align+0xa3/0xd0 [ 1012.704375][T16883] ? __pfx_writenote+0x10/0x10 [ 1012.709177][T16883] elf_core_dump+0x2727/0x3810 [ 1012.713996][T16883] ? hlock_class+0x4e/0x130 [ 1012.718549][T16883] ? __pfx_elf_core_dump+0x10/0x10 [ 1012.723794][T16883] ? kasan_save_stack+0x42/0x60 [ 1012.728677][T16883] ? kasan_save_stack+0x33/0x60 [ 1012.733646][T16883] ? __kasan_kmalloc+0xaa/0xb0 [ 1012.738522][T16883] ? __kmalloc_node_noprof+0x211/0x440 [ 1012.744015][T16883] ? __kvmalloc_node_noprof+0x9d/0x1a0 [ 1012.749513][T16883] ? irqentry_exit_to_user_mode+0x13f/0x280 [ 1012.755520][T16883] ? asm_exc_page_fault+0x26/0x30 [ 1012.760620][T16883] ? 0xffffffffff600000 [ 1012.764863][T16883] ? do_coredump+0x29e4/0x3da0 [ 1012.769670][T16883] do_coredump+0x29e4/0x3da0 [ 1012.774327][T16883] ? __pfx_do_coredump+0x10/0x10 [ 1012.779350][T16883] ? find_held_lock+0x2d/0x110 [ 1012.784195][T16883] get_signal+0x237c/0x26d0 [ 1012.788740][T16883] ? force_sig_fault+0xad/0xf0 [ 1012.793536][T16883] ? __pfx_get_signal+0x10/0x10 [ 1012.798440][T16883] arch_do_signal_or_restart+0x90/0x7e0 [ 1012.804026][T16883] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1012.810221][T16883] ? __bad_area_nosemaphore+0x334/0x6a0 [ 1012.815826][T16883] ? do_user_addr_fault+0x920/0x13f0 [ 1012.821166][T16883] irqentry_exit_to_user_mode+0x13f/0x280 [ 1012.826916][T16883] asm_exc_page_fault+0x26/0x30 [ 1012.831809][T16883] RIP: 0033:0x21000 [ 1012.835653][T16883] Code: Unable to access opcode bytes at 0x20fd6. [ 1012.842165][T16883] RSP: 002b:000000000000000e EFLAGS: 00010246 [ 1012.848263][T16883] RAX: 0000000000000000 RBX: 00007fb48db35f80 RCX: 00007fb48d97def9 [ 1012.856257][T16883] RDX: 7ffff7ffffffffff RSI: 0000000000000006 RDI: 0000000008000007 [ 1012.864423][T16883] RBP: 00007fb48d9f0b76 R08: 0000000000000006 R09: 0000000000000000 [ 1012.872417][T16883] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000000 [ 1012.880432][T16883] R13: 0000000000000000 R14: 00007fb48db35f80 R15: 00007ffe4e855da8 [ 1012.888489][T16883] [ 1013.004554][T16883] memory: usage 307200kB, limit 307200kB, failcnt 35653 [ 1013.013316][T16883] memory+swap: usage 432156kB, limit 9007199254740988kB, failcnt 0 [ 1013.022129][T16883] kmem: usage 5536kB, limit 9007199254740988kB, failcnt 0 [ 1013.029872][T16883] Memory cgroup stats for /syz2: [ 1013.030073][T16883] cache 308629504 [ 1013.039434][T16883] rss 233472 [ 1013.042680][T16883] rss_huge 0 [ 1013.045928][T16883] shmem 308379648 [ 1013.050533][T16883] mapped_file 1028096 [ 1013.054561][T16883] dirty 233472 [ 1013.058784][T16883] writeback 0 [ 1013.062235][T16883] workingset_refault_anon 1519 [ 1013.067047][T16883] workingset_refault_file 8011 [ 1013.079126][T16883] swap 127954944 [ 1013.082758][T16883] swapcached 40960 [ 1013.086509][T16883] pgpgin 1145367 [ 1013.103800][T16883] pgpgout 1074039 [ 1013.107517][T16883] pgfault 198102 [ 1013.111414][T16883] pgmajfault 695 [ 1013.115095][T16883] inactive_anon 141160448 [ 1013.133779][T16883] active_anon 167493632 [ 1013.148925][T16883] inactive_file 0 [ 1013.152640][T16883] active_file 249856 [ 1013.156572][T16883] unevictable 0 [ 1013.175872][T16883] hierarchical_memory_limit 314572800 [ 1013.182952][T16883] hierarchical_memsw_limit 9223372036854771712 [ 1013.229612][T16883] total_cache 308629504 [ 1013.233847][T16883] total_rss 233472 [ 1013.241075][T16883] total_rss_huge 0 [ 1013.245369][T16883] total_shmem 308379648 [ 1013.253773][T16883] total_mapped_file 1028096 [ 1013.264109][T16883] total_dirty 233472 [ 1013.268757][T16883] total_writeback 0 [ 1013.272708][T16883] total_workingset_refault_anon 1519 [ 1013.278763][T16883] total_workingset_refault_file 8011 [ 1013.284147][T16883] total_swap 127954944 [ 1013.308477][T16883] total_swapcached 40960 [ 1013.312801][T16883] total_pgpgin 1145367 [ 1013.323763][T16883] total_pgpgout 1074039 [ 1013.352525][T16883] total_pgfault 198102 [ 1013.356673][T16883] total_pgmajfault 695 [ 1013.372165][T16883] total_inactive_anon 141160448 [ 1013.377098][T16883] total_active_anon 167493632 [ 1013.398923][T16883] total_inactive_file 0 [ 1013.403154][T16883] total_active_file 249856 [ 1013.407605][T16883] total_unevictable 0 [ 1013.474439][T16883] anon_cost 0 [ 1013.507856][T16883] file_cost 0 [ 1013.511226][T16883] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.2371,pid=16812,uid=0 [ 1013.551741][T16883] Memory cgroup out of memory: Killed process 16812 (syz.2.2371) total-vm:92000kB, anon-rss:768kB, file-rss:38040kB, shmem-rss:0kB, UID:0 pgtables:200kB oom_score_adj:1000 [ 1014.138038][T16605] veth0_macvtap: entered promiscuous mode [ 1014.245751][T16605] veth1_macvtap: entered promiscuous mode [ 1014.335561][T16605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1014.361650][T16605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1014.383446][T16605] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1014.427388][T16605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1014.459600][T16605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1014.477174][T16605] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1014.540117][T16605] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1014.562217][T16605] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1014.581870][T16605] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1014.601328][T16605] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1014.697483][T16822] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1015.836819][T16822] 8021q: adding VLAN 0 to HW filter on device team0 [ 1015.896080][ T5539] bridge0: port 1(bridge_slave_0) entered blocking state [ 1015.903395][ T5539] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1015.942796][ T5441] bridge0: port 2(bridge_slave_1) entered blocking state [ 1015.950206][ T5441] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1016.063028][ T5449] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1016.083095][ T5449] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1016.216027][T10405] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1016.267923][T10405] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1016.278743][ T5237] Bluetooth: hci2: command 0x0406 tx timeout [ 1016.923202][T16927] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1017.120418][T16927] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1017.266788][T16927] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1017.467994][T16927] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1017.595363][T16822] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1018.038087][T16822] veth0_vlan: entered promiscuous mode [ 1018.106333][T16822] veth1_vlan: entered promiscuous mode [ 1018.216501][T16927] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1018.339526][T16927] 8021q: adding VLAN 0 to HW filter on device team0 [ 1018.403350][T10398] bridge0: port 1(bridge_slave_0) entered blocking state [ 1018.410640][T10398] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1018.466779][ T5441] bridge0: port 2(bridge_slave_1) entered blocking state [ 1018.474082][ T5441] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1018.556525][T16822] veth0_macvtap: entered promiscuous mode [ 1018.614880][T16822] veth1_macvtap: entered promiscuous mode [ 1018.851497][T16927] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1018.904080][T16822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1018.943054][T16822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1018.978197][T16822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1019.016692][T16822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1019.030052][T16822] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1019.083040][T16822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1019.133292][T16822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1019.167961][T16822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1019.193827][T16822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1019.225974][T16822] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1019.254217][T16822] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1019.297962][T16822] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1019.306858][T16822] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1019.357926][T16822] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1019.912764][T16927] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1019.980748][T10400] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1020.018478][T10400] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1020.202552][T10400] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1020.203304][T16927] veth0_vlan: