last executing test programs: 6.4583891s ago: executing program 0 (id=4494): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r0 = socket(0xa, 0x1, 0x84) (async) r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) r2 = io_uring_setup$auto(0x6, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) socket(0x2, 0x6, 0x0) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r4, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000dc0)={0x18, r3, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@ETHTOOL_A_MODULE_EEPROM_HEADER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4004084}, 0x82) (async) read$auto(r4, 0x0, 0x2184689f) (async) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback}, 0x55) (async) pread64$auto(r0, &(0x7f00000000c0)='.\xf1e4\xdf\x16\x95kxE\xd9x\x15\xb0\xf6V\x93\xb4E\x06\xc5}l', 0x4, 0x7) close_range$auto(0x2, 0x8000, 0x0) (async) socket(0xa, 0x2, 0x88) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) mq_open$auto(&(0x7f0000000000)='.\xf1e4\xdf\x16\x95kxE\xd9x\x15\xb0\xf6V\x93\xb4E\x06\xc5}l', 0x400056a, 0x9, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_3={0x0, 0x8, 0x5, 0x7, 0x4, 0x1ff, 0x6, 0x8001, 0x7, "cfec424dbe23cf85d11f62e0c5797cf4", 0x0, 0x0, r5, 0x38e1, 0x4, 0x1, 0x8, 0xf84, 0x7f, 0x8, @attach_btf_obj_fd=r2, 0xa, 0x7, 0x5, 0x9, 0x7fffffff, r1}, 0xa3) (async) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000000)=@link_update={0xa, @new_prog_fd=0x77, 0xa, @old_map_fd=r1}, 0x20010) (async) r6 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r6, 0x6f2d, 0x0) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0xc) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf) r7 = socket(0xa, 0x2, 0x0) setsockopt$auto(r7, 0x29, 0x30, 0x0, 0x56b) 6.28487473s ago: executing program 1 (id=4495): sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x0, 0x200, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8080}, 0xc041) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x88) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x700000000000000, 0x9}, 0x7}, 0x3, 0x0) 6.141653072s ago: executing program 1 (id=4497): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vhci_hcd.0/usb10/10-0:1.0/ep_81/bInterval\x00', 0x3e3bc0, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r2, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000dc0)={0x4c, r1, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@ETHTOOL_A_MODULE_EEPROM_I2C_ADDRESS={0x5, 0x6, 0x9}, @ETHTOOL_A_MODULE_EEPROM_LENGTH={0x8, 0x3, 0x7}, @ETHTOOL_A_MODULE_EEPROM_PAGE={0x5, 0x4, 0xe9}, @ETHTOOL_A_MODULE_EEPROM_OFFSET={0x8, 0x2, 0xff}, @ETHTOOL_A_MODULE_EEPROM_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4004084}, 0x82) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000000180)='/proc/stat\x00', 0x8600, 0x0) select$auto(0xa, 0x0, &(0x7f0000000100)={[0x20800000000d, 0x203, 0x4, 0xc, 0x5, 0x3, 0x5, 0x0, 0x9, 0x8, 0xff, 0xa, 0x4, 0xaab, 0x5, 0x4002]}, 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000240)=""/5, 0x5) 6.0048955s ago: executing program 1 (id=4499): r0 = socket(0x5, 0x80000, 0x10000) ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) setsockopt$auto(r1, 0x104000000000010e, 0x2, 0x0, 0x400) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vbi7\x00', 0x400, 0x0) setgroups$auto(0xc00000000, 0xfffffffffffffffc) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x6c09c2, 0x0) setsockopt$auto(r3, 0x0, 0x0, &(0x7f0000000180)='/dev/rtc0\x00', 0xfffffffc) ioctl$auto(0xffffffffffffffff, 0x2285, 0x1cfc4b42) select$auto(0x7, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x6, 0x15, 0x1000, 0x100000001, 0xc, 0xf, 0x0, 0x0, 0xe, 0xd59, 0x101, 0xff, 0x2, 0x80000001]}, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7) r5 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) sync_file_range$auto(r5, 0x8001, 0x0, 0x1) r6 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r6, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) acct$auto(0x0) mprotect$auto(0x4000, 0x0, 0x2) ioctl$auto(0x3, 0x40085618, 0x38) sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0) r7 = syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NLBL_UNLABEL_C_STATICREMOVEDEF(r2, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7, @ANYBLOB="020028bd7000fc931c3a4800fedb"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x20048001) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f00000049c0), 0xffffffffffffffff) sendmsg$auto_SMC_PNETID_FLUSH(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000004a40)={&(0x7f00000002c0)=ANY=[@ANYRES8=r9, @ANYRES16=r9, @ANYBLOB="01002abd7000fedbce1104000000", @ANYRES64=r4], 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0) 5.499039614s ago: executing program 0 (id=4502): r0 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c3002, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x0) socket(0x2, 0x6, 0x0) sysfs$auto(0x2, 0x0, 0x0) epoll_create$auto(0x4) r1 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r1, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) epoll_ctl$auto(0x5, 0x3, r1, 0x0) openat$auto_supply_map_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) pread64$auto(r0, 0x0, 0x36, 0xc) 5.351207179s ago: executing program 0 (id=4503): mount_setattr$auto(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000100)={0x40, 0x0, 0x6, @raw=0x5}, 0xf09) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity_list\x00', 0x129542, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) (fail_nth: 1) 4.8909212s ago: executing program 0 (id=4506): unshare$auto(0x40000080) (async) mmap$auto(0xfffffffffffffffc, 0x2020009, 0x7f, 0x200000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0xfffffffffffffffc, 0x18, 0x40017) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) futex_requeue$auto(0x0, 0x80, 0x2, 0x101) bpf$auto(0x23, 0x0, 0x101) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async) socket(0x18, 0x5, 0x2) (async) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async) unshare$auto(0x40000080) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) memfd_create$auto(0x0, 0xe) (async) socket(0x28, 0x3, 0x20001fe) (async) mmap$auto(0x800000f000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) (async) connect$auto(0x3, &(0x7f00000000c0), 0x8055) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) madvise$auto(0x0, 0x600007, 0x19) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) ioctl$auto(0xc8, 0x400454d9, 0x5c8d) (async) mlockall$auto(0x7) (async) r0 = openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f0000000040), 0x470a80, 0x0) mmap$auto(0x1, 0xa, 0x4000000000df, 0xebd, r0, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x28, 0x9}, 0x7}, 0x2000007, 0x0) (async) socket(0x10, 0x2, 0x0) 3.961898486s ago: executing program 0 (id=4511): mbind$auto(0x9, 0xffffffff, 0x4, &(0x7f0000000000)=0x40, 0x5, 0x2) mmap$auto(0xa, 0x0, 0x89, 0x8000001000016, 0x9, 0x3) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/ns/cgroup\x00', 0x4, 0x0) mknod$auto(0x0, 0xc9, 0xc8) sendfile$auto(0x1, 0x3, 0x0, 0xc01) recvmmsg$auto(0x3, 0x0, 0x687bcbd, 0x8, 0x0) shutdown$auto(0x200000003, 0x2) sysfs$auto(0x200002, 0xfffffffffffffffc, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmstat\x00', 0xc0000, 0x0) sendfile$auto(0x2, 0x3, &(0x7f0000000040)=0x80, 0xc3e0) set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x56) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) get_mempolicy$auto(0x0, 0x0, 0x8, 0x400, 0xfffffffffffffffe) 1.925552179s ago: executing program 1 (id=4516): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/pcrypt/pencrypt/serial_cpumask\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) read$auto(0x3, 0x0, 0x400000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/pcrypt/pencrypt/serial_cpumask\x00', 0x0, 0x0) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async) openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) (async) read$auto(0x3, 0x0, 0x400000) (async) 1.907665484s ago: executing program 3 (id=4524): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) shmctl$auto(0x3, 0x3ff, &(0x7f0000000340)={{0x2, 0x0, 0x0, 0x6, 0x3, 0x7, 0x200}, 0x3, 0x8, 0x7f, 0x1, @raw=0x4, @inferred, 0x8003, 0x0, 0x0, 0x0}) r0 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) connect$auto(r0, &(0x7f0000000040)=@vsock={0x28, 0x0, 0x0, @host}, 0x9) ioctl$auto(0xc8, 0x400454ca, 0x5c8d) 1.274973612s ago: executing program 1 (id=4518): sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x0, 0x200, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8080}, 0xc041) r0 = creat$auto(&(0x7f0000000000)='./file0\x00', 0xb50) mmap$auto(0x0, 0x20007, 0x0, 0x7fff, r0, 0x7ffc) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) connect$auto(0x4, 0x0, 0x10) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) open(0x0, 0xe63e, 0x20) socket(0x23, 0x80805, 0x0) memfd_secret$auto(0x0) socket(0x2b, 0x1, 0x1) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x8004) connect$auto(0x3, &(0x7f0000000140), 0x55) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) read$auto(0x4, 0x0, 0xfdef) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x88) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.274755305s ago: executing program 2 (id=4519): setregid$auto(0x81, 0x5) close_range$auto(0x1, 0x8000, 0x0) r0 = socket(0x2, 0x5, 0x0) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x155) open(&(0x7f0000000080)='./file0\x00', 0x303383, 0x74) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000afd003a5394e965231da1bd312e7af6d67d0"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xfffffffe) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), r1) sendmsg$auto_NL802154_CMD_TRIGGER_SCAN(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYRES8=r1, @ANYRES16=r3, @ANYRESHEX=r2], 0x24}, 0x1, 0x0, 0x0, 0x400c042}, 0x24000000) socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x9, 0x8000000000000001, 0x8b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r4 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x4, 0x8000000000001, 0xffff}, 0x9, 0x0) landlock_restrict_self$auto(r4, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$auto(r5, 0x8, 0xffffffffffffffff) close_range$auto(0x0, 0xfffffffffffff000, 0x0) r6 = openat$auto_vrr_range_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Writeback-1/vrr_range\x00', 0x2b0842, 0x0) getsockopt$auto(r6, 0x364, 0x10, 0xfffffffffffffffd, 0x0) r7 = set_tid_address$auto(&(0x7f0000000200)=0x4) wait4$auto(r7, &(0x7f0000000240)=0x8, 0x8, &(0x7f0000000280)={{0x4085f30a, 0x2}, {0x0, 0x5}, 0xa, 0xf60, 0x1, 0x0, 0x7f, 0x401, 0x8000, 0x1, 0x100052d0, 0x0, 0x908, 0x100000004, 0x6, 0x10001}) clone$auto(0x7fff, 0xff, &(0x7f0000000600)=0x8000, 0x0, 0x7) 1.27377529s ago: executing program 3 (id=4520): mount_setattr$auto(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000100)={0x40, 0x0, 0x6, @raw=0x5}, 0xf09) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x189dc3, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000000, 0xff3f) msgsnd$auto(0xa1, &(0x7f0000000080)={0x40, 0x8}, 0xd, 0x80) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 1.183445775s ago: executing program 3 (id=4521): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x1000) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010600bd7000fbdbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40804) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r0 = getsockopt$auto(0x3, 0x200000000001, 0x3b, 0x0, 0x0) r1 = socket(0x21, 0x2, 0x0) sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0) close_range$auto(0x2, 0x8000, 0x0) mkdir$auto(&(0x7f0000000300)='}[,&*}\x00', 0x5) mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', &(0x7f0000000140)='nfsd\x00', 0x10000, 0x0) mknod$auto(&(0x7f00000001c0)='}[,&*}/../file0\x00', 0xc9, 0x4) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000280), 0xa51c1, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x7) setsockopt$auto(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000000)='\xa0\x8b\x82\xb4\xa0O\xc9\xed_Q\xd1X2\xd9\xcd\x01W146F\xf7\xf4u\xbf\xce\xad)\xa5/\xa9\xc9\xe6Gn+\x11u\x1e\x8e\x8f\x89\x19C\xdf\xc1*\xcb\x10\b\xf9\xed\xeak\xb0\xea\t\xddx\xf5w\xaeu\xd1WL!\x98W\x1f\xf1\x97$\xdb\x9f\x97\xbc\xa80ro\x16\xc4\x8c\xd1\xf8\xc16h0\xa03\xb4vr~\x824\xed9\xe0$a\xad\xd3\x16+\xc5b\xb5,A\xba\xd6\xee\x9b\xdf2\x03;$R*\xd9iy\x0e\xbe\xe32\xfd\x1d\x94\x8bC\xe9\x8b7\x83;\xa1H\xe1\xbd\x8eW\xb5\xf9\x98\xcf\xef\xf4m\x96S\xcf\xdb\xe8[\xff\xa6?^1B\xda*\xc4\t$`V\xdc\x03&\xd1\xcf\xe9}\x859wKR\xf9\x1e\xbfH\\\x0ev\x891\xd0\xfe\xfb_\xa4\x87\xf7\x1c\x8a0\x1f\xbd\x8fq\x80BJ\xad6{\x93%\xc8\x81l\x17\bk\xf8\xa4\xb1\xdd\xd0\xde\xfdJS\xbf\a{o7\xc0\xe7i|\xab\a\xa8\xf1\xacmU\x98^\x12\x1b\xc7\xa6@\x1d\x8d4S\x06\xa6]\x9d{4\xf5\xf2\t\xb7\xc9\x06\xb6\xd0\x89\x8a\xdf\xb5\x06vb6\n^\xd8DZG \xbbR#\xb5p\xe6]r\x06\x8f\nV\xed\x04\xf8\xce\xca6\xdfwf\xfeJ\bryV', 0x5) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000540)={&(0x7f0000000480), 0xc, &(0x7f0000000500)={&(0x7f0000000800)=ANY=[@ANYBLOB="f0110000", @ANYRES16=0x0, @ANYBLOB="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"], 0x11f0}}, 0x80) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="a916e4008540c7dc3159be64ed5574c70605a43ef9b789d45677df9efc896f4ab68988947c17d1fb16b75d81d679a6354f790f26591608b2b67c4dfb7cd6ffcce2625f2fa5980ab2311b76e229e6b4b4def0555b26a64d097c5a459a852d4fa24294a53d79973b9366a6681c236421c73838f8d10ca6705589f9ac0551c85eb2185a72a97a24bc9430ccd60c1d59a1a7f3d1410fa94a09dc5719fd36db67e723ad55", @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a0080"], 0x14}, 0x1, 0x0, 0x0, 0x20040844}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='J'], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/bdi/7:10/min_bytes\x00', 0x0, 0x0) io_uring_setup$auto(0x3ff, 0x0) mmap$auto(0xfffffffffffffffe, 0x8, 0x329, 0x1001e, 0x2, 0x8000) truncate$auto(&(0x7f0000000040)='./file0\x00', 0x8000000000000000) clone$auto(0x804, 0x8001, 0xfffffffffffffffe, 0xfffffffffffffffc, 0xd4) mincore$auto(0x7f, 0xda79, &(0x7f0000000080)='%{\x00') 1.065157021s ago: executing program 0 (id=4522): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioperm$auto(0x7, 0x6, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) ioperm$auto(0xfb, 0x5, 0xe) mmap$auto(0x0, 0x20007, 0x80000000000000de, 0x12, 0x0, 0x8000) map_shadow_stack$auto(0x40, 0x7, 0x1ff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="3e170a98", @ANYRES16, @ANYBLOB="200626bd7000fbdbdf250500000004003c00040083005a00bb00b1f7191189d75a2b77e453caa2288d59e554c2c5903fd2d506257f1d27bacf28c7473c6d64a6"], 0x80}, 0x1, 0x0, 0x0, 0x80}, 0xc005) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYRESDEC], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) r2 = socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r0, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth0_to_hsr\x00'}) socket$nl_generic(0x10, 0x3, 0x10) getrandom$auto(0x0, 0x6000000, 0x3) r4 = socket(0x840000000002, 0x3, 0xff) setsockopt$auto(r4, 0x0, 0x4, 0x0, 0xcc) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) init_module$auto(0x0, 0x10001, 0xfffffffffffffffe) 1.056779004s ago: executing program 2 (id=4523): openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/032/001\x00', 0x202, 0x0) r0 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/32t\x00', 0x82000, 0x0) read$auto_mon_fops_text_t_mon_text(r0, 0x0, 0x60) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/net/bonding_masters\x00', 0x100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001c00)=""/4095, 