entered promiscuous mode [ 1020.236528][T10400] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1020.477504][T16927] veth1_vlan: entered promiscuous mode [ 1020.632581][T16927] veth0_macvtap: entered promiscuous mode [ 1020.698961][T16927] veth1_macvtap: entered promiscuous mode [ 1020.774962][T16927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1020.794626][T16927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1020.818874][T16927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1020.854042][T16927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1020.879996][T16927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1020.927038][T17145] delete_channel: no stack [ 1020.928112][T16927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1020.966965][T16927] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1021.034374][T16927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1021.073448][T16927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1021.097897][T16927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1021.127874][T16927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1021.151918][T16927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1021.179443][T16927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1021.199207][T16927] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1021.248546][T16927] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1021.257352][T16927] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1021.295963][T16927] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1021.319224][T16927] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1021.888849][T10400] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1021.896746][T10400] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1022.091054][T10398] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1022.108112][T10398] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1047.105178][T17466] netlink: 'syz.2.2487': attribute type 1 has an invalid length. [ 1057.156753][T17560] netlink: 'syz.0.2506': attribute type 11 has an invalid length. [ 1060.297561][ T1270] ieee802154 phy0 wpan0: encryption failed: -22 [ 1060.308300][ T1270] ieee802154 phy1 wpan1: encryption failed: -22 [ 1070.044470][T17632] syz.2.2525(17632): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 1071.922414][T17652] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2530'. [ 1072.703877][T16800] syz.2.2371 (16800) used greatest stack depth: 18640 bytes left [ 1073.505218][T17656] netlink: 'syz.0.2532': attribute type 11 has an invalid length. [ 1074.178197][T17678] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2538'. [ 1078.118807][T17712] delete_channel: no stack [ 1078.378864][T17715] openvswitch: netlink: Message has 4 unknown bytes. [ 1079.736211][T17735] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2557'. [ 1083.138607][T17786] netlink: zone id is out of range [ 1083.143806][T17786] netlink: zone id is out of range [ 1083.250268][T17786] netlink: zone id is out of range [ 1083.268531][T17786] netlink: zone id is out of range [ 1083.273726][T17786] netlink: zone id is out of range [ 1086.840098][T17835] svc: failed to register nfsdv3 RPC service (errno 111). [ 1086.892984][T17835] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1087.390020][T17842] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 1087.959995][ T5244] Bluetooth: hci0: command 0x0406 tx timeout [ 1095.245634][T10400] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1095.972606][T10400] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1096.556860][T10400] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1096.914856][ T30] audit: type=1326 audit(7369841.570:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17974 comm="syz.3.2620" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca95f7def9 code=0x0 [ 1097.101242][T10400] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1097.134483][ T5244] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1097.148117][ T5244] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1097.175972][ T5244] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1097.189846][ T5244] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1097.199410][ T5244] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 1097.208537][ T5244] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1098.348664][T10400] bridge_slave_1: left allmulticast mode [ 1098.354414][T10400] bridge_slave_1: left promiscuous mode [ 1098.397380][T10400] bridge0: port 2(bridge_slave_1) entered disabled state [ 1098.605966][T10400] bridge_slave_0: left allmulticast mode [ 1098.619514][T10400] bridge_slave_0: left promiscuous mode [ 1098.636705][T10400] bridge0: port 1(bridge_slave_0) entered disabled state [ 1099.238073][ T5244] Bluetooth: hci2: command tx timeout [ 1101.318192][ T5244] Bluetooth: hci2: command tx timeout [ 1101.846419][T10400] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1101.867206][T10400] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1101.952717][T10400] bond0 (unregistering): Released all slaves [ 1102.092651][T17979] chnl_net:caif_netlink_parms(): no params data found [ 1103.321374][ T5244] Bluetooth: hci1: command 0x0406 tx timeout [ 1103.332792][T17979] bridge0: port 1(bridge_slave_0) entered blocking state [ 1103.375305][T17979] bridge0: port 1(bridge_slave_0) entered disabled state [ 1103.398227][ T5244] Bluetooth: hci2: command tx timeout [ 1103.419737][T17979] bridge_slave_0: entered allmulticast mode [ 1103.443668][T17979] bridge_slave_0: entered promiscuous mode [ 1103.618081][T17979] bridge0: port 2(bridge_slave_1) entered blocking state [ 1103.625482][T17979] bridge0: port 2(bridge_slave_1) entered disabled state [ 1103.638206][T17979] bridge_slave_1: entered allmulticast mode [ 1103.647361][T17979] bridge_slave_1: entered promiscuous mode [ 1104.270883][T17979] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1104.314807][T17979] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1105.488088][ T5237] Bluetooth: hci2: command tx timeout [ 1105.596378][T17979] team0: Port device team_slave_0 added [ 1105.881026][T17979] team0: Port device team_slave_1 added [ 1107.119283][T10400] hsr_slave_0: left promiscuous mode [ 1107.188003][T10400] hsr_slave_1: left promiscuous mode [ 1107.194705][T10400] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1107.211331][T10400] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1107.359391][T10400] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1107.366883][T10400] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1107.529314][T10400] veth1_macvtap: left promiscuous mode [ 1107.535078][T10400] veth0_macvtap: left promiscuous mode [ 1107.558308][T10400] veth1_vlan: left promiscuous mode [ 1107.563803][T10400] veth0_vlan: left promiscuous mode [ 1111.149508][T10400] team0 (unregistering): Port device team_slave_1 removed [ 1111.322476][T10400] team0 (unregistering): Port device team_slave_0 removed [ 1113.406092][T17979] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1113.432575][T17979] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1113.496276][T17979] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1113.531532][T17979] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1113.558050][ T5244] Bluetooth: hci3: command 0x0406 tx timeout [ 1113.561471][T17979] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1113.688808][T17979] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1114.129322][ T5244] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1114.140026][ T5244] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1114.150415][ T5244] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1114.168963][ T5244] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1114.177138][ T5244] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1114.188881][ T5244] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1114.430123][T17979] hsr_slave_0: entered promiscuous mode [ 1114.630176][T17979] hsr_slave_1: entered promiscuous mode [ 1114.661831][T17979] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1114.678404][T17979] Cannot create hsr debugfs directory [ 1116.283626][ T5237] Bluetooth: hci4: command tx timeout [ 1117.853385][T18137] chnl_net:caif_netlink_parms(): no params data found [ 1118.358227][ T5237] Bluetooth: hci4: command tx timeout [ 1120.448038][ T5237] Bluetooth: hci4: command tx timeout [ 1120.613601][T18137] bridge0: port 1(bridge_slave_0) entered blocking state [ 1120.640252][T18137] bridge0: port 1(bridge_slave_0) entered disabled state [ 1120.678103][T18137] bridge_slave_0: entered allmulticast mode [ 1120.686417][T18137] bridge_slave_0: entered promiscuous mode [ 1120.753247][T18137] bridge0: port 2(bridge_slave_1) entered blocking state [ 1120.784863][T18137] bridge0: port 2(bridge_slave_1) entered disabled state [ 1120.810656][T18137] bridge_slave_1: entered allmulticast mode [ 1120.842172][T18137] bridge_slave_1: entered promiscuous mode [ 1121.328037][T18137] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1121.391741][T18137] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1121.728335][ T1270] ieee802154 phy0 wpan0: encryption failed: -22 [ 1121.734741][ T1270] ieee802154 phy1 wpan1: encryption failed: -22 [ 1121.819968][T18137] team0: Port device team_slave_0 added [ 1121.970388][T18137] team0: Port device team_slave_1 added [ 1122.431378][T18137] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1122.454694][T18137] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1122.515943][T18137] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1122.537850][ T5237] Bluetooth: hci4: command tx timeout [ 1122.713770][T18137] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1122.759607][T18137] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1122.838121][T18137] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1123.081102][T17979] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1123.248093][T17979] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1123.305916][T18137] hsr_slave_0: entered promiscuous mode [ 1123.368440][T18137] hsr_slave_1: entered promiscuous mode [ 1123.378524][T18137] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1123.386154][T18137] Cannot create hsr debugfs directory [ 1123.419272][T17979] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1123.473883][T17979] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1123.495661][T18230] FAULT_INJECTION: forcing a failure. [ 1123.495661][T18230] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1123.548330][T18230] CPU: 1 UID: 0 PID: 18230 Comm: syz.1.2668 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 1123.558840][T18230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 1123.568936][T18230] Call Trace: [ 1123.572244][T18230] [ 1123.575225][T18230] dump_stack_lvl+0x16c/0x1f0 [ 1123.579960][T18230] should_fail_ex+0x497/0x5b0 [ 1123.584699][T18230] _copy_from_user+0x30/0xf0 [ 1123.589358][T18230] get_timespec64+0x8c/0x240 [ 1123.594020][T18230] ? __pfx_get_timespec64+0x10/0x10 [ 1123.599305][T18230] do_pselect.constprop.0+0xc2/0x1f0 [ 1123.604665][T18230] ? __pfx_do_pselect.constprop.0+0x10/0x10 [ 1123.610624][T18230] ? __fget_files+0x244/0x3f0 [ 1123.615380][T18230] __x64_sys_pselect6+0x183/0x240 [ 1123.620485][T18230] ? __pfx___x64_sys_pselect6+0x10/0x10 [ 1123.626127][T18230] do_syscall_64+0xcd/0x250 [ 1123.630699][T18230] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1123.636657][T18230] RIP: 0033:0x7f501ff7def9 [ 1123.641117][T18230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1123.660856][T18230] RSP: 002b:00007f5020d7c038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e [ 1123.669427][T18230] RAX: ffffffffffffffda RBX: 00007f5020135f80 RCX: 00007f501ff7def9 [ 1123.677455][T18230] RDX: 0000000000000005 RSI: 0000000000000008 RDI: 0000000000000006 [ 1123.685485][T18230] RBP: 00007f5020d7c090 R08: 00000000000000ba R09: 0000000000000000 [ 1123.693505][T18230] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 1123.701525][T18230] R13: 0000000000000000 R14: 00007f5020135f80 R15: 00007ffc87799b88 [ 1123.709568][T18230] [ 1124.894603][T18137] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1125.068400][T18260] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2672'. [ 1125.267983][T18137] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1125.701990][T18137] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1125.960688][T18137] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1126.092197][T17979] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1126.193134][T17979] 8021q: adding VLAN 0 to HW filter on device team0 [ 1126.232035][ T5441] bridge0: port 1(bridge_slave_0) entered blocking state [ 1126.239359][ T5441] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1126.348919][ T5449] bridge0: port 2(bridge_slave_1) entered blocking state [ 1126.356437][ T5449] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1126.767960][T18137] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1126.812002][T18137] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1126.877979][T18137] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1126.918566][T18137] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1127.519313][T18137] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1127.643297][T18137] 8021q: adding VLAN 0 to HW filter on device team0 [ 1127.706788][T10398] bridge0: port 1(bridge_slave_0) entered blocking state [ 1127.714140][T10398] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1127.797654][ T5540] bridge0: port 2(bridge_slave_1) entered blocking state [ 1127.805020][ T5540] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1127.974383][T17979] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1128.163542][T18137] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1128.439218][T17979] veth0_vlan: entered promiscuous mode [ 1128.512253][T17979] veth1_vlan: entered promiscuous mode [ 1128.784993][T17979] veth0_macvtap: entered promiscuous mode [ 1128.793646][T18328] ptrace attach of "./syz-executor exec"[16822] was attempted by "./syz-executor exec"[18328] [ 1128.834104][T17979] veth1_macvtap: entered promiscuous mode [ 1128.993181][T17979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1129.044771][T17979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1129.075049][T17979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1129.105587][T17979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1129.147917][T17979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1129.167979][T17979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1129.200758][T17979] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1129.255597][T17979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1129.307850][T17979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1129.349278][T17979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1129.373021][T17979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1129.398524][T17979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1129.417923][T17979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1129.440817][T17979] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1129.537286][T17979] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1129.591380][T17979] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1129.640150][T17979] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1129.678198][T17979] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1130.376032][T18137] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1130.553120][T10405] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1130.608339][T10405] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1130.891251][T10400] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1130.909125][T18137] veth0_vlan: entered promiscuous mode [ 1130.914711][T10400] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1131.029845][T18137] veth1_vlan: entered promiscuous mode [ 1131.243052][T18137] veth0_macvtap: entered promiscuous mode [ 1131.323555][T18137] veth1_macvtap: entered promiscuous mode [ 