0xfff) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x1000000, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa801, 0x0) ioctl$auto(0x3, 0x80045518, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x3, 0x6) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0xc) setsockopt$auto(0x6, 0x8000000000000006, 0x11, 0x0, 0x7ffffc) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8000, 0x0) ioctl$auto(0x3, 0xc0481273, 0x38) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x5, 0x4909b6f8, 0x1ffdf, 0x7, 0xffffffffffffffff, 0x2, 0x9, 0x3, 0x6, 0x7, 0xb4, 0x20000000000009, 0x6, 0x10003, 0x4081, 0x4, 0x0, 0x7, 0x2000, 0x200, 0x8001, 0x6, [0x0, 0x0, 0x2, 0x50100000000000, 0x0, 0x200, 0x0, 0xa, 0x70624ce7, 0xefde, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x7, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1, 0xfffffffffffffffe, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x400000000005b4, 0xc, 0xffffffffffffffff, 0x9, 0x0, 0x6, 0x9, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x0, 0x6, 0x7, 0x2, 0x3, 0x4, 0xfffffffffffffffe, 0x9]}, 0x1fe, 0xd) ioctl$auto(0x3, 0x1276, 0x7) close_range$auto(0x2, 0xffffffffffffffff, 0x0) 777.171412ms ago: executing program 3 (id=4525): r0 = socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0) semtimedop$auto(0x9, 0x0, 0x0, &(0x7f0000000040)={0x4, 0x1}) r1 = socket(0xa, 0x5, 0x0) getsockopt$auto(r1, 0x0, 0x9, 0x0, &(0x7f0000000140)=0x100) r2 = socket(0x2, 0x1, 0x0) getsockopt$auto(r2, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x200039) r3 = getpid() r4 = gettid() rt_tgsigqueueinfo$auto(r3, r4, 0x21, 0x0) fcntl$auto(r2, 0xe, r3) epoll_wait$auto(r0, &(0x7f0000000000)={0x7, 0x9}, 0x7ff, 0x6) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x567) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0) 617.940367ms ago: executing program 2 (id=4526): sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x0, 0x200, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8080}, 0xc041) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x88) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x1400000000000000, 0x9}, 0x7}, 0x3, 0x0) 584.933215ms ago: executing program 3 (id=4527): r0 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c3002, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x0) socket(0x2, 0x6, 0x0) sysfs$auto(0x2, 0x0, 0x0) epoll_create$auto(0x4) socket$nl_generic(0x10, 0x3, 0x10) pread64$auto(r0, 0x0, 0x36, 0xc) 476.588557ms ago: executing program 2 (id=4528): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyyc\x00', 0x1d5f6e211061307b, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) socket(0xa, 0x2, 0x0) (async) setsockopt$auto(0x400000000000003, 0x29, 0x2a, 0xffffffffffffffff, 0x3) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vidtv.0/i2c-0/delete_device\x00', 0x1, 0x0) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/pcm1p/sub5/hw_params\x00', 0x80000, 0x0) mmap$auto(0x0, 0x20009, 0xfff, 0xeb1, 0x401, 0x7) (async) r0 = socket(0xa, 0x801, 0x84) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xebc, 0x401, 0x8002) (async) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000) (async) clone$auto(0x25, 0x3, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) ioperm$auto(0x7, 0x6, 0x80) init_module$auto(0x0, 0x75f6, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) bind$auto(0x3, 0x0, 0x68) (async) connect$auto(0x3, 0x0, 0x55) (async) syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, 0x0, 0x2000, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2800, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) (async) setsockopt$auto(0x3, 0x10000000084, 0x80, 0x0, 0x8) r2 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000040)='/dev/usbmon26\x00', 0x40000, 0x0) ioctl$auto_MON_IOCG_STATS(r2, 0x80089203, 0xffffffffffffffff) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/queue/io_poll_delay\x00', 0x181482, 0x0) read$auto(r3, 0x0, 0x9) (async) socket(0x18, 0x5, 0x1) 407.935376ms ago: executing program 3 (id=4529): r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/ksm_merging_pages\x00', 0x181100, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptys9\x00', 0x280040, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) read$auto_proc_single_file_operations_base(r0, &(0x7f0000000040)=""/137, 0x89) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0xebd, 0x401, 0x1000000007ffd) userfaultfd$auto(0x816) mlockall$auto(0x7) socket(0xa, 0x2, 0x3a) mmap$auto(0x0, 0x8, 0x4000000000df, 0xeb0, 0x401, 0xffffffff00200000) socket(0x15, 0x5, 0x0) fanotify_init$auto(0x0, 0x8) pipe$auto(&(0x7f0000000080)) dup2$auto(0x5, 0x4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) write$auto(0x6, 0x0, 0x100000001) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0) mprotect$auto(0x3ff, 0x8000000000000001, 0x4) clone3$auto(0x0, 0x40) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0xffc, 0x100000004, 0x100000002, 0x0, 0x7ff, 0x5) setuid$auto(0xe) syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r2, @new_prog_fd=0x4, 0x4, @old_map_fd=r3}, 0xa3) 271.089265ms ago: executing program 1 (id=4530): r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/net\x00') ioctl$NS_GET_PARENT(r0, 0xff02, 0x0) mount_setattr$auto(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000100)={0x40, 0x0, 0x6, @raw=0x5}, 0xf09) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) mprotect$auto(0x2, 0xfff, 0x2) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity_list\x00', 0x129542, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) r1 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r1, 0x0, 0x5, 0x20000000) write$auto(0x3, 0x0, 0xfffffdef) sendmsg$auto_IEEE802154_LLSEC_LIST_KEY(0xffffffffffffffff, 0x0, 0x24000000) socket(0x11, 0xa, 0x300) mprotect$auto(0x8, 0x8, 0x8000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x0) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 110.935085ms ago: executing program 2 (id=4531): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000004980), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r0, &(0x7f00000074c0)={0x0, 0x0, &(0x7f0000007480)={&(0x7f00000049c0)={0x1590, r1, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x1544, 0x1, 0x0, 0x1, [@nested={0x1cd, 0x5d, 0x0, 0x1, [@typed={0x8, 0x4f, 0x0, 0x0, @pid}, @generic="94088932dac5ad7ea45aefa1924a4375ee9e34c356e5b9eaff459e047eed6bc4407926b05aaed2202c01f7b71db6a4b6cdaef39ecc5e0b6bc622236b2403fbaccf864f894bd3c33df13e04fe475e7bc85c6dd4f8e5010abb4463117cdf1ac7a05d6f392e8b6f7116b4861d85ee92092c10ec0555476ea9808056778332611b5a5ea26c8f229ca0b58c74d4f4783a0e112eb6f398b43221ac12f5d67b520342b57b35f044f8a4bbe98c94dffa75061961d93944954422144bed5510bdf8a6af1b4298d6997c7f6788e356176a", @typed={0x4, 0x31}, @typed={0x8, 0xc2, 0x0, 0x0, @uid}, @typed={0x14, 0x76, 0x0, 0x0, @ipv6=@local}, @typed={0x8, 0x34, 0x0, 0x0, @u32=0x7}, @typed={0x8, 0x107, 0x0, 0x0, @pid}, @generic="4a8334f0fbeca932029a58e76d1fdf51b6253ea7b7ac4fc55793963cbdaa49b342b1f0ff9d835bbbab3d59fe9337805bcffd270334a4456bec6a4bd821eefdb52df9f2a8e2051af8dc9c4cda3ca434f43bb22d30d7c654b920d1c7c897e3961a3fc543366732743bf4d2acf012c8416e0d76221bb49bb08367e305f1bd0df19a1c07bac433b059a89824062093c6d3b520bec958adf05f1acf65ac320ba5ad7c89c392343375017a1cbb28bdf2b654f018048ceaabb8991e013c2c2b14794213b6333b7c5e"]}, @nested={0xec, 0x8c, 0x0, 0x1, [@nested={0x4, 0x25}, @nested={0x4, 0xb7}, @generic, @typed={0x8, 0xf4, 0x0, 0x0, @fd}, @typed={0x8, 0x83, 0x0, 0x0, @u32=0x4}, @generic="2f9985041bdc3fc640216e4564192bcfe81551dc96a7828b42b2453502deeeeaacbb8383475db5bc93a60c8e9670ead8a3ed2621ed1a409cf2d2d808c1d22436d8668c01341a64b7e95b2bca528b6f6c073e9beb11f257e4fd86baf3857edd328eb907023e43c1ef06ed82fd87c796eae250cd3fb56cf1ea782270a86969eec136201e6e7937ce5b22a2ea883307961dd419e459a3b2c8f5699af5b4623e0e2db2611c31afebdfed92d5e2919cb85bde49678b496952129d1861ab31d3345dd83d094fbd65b975f1f793642746baf53b"]}, @nested={0x1dc, 0x70, 0x0, 0x1, [@generic="1a16ef9ecbf23c9cd5ee972a02760a1784e974f190089a1bb37bd339f9f6c54361aa1a722f76766b54ceb3cfc8689ae6689efb58c19cf8362f4dcb8d3a94919c109f9814c3f42a383289045274f330cbfc7db01f691ea40bae83e75faa12b4ee8ef5a3fc9386a575465a437549a3fe8d8b2cd785690b60a3938e2d65ab72dc8be7905211509a0e914d4c11861bbb9addd86d49b32e425f7361a92d3be0c6292162ab9c3cdd70258fbe8d5c13b5410faf33", @generic="6cdfb1603d9bc6257fe2d3c1090d200cd1e29fbcbd5315852906a610487c5cf7f221471f0711d66349a96da78ad598bf8b6ec739c9e51215d9251ae52fa36cc5207ea8a2513bfc4b4dda88024647877deec9f5a712f10778360604765f96a0b3310026b19e500b", @generic="68c16c7501797d7ab353b4d27c0f65240b3f8674614daeabd4e94da2e4ec22af6422aa170829ad9b3aebb475ffb013fe5897ceb6c4db351d314235e00c13d4a82202d5a810d6aa829ec62ac20bc51f7f84c74ad3b6080be619a8419d779a371ad397129048b3c42f4c8111d8f247917a5af1ddc326fa93dcddc0d6824fef75056855615bb5a769ebd50580f0409e26b86917478499b67d7962f767c74f2e37eb19763c340a66cb23c90d8b08ed5194ecea115df41f1363b6e02676b0d893635c"]}, @nested={0x10a2, 0x75, 0x0, 0x1, [@generic="f9338bbe74c98b04b176e7e9a9724e7b039a5b3a049d1da3947ba14b8cd96f04e26aaea2e7a0ea3a45e4328f9cc753458763b9669390468b931e93fb942fecc4ad3109d04cb6de538b1a9315fee6a5b06d3e62148f44da1ac3a0a3674e75e99ee25e21f589683c7970644f1123c7fed4a9e4b073aebd5590ce71ba0731cc0a0f89dfc0a6eb499aa0de459d5241fefb04bbe5c2e6726546e67e81516d76f4", @generic="d2003b360ee80950bd657ccedc652cdb23166a9175d8eaeebd140f4adbd5c4e3a5d164d2117a1ec50ef68489684feab1daa7f80deb812c3c23efa952ab3c99d23679a5a213b973712bc65c9bb96d98c37078d1a1b00570ad72482d738837f44ffd396ecd61fdeae2175589ded04079652354ee6a11066874d605a577068603bd134a8f114f04898345dcdee653feefe6b52cb7b008adbc1de5a1f0e2b24d7d4c2e7401e2f08838acda3e9a0c6a93356d1bd894a6e5766ac253545cfb10fb7fd6872391b8fb09fa996c42f4a34ac137786a61683c11e62b42650c62022a4034dbae5b0f0a4e718691f42358573c1e5dcff2a12d1cedc2171a92985224be0e6129c725485ad3b2f491526b9f105ae190ef67f4aa533f3796a58ba91af1ce8d782b34bbe52156510d0820004af056eeaa6d05a7a70de3e725a063d42146952d6f6935a2f2cbc4f38c1255cb3047c94674b3a5ce8c35eac77ea3beacd8358e01fe121e625595c7aa994c8a321eb0c277acfab7539ac9820867d5b81dd6791e6e6632cf3a9c7203c783e2d7cd6d6cc635bdefd68987c31cb6d0ac4c5268e6d4a592dbd1c689acd01b1073fe0c17a1bb46b0d9e18e8c4b9d90401bd40fe09fa5098d69f9d94d5e31ea27e1a93cfdcf4a8cff1932c2272fd59e9d753ab8cfcd134fa3a2270d4808274c2c1075f5a82a5670c8989415eea050d904a524f0b7884301cc8ed9c2eee3fb414e32ada89638ca6f7b9f8bdbb48d34ee769434bab915f9f8c3ee105d7e138fb8a8fbf59ccce1efa2375ddba769a276e61f7fc2273116fa6678892dac93f0a783c66b3eb6161f429ae9552c1c145711aa710e64c34124b4094946b3e1049a1ef4183b083a7bb49abbdc212989f3cb6db29956609a7df985875a52cb1c26ab44a1cd75cc3ca73ec9091f40dac74887f43004a6d1802019a95f08f4697b2b9b7d8f27fb72a9ee21546c680354a26739b240c882bb2b7f9fd8af95ae134f5bee49877258715dedb0df1f6eb1bee8445e649a5ffde74eb404554d491363c1d377345e22e251199e22cc023658cedebe50b5e46911b165d75a77d3bcf60c95f8de288986dee4bffd211c796ee7666d68d3596503a1860aa3a734494503c31d94af962e88e2d7295e04d631712e4f799a90f9bbfb0e07579ff722247ee5b8eab1b714fd7814a21b7f6e3557366a2b5ac880b3bf9e580490dbd52da3c3b07a7576e80a063bc47904d39c0545f8b03a5d3443d2b499a3e4222b494213e611dd0eaa491c7bbab957aa8ad3e82ff460f9722a09936a423149ed833c6b387255e2cc930c7b8042597202c7ea5f1d13adc2f5b11662fc32e5a84ade7c23537f8765a9382fe34b8c53b5dadb421785aa4d02ad19def6b05d2a7647d70c1f45523deb5a5b4725e87c36cb54bb7a3a133d209cea84ef2d040b6f35b9ff72c75ede071e578b8e6bc658681dc80693a028ad9d8498e1956e69a45aedc55ea32ba9e268c1b4cc9abe8047acde84daed34336377c5ea4c6a4e33a4c39aa6f6715379d3983b9882c2dc25cb7003af82f667eabd13fba78b019118a39d0459a4c26f02e6102d1a3ec4c202f24c009bc8a544a8424f8c2e02abd7809b707e3319cd95c933090eb971c4fb7baf8f3fb1041bec7971c1b846b121303cfb7ce188c1843a61b9220c8d63d18d59d680e7600cc5d6548d9f71f724a5b6ed8ea71db3277cf3a863c68fc690cf0a7a383b1f24ff78370075a9105874a6e17ca2eded32d461ca72d7756a28595e80c42529671d85a0153f862c0534e24f772a8f4eb6eb6e64da4207a69bc885027f55007e1823db54df306232a986903dce344914939d68df4336d7c0ede0872b1de1c215b8db753dc2995aa050051231341d7d2efb9388303b7e47c738996280c87015f6dc39c8c37489d1a177f9e838a646377cd6da0af9c923e0c9a8f385b48b17f7875c017bc03cdee94d7e95ee972ac5a47956a442fcef8aab056c20de98da6063729add38effe06f78382a84a6a7ff789b6e6dfa926406b5f29ac6afec51ea8509d9860f7f7dc71cce47dd50e17912bb2da11c23539689a040814e8e02eacf2b108acf0502dc1ec599e24c30a6283a41e1d5e4a6e418c1e1152b8bba291229c36f9977706bc90bed3d1e89432edc9c2f56f16ea59f1d9889568f999405ecfba8401517ed6cd81edf0c99b4cdfe8feb23ba8c8f6a0fea75fb7c7dce2b674895a87ffee6fe08065ed83d96e07bf7ddb7a0c385d8fe8958314d746fbab4d3819b1534983b60ec344789ee3b1bd899085d4df4bafdcac8f225390eff9028854ffffae5545dc6eab2277c165628a89f41d2f71e54cbaa4a66a1f47ab014a30ac18717282fd31927730530271f0b98a2ccb7f23fe18904e8b68d19f331b056a27904a678c6668d51011fd7e5ad1386c8fdec24555f73c2367f9c281f9ffbb9ad01a8377b275da6879e2abe991371794b8af4763303cc5bde6f6f5f56757958706dd33335ece63665abbfde0ca9869dcd2cd1d19178259fc411d49e0df5f4c66bf469f43ddcf23b03045672807601d3ef64b5e62a1b578faca75e4b47f902b1ce96336ee5acdc86fd7fe1c09c820518898f12c487532c2d0aaf33d63ee02c7663f4100a37456e330fed40a41dc7adefac562a8000a35f11ae8054b1f39ac37c009e58552f86e8b308bc084863a768a405688481342f3aebcb1e2fa37af45e9b5a6d5e0452ac0c2f86740c5c097b0137b65c9969f6d168661cdf5771a3a0b5339539de175ff38e154c3153a73162d043d116ec8c73d6771629f34f2c6274d56ecf7a7d649a15772fd5f46e20fff8fed52c495befcce57b8d758038eb155b115af6e1813b9fd0d74b5bcedee78780fa20006fd67ea193d788aa6c51a278c34962ffb7b1ebbb1777a50d9b2e92e5db56d64f7ebf87a54a0045c19cb4a6f3cf0404beae8fc670e9205a6bbb6ce82d9429b8ea08d81534da53b0afcf60f6ec183c2e2aa342725dfed397f6169c60f4c8234b52f02376fba5fb0d409876a723a75bb3cca80e6aa52880bbe9bd6f515bb868b20bebc202e1bee0e89d7eb774b621c2cfecab1104802b2d42f219f66d3a6b705679121e218a3b9a9577c7c180cbb43fe4c95161ddf22242449a546935bccf894e3bf277d2c25dce4717616a62a6c19b5593c101c1d0c1ad51c8516f65729b1d74b092619bb965cfb19677e8d8d114abf996b350841faffe92f08ab0500a20f3c427bed3b11d28e5cff1e8d8c22947d79c9915165f3508213889ba34374f9c4a0260ebdc173b2ee9ae1499c34e32e184f3e7e7b63abef2f087d3fc5b4dba75384f9fb314b2ca3d450eb9db0ac36da6fc9a16cd3c0e022b00b95c5fad6da062b5f95b0c74d3ea839ea7b9dab49a66e98e8f4fbcf45143fdd0fe01970af71d357b4b18729e2875fcb82d534808b74a6e6a27583f5aa7bfbe45ee688f3f43f6cb4a5c4f0f6f9867ac4827e225f0254d66d1d45a992c5566f86e9a72c86bdf4869a3ec3ae3d172814133f0c4ef165cd0803b89ec9447a759bb00c7031fa9ce1a0f65a0be285235f10bbd687fe804ea69d13677d21e96c437c595463592c3f253e24c5246301d575578161b6257fc5400bf54990e05c633b49b3e21f155801a34f99bb8a375918a25ac1e5b2bd8d6a6ac250b097cee40763ca25ebfa282cab34721b6b14d43c783203a8066081cd760a8dbd03f3110eeb483a18890cd98b2925457d6fd09fd3bdda1d9a3ab25be022630e9d5a5b10ce82ffb62389c32e86daa75bdcfde0e0f4499ab4433a28ab64e0ec6114a39f9a8491f11965713e8c030364b6417542020549f72136ee5add9861b5c32e964ff9171cd973b443e3e8e86e4ed60a224d47e1027fb51f5af22f96f9f76a41d6094495e769b11fd2dbe3430620539324775ae9739564aa3ae35ba846fffdcdf524bdf2cd2511e4eaf8266453f45da27af89f03020ffc25b1d0df7138fb693d715a3b81e0f79a7bca06fdb8db91399fd908b85d8988172e245836bb826ebd05f2f79b547625bd30de6bc9b4e4941c999bbabee7a09dbfc63e5279b6babc7e32b5d649dc7e7232ecd70e0b87cd1919caff7ee14d20bed79618a79a65adbda3bf46012104c70e5d3023d5559f541b27afc46918d24135ed5105d35f626a08c0ab1a7b5b449f39cabdc079ee60408740e60d9ed1e5b035c569510eee3839ded380e3e216c3e56ba82dccb454b37268e122c447174656c5125d2fe08e318edde7bfff1e1d8df6415dc4ff7463de08cc4f1ff35e32261d473434f4075b6fb8ad07f608a76c05656e79c290c2d750e8b2b3a391e51bb67848ea94630c5829b829627ae7248a64597195e6cddd579d66bf95a701209853aaf40bd98819f86286e395f13ea24d32d32438249e5653d29c22641711d47cbfb387e094b8ddeb175a81a78317bca42b2a1cf71429987fb8dbf9e1445718d71e52d5f393a3fd8ed1c7d90e625ae0db44886a72b9b52d009b08fd565e4a7d5a3aa722d043e3e162c00a176bd846924d1f350c5ad84b2dff0b96dd232bbfefb8d376a3e1d01e4247646bcd4443d91fadbc2eeb4d4f762a9a185d7f5b435182b5d49d0305e2df2794761680063b7ed4159a460ce89c205d6768d9eabae59fdf126628ab8497edabd844ca6ae1f2be8de2c41837aca672800a5fd36fee7d380badb5fd86a5681d6d5b3906abe14af28bfd378fecfc2e774bf4c6788f3485c72f058ce40e90f0d9fc745094d1016cb045b580bd5b14deb46b5dff83d977b969988cc0c738ce7308fafe9ad19aef5a3ccec64ae4c56cca8cdf413f0cb724227cb6c0a63a2742a8e5090ab8b34436529e939ab816ec50be9aa0b569630179e76b123d64cca0989712ece98209c6024856e5d1d15f6453aeafac95475426b106920579eebdf5d2982bc5e3b9c81510d80209cb3646a88fb9df2ac9157d849844c1ba6cce7b068165f7108f47d5013ea24572867de2fb3429b835c6e9913e30caa596a657cf335ded6f80c0d2709996d560fa23b2a0f2684411db0b19cc0a50ee918f7393f9dda1feb461b9443da7efd25f4ece9321a5b4711c7121cda1e7cea5910ad253fca2492c0f067d83a4604e33a3e4bcfbcd41d390643ddb7d1ce4f1f5cae36cd3c7f28f08e50fdb15ac8bd08061d59df12e41fa5f35df4be74c853d814057843f92cf59d0d6e408fa696e320c46061b1918d00d0f863ca6717749ec377237e744ac21c5d9d792033b4df8f2b78ab845118905c537ed65be86a56edd131dd3a485593ff80b8b9ac4efc9fbaac8c33730a40ab40afb31aa7dbfb2a95967f1da281d0b393c32b66efb91ee8ce7f2249dfff538edbf3792f7ac98452c5f881f9fac2d9fb23e170a1bf5d000fd16765cf3b6dc632a0ca91a6e8b57af94c555c419cd9a5581c28687594076e7104e2a0d3f4ca27e462d17284e7917c399eb405415236c9626879399b1e8374ea7234c7aa7a4185fe43e6a89776f566d5e45ed13b64be4a651d9c13c3d81a6e7fdd6af82ada7840a74980189f06fae849b08088b0e8b9a78d3a918cd911851922ecf300c3d8e132b8ffdd11bcbab818a9ef3f93b4c93ff28a9c0e70cfb8d3b4279b59c7c28b7a49fc0ff794534918715c5b25b4f16780d495878cd31ecff902195c91ae1e41d894ac50985eacddad0a7ed1e267f83dd6bcb4c5def053b633104e9fcf8fb8b923e095cf7d7d36cd75e92677452056202cc95d184d1237c7ab55e4775b66ef1710c92f261edc49f6249f7b103a97cd6e174d135c3376efe27536cbf6c"]}, @typed={0x4, 