1131.442766][T18137] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1131.490595][T18137] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1131.528585][T18137] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1131.560059][T18137] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1131.578218][T18137] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1131.604783][T18137] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1131.632370][T18137] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1131.660668][T18137] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1131.684868][T18137] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1131.736702][T18137] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1131.784652][T18137] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1131.847847][T18137] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1131.880140][T18137] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1131.910656][T18137] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1131.937817][T18137] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1131.947711][T18137] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1132.009275][T18137] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1132.037460][T18137] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1132.146038][T18137] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1132.176700][T18137] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1132.194851][T18137] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1132.226196][T18137] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1132.602073][ T5441] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1132.633715][ T5441] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1132.849622][ T5540] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1132.873050][ T5540] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1142.283886][T18547] netlink: 'syz.3.2728': attribute type 11 has an invalid length. [ 1142.365701][T18547] netlink: 5 bytes leftover after parsing attributes in process `syz.3.2728'. [ 1142.477935][T18547] netlink: 'syz.3.2728': attribute type 11 has an invalid length. [ 1144.497338][T18572] svc: failed to register nfsdv3 RPC service (errno 111). [ 1144.685768][T18572] svc: failed to register nfsaclv3 RPC service (errno 512). [ 1146.456120][T18616] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2745'. [ 1146.487952][T18616] openvswitch: netlink: Flow key attr not present in new flow. [ 1152.651805][T18738] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2782'. [ 1152.677939][T18738] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2782'. [ 1156.454208][T10398] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1157.351725][T10398] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1157.718414][ T5244] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1157.737161][ T5244] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1157.747142][ T5244] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1157.765085][ T5244] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1157.774553][ T5244] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 1157.783814][ T5244] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1158.449428][T10398] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1159.301706][T10398] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1159.438646][T18824] block nbd9: not configured, cannot reconfigure [ 1159.465624][T18825] block nbd9: not configured, cannot reconfigure [ 1159.487398][T18793] chnl_net:caif_netlink_parms(): no params data found [ 1159.877711][ T5244] Bluetooth: hci2: command tx timeout [ 1160.154214][T18831] delete_channel: no stack [ 1160.600603][T18793] bridge0: port 1(bridge_slave_0) entered blocking state [ 1160.628461][T18793] bridge0: port 1(bridge_slave_0) entered disabled state [ 1160.685713][T18793] bridge_slave_0: entered allmulticast mode [ 1160.707164][T18793] bridge_slave_0: entered promiscuous mode [ 1160.749276][T18793] bridge0: port 2(bridge_slave_1) entered blocking state [ 1160.766710][T18793] bridge0: port 2(bridge_slave_1) entered disabled state [ 1160.786952][T18793] bridge_slave_1: entered allmulticast mode [ 1160.818961][T18793] bridge_slave_1: entered promiscuous mode [ 1161.498823][T18793] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1161.554139][T18793] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1161.956453][ T5244] Bluetooth: hci2: command tx timeout [ 1162.350026][T18793] team0: Port device team_slave_0 added [ 1162.388785][T10398] bridge_slave_1: left allmulticast mode [ 1162.394605][T10398] bridge_slave_1: left promiscuous mode [ 1162.434890][T10398] bridge0: port 2(bridge_slave_1) entered disabled state [ 1162.583221][T10398] bridge_slave_0: left allmulticast mode [ 1162.606316][T10398] bridge_slave_0: left promiscuous mode [ 1162.636678][T10398] bridge0: port 1(bridge_slave_0) entered disabled state [ 1164.036249][ T5244] Bluetooth: hci2: command tx timeout [ 1166.116078][ T5244] Bluetooth: hci2: command tx timeout [ 1167.327206][T10398] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1167.616638][T10398] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1167.898810][T10398] bond0 (unregistering): Released all slaves [ 1168.009550][T18793] team0: Port device team_slave_1 added [ 1169.856512][T18793] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1169.863548][T18793] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1169.946002][T18793] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1169.979236][T18793] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1169.995398][T18793] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1170.072299][T18793] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1171.949241][T18961] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2832'. [ 1172.058525][T10398] hsr_slave_0: left promiscuous mode [ 1172.255353][T10398] hsr_slave_1: left promiscuous mode [ 1172.477650][T10398] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1172.485386][T10398] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1172.638768][T10398] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1172.664152][T10398] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1172.852831][T10398] veth1_macvtap: left promiscuous mode [ 1172.900567][T10398] veth0_macvtap: left promiscuous mode [ 1172.929104][T10398] veth1_vlan: left promiscuous mode [ 1172.934604][T10398] veth0_vlan: left promiscuous mode [ 1177.129328][T10398] team0 (unregistering): Port device team_slave_1 removed [ 1177.358314][T10398] team0 (unregistering): Port device team_slave_0 removed [ 1179.351549][T18793] hsr_slave_0: entered promiscuous mode [ 1179.368616][T18793] hsr_slave_1: entered promiscuous mode [ 1179.382500][T18793] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1179.394154][T18793] Cannot create hsr debugfs directory [ 1179.465954][T18958] tc_dump_action: action bad kind [ 1180.805114][T19001] delete_channel: no stack [ 1182.348968][T18793] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1182.488595][T18793] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1182.542319][T18793] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1182.607326][T18793] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1183.162931][ T1270] ieee802154 phy0 wpan0: encryption failed: -22 [ 1183.182271][T18793] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1183.189398][ T1270] ieee802154 phy1 wpan1: encryption failed: -22 [ 1183.317685][T18793] 8021q: adding VLAN 0 to HW filter on device team0 [ 1183.398745][ T5449] bridge0: port 1(bridge_slave_0) entered blocking state [ 1183.406094][ T5449] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1183.496955][T10398] bridge0: port 2(bridge_slave_1) entered blocking state [ 1183.504312][T10398] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1183.827281][T18793] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1184.670483][T18793] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1184.907714][T18793] veth0_vlan: entered promiscuous mode [ 1184.991334][T18793] veth1_vlan: entered promiscuous mode [ 1185.238699][T18793] veth0_macvtap: entered promiscuous mode [ 1185.277609][T18793] veth1_macvtap: entered promiscuous mode [ 1185.427412][T18793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1185.452769][T18793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1185.472574][T18793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1185.493894][T18793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1185.505649][T18793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1185.543531][T18793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1185.574642][T18793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1185.614561][T18793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1185.647616][T18793] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1185.688920][T18793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1185.715150][T18793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1185.739896][T18793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1185.791698][T18793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1185.815942][T18793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1185.834314][T18793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1185.853507][T18793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1185.878276][T18793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1185.916213][T18793] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1185.957767][T18793] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1185.977588][T18793] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1186.028497][T18793] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1186.065627][T18793] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1186.612067][ T5540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1186.641592][ T5540] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1186.846414][ T5540] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1186.865353][ T5540] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1198.262993][T19284] nbd: must specify a device to reconfigure [ 1201.390996][T19335] nbd: couldn't find device at index 65536 [ 1201.477631][T19340] netlink: 284 bytes leftover after parsing attributes in process `syz.2.2911'. [ 1202.334842][T19360] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2915'. [ 1202.936363][T19367] can: request_module (can-proto-5) failed. [ 1210.402476][T19456] can: request_module (can-proto-5) failed. [ 1212.911896][T19489] delete_channel: no stack [ 1216.189641][T10405] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1217.054593][ T5237] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1217.065473][ T5237] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1217.095587][T10405] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1217.114812][ T5237] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1217.124891][ T5237] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1217.153735][ T5237] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 1217.168721][ T5237] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1217.633094][T10405] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1218.356770][T10405] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1218.937238][T19544] chnl_net:caif_netlink_parms(): no params data found [ 1219.229766][ T5237] Bluetooth: hci2: command tx timeout [ 1220.429524][T10405] bridge_slave_1: left allmulticast mode [ 1220.435292][T10405] bridge_slave_1: left promiscuous mode [ 1220.451192][T10405] bridge0: port 2(bridge_slave_1) entered disabled state [ 1220.618297][T10405] bridge_slave_0: left allmulticast mode [ 1220.627088][T10405] bridge_slave_0: left promiscuous mode [ 1220.649598][T10405] bridge0: port 1(bridge_slave_0) entered disabled state [ 1221.323839][ T5237] Bluetooth: hci2: command tx timeout [ 1223.400041][ T5237] Bluetooth: hci2: command tx timeout [ 1225.471421][ T5237] Bluetooth: hci2: command tx timeout [ 1225.483421][T10405] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1225.669917][T10405] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1225.781760][T10405] bond0 (unregistering): Released all slaves [ 1226.031673][T19544] bridge0: port 1(bridge_slave_0) entered blocking state [ 1226.058844][T19544] bridge0: port 1(bridge_slave_0) entered disabled state [ 1226.066225][T19544] bridge_slave_0: entered allmulticast mode [ 1226.121122][T19544] bridge_slave_0: entered promiscuous mode [ 1226.147725][T19544] bridge0: port 2(bridge_slave_1) entered blocking state [ 1226.168821][T19544] bridge0: port 2(bridge_slave_1) entered disabled state [ 1226.176145][T19544] bridge_slave_1: entered allmulticast mode [ 1226.201264][T19544] bridge_slave_1: entered promiscuous mode [ 1227.158173][T19544] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1227.204350][T19544] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1227.977306][T19544] team0: Port device team_slave_0 added [ 1228.061328][T19544] team0: Port device team_slave_1 added [ 1228.957740][T19544] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1228.998092][T19544] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1229.080286][T19544] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1229.241306][T19544] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1229.266554][T19544] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1229.378252][T19544] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1230.023100][T10405] hsr_slave_0: left promiscuous mode [ 1230.061964][ T5244] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 1230.082615][ T5244] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 1230.091866][ T5244] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 1230.119089][ T5244] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 1230.127323][ T5244] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 1230.136398][T10405] hsr_slave_1: left promiscuous mode [ 1230.138202][ T5244] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 1230.152623][T10405] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1230.186413][T10405] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1230.229299][T10405] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1230.249624][T10405] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1230.353730][T10405] veth1_macvtap: left promiscuous mode [ 1230.367259][T10405] veth0_macvtap: left promiscuous mode [ 1230.388387][T10405] veth1_vlan: left promiscuous mode [ 1230.402670][T10405] veth0_vlan: left promiscuous mode [ 1232.062920][T19672] svc: failed to register nfsdv3 RPC service (errno 111). [ 1232.079145][T19672] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1232.192012][ T5244] Bluetooth: hci1: command tx timeout [ 1232.372850][T10405] team0 (unregistering): Port device team_slave_1 removed [ 1232.521645][T10405] team0 (unregistering): Port device team_slave_0 removed [ 1234.267902][ T5244] Bluetooth: hci1: command tx timeout [ 1234.322506][T19544] hsr_slave_0: entered promiscuous mode [ 1234.389750][T19544] hsr_slave_1: entered promiscuous mode [ 1234.411825][T19544] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1234.455738][T19544] Cannot create hsr debugfs directory [ 1236.340199][ T5244] Bluetooth: hci1: command tx timeout [ 1236.431792][ T5244] Bluetooth: hci4: command 0x0406 tx timeout [ 1236.968533][T10405] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1237.028738][T19658] chnl_net:caif_netlink_parms(): no params data found [ 1237.325152][T10405] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1237.607025][T10405] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1237.874375][T10405] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1237.999101][T19658] bridge0: port 1(bridge_slave_0) entered blocking state [ 1238.016779][T19658] bridge0: port 1(bridge_slave_0) entered disabled state [ 1238.039664][T19658] bridge_slave_0: entered allmulticast mode [ 1238.065121][T19658] bridge_slave_0: entered promiscuous mode [ 1238.086528][T19658] bridge0: port 2(bridge_slave_1) entered blocking state [ 1238.105380][T19658] bridge0: port 2(bridge_slave_1) entered disabled state [ 1238.122234][T19658] bridge_slave_1: entered allmulticast mode [ 1238.139728][T19658] bridge_slave_1: entered promiscuous mode [ 1238.277274][T19544] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1238.401773][T19658] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1238.415590][ T5237] Bluetooth: hci1: command tx timeout [ 1238.447580][T19544] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1238.501634][T19544] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1238.592495][T19658] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1238.752132][T19544] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1238.979655][T19658] team0: Port device team_slave_0 added [ 1239.017804][T19658] team0: Port device team_slave_1 added [ 