0x5b}]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x35, 0x1, 0x0, 0x1, [@nested={0x19, 0x1e, 0x0, 0x1, [@nested={0x4, 0x136}, @generic="fe744bbcd2adea4949e0f00334a5e83769"]}, @generic="b575bb0dd7994e50e1d8d297def8476141fc3a2524"]}]}, 0x1590}, 0x1, 0x0, 0x0, 0x8880}, 0x44) 0s ago: executing program 2 (id=4532): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0xe, 0x1, 0x4, 0x5, 0x7) r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000100), 0x10b002, 0x0) ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x0) sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(0xffffffffffffffff, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8040}, 0x24004054) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setrlimit$auto(0x2, &(0x7f0000000080)={0x0, 0x800000000000006}) mprotect$auto(0x20000000, 0xeb, 0x6) r1 = io_uring_setup$auto(0x5, 0x0) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) ioctl$auto(0xffffffffffffffff, 0x4b46, 0x1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x9, 0x0, 0x0) io_uring_register$auto(0x2, 0x9, 0x0, 0x0) close_range$auto(r1, 0x8000, 0x1) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x2, 0x73) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000180)='ns/ipc\x00') socket(0x2, 0x5, 0x0) socket(0x11, 0x80003, 0x300) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) kernel console output (not intermixed with test programs): devsim1: renamed from eth1 [ 220.444088][T11537] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 220.474418][T11537] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 220.734922][T11537] 8021q: adding VLAN 0 to HW filter on device bond0 [ 220.795402][T11537] 8021q: adding VLAN 0 to HW filter on device team0 [ 220.877543][ T6264] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.884760][ T6264] bridge0: port 1(bridge_slave_0) entered forwarding state [ 220.912635][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.919786][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 221.026417][T11537] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 221.036989][T11537] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 221.249996][T11537] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 221.363114][T11537] veth0_vlan: entered promiscuous mode [ 221.387225][T11537] veth1_vlan: entered promiscuous mode [ 221.447141][T11537] veth0_macvtap: entered promiscuous mode [ 221.484102][T11537] veth1_macvtap: entered promiscuous mode [ 221.534031][ T53] Bluetooth: hci1: command tx timeout [ 221.544842][T11537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 221.572981][T11537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 221.591748][T11537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 221.647538][T11537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 221.661430][T11537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 221.681450][T11537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 221.693411][T11537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 221.704096][T11537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 221.714095][T11537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 221.724961][T11537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 221.737891][T11537] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 221.764166][T11537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 221.798956][T11537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 221.819223][T11537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 221.849848][T11537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 221.877111][T11537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 221.917132][T11537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 221.949305][T11537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 221.960613][T11537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 221.979674][T11537] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 222.001482][T11537] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 222.012054][ T53] Bluetooth: hci0: command 0x041b tx timeout [ 222.037226][T11537] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 222.091361][T11537] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.101224][T11537] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.132385][T11537] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.151977][T11537] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.611522][ T54] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 222.620717][ T54] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 222.799553][ T54] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 222.840233][T11643] ptrace attach of "./syz-executor exec"[10348] was attempted by "./syz-executor exec"[11643] [ 222.841780][ T54] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 223.614436][ T53] Bluetooth: hci1: command tx timeout [ 223.764994][ T5833] smc: removing net device syz_tun with user defined pnetid ETHTOOL [ 223.939303][ T5836] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 223.963275][ T5836] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 223.980859][ T5836] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 223.998415][ T5836] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 224.008519][ T5836] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 224.021828][ T5836] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 224.091661][ T5836] Bluetooth: hci0: command 0x041b tx timeout [ 224.582729][T11706] chnl_net:caif_netlink_parms(): no params data found [ 224.779352][T11706] bridge0: port 1(bridge_slave_0) entered blocking state [ 224.791669][T11706] bridge0: port 1(bridge_slave_0) entered disabled state [ 224.809194][T11706] bridge_slave_0: entered allmulticast mode [ 224.830408][T11706] bridge_slave_0: entered promiscuous mode [ 224.843289][T11706] bridge0: port 2(bridge_slave_1) entered blocking state [ 224.861615][T11706] bridge0: port 2(bridge_slave_1) entered disabled state [ 224.868998][T11706] bridge_slave_1: entered allmulticast mode [ 224.892482][T11706] bridge_slave_1: entered promiscuous mode [ 224.993247][ T29] audit: type=1804 audit(8277292043.910:10): pid=11725 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.3242" name="/newroot/sys/kernel/tracing/dynamic_events" dev="tracefs" ino=1052 res=1 errno=0 [ 225.002826][T11706] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 225.068994][T11706] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 225.317082][T11706] team0: Port device team_slave_0 added [ 225.354414][T11706] team0: Port device team_slave_1 added [ 225.611345][T11706] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 225.647424][T11706] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 225.692417][ T5836] Bluetooth: hci1: command tx timeout [ 225.710430][T11706] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 225.725316][T11706] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 225.732386][T11706] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 225.760200][T11706] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 226.075016][T11706] hsr_slave_0: entered promiscuous mode [ 226.080938][T11763] netlink: 326 bytes leftover after parsing attributes in process `syz.0.3250'. [ 226.093236][T11706] hsr_slave_1: entered promiscuous mode [ 226.101723][ T5836] Bluetooth: hci2: command tx timeout [ 226.112522][T11706] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 226.141476][T11706] Cannot create hsr debugfs directory [ 226.371175][T11768] netlink: 334 bytes leftover after parsing attributes in process `syz.0.3252'. [ 226.645351][T11706] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 226.804073][T11706] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 226.955245][T11706] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.122918][T11706] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.338681][T11706] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 227.354244][T11706] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 227.378760][T11706] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 227.400665][T11706] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 227.635327][T11706] 8021q: adding VLAN 0 to HW filter on device bond0 [ 227.718840][T11706] 8021q: adding VLAN 0 to HW filter on device team0 [ 227.760778][ T1236] bridge0: port 1(bridge_slave_0) entered blocking state [ 227.768072][ T1236] bridge0: port 1(bridge_slave_0) entered forwarding state [ 227.832566][ T6442] bridge0: port 2(bridge_slave_1) entered blocking state [ 227.839747][ T6442] bridge0: port 2(bridge_slave_1) entered forwarding state [ 228.175217][ T5836] Bluetooth: hci2: command tx timeout [ 228.182148][T11706] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 228.215698][T11706] veth0_vlan: entered promiscuous mode [ 228.228147][T11706] veth1_vlan: entered promiscuous mode [ 228.263612][T11706] veth0_macvtap: entered promiscuous mode [ 228.282766][T11706] veth1_macvtap: entered promiscuous mode [ 228.298696][T11706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 228.309828][T11706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 228.319956][T11706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 228.333956][T11706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 228.345363][T11706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 228.356561][T11706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 228.367189][T11706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 228.377687][T11706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 228.387916][T11706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 228.398481][T11706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 228.408440][T11706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 228.420521][T11706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 228.434214][T11706] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 228.444167][T11706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 228.456264][T11706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 228.466153][T11706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 228.476777][T11706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 228.487571][T11706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 228.507220][T11706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 228.517196][T11706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 228.527796][T11706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 228.538268][T11706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 228.549384][T11706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 228.560051][T11706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 228.571307][T11706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 228.583258][T11706] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 228.603150][T11706] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.612404][T11706] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.621141][T11706] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.639908][T11706] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.843257][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 228.861522][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 228.904116][ T6445] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 228.928750][ T6445] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 229.178365][T11819] netlink: 326 bytes leftover after parsing attributes in process `syz.1.3263'. [ 229.360731][T11823] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3264'. [ 229.395209][T11824] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3264'. [ 229.415147][T11824] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 230.251626][ T5836] Bluetooth: hci2: command tx timeout [ 231.635067][T11909] netlink: 338 bytes leftover after parsing attributes in process `syz.3.3282'. [ 231.647333][T11905] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3283'. [ 232.380996][ T5836] Bluetooth: hci2: command tx timeout [ 232.680031][T11934] netlink: 338 bytes leftover after parsing attributes in process `syz.0.3292'. [ 232.822538][T11927] ima: policy update failed [ 232.846117][ T29] audit: type=1802 audit(8277292051.760:11): pid=11927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.3290" res=0 errno=0 [ 236.401818][T12010] openvswitch: netlink: nsh attribute has 4 unknown bytes. [ 237.499277][T12054] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3314'. [ 238.022081][T12066] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3316'. [ 243.786610][T12160] Invalid ELF header magic: != ELF [ 243.900879][T12164] sctp: [Deprecated]: syz.1.3336 (pid 12164) Use of int in maxseg socket option. [ 243.900879][T12164] Use struct sctp_assoc_value instead [ 246.158308][T12200] bridge_slave_1: left allmulticast mode [ 246.186640][T12200] bridge_slave_1: left promiscuous mode [ 246.232007][T12200] bridge0: port 2(bridge_slave_1) entered disabled state [ 246.303185][T12200] bridge_slave_0: left allmulticast mode [ 246.309081][T12200] bridge_slave_0: left promiscuous mode [ 246.320321][T12200] bridge0: port 1(bridge_slave_0) entered disabled state [ 247.581846][T12200] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 247.661630][T12200] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 247.704985][T12200] bond0 (unregistering): Released all slaves [ 248.867495][T12200] hsr_slave_0: left promiscuous mode [ 248.909290][T12200] hsr_slave_1: left promiscuous mode [ 248.924264][T12200] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 248.954587][T12200] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 249.023540][T12200] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 249.031004][T12200] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 249.233157][T12200] veth1_macvtap: left promiscuous mode [ 249.272655][T12200] veth0_macvtap: left promiscuous mode [ 249.284131][T12200] veth1_vlan: left promiscuous mode [ 249.296305][T12200] veth0_vlan: left promiscuous mode [ 249.427255][T12263] netlink: 'syz.2.3349': attribute type 11 has an invalid length. [ 249.527379][T12250] kexec: Could not allocate control_code_buffer [ 250.054523][T12200] team0 (unregistering): Port device team_slave_1 removed [ 250.134299][T12200] team0 (unregistering): Port device team_slave_0 removed [ 250.226727][T12273] raw_sendmsg: syz.1.3351 forgot to set AF_INET. Fix it! [ 251.112544][T12286] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552]. [ 251.243830][T12294] ecryptfs_miscdev_write: Invalid packet size [0] [ 251.896212][T12284] delete_channel: no stack [ 253.027714][ T29] audit: type=1806 audit(8277292071.930:12): xattr="" res=-22 [ 253.254751][T12324] kexec: Could not allocate control_code_buffer [ 253.760285][T12360] netlink: zone id is out of range [ 253.862835][ T29] audit: type=1800 audit(8277292072.780:13): pid=12367 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3368" name="dbroot" dev="configfs" ino=40961 res=0 errno=0 [ 253.945384][T12367] db_root: cannot open: [ 253.968227][T12360] netlink: zone id is out of range [ 254.019052][T12360] netlink: set zone limit has 8 unknown bytes [ 254.379530][T12384] netlink: 4755 bytes leftover after parsing attributes in process `syz.0.3375'. [ 255.791709][T12424] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3385'. [ 256.173970][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.180390][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.587738][ T29] audit: type=1107 audit(8277292075.500:14): pid=12451 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 257.598353][T12494] Invalid ELF header magic: != ELF [ 258.171818][T12480] kexec: Could not allocate control_code_buffer [ 261.927322][T12550] kexec: Could not allocate control_code_buffer [ 262.517183][T12591] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3419'. [ 264.901751][T12663] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3433'. [ 264.912664][T12663] lo: entered promiscuous mode [ 264.917514][T12663] lo: entered allmulticast mode [ 265.030386][T12664] nfs: Unknown parameter '`' [ 265.697530][T12678] HfR: entered promiscuous mode [ 265.737202][T12678] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3439'. [ 265.748613][T12678] HfR: left promiscuous mode [ 266.595895][T12660] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3434'. [ 267.875576][T12699] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3443'. [ 267.917408][T12699] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3443'. [ 271.155184][T12773] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3470'. [ 271.198015][T12773] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3470'. [ 271.534344][T12782] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3463'. [ 272.528703][T12800] netlink: zone id is out of range [ 272.552419][T12800] netlink: zone id is out of range [ 272.614012][T12800] netlink: zone id is out of range [ 272.643069][T12800] netlink: zone id is out of range [ 272.648467][T12800] netlink: set zone limit has 4 unknown bytes [ 273.440558][ T29] audit: type=1800 audit(8277292092.350:15): pid=12828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3474" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0 [ 274.011036][T12839] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3478'. [ 274.052203][T12839] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3478'. [ 275.336180][T12877] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3483'. [ 275.472424][T12868] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 275.509102][T12877] team0: Port device team_slave_0 removed [ 275.931559][T12888] syz.2.3486(12888): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 276.664987][T12909] ubi0: attaching mtd0 [ 276.669823][T12909] ubi0: scanning is finished [ 276.701565][T12909] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 276.882360][T12909] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 278.696457][T12940] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3497'. [ 278.811771][T12940] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 279.225815][T12934] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 279.477151][T12940] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 281.873456][T12991] < [ 283.467685][T13016] RDS: rds_bind could not find a transport for ::ffff:172.30.65.2, load rds_tcp or rds_rdma? [ 283.575301][T13019] netlink: 338 bytes leftover after parsing attributes in process `syz.2.3513'. [ 283.749434][T13019] netlink: 338 bytes leftover after parsing attributes in process `syz.2.3513'. [ 283.944616][T13024] can0: slcan on ptm1. [ 284.112752][T13021] can0 (unregistered): slcan off ptm1. [ 284.923230][T13007] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 285.767475][T13057] Invalid ELF header magic: != ELF [ 286.693667][T13066] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3531'. [ 286.788849][ T29] audit: type=1800 audit(8277292105.680:16): pid=13072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3524" name="members" dev="configfs" ino=44145 res=0 errno=0 [ 287.020127][T13078] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3525'. [ 287.335350][T13080] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 290.096582][T13133] netlink: 'syz.3.3539': attribute type 11 has an invalid length. [ 290.154958][T13119] bdi 31:0: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead. [ 290.982126][T13153] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3544'. [ 293.380572][ T29] audit: type=1800 audit(8277292112.290:17): pid=13198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3556" name="dbroot" dev="configfs" ino=44467 res=0 errno=0 [ 295.521632][T13232] mtrr: base(0x20000) is not aligned on a size(0x0000) boundary [ 295.702869][T13242] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3566'. [ 295.796882][T13244] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3566'. [ 295.842314][T13242] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 295.907811][T13242] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 295.988112][T13250] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3567'. [ 298.477564][T13330] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3581'. [ 298.529871][T13330] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 298.560088][T13330] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 298.603183][T13331] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3581'. [ 300.416728][T13371] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3595'. [ 300.447613][T13371] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 300.465290][T13371] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 300.522176][T13372] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3595'. [ 301.996917][T13393] netlink: zone id is out of range [ 302.047095][T13397] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 302.051604][T13393] netlink: zone id is out of range [ 302.080585][T13393] netlink: zone id is out of range [ 302.102938][T13393] netlink: zone id is out of range [ 302.123868][T13393] netlink: zone id is out of range [ 302.147512][T13393] netlink: zone id is out of range [ 302.169370][T13393] netlink: zone id is out of range [ 302.203719][T13393] netlink: zone id is out of range [ 302.218996][T13393] netlink: zone id is out of range [ 302.249355][T13393] netlink: zone id is out of range [ 303.485190][T13437] Process accounting resumed [ 304.010301][T13448] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3615'. [ 304.800185][T13465] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 305.418774][T13480] Invalid ELF header magic: != ELF [ 306.015744][T13497] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3632'. [ 307.632311][ T29] audit: type=1804 audit(8277292126.540:18): pid=13536 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3642" name="/newroot/sys/kernel/tracing/per_cpu/cpu1/trace" dev="tracefs" ino=90 res=1 errno=0 [ 308.690746][T13536] netlink: 'syz.0.3642': attribute type 11 has an invalid length. [ 309.282403][T13547] net_ratelimit: 425 callbacks suppressed [ 309.282425][T13547] netlink: zone id is out of range [ 309.335422][T13547] netlink: zone id is out of range [ 309.340669][T13547] netlink: zone id is out of range [ 309.347021][T13547] netlink: zone id is out of range [ 309.370903][T13547] netlink: zone id is out of range [ 309.385278][T13547] netlink: zone id is out of range [ 309.390439][T13547] netlink: zone id is out of range [ 309.421687][T13547] netlink: zone id is out of range [ 309.426862][T13547] netlink: zone id is out of range [ 309.471335][T13547] netlink: zone id is out of range [ 311.725766][T13589] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3657'. [ 312.504202][T13582] [U] [ 312.507051][T13582] [U] [ 312.509749][T13582] [U] [ 312.512447][T13582] [U] [ 312.515142][T13582] [U] [ 312.547250][T13582] [U] [ 312.550014][T13582] [U] [ 312.552742][T13582] [U] [ 312.555472][T13582] [U] [ 312.575193][T13582] [U] [ 312.608443][T13616] Process accounting resumed [ 312.651629][T13619] device-mapper: ioctl: Unable to rename non-existent device, to [ 313.735883][T13643] tipc: Started in network mode [ 313.741211][T13643] tipc: Node identity ffffffff, cluster identity 4711 [ 313.858410][T13643] tipc: Node number set to 4294967295 [ 313.920572][T13641] netlink: 'syz.3.3668': attribute type 39 has an invalid length. [ 313.947912][T13641] netlink: 'syz.3.3668': attribute type 40 has an invalid length. [ 313.983025][T13641] netlink: 'syz.3.3668': attribute type 41 has an invalid length. [ 313.998712][T13641] netlink: 'syz.3.3668': attribute type 44 has an invalid length. [ 314.018476][T13641] netlink: 'syz.3.3668': attribute type 46 has an invalid length. [ 314.039697][T13641] netlink: 'syz.3.3668': attribute type 47 has an invalid length. [ 314.073772][T13641] netlink: 'syz.3.3668': attribute type 48 has an invalid length. [ 314.092783][T13641] netlink: 'syz.3.3668': attribute type 49 has an invalid length. [ 314.111762][T13641] netlink: 'syz.3.3668': attribute type 50 has an invalid length. [ 314.128778][T13641] netlink: 6 bytes leftover after parsing attributes in process `syz.3.3668'. [ 314.806686][T13664] FAULT_INJECTION: forcing a failure. [ 314.806686][T13664] name failslab, interval 1, probability 0, space 0, times 0 [ 314.840418][T13664] CPU: 0 UID: 0 PID: 13664 Comm: syz.0.3675 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 314.851250][T13664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 314.861354][T13664] Call Trace: [ 314.864661][T13664] [ 314.867623][T13664] dump_stack_lvl+0x16c/0x1f0 [ 314.872406][T13664] should_fail_ex+0x497/0x5b0 [ 314.877118][T13664] ? fs_reclaim_acquire+0xae/0x150 [ 314.882265][T13664] should_failslab+0xc2/0x120 [ 314.886982][T13664] __kmalloc_node_noprof+0xd1/0x520 [ 314.892223][T13664] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 314.897732][T13664] __kvmalloc_node_noprof+0xad/0x1a0 [ 314.903061][T13664] seq_read_iter+0x82a/0x12b0 [ 314.907779][T13664] ? __mutex_trylock_common+0xea/0x250 [ 314.913287][T13664] kernfs_fop_read_iter+0x414/0x580 [ 314.918534][T13664] ? rw_verify_area+0xd0/0x700 [ 314.923344][T13664] vfs_read+0x87f/0xbe0 [ 314.927559][T13664] ? __pfx_vfs_read+0x10/0x10 [ 314.932302][T13664] ksys_read+0x12b/0x250 [ 314.936583][T13664] ? __pfx_ksys_read+0x10/0x10 [ 314.941389][T13664] do_syscall_64+0xcd/0x250 [ 314.945934][T13664] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 314.951875][T13664] RIP: 0033:0x7f6fc7785d29 [ 314.956328][T13664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 314.975974][T13664] RSP: 002b:00007f6fc857f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 314.984432][T13664] RAX: ffffffffffffffda RBX: 00007f6fc7975fa0 RCX: 00007f6fc7785d29 [ 314.992413][T13664] RDX: 00000000000000c5 RSI: 0000000020000200 RDI: 0000000000000003 [ 315.000424][T13664] RBP: 00007f6fc857f090 R08: 0000000000000000 R09: 0000000000000000 [ 315.008404][T13664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 315.016381][T13664] R13: 0000000000000000 R14: 00007f6fc7975fa0 R15: 00007ffe28d53738 [ 315.024375][T13664] [ 316.091837][T13658] [U] [ 316.094702][T13658] [U] [ 316.097437][T13658] [U] [ 316.100184][T13658] [U] [ 316.102912][T13658] [U] [ 316.184244][T13658] [U] [ 316.187035][T13658] [U] [ 316.189780][T13658] [U] [ 316.192577][T13658] [U] [ 316.242624][T13660] [U] [ 317.240813][T13706] FAULT_INJECTION: forcing a failure. [ 317.240813][T13706] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 317.301508][T13706] CPU: 0 UID: 0 PID: 13706 Comm: syz.2.3686 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 317.312350][T13706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 317.322442][T13706] Call Trace: [ 317.325757][T13706] [ 317.328731][T13706] dump_stack_lvl+0x16c/0x1f0 [ 317.333477][T13706] should_fail_ex+0x497/0x5b0 [ 317.338225][T13706] _copy_to_iter+0x29b/0x1400 [ 317.342962][T13706] ? trace_lock_acquire+0x14e/0x1f0 [ 317.348219][T13706] ? __pfx_lock_release+0x10/0x10 [ 317.353298][T13706] ? __pfx__copy_to_iter+0x10/0x10 [ 317.358457][T13706] ? __virt_addr_valid+0x1a4/0x590 [ 317.363621][T13706] ? __virt_addr_valid+0x5e/0x590 [ 317.368680][T13706] ? __phys_addr_symbol+0x30/0x80 [ 317.373746][T13706] ? __check_object_size+0x488/0x710 [ 317.379076][T13706] seq_read_iter+0xd00/0x12b0 [ 317.383808][T13706] kernfs_fop_read_iter+0x414/0x580 [ 317.389048][T13706] ? rw_verify_area+0xd0/0x700 [ 317.393853][T13706] vfs_read+0x87f/0xbe0 [ 317.398056][T13706] ? __pfx_vfs_read+0x10/0x10 [ 317.402806][T13706] ksys_read+0x12b/0x250 [ 317.407101][T13706] ? __pfx_ksys_read+0x10/0x10 [ 317.411918][T13706] do_syscall_64+0xcd/0x250 [ 317.416929][T13706] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 317.422873][T13706] RIP: 0033:0x7f1ae9785d29 [ 317.427358][T13706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 317.447093][T13706] RSP: 002b:00007f1aea546038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 317.455550][T13706] RAX: ffffffffffffffda RBX: 00007f1ae9975fa0 RCX: 00007f1ae9785d29 [ 317.463649][T13706] RDX: 00000000000000c5 RSI: 0000000020000200 RDI: 0000000000000003 [ 317.471659][T13706] RBP: 00007f1aea546090 R08: 0000000000000000 R09: 0000000000000000 [ 317.479667][T13706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 317.487677][T13706] R13: 0000000000000000 R14: 00007f1ae9975fa0 R15: 00007fff8c1e3b98 [ 317.495716][T13706] [ 317.619006][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.626264][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 319.046605][T13746] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3697'. [ 319.456773][T13756] Invalid ELF header magic: != ELF [ 319.666987][T13761] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3699'. [ 319.691729][T13757] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3699'. [ 320.376141][T13781] net_ratelimit: 861 callbacks suppressed [ 320.376161][T13781] netlink: zone id is out of range [ 320.400612][T13781] netlink: zone id is out of range [ 320.420154][T13781] netlink: zone id is out of range [ 320.438000][T13781] netlink: zone id is out of range [ 320.454566][T13781] netlink: zone id is out of range [ 320.465596][T13781] netlink: zone id is out of range [ 320.481072][T13781] netlink: zone id is out of range [ 320.491694][T13781] netlink: zone id is out of range [ 320.497081][T13781] netlink: zone id is out of range [ 320.513032][T13781] netlink: zone id is out of range [ 321.674505][T13805] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3712'. [ 323.265518][T13852] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3720'. [ 323.305885][T13811] [U] [ 323.308783][T13811] [U] [ 323.311519][T13811] [U] [ 323.314251][T13811] [U] [ 323.316984][T13811] [U] [ 323.341779][T13811] [U] [ 323.344561][T13811] [U] [ 323.347313][T13811] [U] [ 323.350058][T13811] [U] [ 323.370924][T13811] [U] [ 323.373702][T13811] [U] [ 323.376456][T13811] [U] [ 323.379197][T13811] [U] [ 323.412440][T13816] [U] [ 325.800847][T13886] vmstat_refresh: nr_hugetlb -512 [ 325.964662][T13895] net_ratelimit: 869 callbacks suppressed [ 325.964683][T13895] netlink: zone id is out of range [ 326.034178][T13895] netlink: zone id is out of range [ 326.064467][T13895] netlink: zone id is out of range [ 326.069727][T13895] netlink: zone id is out of range [ 326.101591][T13895] netlink: zone id is out of range [ 326.121889][T13895] netlink: zone id is out of range [ 326.155639][T13895] netlink: zone id is out of range [ 326.184075][T13895] netlink: zone id is out of range [ 326.189331][T13895] netlink: zone id is out of range [ 326.210210][T13895] netlink: zone id is out of range [ 327.309747][T13924] netlink: 330 bytes leftover after parsing attributes in process `syz.1.3738'. [ 327.346076][T13925] netlink: 330 bytes leftover after parsing attributes in process `syz.1.3738'. [ 327.393216][T13924] netlink: 330 bytes leftover after parsing attributes in process `syz.1.3738'. [ 327.620701][T13927] netlink: 326 bytes leftover after parsing attributes in process `syz.1.3739'. [ 329.328340][T13965] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3749'. [ 332.148363][T13961] kexec: Could not allocate control_code_buffer [ 337.562230][T14120] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 339.050937][T14136] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3795'. [ 340.256153][ T53] Bluetooth: hci1: command 0x0406 tx timeout [ 340.264095][T14171] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 341.703232][T14190] net_ratelimit: 860 callbacks suppressed [ 341.703255][T14190] netlink: zone id is out of range [ 341.740678][T14190] netlink: zone id is out of range [ 341.762441][T14190] netlink: zone id is out of range [ 341.771836][T14190] netlink: zone id is out of range [ 341.791694][T14190] netlink: zone id is out of range [ 341.811660][T14190] netlink: zone id is out of range [ 341.831568][T14190] netlink: zone id is out of range [ 341.843009][T14190] netlink: zone id is out of range [ 341.861619][T14190] netlink: zone id is out of range [ 341.893475][T14190] netlink: zone id is out of range [ 342.279456][T14201] HSR: entered promiscuous mode [ 342.353452][T14201] delete_channel: no stack [ 344.485037][T14235] FAULT_INJECTION: forcing a failure. [ 344.485037][T14235] name failslab, interval 1, probability 0, space 0, times 0 [ 344.653200][T14235] CPU: 0 UID: 0 PID: 14235 Comm: syz.1.3830 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 344.664035][T14235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 344.674135][T14235] Call Trace: [ 344.677455][T14235] [ 344.680417][T14235] dump_stack_lvl+0x16c/0x1f0 [ 344.685153][T14235] should_fail_ex+0x497/0x5b0 [ 344.689874][T14235] ? fs_reclaim_acquire+0xae/0x150 [ 344.695032][T14235] should_failslab+0xc2/0x120 [ 344.699762][T14235] __kmalloc_cache_noprof+0x68/0x420 [ 344.705115][T14235] ? __pfx___lock_acquire+0x10/0x10 [ 344.710372][T14235] handle_policy_update+0xaf/0x11e0 [ 344.715621][T14235] ? __pfx_handle_policy_update+0x10/0x10 [ 344.721386][T14235] ? apparmor_capable+0x114/0x1d0 [ 344.726454][T14235] ? bpf_lsm_capable+0x9/0x10 [ 344.731160][T14235] ? security_capable+0x7e/0x260 [ 344.736144][T14235] safesetid_gid_file_write+0x87/0xc0 [ 344.741561][T14235] ? __pfx_safesetid_gid_file_write+0x10/0x10 [ 344.747670][T14235] vfs_write+0x24c/0x1150 [ 344.752048][T14235] ? __fget_files+0x1fc/0x3a0 [ 344.756773][T14235] ? __pfx___mutex_lock+0x10/0x10 [ 344.761844][T14235] ? __pfx_vfs_write+0x10/0x10 [ 344.766666][T14235] ? __fget_files+0x206/0x3a0 [ 344.771418][T14235] ksys_write+0x12b/0x250 [ 344.775800][T14235] ? __pfx_ksys_write+0x10/0x10 [ 344.780710][T14235] do_syscall_64+0xcd/0x250 [ 344.785271][T14235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 344.791217][T14235] RIP: 0033:0x7fabadf85d29 [ 344.795669][T14235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 344.815413][T14235] RSP: 002b:00007fabaeddb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 344.823838][T14235] RAX: ffffffffffffffda RBX: 00007fabae175fa0 RCX: 00007fabadf85d29 [ 344.831815][T14235] RDX: 000000000000001d RSI: 0000000020003b40 RDI: 0000000000000003 [ 344.839790][T14235] RBP: 00007fabaeddb090 R08: 0000000000000000 R09: 0000000000000000 [ 344.847763][T14235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 344.855734][T14235] R13: 0000000000000000 R14: 00007fabae175fa0 R15: 00007ffcbc78b928 [ 344.863727][T14235] [ 345.083828][T14145] kexec: Could not allocate control_code_buffer [ 347.052780][T14263] net_ratelimit: 425 callbacks suppressed [ 347.052803][T14263] openvswitch: netlink: ct_state flags 03001eac unsupported [ 347.515259][T14266] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3828'. [ 347.551832][T14266] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 347.559309][T14266] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 348.257676][T14275] delete_channel: no stack [ 348.953929][T14286] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3833'. [ 348.974477][T14286] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3833'. [ 349.107205][T14288] snd_aloop snd_aloop.0: control 4365:65536:6:'x?F/zF˷fC:0 is already present [ 349.347989][T14294] FAULT_INJECTION: forcing a failure. [ 349.347989][T14294] name failslab, interval 1, probability 0, space 0, times 0 [ 349.501549][T14294] CPU: 1 UID: 0 PID: 14294 Comm: syz.1.3837 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 349.512382][T14294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 349.522466][T14294] Call Trace: [ 349.525768][T14294] [ 349.528717][T14294] dump_stack_lvl+0x16c/0x1f0 [ 349.533434][T14294] should_fail_ex+0x497/0x5b0 [ 349.538142][T14294] ? fs_reclaim_acquire+0xae/0x150 [ 349.543292][T14294] should_failslab+0xc2/0x120 [ 349.548008][T14294] __kmalloc_node_track_caller_noprof+0xcf/0x520 [ 349.554390][T14294] ? handle_policy_update+0x1b9/0x11e0 [ 349.559892][T14294] kstrdup+0x42/0xb0 [ 349.563823][T14294] handle_policy_update+0x1b9/0x11e0 [ 349.569152][T14294] ? __pfx_handle_policy_update+0x10/0x10 [ 349.574905][T14294] ? apparmor_capable+0x114/0x1d0 [ 349.579971][T14294] ? bpf_lsm_capable+0x9/0x10 [ 349.584710][T14294] ? security_capable+0x7e/0x260 [ 349.589731][T14294] safesetid_gid_file_write+0x87/0xc0 [ 349.595146][T14294] ? __pfx_safesetid_gid_file_write+0x10/0x10 [ 349.601247][T14294] vfs_write+0x24c/0x1150 [ 349.605617][T14294] ? __fget_files+0x1fc/0x3a0 [ 349.610332][T14294] ? __pfx___mutex_lock+0x10/0x10 [ 349.615405][T14294] ? __pfx_vfs_write+0x10/0x10 [ 349.620217][T14294] ? __fget_files+0x206/0x3a0 [ 349.624945][T14294] ksys_write+0x12b/0x250 [ 349.629308][T14294] ? __pfx_ksys_write+0x10/0x10 [ 349.634201][T14294] do_syscall_64+0xcd/0x250 [ 349.638748][T14294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.644675][T14294] RIP: 0033:0x7fabadf85d29 [ 349.649116][T14294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 349.668761][T14294] RSP: 002b:00007fabaeddb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 349.677218][T14294] RAX: ffffffffffffffda RBX: 00007fabae175fa0 RCX: 00007fabadf85d29 [ 349.685231][T14294] RDX: 000000000000001d RSI: 0000000020003b40 RDI: 0000000000000003 [ 349.693236][T14294] RBP: 00007fabaeddb090 R08: 0000000000000000 R09: 0000000000000000 [ 349.701241][T14294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 349.709244][T14294] R13: 0000000000000000 R14: 00007fabae175fa0 R15: 00007ffcbc78b928 [ 349.717266][T14294] [ 350.412472][ T53] Bluetooth: hci2: command 0x0406 tx timeout [ 352.091125][T14319] netlink: zone id is out of range [ 352.121570][T14319] netlink: zone id is out of range [ 352.126751][T14319] netlink: zone id is out of range [ 352.150838][T14319] netlink: zone id is out of range [ 352.182043][T14319] netlink: zone id is out of range [ 352.191488][T14319] netlink: zone id is out of range [ 352.212102][T14319] netlink: zone id is out of range [ 352.221962][T14319] netlink: zone id is out of range [ 352.241636][T14319] netlink: zone id is out of range [ 352.271633][T14319] netlink: zone id is out of range [ 356.606870][T14353] ptrace attach of "./syz-executor exec"[11706] was attempted by "./syz-executor exec"[14353] [ 357.328168][T14387] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3860'. [ 357.724424][T14399] netlink: 266 bytes leftover after parsing attributes in process `syz.3.3862'. [ 357.773717][T14399] IPv6: NLM_F_CREATE should be specified when creating new route [ 361.302014][T14445] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 361.556797][T14454] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 367.921552][T14539] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3898'. [ 371.584123][T14595] can: request_module (can-proto-0) failed. [ 372.307739][T14610] sctp: [Deprecated]: syz.3.3921 (pid 14610) Use of int in max_burst socket option. [ 372.307739][T14610] Use struct sctp_assoc_value instead [ 372.862335][T14621] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3923'. [ 374.497114][ T29] audit: type=1800 audit(8277292193.400:19): pid=14640 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3928" name="members" dev="configfs" ino=50916 res=0 errno=0 [ 374.935122][T14647] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [57] [ 377.052482][T14678] netlink: 'syz.3.3936': attribute type 2 has an invalid length. [ 379.055166][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.061707][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 385.113754][T14825] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3978'. [ 386.131323][ T29] audit: type=1800 audit(8277292205.040:20): pid=14841 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3982" name="members" dev="configfs" ino=52249 res=0 errno=0 [ 387.196341][T14857] binder: 14856:14857 ioctl c0105512 1 returned -22 [ 387.285555][T14849] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3983'. [ 388.115163][T14875] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 388.284406][T14877] netlink: 'syz.2.3990': attribute type 64 has an invalid length. [ 388.297811][T14877] netlink: 74 bytes leftover after parsing attributes in process `syz.2.3990'. [ 388.951161][T14883] random: crng reseeded on system resumption [ 390.213329][T14909] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 394.634996][T14973] net_ratelimit: 425 callbacks suppressed [ 394.635018][T14973] netlink: zone id is out of range [ 394.661474][T14973] netlink: zone id is out of range [ 394.681799][T14973] netlink: zone id is out of range [ 394.686971][T14973] netlink: zone id is out of range [ 394.741539][T14973] netlink: zone id is out of range [ 394.821444][T14973] netlink: zone id is out of range [ 394.852835][T14973] netlink: zone id is out of range [ 394.871860][T14973] netlink: zone id is out of range [ 394.888895][T14973] netlink: zone id is out of range [ 394.915721][T14973] netlink: zone id is out of range [ 397.288911][T15014] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4024'. [ 397.391609][T15014] bridge0: port 1(bridge_slave_0) entered disabled state [ 397.595611][T15014] bridge_slave_0 (unregistering): left allmulticast mode [ 397.619964][T15014] bridge_slave_0 (unregistering): left promiscuous mode [ 397.644735][T15014] bridge0: port 1(bridge_slave_0) entered disabled state [ 403.385528][T15067] program syz.1.4045 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 403.897014][T15072] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4036'. [ 404.338596][T15082] net_ratelimit: 7 callbacks suppressed [ 404.338617][T15082] netlink: zone id is out of range [ 404.371700][T15082] netlink: zone id is out of range [ 404.377856][T15082] netlink: zone id is out of range [ 404.391662][T15082] netlink: zone id is out of range [ 404.411557][T15082] netlink: set zone limit has 8 unknown bytes [ 404.428524][T15079] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 404.695955][T15085] netlink: zone id is out of range [ 404.701414][T15085] netlink: zone id is out of range [ 404.706669][T15085] netlink: zone id is out of range [ 404.712072][T15085] netlink: zone id is out of range [ 404.717211][T15085] netlink: set zone limit has 8 unknown bytes [ 404.892813][T15092] netlink: 'syz.2.4042': attribute type 27 has an invalid length. [ 404.900990][T15092] netlink: 334 bytes leftover after parsing attributes in process `syz.2.4042'. [ 404.953585][T15092] netlink: 'syz.2.4042': attribute type 4 has an invalid length. [ 404.990930][T15092] netlink: 306 bytes leftover after parsing attributes in process `syz.2.4042'. [ 405.939515][T15100] ima: policy update failed [ 405.952186][ T29] audit: type=1802 audit(8277292224.860:21): pid=15100 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4048" res=0 errno=0 [ 406.772688][T15128] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4055'. [ 411.885096][T15229] can: request_module (can-proto-4) failed. [ 412.203964][ T29] audit: type=1804 audit(8277292231.120:22): pid=15235 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.4082" name="/newroot/sys/kernel/tracing/trace_marker" dev="tracefs" ino=45 res=1 errno=0 [ 412.230542][T15236] Process accounting resumed [ 412.264249][T15236] kernel write not supported for file /trace_marker (pid: 15236 comm: syz.1.4082) [ 412.277255][ T29] audit: type=1804 audit(8277292231.140:23): pid=15236 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.4082" name="/newroot/sys/kernel/tracing/trace_marker" dev="tracefs" ino=45 res=1 errno=0 [ 412.427710][T15236] Process accounting resumed [ 412.477345][T15236] kernel write not supported for file /trace_marker (pid: 15236 comm: syz.1.4082) [ 412.864404][T15250] FAULT_INJECTION: forcing a failure. [ 412.864404][T15250] name failslab, interval 1, probability 0, space 0, times 0 [ 412.897339][T15250] CPU: 1 UID: 0 PID: 15250 Comm: syz.0.4086 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 412.908178][T15250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 412.918274][T15250] Call Trace: [ 412.921572][T15250] [ 412.924528][T15250] dump_stack_lvl+0x16c/0x1f0 [ 412.929248][T15250] should_fail_ex+0x497/0x5b0 [ 412.933967][T15250] ? fs_reclaim_acquire+0xae/0x150 [ 412.939117][T15250] should_failslab+0xc2/0x120 [ 412.943837][T15250] __kmalloc_noprof+0xce/0x4f0 [ 412.948683][T15250] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 412.954350][T15250] ? tomoyo_realpath_from_path+0xbf/0x710 [ 412.960113][T15250] tomoyo_realpath_from_path+0xbf/0x710 [ 412.965716][T15250] ? tomoyo_path_number_perm+0x235/0x5b0 [ 412.971405][T15250] tomoyo_path_number_perm+0x248/0x5b0 [ 412.976917][T15250] ? tomoyo_path_number_perm+0x235/0x5b0 [ 412.982617][T15250] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 412.989203][T15250] ? __pfx_lock_release+0x10/0x10 [ 412.994275][T15250] ? trace_lock_acquire+0x14e/0x1f0 [ 412.999534][T15250] ? lock_acquire+0x2f/0xb0 [ 413.004084][T15250] ? __fget_files+0x40/0x3a0 [ 413.008723][T15250] ? __fget_files+0x206/0x3a0 [ 413.013446][T15250] security_file_ioctl+0x9b/0x240 [ 413.018500][T15250] __x64_sys_ioctl+0xb7/0x200 [ 413.023216][T15250] do_syscall_64+0xcd/0x250 [ 413.027759][T15250] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 413.033694][T15250] RIP: 0033:0x7f6fc7785d29 [ 413.038133][T15250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 413.057777][T15250] RSP: 002b:00007f6fc857f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 413.066235][T15250] RAX: ffffffffffffffda RBX: 00007f6fc7975fa0 RCX: 00007f6fc7785d29 [ 413.074290][T15250] RDX: 0000000000005c8d RSI: 00000000400454da RDI: 00000000000000c8 [ 413.082298][T15250] RBP: 00007f6fc857f090 R08: 0000000000000000 R09: 0000000000000000 [ 413.090356][T15250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 413.098367][T15250] R13: 0000000000000000 R14: 00007f6fc7975fa0 R15: 00007ffe28d53738 [ 413.106397][T15250] [ 413.139650][T15250] ERROR: Out of memory at tomoyo_realpath_from_path. [ 413.615785][T15265] netlink: zone id is out of range [ 413.620998][T15265] netlink: zone id is out of range [ 413.683375][T15265] netlink: zone id is out of range [ 413.688625][T15265] netlink: zone id is out of range [ 413.745298][T15265] netlink: set zone limit has 8 unknown bytes [ 414.348934][T15248] kernel write not supported for file /trace_marker (pid: 15248 comm: syz.1.4085) [ 414.549467][T15291] kernel write not supported for file /trace_marker (pid: 15291 comm: syz.1.4095) [ 414.693209][T15287] svc: failed to register nfsdv3 RPC service (errno 111). [ 414.733567][T15287] svc: failed to register nfsaclv3 RPC service (errno 111). [ 414.999102][T15293] kernel write not supported for file /trace_marker (pid: 15293 comm: syz.1.4097) [ 415.342031][T15296] kernel write not supported for file /trace_marker (pid: 15296 comm: syz.1.4098) [ 416.623743][T15272] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4091'. [ 416.635693][T15298] kernel write not supported for file /trace_marker (pid: 15298 comm: syz.1.4099) [ 416.954198][T15311] netlink: zone id is out of range [ 416.959421][T15311] netlink: zone id is out of range [ 417.031562][T15311] netlink: zone id is out of range [ 417.036760][T15311] netlink: zone id is out of range [ 417.101472][T15311] netlink: set zone limit has 8 unknown bytes [ 417.505966][T15320] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4103'. [ 418.007341][T15317] kernel write not supported for file /trace_marker (pid: 15317 comm: syz.1.4102) [ 418.230472][T15334] can: request_module (can-proto-4) failed. [ 418.258412][T15337] Invalid ELF header magic: != ELF [ 418.854997][T15346] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 419.844775][T15337] kernel write not supported for file /trace_marker (pid: 15337 comm: syz.1.4106) [ 420.493791][T15178] kernel write not supported for file /trace_marker (pid: 15178 comm: syz.1.4073) [ 420.568239][T15369] kernel write not supported for file /trace_marker (pid: 15369 comm: syz.1.4116) [ 420.887288][T15378] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4120'. [ 420.921029][T15378] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 420.978778][T15378] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 420.983162][T15360] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4113'. [ 421.036309][T15378] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 421.087680][T15378] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 421.723511][T15376] kernel write not supported for file /trace_marker (pid: 15376 comm: syz.1.4120) [ 422.304765][T15396] kernel write not supported for file /trace_marker (pid: 15396 comm: syz.1.4125) [ 422.971156][T15405] kernel write not supported for file /trace_marker (pid: 15405 comm: syz.1.4128) [ 424.645728][T15413] kernel write not supported for file /trace_marker (pid: 15413 comm: syz.1.4129) [ 425.765313][T15434] kernel write not supported for file /trace_marker (pid: 15434 comm: syz.1.4135) [ 426.597384][T15459] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 426.947663][T15453] kernel write not supported for file /trace_marker (pid: 15453 comm: syz.1.4139) [ 427.322208][T15463] kernel write not supported for file /trace_marker (pid: 15463 comm: syz.1.4141) [ 427.615924][T15467] kernel write not supported for file /trace_marker (pid: 15467 comm: syz.1.4143) [ 428.008841][T15472] kernel write not supported for file /trace_marker (pid: 15472 comm: syz.1.4145) [ 428.251773][T15474] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4146'. [ 428.396367][T15478] kernel write not supported for file /trace_marker (pid: 15478 comm: syz.1.4147) [ 428.692032][T15484] netlink: 50 bytes leftover after parsing attributes in process `syz.1.4149'. [ 428.830920][T15487] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4149'. [ 428.884520][T15486] netlink: 'syz.0.4148': attribute type 1 has an invalid length. [ 428.911534][T15486] nbd: error processing sock list [ 429.403855][T15487] team0: Port device team_slave_0 removed [ 429.656322][T15484] kernel write not supported for file /trace_marker (pid: 15484 comm: syz.1.4149) [ 430.457802][T15521] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 430.554553][T15521] CIFS mount error: No usable UNC path provided in device string! [ 430.554553][T15521] [ 430.617372][T15521] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 431.144410][T15529] net_ratelimit: 3 callbacks suppressed [ 431.144433][T15529] netlink: zone id is out of range [ 431.236130][T15529] netlink: zone id is out of range [ 431.288849][T15529] netlink: zone id is out of range [ 431.317360][T15512] kexec: Could not allocate control_code_buffer [ 431.361568][T15529] netlink: zone id is out of range [ 431.410515][T15529] netlink: zone id is out of range [ 431.458130][T15512] kernel write not supported for file /trace_marker (pid: 15512 comm: syz.1.4155) [ 431.480399][T15529] netlink: zone id is out of range [ 431.549461][T15529] netlink: set zone limit has 4 unknown bytes [ 431.999457][T15409] kernel write not supported for file /trace_marker (pid: 15409 comm: syz.1.4128) [ 432.282079][T15541] kernel write not supported for file /trace_marker (pid: 15541 comm: syz.1.4163) [ 432.833673][T15550] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 433.070856][T15562] Invalid ELF header magic: != ELF [ 433.156841][T15551] kernel write not supported for file /trace_marker (pid: 15551 comm: syz.1.4166) [ 433.590854][T15569] kernel write not supported for file /trace_marker (pid: 15569 comm: syz.1.4171) [ 434.497156][T15582] netlink: 1204 bytes leftover after parsing attributes in process `syz.2.4175'. [ 434.513640][T15582] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4175'. [ 436.332473][T15613] netlink: 'syz.2.4183': attribute type 1 has an invalid length. [ 436.353641][T15613] nbd: error processing sock list [ 436.950200][T15577] kernel write not supported for file /trace_marker (pid: 15577 comm: syz.1.4173) [ 437.221209][T15624] kernel write not supported for file /trace_marker (pid: 15624 comm: syz.1.4186) [ 437.541081][T15631] netlink: 50 bytes leftover after parsing attributes in process `syz.3.4187'. [ 437.831640][T15635] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4187'. [ 438.332568][T15635] team0: Port device team_slave_0 removed [ 438.411089][T15633] kernel write not supported for file /trace_marker (pid: 15633 comm: syz.1.4196) [ 438.523872][T15649] netlink: zone id is out of range [ 438.531602][T15649] netlink: zone id is out of range [ 438.539113][T15649] netlink: zone id is out of range [ 438.549288][T15649] netlink: zone id is out of range [ 438.555639][T15649] netlink: zone id is out of range [ 438.571538][T15649] netlink: zone id is out of range [ 438.578006][T15649] netlink: set zone limit has 4 unknown bytes [ 438.623168][T15649] kernel write not supported for file /trace_marker (pid: 15649 comm: syz.1.4191) [ 439.067757][T15650] kernel write not supported for file /trace_marker (pid: 15650 comm: syz.1.4192) [ 439.181835][T15659] netlink: 50 bytes leftover after parsing attributes in process `syz.2.4203'. [ 439.302974][T15663] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4203'. [ 439.378382][T15662] netlink: 'syz.3.4194': attribute type 1 has an invalid length. [ 439.504018][T15662] nbd: error processing sock list [ 439.839967][T15658] kernel write not supported for file /trace_marker (pid: 15658 comm: syz.1.4195) [ 439.904830][T15663] team0: Port device team_slave_0 removed [ 440.095578][T15672] kernel write not supported for file /trace_marker (pid: 15672 comm: syz.1.4198) [ 440.495616][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.508802][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.711705][T15690] netlink: zone id is out of range [ 440.741636][T15690] netlink: zone id is out of range [ 440.746820][T15690] netlink: zone id is out of range [ 441.304957][T15680] kernel write not supported for file /trace_marker (pid: 15680 comm: syz.1.4200) [ 441.598570][T15703] sp0: Synchronizing with TNC [ 441.881606][T15705] kernel write not supported for file /trace_marker (pid: 15705 comm: syz.1.4206) [ 442.591969][T15721] netlink: 50 bytes leftover after parsing attributes in process `syz.0.4209'. [ 442.652573][T15718] Process accounting paused [ 442.701919][T15730] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 442.888438][T15729] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4209'. [ 444.050162][T15726] kexec: Could not allocate control_code_buffer [ 445.156281][ T29] audit: type=1400 audit(8277292264.070:24): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=15766 comm="syz.3.4225" [ 445.495255][T15779] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4228'. [ 445.904852][T15788] netlink: 'syz.1.4231': attribute type 2 has an invalid length. [ 448.014921][T15840] net_ratelimit: 5 callbacks suppressed [ 448.014941][T15840] netlink: zone id is out of range [ 448.056987][T15840] netlink: zone id is out of range [ 448.074718][T15840] netlink: zone id is out of range [ 448.111502][T15840] netlink: zone id is out of range [ 448.116698][T15840] netlink: zone id is out of range [ 448.171796][T15840] netlink: zone id is out of range [ 448.177443][T15840] netlink: set zone limit has 8 unknown bytes [ 449.876235][T15894] netlink: zone id is out of range [ 449.881595][T15894] netlink: zone id is out of range [ 449.886902][T15894] netlink: zone id is out of range [ 451.142305][T15901] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4258'. [ 454.049524][T15940] net_ratelimit: 4 callbacks suppressed [ 454.049548][T15940] netlink: zone id is out of range [ 454.080901][T15940] netlink: zone id is out of range [ 454.101207][T15940] netlink: zone id is out of range [ 454.122071][T15940] netlink: zone id is out of range [ 454.127241][T15940] netlink: zone id is out of range [ 454.143303][T15940] netlink: zone id is out of range [ 454.154683][T15940] netlink: set zone limit has 8 unknown bytes [ 454.306038][T15943] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4268'. [ 456.261559][T15989] svc: failed to register nfsdv3 RPC service (errno 111). [ 456.287477][T15989] svc: failed to register nfsaclv3 RPC service (errno 111). [ 456.560467][T15995] netlink: 'syz.3.4278': attribute type 27 has an invalid length. [ 456.591490][T15995] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4278'. [ 456.792904][T15997] netlink: zone id is out of range [ 456.801986][T15997] netlink: zone id is out of range [ 456.818498][T15997] netlink: zone id is out of range [ 459.343564][T16028] net_ratelimit: 4 callbacks suppressed [ 459.343585][T16028] netlink: zone id is out of range [ 459.441507][T16028] netlink: zone id is out of range [ 459.454072][T16028] netlink: zone id is out of range [ 459.504359][T16028] netlink: zone id is out of range [ 459.509535][T16028] netlink: zone id is out of range [ 459.551339][T16028] netlink: zone id is out of range [ 459.571494][T16028] netlink: set zone limit has 8 unknown bytes [ 459.656358][T16034] FAULT_INJECTION: forcing a failure. [ 459.656358][T16034] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 459.725498][T16034] CPU: 0 UID: 0 PID: 16034 Comm: syz.1.4291 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 459.736343][T16034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 459.746445][T16034] Call Trace: [ 459.749754][T16034] [ 459.752712][T16034] dump_stack_lvl+0x16c/0x1f0 [ 459.757436][T16034] should_fail_ex+0x497/0x5b0 [ 459.762155][T16034] _copy_from_user+0x2e/0xd0 [ 459.766786][T16034] copy_msghdr_from_user+0x99/0x160 [ 459.772027][T16034] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 459.777884][T16034] ? __lock_acquire+0xcc5/0x3c40 [ 459.782881][T16034] ___sys_sendmsg+0xff/0x1e0 [ 459.787521][T16034] ? __pfx____sys_sendmsg+0x10/0x10 [ 459.792806][T16034] ? trace_lock_acquire+0x14e/0x1f0 [ 459.798071][T16034] __sys_sendmmsg+0x201/0x420 [ 459.802784][T16034] ? __pfx___sys_sendmmsg+0x10/0x10 [ 459.808046][T16034] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 459.814067][T16034] ? fput+0x67/0x440 [ 459.817990][T16034] ? ksys_write+0x1ba/0x250 [ 459.822499][T16034] ? __pfx_ksys_write+0x10/0x10 [ 459.827367][T16034] __x64_sys_sendmmsg+0x9c/0x100 [ 459.832323][T16034] ? lockdep_hardirqs_on+0x7c/0x110 [ 459.837535][T16034] do_syscall_64+0xcd/0x250 [ 459.842054][T16034] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 459.847959][T16034] RIP: 0033:0x7fabadf85d29 [ 459.852386][T16034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 459.872018][T16034] RSP: 002b:00007fabaeddb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 459.880473][T16034] RAX: ffffffffffffffda RBX: 00007fabae175fa0 RCX: 00007fabadf85d29 [ 459.888471][T16034] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003 [ 459.896455][T16034] RBP: 00007fabaeddb090 R08: 0000000000000000 R09: 0000000000000000 [ 459.904430][T16034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 459.912404][T16034] R13: 0000000000000000 R14: 00007fabae175fa0 R15: 00007ffcbc78b928 [ 459.920395][T16034] [ 461.230929][T16059] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4298'. [ 461.906030][T16061] syz.3.4294 (16061) used greatest stack depth: 20256 bytes left [ 462.005454][T16069] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4301'. [ 462.226393][T16071] sp0: Synchronizing with TNC [ 463.354196][T16091] netlink: zone id is out of range [ 463.364249][T16091] netlink: zone id is out of range [ 463.369421][T16091] netlink: zone id is out of range [ 463.881924][T16104] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4314'. [ 464.807443][T16120] FAULT_INJECTION: forcing a failure. [ 464.807443][T16120] name failslab, interval 1, probability 0, space 0, times 0 [ 464.897568][T16120] CPU: 0 UID: 0 PID: 16120 Comm: syz.1.4318 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 464.908433][T16120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 464.918562][T16120] Call Trace: [ 464.921879][T16120] [ 464.924843][T16120] dump_stack_lvl+0x16c/0x1f0 [ 464.929583][T16120] should_fail_ex+0x497/0x5b0 [ 464.934306][T16120] ? fs_reclaim_acquire+0xae/0x150 [ 464.939464][T16120] should_failslab+0xc2/0x120 [ 464.944194][T16120] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 464.949619][T16120] ? ptlock_alloc+0x1f/0x70 [ 464.954184][T16120] ptlock_alloc+0x1f/0x70 [ 464.958564][T16120] pte_alloc_one+0x74/0x390 [ 464.963111][T16120] do_pte_missing+0x1ae7/0x3e00 [ 464.968024][T16120] __handle_mm_fault+0x103c/0x2a40 [ 464.973291][T16120] ? __pfx___handle_mm_fault+0x10/0x10 [ 464.978802][T16120] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 464.984546][T16120] ? find_vma+0xc0/0x140 [ 464.988868][T16120] ? __pfx_find_vma+0x10/0x10 [ 464.993593][T16120] handle_mm_fault+0x3fa/0xaa0 [ 464.998420][T16120] do_user_addr_fault+0x7a3/0x13f0 [ 465.003584][T16120] exc_page_fault+0x5c/0xc0 [ 465.008128][T16120] asm_exc_page_fault+0x26/0x30 [ 465.013018][T16120] RIP: 0010:copy_iovec_from_user+0x84/0x170 [ 465.018958][T16120] Code: e8 a1 e0 02 fd 4d 85 ff 0f 85 c6 00 00 00 e8 e3 de 02 fd 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 ce de 02 fd 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 fc e0 02 fd 85 db 0f 85 b1 00 [ 465.038610][T16120] RSP: 0018:ffffc90004aef928 EFLAGS: 00050246 [ 465.044713][T16120] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8496705f [ 465.052722][T16120] RDX: ffff88802e02bc00 RSI: ffffffff84967082 RDI: 0000000000000006 [ 465.060733][T16120] RBP: 0000000000000000 R08: 0000000000000006 R09: 0000000000000000 [ 465.068749][T16120] R10: 0000000000000010 R11: 0000000000000000 R12: ffffc90004aefb60 [ 465.076762][T16120] R13: 0000000000000001 R14: 00007ffffffff000 R15: dffffc0000000000 [ 465.084789][T16120] ? copy_iovec_from_user+0x5f/0x170 [ 465.090124][T16120] ? copy_iovec_from_user+0x82/0x170 [ 465.095472][T16120] ? copy_iovec_from_user+0x82/0x170 [ 465.100820][T16120] __import_iovec+0x4b6/0x6d0 [ 465.105575][T16120] import_iovec+0x108/0x140 [ 465.110132][T16120] copy_msghdr_from_user+0xfa/0x160 [ 465.115372][T16120] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 465.121222][T16120] ? __lock_acquire+0xcc5/0x3c40 [ 465.126209][T16120] ___sys_sendmsg+0xff/0x1e0 [ 465.130867][T16120] ? __pfx____sys_sendmsg+0x10/0x10 [ 465.136136][T16120] ? trace_lock_acquire+0x14e/0x1f0 [ 465.141394][T16120] __sys_sendmmsg+0x201/0x420 [ 465.146120][T16120] ? __pfx___sys_sendmmsg+0x10/0x10 [ 465.151368][T16120] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 465.157390][T16120] ? fput+0x67/0x440 [ 465.161323][T16120] ? ksys_write+0x1ba/0x250 [ 465.165863][T16120] ? __pfx_ksys_write+0x10/0x10 [ 465.170769][T16120] __x64_sys_sendmmsg+0x9c/0x100 [ 465.175762][T16120] ? lockdep_hardirqs_on+0x7c/0x110 [ 465.181006][T16120] do_syscall_64+0xcd/0x250 [ 465.185556][T16120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 465.191521][T16120] RIP: 0033:0x7fabadf85d29 [ 465.195963][T16120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 465.215612][T16120] RSP: 002b:00007fabaeddb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 465.224065][T16120] RAX: ffffffffffffffda RBX: 00007fabae175fa0 RCX: 00007fabadf85d29 [ 465.232067][T16120] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003 [ 465.240078][T16120] RBP: 00007fabaeddb090 R08: 0000000000000000 R09: 0000000000000000 [ 465.248088][T16120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 465.256090][T16120] R13: 0000000000000000 R14: 00007fabae175fa0 R15: 00007ffcbc78b928 [ 465.264112][T16120] [ 465.729069][T16128] svc: failed to register nfsdv3 RPC service (errno 111). [ 465.765769][T16128] svc: failed to register nfsaclv3 RPC service (errno 111). [ 465.849237][T16125] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4321'. [ 466.505534][T16146] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4328'. [ 467.618486][T16155] FAULT_INJECTION: forcing a failure. [ 467.618486][T16155] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 467.643025][T16155] CPU: 1 UID: 0 PID: 16155 Comm: syz.3.4331 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 467.653857][T16155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 467.663946][T16155] Call Trace: [ 467.667248][T16155] [ 467.670199][T16155] dump_stack_lvl+0x16c/0x1f0 [ 467.674918][T16155] should_fail_ex+0x497/0x5b0 [ 467.679633][T16155] ? fs_reclaim_acquire+0xae/0x150 [ 467.684788][T16155] should_fail_alloc_page+0xe7/0x130 [ 467.690128][T16155] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 467.696325][T16155] __alloc_pages_noprof+0x190/0x25b0 [ 467.701634][T16155] ? __pfx_mark_lock+0x10/0x10 [ 467.706448][T16155] ? __pfx___lock_acquire+0x10/0x10 [ 467.711676][T16155] ? mark_lock+0xb5/0xc60 [ 467.716050][T16155] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 467.721822][T16155] ? hlock_class+0x4e/0x130 [ 467.726360][T16155] ? __lock_acquire+0xcc5/0x3c40 [ 467.731334][T16155] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 467.737264][T16155] ? policy_nodemask+0xea/0x4e0 [ 467.742160][T16155] alloc_pages_mpol_noprof+0x2c9/0x610 [ 467.747670][T16155] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 467.753698][T16155] ? find_held_lock+0x2d/0x110 [ 467.758509][T16155] folio_alloc_mpol_noprof+0x36/0xd0 [ 467.763835][T16155] shmem_alloc_folio+0x135/0x160 [ 467.768821][T16155] shmem_alloc_and_add_folio+0x48b/0xc00 [ 467.774505][T16155] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 467.780449][T16155] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 467.786763][T16155] ? shmem_huge_global_enabled+0x176/0x250 [ 467.792626][T16155] ? shmem_allowable_huge_orders+0xcd/0x3e0 [ 467.798634][T16155] shmem_get_folio_gfp+0x689/0x1530 [ 467.803857][T16155] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 467.809506][T16155] ? filemap_map_pages+0xf92/0x16b0 [ 467.814721][T16155] shmem_fault+0x200/0xae0 [ 467.819146][T16155] ? __pfx_shmem_fault+0x10/0x10 [ 467.824093][T16155] ? do_pte_missing+0xdd7/0x3e00 [ 467.829130][T16155] ? __pfx_lock_release+0x10/0x10 [ 467.834162][T16155] __do_fault+0x10a/0x490 [ 467.838512][T16155] do_pte_missing+0xebd/0x3e00 [ 467.843309][T16155] __handle_mm_fault+0x103c/0x2a40 [ 467.848439][T16155] ? __pfx___handle_mm_fault+0x10/0x10 [ 467.853911][T16155] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 467.859566][T16155] ? find_vma+0xc0/0x140 [ 467.863814][T16155] ? __pfx_find_vma+0x10/0x10 [ 467.868503][T16155] handle_mm_fault+0x3fa/0xaa0 [ 467.873287][T16155] do_user_addr_fault+0x7a3/0x13f0 [ 467.878437][T16155] exc_page_fault+0x5c/0xc0 [ 467.882965][T16155] asm_exc_page_fault+0x26/0x30 [ 467.887831][T16155] RIP: 0010:copy_iovec_from_user+0x84/0x170 [ 467.893743][T16155] Code: e8 a1 e0 02 fd 4d 85 ff 0f 85 c6 00 00 00 e8 e3 de 02 fd 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 ce de 02 fd 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 fc e0 02 fd 85 db 0f 85 b1 00 [ 467.913526][T16155] RSP: 0018:ffffc90004047928 EFLAGS: 00050246 [ 467.919622][T16155] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8496705f [ 467.927606][T16155] RDX: ffff8880296f0000 RSI: ffffffff84967082 RDI: 0000000000000006 [ 467.935588][T16155] RBP: 0000000000000000 R08: 0000000000000006 R09: 0000000000000000 [ 467.943561][T16155] R10: 0000000000000010 R11: 0000000000000000 R12: ffffc90004047b60 [ 467.951539][T16155] R13: 0000000000000001 R14: 00007ffffffff000 R15: dffffc0000000000 [ 467.959532][T16155] ? copy_iovec_from_user+0x5f/0x170 [ 467.964832][T16155] ? copy_iovec_from_user+0x82/0x170 [ 467.970131][T16155] ? copy_iovec_from_user+0x82/0x170 [ 467.975438][T16155] __import_iovec+0x4b6/0x6d0 [ 467.980134][T16155] import_iovec+0x108/0x140 [ 467.984661][T16155] copy_msghdr_from_user+0xfa/0x160 [ 467.989874][T16155] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 467.995694][T16155] ? __lock_acquire+0xcc5/0x3c40 [ 468.000649][T16155] ___sys_sendmsg+0xff/0x1e0 [ 468.005255][T16155] ? __pfx____sys_sendmsg+0x10/0x10 [ 468.010477][T16155] ? trace_lock_acquire+0x14e/0x1f0 [ 468.015705][T16155] __sys_sendmmsg+0x201/0x420 [ 468.020398][T16155] ? __pfx___sys_sendmmsg+0x10/0x10 [ 468.025620][T16155] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 468.031620][T16155] ? fput+0x67/0x440 [ 468.035529][T16155] ? ksys_write+0x1ba/0x250 [ 468.040039][T16155] ? __pfx_ksys_write+0x10/0x10 [ 468.044908][T16155] __x64_sys_sendmmsg+0x9c/0x100 [ 468.049858][T16155] ? lockdep_hardirqs_on+0x7c/0x110 [ 468.055070][T16155] do_syscall_64+0xcd/0x250 [ 468.059588][T16155] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 468.065496][T16155] RIP: 0033:0x7fe9c9785d29 [ 468.069933][T16155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 468.089557][T16155] RSP: 002b:00007fe9ca4d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 468.097985][T16155] RAX: ffffffffffffffda RBX: 00007fe9c9975fa0 RCX: 00007fe9c9785d29 [ 468.105979][T16155] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003 [ 468.113953][T16155] RBP: 00007fe9ca4d6090 R08: 0000000000000000 R09: 0000000000000000 [ 468.121924][T16155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 468.129896][T16155] R13: 0000000000000000 R14: 00007fe9c9975fa0 R15: 00007ffe148b0448 [ 468.137887][T16155] [ 468.141018][ C1] vkms_vblank_simulate: vblank timer overrun [ 469.999000][T16190] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 470.415927][T16193] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4342'. [ 470.649961][T16203] sp0: Synchronizing with TNC [ 474.154687][T16249] net_ratelimit: 4 callbacks suppressed [ 474.154712][T16249] netlink: zone id is out of range [ 474.186159][T16249] netlink: zone id is out of range [ 474.568378][T16241] Process accounting resumed [ 474.571872][T16258] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4360'. [ 474.613255][T16258] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 474.634563][T16241] kernel write not supported for file /trace_marker (pid: 16241 comm: syz.1.4349) [ 474.642271][T16258] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 474.658669][T16258] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 474.712344][T16258] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 475.098295][T16266] kernel write not supported for file /trace_marker (pid: 16266 comm: syz.1.4362) [ 476.118331][T16267] kernel write not supported for file /trace_marker (pid: 16267 comm: syz.1.4363) [ 476.524300][T16278] kernel write not supported for file /trace_marker (pid: 16278 comm: syz.1.4366) [ 476.706595][T16288] netlink: zone id is out of range [ 476.733133][T16288] netlink: zone id is out of range [ 476.761740][T16288] netlink: set zone limit has 4 unknown bytes [ 476.828460][T16291] FAULT_INJECTION: forcing a failure. [ 476.828460][T16291] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 476.853002][T16288] kernel write not supported for file /trace_marker (pid: 16288 comm: syz.1.4369) [ 476.866129][T16291] CPU: 0 UID: 0 PID: 16291 Comm: syz.0.4370 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 476.876970][T16291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 476.887061][T16291] Call Trace: [ 476.890363][T16291] [ 476.893315][T16291] dump_stack_lvl+0x16c/0x1f0 [ 476.898044][T16291] should_fail_ex+0x497/0x5b0 [ 476.902764][T16291] _copy_from_user+0x2e/0xd0 [ 476.907429][T16291] copy_msghdr_from_user+0x99/0x160 [ 476.912670][T16291] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 476.918520][T16291] ? __lock_acquire+0xcc5/0x3c40 [ 476.923499][T16291] ? hlock_class+0x4e/0x130 [ 476.928042][T16291] ? __lock_acquire+0x15a9/0x3c40 [ 476.933108][T16291] ___sys_sendmsg+0xff/0x1e0 [ 476.937738][T16291] ? __pfx____sys_sendmsg+0x10/0x10 [ 476.942969][T16291] ? __pfx___lock_acquire+0x10/0x10 [ 476.948221][T16291] ? __pfx___might_resched+0x10/0x10 [ 476.953623][T16291] ? __might_fault+0xe3/0x190 [ 476.958360][T16291] __sys_sendmmsg+0x201/0x420 [ 476.963090][T16291] ? __pfx___sys_sendmmsg+0x10/0x10 [ 476.968344][T16291] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 476.974388][T16291] ? fput+0x67/0x440 [ 476.978339][T16291] ? ksys_write+0x1ba/0x250 [ 476.982883][T16291] ? __pfx_ksys_write+0x10/0x10 [ 476.987768][T16291] __x64_sys_sendmmsg+0x9c/0x100 [ 476.992752][T16291] ? lockdep_hardirqs_on+0x7c/0x110 [ 476.997995][T16291] do_syscall_64+0xcd/0x250 [ 477.002545][T16291] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 477.008485][T16291] RIP: 0033:0x7f6fc7785d29 [ 477.012931][T16291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 477.032573][T16291] RSP: 002b:00007f6fc857f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 477.041023][T16291] RAX: ffffffffffffffda RBX: 00007f6fc7975fa0 RCX: 00007f6fc7785d29 [ 477.049030][T16291] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003 [ 477.057035][T16291] RBP: 00007f6fc857f090 R08: 0000000000000000 R09: 0000000000000000 [ 477.065045][T16291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 477.073078][T16291] R13: 0000000000000000 R14: 00007f6fc7975fa0 R15: 00007ffe28d53738 [ 477.081101][T16291] [ 477.281751][T16301] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4373'. [ 477.317313][T16297] kernel write not supported for file /trace_marker (pid: 16297 comm: syz.1.4372) [ 478.173251][T16329] netlink: zone id is out of range [ 478.178433][T16329] netlink: zone id is out of range [ 478.231576][T16329] netlink: set zone limit has 4 unknown bytes [ 478.463083][T16331] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 478.541210][T16306] kernel write not supported for file /trace_marker (pid: 16306 comm: syz.1.4375) [ 478.968133][T16337] kernel write not supported for file /trace_marker (pid: 16337 comm: syz.1.4383) [ 479.180865][T16199] kernel write not supported for file /trace_marker (pid: 16199 comm: syz.1.4344) [ 480.348754][T16369] netlink: zone id is out of range [ 480.381804][T16369] netlink: zone id is out of range [ 480.386973][T16369] netlink: set zone limit has 4 unknown bytes [ 480.459841][T16346] kernel write not supported for file /trace_marker (pid: 16346 comm: syz.1.4385) [ 480.762127][T16380] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 480.818209][T16375] Process accounting resumed [ 481.570404][T16381] kernel write not supported for file /trace_marker (pid: 16381 comm: syz.1.4394) [ 481.979137][T16400] FAULT_INJECTION: forcing a failure. [ 481.979137][T16400] name failslab, interval 1, probability 0, space 0, times 0 [ 482.055912][T16400] CPU: 0 UID: 0 PID: 16400 Comm: syz.3.4398 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 482.066752][T16400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 482.076844][T16400] Call Trace: [ 482.080157][T16400] [ 482.083126][T16400] dump_stack_lvl+0x16c/0x1f0 [ 482.087846][T16400] should_fail_ex+0x497/0x5b0 [ 482.092564][T16400] ? fs_reclaim_acquire+0xae/0x150 [ 482.097719][T16400] should_failslab+0xc2/0x120 [ 482.102449][T16400] __kmalloc_noprof+0xce/0x4f0 [ 482.107257][T16400] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 482.112922][T16400] ? tomoyo_realpath_from_path+0xbf/0x710 [ 482.118693][T16400] tomoyo_realpath_from_path+0xbf/0x710 [ 482.124297][T16400] ? tomoyo_path_number_perm+0x235/0x5b0 [ 482.129986][T16400] tomoyo_path_number_perm+0x248/0x5b0 [ 482.135502][T16400] ? tomoyo_path_number_perm+0x235/0x5b0 [ 482.141189][T16400] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 482.147262][T16400] ? __pfx_lock_release+0x10/0x10 [ 482.152320][T16400] ? trace_lock_acquire+0x14e/0x1f0 [ 482.157566][T16400] ? lock_acquire+0x2f/0xb0 [ 482.162108][T16400] ? __fget_files+0x40/0x3a0 [ 482.166738][T16400] ? __fget_files+0x206/0x3a0 [ 