1239.526382][T19658] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1239.537177][T19658] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1239.587517][T19658] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1239.630927][T10405] bridge_slave_1: left allmulticast mode [ 1239.648575][T10405] bridge_slave_1: left promiscuous mode [ 1239.654529][T10405] bridge0: port 2(bridge_slave_1) entered disabled state [ 1239.686883][T10405] bridge_slave_0: left allmulticast mode [ 1239.704970][T10405] bridge_slave_0: left promiscuous mode [ 1239.718285][T10405] bridge0: port 1(bridge_slave_0) entered disabled state [ 1241.632772][T10405] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1241.691759][T10405] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1241.739299][T10405] bond0 (unregistering): Released all slaves [ 1241.803965][T19658] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1241.831882][T19658] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1241.919789][T19658] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1242.593383][T19658] hsr_slave_0: entered promiscuous mode [ 1242.691571][T19658] hsr_slave_1: entered promiscuous mode [ 1242.741826][T19658] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1242.774778][T19658] Cannot create hsr debugfs directory [ 1244.348398][T10405] hsr_slave_0: left promiscuous mode [ 1244.377315][T10405] hsr_slave_1: left promiscuous mode [ 1244.411160][T10405] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1244.424412][T10405] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1244.464587][T10405] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1244.473855][T10405] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1244.528191][ T1270] ieee802154 phy0 wpan0: encryption failed: -22 [ 1244.535107][ T1270] ieee802154 phy1 wpan1: encryption failed: -22 [ 1244.588195][T10405] veth1_macvtap: left promiscuous mode [ 1244.601776][T10405] veth0_macvtap: left promiscuous mode [ 1244.623303][T10405] veth1_vlan: left promiscuous mode [ 1244.639066][T10405] veth0_vlan: left promiscuous mode [ 1246.738761][T10405] team0 (unregistering): Port device team_slave_1 removed [ 1246.861742][T10405] team0 (unregistering): Port device team_slave_0 removed [ 1248.608319][T19544] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1248.938759][T19544] 8021q: adding VLAN 0 to HW filter on device team0 [ 1248.982020][T10398] bridge0: port 1(bridge_slave_0) entered blocking state [ 1248.989322][T10398] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1249.227663][T18949] bridge0: port 2(bridge_slave_1) entered blocking state [ 1249.235289][T18949] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1249.532479][T19544] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1249.870369][T19658] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1249.921631][T19658] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1249.983861][T19658] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1250.033212][T19658] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1250.503199][T19544] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1250.578745][T19658] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1250.680981][T19658] 8021q: adding VLAN 0 to HW filter on device team0 [ 1250.739155][T18949] bridge0: port 1(bridge_slave_0) entered blocking state [ 1250.746492][T18949] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1250.846949][T18949] bridge0: port 2(bridge_slave_1) entered blocking state [ 1250.854393][T18949] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1250.953160][T19544] veth0_vlan: entered promiscuous mode [ 1251.018906][T19544] veth1_vlan: entered promiscuous mode [ 1251.264657][T19544] veth0_macvtap: entered promiscuous mode [ 1251.369774][T19544] veth1_macvtap: entered promiscuous mode [ 1251.484888][T19544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1251.508434][T19544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1251.547326][T19544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1251.560915][T19544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1251.581502][T19544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1251.603137][T19544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1251.632889][T19544] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1251.666007][T19544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1251.717852][T19544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1251.750128][T19544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1251.780295][T19544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1251.821934][T19544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1251.866826][T19544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1251.881062][T19544] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1251.939991][T19544] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1251.959555][T19544] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1251.990150][T19544] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1251.999111][T19544] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1252.444027][T19658] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1252.536600][T10398] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1252.583905][T10398] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1252.713558][T10398] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1252.741514][T10398] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1252.787685][T19658] veth0_vlan: entered promiscuous mode [ 1252.894698][T19658] veth1_vlan: entered promiscuous mode [ 1253.080789][T19658] veth0_macvtap: entered promiscuous mode [ 1253.109194][T19658] veth1_macvtap: entered promiscuous mode [ 1253.198342][T19658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1253.223702][T19658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1253.243496][T19658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1253.270399][T19658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1253.282711][T19658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1253.293919][T19658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1253.310365][T19658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1253.337507][T19658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1253.367857][T19658] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1253.453666][T19658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1253.490214][T19658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1253.521616][T19658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1253.550142][T19658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1253.580205][T19658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1253.612412][T19658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1253.640119][T19658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1253.670160][T19658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1253.702926][T19658] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1253.788876][T19658] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1253.818329][T19658] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1253.860212][T19658] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1253.880217][T19658] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1254.283954][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1254.315566][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1254.516486][T10398] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1254.547165][T10398] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1255.074124][T20022] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3048'. [ 1255.120277][T20018] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3048'. [ 1264.982900][ T31] INFO: task syz.3.2635:18047 blocked for more than 143 seconds. [ 1264.994361][ T31] Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 1265.010235][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1265.046590][ T31] task:syz.3.2635 state:D stack:26464 pid:18047 tgid:18047 ppid:16605 flags:0x00004004 [ 1265.080195][ T31] Call Trace: [ 1265.083602][ T31] [ 1265.092277][ T31] __schedule+0xe37/0x5490 [ 1265.096809][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 1265.119600][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 1265.141894][ T31] ? __pfx___schedule+0x10/0x10 [ 1265.150596][ T31] ? schedule+0x298/0x350 [ 1265.155032][ T31] ? __pfx_lock_release+0x10/0x10 [ 1265.179118][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1265.200775][ T31] schedule+0xe7/0x350 [ 1265.204978][ T31] do_exit+0x3fe/0x2bb0 [ 1265.209271][ T31] ? get_signal+0x8fb/0x26d0 [ 1265.252073][ T31] ? __pfx_do_exit+0x10/0x10 [ 1265.256824][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1265.286739][ T31] do_group_exit+0xd3/0x2a0 [ 1265.300390][ T31] get_signal+0x2658/0x26d0 [ 1265.305109][ T31] ? __pfx_get_signal+0x10/0x10 [ 1265.327943][ T31] ? __pfx_do_futex+0x10/0x10 [ 1265.349738][ T31] arch_do_signal_or_restart+0x90/0x7e0 [ 1265.375468][ T31] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1265.392883][ T31] syscall_exit_to_user_mode+0x150/0x2a0 [ 1265.398654][ T31] do_syscall_64+0xda/0x250 [ 1265.420438][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1265.427878][ T31] RIP: 0033:0x7fca95f7def9 [ 1265.454026][ T31] RSP: 002b:00007fff37d82238 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1265.490091][ T31] RAX: fffffffffffffdfc RBX: 00007fff37d82360 RCX: 00007fca95f7def9 [ 1265.498252][ T31] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fca9613613c [ 1265.530116][ T31] RBP: 00007fca9613613c R08: 00007fca96e64080 R09: 00007fff37d8252f [ 1265.539228][ T31] R10: 00007fff37d82340 R11: 0000000000000246 R12: 000000000010d93a [ 1265.578264][ T31] R13: 00007fff37d82340 R14: 0000000000000032 R15: 000000000010d908 [ 1265.602642][ T31] [ 1265.605957][ T31] INFO: task :18049 blocked for more than 143 seconds. [ 1265.651456][ T31] Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 1265.659063][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1265.700083][ T31] task: state:D stack:25824 pid:18049 tgid:18047 ppid:16605 flags:0x00004004 [ 1265.725652][ T31] Call Trace: [ 1265.729013][ T31] [ 1265.750088][ T31] __schedule+0xe37/0x5490 [ 1265.754656][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 1265.759926][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 1265.791510][ T31] ? __pfx___schedule+0x10/0x10 [ 1265.796478][ T31] ? schedule+0x298/0x350 [ 1265.821445][ T31] ? __pfx_lock_release+0x10/0x10 [ 1265.826595][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1265.866513][ T31] schedule+0xe7/0x350 [ 1265.870810][ T31] do_exit+0x3fe/0x2bb0 [ 1265.880092][ T31] ? get_signal+0x8fb/0x26d0 [ 1265.884777][ T31] ? __pfx_do_exit+0x10/0x10 [ 1265.889545][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1265.920437][ T31] do_group_exit+0xd3/0x2a0 [ 1265.925055][ T31] get_signal+0x2658/0x26d0 [ 1265.929637][ T31] ? __pfx_get_signal+0x10/0x10 [ 1265.960483][ T31] arch_do_signal_or_restart+0x90/0x7e0 [ 1265.973060][ T31] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1265.991881][ T31] syscall_exit_to_user_mode+0x150/0x2a0 [ 1266.006847][ T31] do_syscall_64+0xda/0x250 [ 1266.024236][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1266.044627][ T31] RIP: 0033:0x7fca95f7def9 [ 1266.063534][ T31] RSP: 002b:00007fca96e63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1266.093182][ T31] RAX: fffffffffffffffe RBX: 00007fca96135f80 RCX: 00007fca95f7def9 [ 1266.120838][ T31] RDX: 0000000020000780 RSI: 0000000000008932 RDI: 0000000000000007 [ 1266.142756][ T31] RBP: 00007fca95ff0b76 R08: 0000000000000000 R09: 0000000000000000 [ 1266.170804][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1266.190120][ T31] R13: 0000000000000000 R14: 00007fca96135f80 R15: 00007fff37d820d8 [ 1266.198215][ T31] [ 1266.226707][ T31] INFO: task syz.3.2635:18059 blocked for more than 144 seconds. [ 1266.246602][ T31] Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 1266.284914][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1266.320395][ T31] task:syz.3.2635 state:D stack:28272 pid:18059 tgid:18047 ppid:16605 flags:0x00000004 [ 1266.362878][ T31] Call Trace: [ 1266.366239][ T31] [ 1266.369220][ T31] __schedule+0xe37/0x5490 [ 1266.400460][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 1266.405808][ T31] ? __pfx___schedule+0x10/0x10 [ 1266.447538][ T31] ? schedule+0x298/0x350 [ 1266.452429][ T31] ? __pfx_lock_release+0x10/0x10 [ 1266.458604][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 1266.511029][ T31] schedule+0xe7/0x350 [ 1266.515227][ T31] schedule_timeout+0x258/0x2a0 [ 1266.522174][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 1266.527671][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 1266.551282][ T31] __wait_for_common+0x3de/0x5f0 [ 1266.556453][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 1266.590407][ T31] ? __pfx___wait_for_common+0x10/0x10 [ 1266.596102][ T31] ? __pfx_try_to_wake_up+0x10/0x10 [ 1266.626559][ T31] wait_for_completion_state+0x1c/0x40 [ 1266.634153][ T31] do_coredump+0x821/0x3da0 [ 1266.638772][ T31] ? __pfx_do_coredump+0x10/0x10 [ 1266.663642][ T31] ? find_held_lock+0x2d/0x110 [ 1266.668544][ T31] get_signal+0x237c/0x26d0 [ 1266.690120][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 1266.706645][ T31] ? __pfx_get_signal+0x10/0x10 [ 1266.721275][ T31] ? force_sig_info_to_task+0x3a0/0x660 [ 1266.726943][ T31] arch_do_signal_or_restart+0x90/0x7e0 [ 1266.752106][ T31] ? __pfx_force_exit_sig+0x10/0x10 [ 1266.770184][ T31] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1266.776570][ T31] syscall_exit_to_user_mode+0x150/0x2a0 [ 1266.800464][ T31] do_syscall_64+0xda/0x250 [ 1266.805340][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1266.836664][ T31] RIP: 0033:0x7fca95f7def9 [ 1266.841263][ T31] RSP: 002b:00007fca96e210e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1266.849743][ T31] RAX: ffffffffffffffda RBX: 00007fca96136138 RCX: 00007fca95f7def9 [ 1266.896737][ T31] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fca9613613c [ 1266.920114][ T31] RBP: 00007fca96136130 R08: 00007fca96e64080 R09: 0000000000000000 [ 1266.928267][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fca9613613c [ 1266.966215][ T31] R13: 0000000000000000 R14: 00007fff37d81ff0 R15: 00007fff37d820d8 [ 1267.007632][ T31] [ 1267.010868][ T31] [ 1267.010868][ T31] Showing all locks held in the system: [ 1267.018960][ T31] 1 lock held by khungtaskd/31: [ 1267.040583][ T31] #0: ffffffff8ddb9b60 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340 [ 1267.060156][ T31] 2 locks held by getty/4989: [ 1267.066465][ T31] #0: ffff8880345310a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 1267.129817][ T31] #1: ffffc900031232f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfba/0x1480 [ 1267.150092][ T31] 1 lock held by syz.3.2635/18056: [ 1267.155303][ T31] 1 lock held by syz.0.3038/19975: [ 1267.190527][ T31] 1 lock held by syz.2.3046/20008: [ 1267.195730][ T31] 3 locks held by syz.0.3097/20194: [ 1267.211881][ T31] [ 1267.214280][ T31] ============================================= [ 1267.214280][ T31] [ 1267.248784][ T31] NMI backtrace for cpu 0 [ 1267.253194][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 1267.263407][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 1267.273596][ T31] Call Trace: [ 1267.276958][ T31] [ 1267.279930][ T31] dump_stack_lvl+0x116/0x1f0 [ 1267.284670][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 1267.289690][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1267.295747][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 1267.301818][ T31] watchdog+0xf0c/0x1240 [ 1267.306141][ T31] ? __pfx_watchdog+0x10/0x10 [ 1267.310884][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 1267.316157][ T31] ? __kthread_parkme+0x148/0x220 [ 1267.321245][ T31] ? __pfx_watchdog+0x10/0x10 [ 1267.325992][ T31] kthread+0x2c1/0x3a0 [ 1267.330109][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 1267.335370][ T31] ? __pfx_kthread+0x10/0x10 [ 1267.340015][ T31] ret_from_fork+0x45/0x80 [ 1267.344504][ T31] ? __pfx_kthread+0x10/0x10 [ 1267.349145][ T31] ret_from_fork_asm+0x1a/0x30 [ 1267.353996][ T31] [ 1267.359001][ T31] Sending NMI from CPU 0 to CPUs 1: [ 1267.365712][ C1] NMI backtrace for cpu 1 [ 1267.365728][ C1] CPU: 1 UID: 0 PID: 20194 Comm: syz.0.3097 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 1267.365760][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 1267.365775][ C1] RIP: 0010:unwind_next_frame+0xdbe/0x23a0 [ 1267.365808][ C1] Code: 24 28 e8 e5 ef ff ff 31 ff 41 89 c7 89 c6 e8 e9 7a 4e 00 48 8d 4b 34 45 84 ff 0f 84 37 f6 ff ff e8 f7 78 4e 00 48 8b 7c 24 28 6d e6 ff ff 48 8b 0c 24 48 ba 00 00 00 00 00 fc ff df 48 c1 e9 [ 1267.365839][ C1] RSP: 0018:ffffc9000387e768 EFLAGS: 00000293 [ 1267.365859][ C1] RAX: 0000000000000000 RBX: ffffc9000387e7e8 RCX: ffffc9000387e81c [ 1267.365877][ C1] RDX: ffff88807aa39e00 RSI: ffffffff813cabc9 RDI: ffffc9000387efb0 [ 1267.365895][ C1] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 1267.365910][ C1] R10: 0000000000000001 R11: dffffc0000000000 R12: ffffffff90b7f2ac [ 1267.365927][ C1] R13: ffffc9000387efb8 R14: ffffffff90b7f2b0 R15: 0000000000000001 [ 1267.365945][ C1] FS: 00007f47db3ff6c0(0000) GS:ffff8880b8900000(0000) knlGS:0000000000000000 [ 1267.365970][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1267.365988][ C1] CR2: 00007f981d307ab8 CR3: 00000000800c0000 CR4: 00000000003506f0 [ 1267.366005][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1267.366021][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1267.366040][ C1] Call Trace: [ 1267.366048][ C1] [ 1267.366057][ C1] ? show_regs+0x8c/0xa0 [ 1267.366097][ C1] ? nmi_cpu_backtrace+0x1d8/0x390 [ 1267.366139][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 1267.366175][ C1] ? nmi_handle+0x1a9/0x5c0 [ 1267.366200][ C1] ? unwind_next_frame+0xdbe/0x23a0 [ 1267.366226][ C1] ? default_do_nmi+0x6a/0x160 [ 1267.366259][ C1] ? exc_nmi+0x170/0x1e0 [ 1267.366290][ C1] ? end_repeat_nmi+0xf/0x53 [ 1267.366319][ C1] ? unwind_next_frame+0xdb9/0x23a0 [ 1267.366345][ C1] ? unwind_next_frame+0xdbe/0x23a0 [ 1267.366371][ C1] ? unwind_next_frame+0xdbe/0x23a0 [ 1267.366397][ C1] ? unwind_next_frame+0xdbe/0x23a0 [ 1267.366423][ C1] [ 1267.366431][ C1] [ 1267.366440][ C1] ? folio_alloc_mpol_noprof+0x36/0xd0 [ 1267.366479][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1267.366510][ C1] arch_stack_walk+0x100/0x170 [ 1267.366542][ C1] ? folio_alloc_mpol_noprof+0x36/0xd0 [ 1267.366581][ C1] stack_trace_save+0x95/0xd0 [ 1267.366610][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 1267.366646][ C1] save_stack+0x162/0x1f0 [ 1267.366686][ C1] ? __pfx_save_stack+0x10/0x10 [ 1267.366725][ C1] ? post_alloc_hook+0x2d1/0x350 [ 1267.366752][ C1] ? get_page_from_freelist+0x1351/0x2e50 [ 1267.366784][ C1] ? __alloc_pages_noprof+0x22b/0x2460 [ 1267.366817][ C1] ? alloc_pages_mpol_noprof+0x275/0x610 [ 1267.366858][ C1] ? folio_alloc_mpol_noprof+0x36/0xd0 [ 1267.366899][ C1] ? find_held_lock+0x2d/0x110 [ 1267.366929][ C1] __set_page_owner+0x8f/0x790 [ 1267.366969][ C1] ? __pfx_lock_release+0x10/0x10 [ 1267.367007][ C1] ? __pfx___set_page_owner+0x10/0x10 [ 1267.367049][ C1] ? bad_range+0x264/0x440 [ 1267.367072][ C1] ? lockdep_hardirqs_on+0x7c/0x110 [ 1267.367115][ C1] post_alloc_hook+0x2d1/0x350 [ 1267.367146][ C1] get_page_from_freelist+0x1351/0x2e50 [ 1267.367188][ C1] ? __pfx___might_resched+0x10/0x10 [ 1267.367229][ C1] ? __pfx_get_page_from_freelist+0x10/0x10 [ 1267.367264][ C1] ? prepare_alloc_pages.constprop.0+0x412/0x560 [ 1267.367295][ C1] __alloc_pages_noprof+0x22b/0x2460 [ 1267.367331][ C1] ? __pfx_mark_lock+0x10/0x10 [ 1267.367365][ C1] ? lock_acquire+0x1b1/0x560 [ 1267.367403][ C1] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 1267.367435][ C1] ? mark_lock+0xb5/0xc60 [ 1267.367469][ C1] ? hlock_class+0x4e/0x130 [ 1267.367494][ C1] ? mark_lock+0xb5/0xc60 [ 1267.367527][ C1] ? __pfx_mark_lock+0x10/0x10 [ 1267.367562][ C1] ? __lock_acquire+0xbdd/0x3cb0 [ 1267.367602][ C1] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1267.367651][ C1] ? policy_nodemask+0xea/0x4e0 [ 1267.367690][ C1] alloc_pages_mpol_noprof+0x275/0x610 [ 1267.367734][ C1] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 1267.367782][ C1] ? find_held_lock+0x2d/0x110 [ 1267.367817][ C1] folio_alloc_mpol_noprof+0x36/0xd0 [ 1267.367871][ C1] shmem_alloc_folio+0x135/0x160 [ 1267.367920][ C1] shmem_alloc_and_add_folio+0x19c/0xce0 [ 1267.367955][ C1] ? filemap_get_entry+0x1b2/0x3c0 [ 1267.367996][ C1] ? __pfx_filemap_get_entry+0x10/0x10 [ 1267.368039][ C1] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 1267.368072][ C1] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1267.368122][ C1] ? __shmem_is_huge+0x213/0x300 [ 1267.368164][ C1] shmem_get_folio_gfp+0xa62/0x15e0 [ 1267.368202][ C1] ? __pfx_mark_lock+0x10/0x10 [ 1267.368243][ C1] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 1267.368279][ C1] ? find_held_lock+0x2d/0x110 [ 1267.368313][ C1] shmem_write_begin+0x15a/0x2f0 [ 1267.368349][ C1] ? __pfx_shmem_write_begin+0x10/0x10 [ 1267.368383][ C1] ? balance_dirty_pages_ratelimited_flags+0x92/0x1270 [ 1267.368428][ C1] generic_perform_write+0x315/0x970 [ 1267.368464][ C1] ? __pfx_generic_perform_write+0x10/0x10 [ 1267.368493][ C1] ? __pfx_generic_write_checks+0x10/0x10 [ 1267.368532][ C1] shmem_file_write_iter+0x10e/0x140 [ 1267.368567][ C1] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 1267.368601][ C1] __kernel_write_iter+0x318/0xa80 [ 1267.368638][ C1] ? __pfx___kernel_write_iter+0x10/0x10 [ 1267.368672][ C1] ? get_dump_page+0x15c/0x220 [ 1267.368711][ C1] ? get_dump_page+0x148/0x220 [ 1267.368748][ C1] dump_user_range+0x389/0x8a0 [ 1267.368792][ C1] ? __pfx_dump_user_range+0x10/0x10 [ 1267.368839][ C1] ? dump_align+0xa3/0xd0 [ 1267.368877][ C1] ? __pfx_writenote+0x10/0x10 [ 1267.368905][ C1] elf_core_dump+0x2727/0x3810 [ 1267.368930][ C1] ? hlock_class+0x4e/0x130 [ 1267.368964][ C1] ? __pfx_elf_core_dump+0x10/0x10 [ 1267.368989][ C1] ? kasan_save_stack+0x42/0x60 [ 1267.369015][ C1] ? kasan_save_stack+0x33/0x60 [ 1267.369042][ C1] ? __kasan_kmalloc+0xaa/0xb0 [ 1267.369067][ C1] ? __kmalloc_node_noprof+0x211/0x440 [ 1267.369099][ C1] ? __kvmalloc_node_noprof+0x9d/0x1a0 [ 1267.369131][ C1] ? irqentry_exit_to_user_mode+0x13f/0x280 [ 1267.369155][ C1] ? asm_exc_page_fault+0x26/0x30 [ 1267.369196][ C1] ? 0xffffffffff600000 [ 1267.369245][ C1] ? do_coredump+0x29e4/0x3da0 [ 1267.369282][ C1] do_coredump+0x29e4/0x3da0 [ 1267.369326][ C1] ? __pfx_do_coredump+0x10/0x10 [ 1267.369383][ C1] ? find_held_lock+0x2d/0x110 [ 1267.369423][ C1] get_signal+0x237c/0x26d0 [ 1267.369454][ C1] ? force_sig_fault+0xad/0xf0 [ 1267.369481][ C1] ? __pfx_get_signal+0x10/0x10 [ 1267.369512][ C1] arch_do_signal_or_restart+0x90/0x7e0 [ 1267.369547][ C1] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1267.369579][ C1] ? __bad_area_nosemaphore+0x334/0x6a0 [ 1267.369623][ C1] ? do_user_addr_fault+0x920/0x13f0 [ 1267.369667][ C1] irqentry_exit_to_user_mode+0x13f/0x280 [ 1267.369694][ C1] asm_exc_page_fault+0x26/0x30 [ 1267.369732][ C1] RIP: 0033:0x7f47db97df01 [ 1267.369751][ C1] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 1267.369776][ C1] RSP: 002b:0000000000000006 EFLAGS: 00010217 [ 1267.369795][ C1] RAX: 0000000000000000 RBX: 00007f47dbb35f80 RCX: 00007f47db97def9 [ 1267.369812][ C1] RDX: 00000000000000e8 RSI: 0000000000000006 RDI: 0000000100000001 [ 1267.369836][ C1] RBP: 00007f47db9f0b76 R08: 0000000000000004 R09: 0000000000000000 [ 1267.369852][ C1] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 1267.369868][ C1] R13: 0000000000000000 R14: 00007f47dbb35f80 R15: 00007ffcd8ceb658 [ 1267.369895][ C1] [ 1268.131377][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 1268.138385][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 1268.148939][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 1268.159640][ T31] Call Trace: [ 1268.162958][ T31] [ 1268.165931][ T31] dump_stack_lvl+0x3d/0x1f0 [ 1268.170662][ T31] panic+0x6dc/0x7c0 [ 1268.174807][ T31] ? __pfx_panic+0x10/0x10 [ 1268.179440][ T31] ? preempt_schedule_thunk+0x1a/0x30 [ 1268.184961][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1268.191372][ T31] ? preempt_schedule_thunk+0x1a/0x30 [ 1268.196810][ T31] ? watchdog+0xd76/0x1240 [ 1268.201278][ T31] ? watchdog+0xd69/0x1240 [ 1268.205752][ T31] watchdog+0xd87/0x1240 [ 1268.210161][ T31] ? __pfx_watchdog+0x10/0x10 [ 1268.214887][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 1268.220138][ T31] ? __kthread_parkme+0x148/0x220 [ 1268.225207][ T31] ? __pfx_watchdog+0x10/0x10 [ 1268.229940][ T31] kthread+0x2c1/0x3a0 [ 1268.234060][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 1268.239403][ T31] ? __pfx_kthread+0x10/0x10 [ 1268.244210][ T31] ret_from_fork+0x45/0x80 [ 1268.248856][ T31] ? __pfx_kthread+0x10/0x10 [ 1268.253488][ T31] ret_from_fork_asm+0x1a/0x30 [ 1268.258325][ T31] [ 1268.261639][ T31] Kernel Offset: disabled [ 1268.265996][ T31] Rebooting in 86400 seconds..