482.171470][T16400] security_file_ioctl+0x9b/0x240 [ 482.176534][T16400] __x64_sys_ioctl+0xb7/0x200 [ 482.181255][T16400] do_syscall_64+0xcd/0x250 [ 482.185809][T16400] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.191744][T16400] RIP: 0033:0x7fe9c9785d29 [ 482.196185][T16400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 482.215831][T16400] RSP: 002b:00007fe9ca4d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 482.224325][T16400] RAX: ffffffffffffffda RBX: 00007fe9c9975fa0 RCX: 00007fe9c9785d29 [ 482.232337][T16400] RDX: 0000000000005c8d RSI: 00000000400454ca RDI: 00000000000000c8 [ 482.234780][T16393] kernel write not supported for file /trace_marker (pid: 16393 comm: syz.1.4397) [ 482.240314][T16400] RBP: 00007fe9ca4d6090 R08: 0000000000000000 R09: 0000000000000000 [ 482.257505][T16400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 482.265512][T16400] R13: 0000000000000000 R14: 00007fe9c9975fa0 R15: 00007ffe148b0448 [ 482.273539][T16400] [ 482.424609][T16400] ERROR: Out of memory at tomoyo_realpath_from_path. [ 482.777365][T16408] kernel write not supported for file /trace_marker (pid: 16408 comm: syz.1.4399) [ 483.003643][T16416] sp0: Synchronizing with TNC [ 483.213546][T16422] kernel write not supported for file /trace_marker (pid: 16422 comm: syz.1.4411) [ 483.412811][T16420] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4403'. [ 484.826472][T16450] FAULT_INJECTION: forcing a failure. [ 484.826472][T16450] name failslab, interval 1, probability 0, space 0, times 0 [ 484.871628][T16450] CPU: 0 UID: 0 PID: 16450 Comm: syz.3.4409 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 484.882487][T16450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 484.892590][T16450] Call Trace: [ 484.895901][T16450] [ 484.898855][T16450] dump_stack_lvl+0x16c/0x1f0 [ 484.903587][T16450] should_fail_ex+0x497/0x5b0 [ 484.908321][T16450] ? fs_reclaim_acquire+0xae/0x150 [ 484.913507][T16450] should_failslab+0xc2/0x120 [ 484.918259][T16450] __kmalloc_noprof+0xce/0x4f0 [ 484.923078][T16450] ? d_absolute_path+0x137/0x1b0 [ 484.928101][T16450] ? tomoyo_encode2+0x100/0x3e0 [ 484.933004][T16450] tomoyo_encode2+0x100/0x3e0 [ 484.937725][T16450] tomoyo_realpath_from_path+0x1a7/0x710 [ 484.943398][T16450] ? tomoyo_path_number_perm+0x235/0x5b0 [ 484.949090][T16450] tomoyo_path_number_perm+0x248/0x5b0 [ 484.954618][T16450] ? tomoyo_path_number_perm+0x235/0x5b0 [ 484.960314][T16450] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 484.966383][T16450] ? __pfx_lock_release+0x10/0x10 [ 484.971451][T16450] ? trace_lock_acquire+0x14e/0x1f0 [ 484.976702][T16450] ? lock_acquire+0x2f/0xb0 [ 484.981253][T16450] ? __fget_files+0x40/0x3a0 [ 484.985916][T16450] ? __fget_files+0x206/0x3a0 [ 484.990660][T16450] security_file_ioctl+0x9b/0x240 [ 484.995735][T16450] __x64_sys_ioctl+0xb7/0x200 [ 485.000610][T16450] do_syscall_64+0xcd/0x250 [ 485.005179][T16450] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 485.011122][T16450] RIP: 0033:0x7fe9c9785d29 [ 485.015585][T16450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 485.035247][T16450] RSP: 002b:00007fe9ca4d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 485.043712][T16450] RAX: ffffffffffffffda RBX: 00007fe9c9975fa0 RCX: 00007fe9c9785d29 [ 485.051729][T16450] RDX: 0000000000005c8d RSI: 00000000400454ca RDI: 00000000000000c8 [ 485.059750][T16450] RBP: 00007fe9ca4d6090 R08: 0000000000000000 R09: 0000000000000000 [ 485.067766][T16450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 485.075779][T16450] R13: 0000000000000000 R14: 00007fe9c9975fa0 R15: 00007ffe148b0448 [ 485.083820][T16450] [ 485.139545][T16450] ERROR: Out of memory at tomoyo_realpath_from_path. [ 485.785192][T16432] kernel write not supported for file /trace_marker (pid: 16432 comm: syz.1.4405) [ 485.897993][T16387] kernel write not supported for file /trace_marker (pid: 16387 comm: syz.1.4394) [ 486.135612][T16473] netlink: zone id is out of range [ 486.142518][T16473] netlink: zone id is out of range [ 486.157232][T16473] netlink: zone id is out of range [ 486.185532][T16473] netlink: zone id is out of range [ 486.190748][T16473] netlink: zone id is out of range [ 486.215896][T16473] netlink: set zone limit has 8 unknown bytes [ 486.336491][T16473] kernel write not supported for file /trace_marker (pid: 16473 comm: syz.1.4415) [ 486.893480][T16481] kernel write not supported for file /trace_marker (pid: 16481 comm: syz.1.4417) [ 487.347040][T16486] kernel write not supported for file /trace_marker (pid: 16486 comm: syz.1.4419) [ 487.566699][T16495] FAULT_INJECTION: forcing a failure. [ 487.566699][T16495] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 487.622467][T16495] CPU: 1 UID: 0 PID: 16495 Comm: syz.1.4421 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 487.633299][T16495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 487.643387][T16495] Call Trace: [ 487.646683][T16495] [ 487.649642][T16495] dump_stack_lvl+0x16c/0x1f0 [ 487.654354][T16495] should_fail_ex+0x497/0x5b0 [ 487.659066][T16495] _copy_from_user+0x2e/0xd0 [ 487.663707][T16495] __tun_chr_ioctl+0x4b4/0x4960 [ 487.668617][T16495] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 487.673956][T16495] ? __fget_files+0x206/0x3a0 [ 487.678672][T16495] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 487.683823][T16495] __x64_sys_ioctl+0x190/0x200 [ 487.688622][T16495] do_syscall_64+0xcd/0x250 [ 487.693162][T16495] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 487.699092][T16495] RIP: 0033:0x7fabadf85d29 [ 487.703538][T16495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 487.723190][T16495] RSP: 002b:00007fabaeddb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 487.731639][T16495] RAX: ffffffffffffffda RBX: 00007fabae175fa0 RCX: 00007fabadf85d29 [ 487.739641][T16495] RDX: 0000000000005c8d RSI: 00000000400454ca RDI: 00000000000000c8 [ 487.747644][T16495] RBP: 00007fabaeddb090 R08: 0000000000000000 R09: 0000000000000000 [ 487.755644][T16495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 487.763643][T16495] R13: 0000000000000000 R14: 00007fabae175fa0 R15: 00007ffcbc78b928 [ 487.771662][T16495] [ 487.814214][T16495] kernel write not supported for file /trace_marker (pid: 16495 comm: syz.1.4421) [ 487.903282][T16498] ubi0: attaching mtd0 [ 487.908672][T16498] ubi0: scanning is finished [ 487.953584][T16498] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 488.565700][T16498] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 488.840034][T16510] kernel write not supported for file /trace_marker (pid: 16510 comm: syz.1.4423) [ 489.222832][T16522] netlink: zone id is out of range [ 489.228046][T16522] netlink: zone id is out of range [ 489.310587][T16522] netlink: zone id is out of range [ 489.412531][T16522] netlink: zone id is out of range [ 489.651720][T16525] kernel write not supported for file /trace_marker (pid: 16525 comm: syz.1.4428) [ 489.693283][T16541] FAULT_INJECTION: forcing a failure. [ 489.693283][T16541] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 489.732589][T16541] CPU: 0 UID: 0 PID: 16541 Comm: syz.3.4431 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 489.743424][T16541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 489.753511][T16541] Call Trace: [ 489.756815][T16541] [ 489.759777][T16541] dump_stack_lvl+0x16c/0x1f0 [ 489.764499][T16541] should_fail_ex+0x497/0x5b0 [ 489.769218][T16541] ? fs_reclaim_acquire+0xae/0x150 [ 489.774380][T16541] should_fail_alloc_page+0xe7/0x130 [ 489.779728][T16541] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 489.785937][T16541] __alloc_pages_noprof+0x190/0x25b0 [ 489.791272][T16541] ? hlock_class+0x4e/0x130 [ 489.795815][T16541] ? mark_lock+0xb5/0xc60 [ 489.800184][T16541] ? __pfx_mark_lock+0x10/0x10 [ 489.804964][T16541] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 489.810699][T16541] ? is_bpf_text_address+0x8a/0x1a0 [ 489.815928][T16541] ? hlock_class+0x4e/0x130 [ 489.820442][T16541] ? hlock_class+0x4e/0x130 [ 489.824953][T16541] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 489.830852][T16541] ? policy_nodemask+0xea/0x4e0 [ 489.835714][T16541] alloc_pages_mpol_noprof+0x2c9/0x610 [ 489.841188][T16541] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 489.847177][T16541] ? __pfx___lock_acquire+0x10/0x10 [ 489.852393][T16541] pte_alloc_one+0x20/0x390 [ 489.856902][T16541] do_pte_missing+0x1ae7/0x3e00 [ 489.861773][T16541] __handle_mm_fault+0x103c/0x2a40 [ 489.866904][T16541] ? __pfx___handle_mm_fault+0x10/0x10 [ 489.872374][T16541] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 489.878040][T16541] ? find_vma+0xc0/0x140 [ 489.882302][T16541] ? __pfx_find_vma+0x10/0x10 [ 489.886996][T16541] handle_mm_fault+0x3fa/0xaa0 [ 489.891776][T16541] do_user_addr_fault+0x7a3/0x13f0 [ 489.896898][T16541] exc_page_fault+0x5c/0xc0 [ 489.901410][T16541] asm_exc_page_fault+0x26/0x30 [ 489.906265][T16541] RIP: 0010:rep_movs_alternative+0x30/0x70 [ 489.912085][T16541] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 [ 489.931700][T16541] RSP: 0018:ffffc90012c57d30 EFLAGS: 00050202 [ 489.937775][T16541] RAX: 0000000000000001 RBX: 0000000000005c8d RCX: 0000000000000028 [ 489.945748][T16541] RDX: fffff5200258afc9 RSI: 0000000000005c8d RDI: ffffc90012c57e20 [ 489.953719][T16541] RBP: 0000000000000028 R08: 0000000000000001 R09: fffff5200258afc8 [ 489.961696][T16541] R10: ffffc90012c57e47 R11: 0000000000000000 R12: 0000000000000000 [ 489.969679][T16541] R13: ffffc90012c57e20 R14: ffff88807edcc000 R15: ffff8880705aca80 [ 489.977671][T16541] _copy_from_user+0x9a/0xd0 [ 489.982284][T16541] __tun_chr_ioctl+0x4b4/0x4960 [ 489.987154][T16541] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 489.992462][T16541] ? __fget_files+0x206/0x3a0 [ 489.997156][T16541] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 490.002278][T16541] __x64_sys_ioctl+0x190/0x200 [ 490.007049][T16541] do_syscall_64+0xcd/0x250 [ 490.011571][T16541] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 490.017472][T16541] RIP: 0033:0x7fe9c9785d29 [ 490.021890][T16541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 490.041502][T16541] RSP: 002b:00007fe9ca4d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 490.049919][T16541] RAX: ffffffffffffffda RBX: 00007fe9c9975fa0 RCX: 00007fe9c9785d29 [ 490.057896][T16541] RDX: 0000000000005c8d RSI: 00000000400454ca RDI: 00000000000000c8 [ 490.065867][T16541] RBP: 00007fe9ca4d6090 R08: 0000000000000000 R09: 0000000000000000 [ 490.073843][T16541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 490.081819][T16541] R13: 0000000000000000 R14: 00007fe9c9975fa0 R15: 00007ffe148b0448 [ 490.089813][T16541] [ 490.092929][ C0] vkms_vblank_simulate: vblank timer overrun [ 490.122665][T16542] kernel write not supported for file /trace_marker (pid: 16542 comm: syz.1.4432) [ 491.102125][T15885] syz.2.4250 (15885) used greatest stack depth: 18224 bytes left [ 491.460247][T16550] kernel write not supported for file /trace_marker (pid: 16550 comm: syz.1.4433) [ 491.825859][T16566] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 491.947330][T16568] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 492.092310][T16563] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 492.104809][T16569] kernel write not supported for file /trace_marker (pid: 16569 comm: syz.1.4441) [ 492.272479][T16578] net_ratelimit: 2 callbacks suppressed [ 492.272503][T16578] netlink: zone id is out of range [ 492.341480][T16578] netlink: zone id is out of range [ 492.356994][T16578] netlink: set zone limit has 8 unknown bytes [ 492.601539][T16580] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4442'. [ 492.916701][T16579] kernel write not supported for file /trace_marker (pid: 16579 comm: syz.1.4442) [ 493.044218][T16602] netlink: get zone limit has 8 unknown bytes [ 493.497382][T16603] kernel write not supported for file /trace_marker (pid: 16603 comm: syz.1.4449) [ 493.626475][T16621] netlink: zone id is out of range [ 493.628013][T16624] FAULT_INJECTION: forcing a failure. [ 493.628013][T16624] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 493.641778][T16621] netlink: zone id is out of range [ 493.655403][T16624] CPU: 0 UID: 0 PID: 16624 Comm: syz.1.4454 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 493.666233][T16624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 493.673679][T16621] netlink: set zone limit has 8 unknown bytes [ 493.676293][T16624] Call Trace: [ 493.676307][T16624] [ 493.676318][T16624] dump_stack_lvl+0x16c/0x1f0 [ 493.676355][T16624] should_fail_ex+0x497/0x5b0 [ 493.698019][T16624] ? fs_reclaim_acquire+0xae/0x150 [ 493.703174][T16624] should_fail_alloc_page+0xe7/0x130 [ 493.708511][T16624] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 493.714713][T16624] __alloc_pages_noprof+0x190/0x25b0 [ 493.720040][T16624] ? __pfx_mark_lock+0x10/0x10 [ 493.724824][T16624] ? __pfx___lock_acquire+0x10/0x10 [ 493.730046][T16624] ? mark_lock+0xb5/0xc60 [ 493.734411][T16624] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 493.740163][T16624] ? hlock_class+0x4e/0x130 [ 493.744733][T16624] ? __lock_acquire+0xcc5/0x3c40 [ 493.749706][T16624] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 493.755625][T16624] ? policy_nodemask+0xea/0x4e0 [ 493.760503][T16624] alloc_pages_mpol_noprof+0x2c9/0x610 [ 493.765978][T16624] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 493.771979][T16624] ? find_held_lock+0x2d/0x110 [ 493.776760][T16624] folio_alloc_mpol_noprof+0x36/0xd0 [ 493.782051][T16624] shmem_alloc_folio+0x135/0x160 [ 493.787004][T16624] shmem_alloc_and_add_folio+0x48b/0xc00 [ 493.792650][T16624] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 493.798551][T16624] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 493.804730][T16624] ? shmem_huge_global_enabled+0x176/0x250 [ 493.810555][T16624] ? shmem_allowable_huge_orders+0xcd/0x3e0 [ 493.816458][T16624] shmem_get_folio_gfp+0x689/0x1530 [ 493.821694][T16624] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 493.827332][T16624] ? filemap_map_pages+0xf92/0x16b0 [ 493.832551][T16624] shmem_fault+0x200/0xae0 [ 493.836988][T16624] ? __pfx_shmem_fault+0x10/0x10 [ 493.841946][T16624] ? do_pte_missing+0xdd7/0x3e00 [ 493.846901][T16624] ? __pfx_lock_release+0x10/0x10 [ 493.851940][T16624] __do_fault+0x10a/0x490 [ 493.856302][T16624] do_pte_missing+0xebd/0x3e00 [ 493.861100][T16624] __handle_mm_fault+0x103c/0x2a40 [ 493.866251][T16624] ? __pfx___handle_mm_fault+0x10/0x10 [ 493.871727][T16624] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 493.877389][T16624] ? find_vma+0xc0/0x140 [ 493.881638][T16624] ? __pfx_find_vma+0x10/0x10 [ 493.886321][T16624] handle_mm_fault+0x3fa/0xaa0 [ 493.891099][T16624] do_user_addr_fault+0x7a3/0x13f0 [ 493.896222][T16624] exc_page_fault+0x5c/0xc0 [ 493.900739][T16624] asm_exc_page_fault+0x26/0x30 [ 493.905595][T16624] RIP: 0010:rep_movs_alternative+0x30/0x70 [ 493.911417][T16624] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 [ 493.931038][T16624] RSP: 0018:ffffc90012c47d30 EFLAGS: 00050202 [ 493.937111][T16624] RAX: 0000000000000001 RBX: 0000000000005c8d RCX: 0000000000000028 [ 493.945082][T16624] RDX: fffff52002588fc9 RSI: 0000000000005c8d RDI: ffffc90012c47e20 [ 493.953054][T16624] RBP: 0000000000000028 R08: 0000000000000001 R09: fffff52002588fc8 [ 493.961028][T16624] R10: ffffc90012c47e47 R11: 0000000000000000 R12: 0000000000000000 [ 493.969006][T16624] R13: ffffc90012c47e20 R14: ffff88807b6c6000 R15: ffff888033266c40 [ 493.977004][T16624] _copy_from_user+0x9a/0xd0 [ 493.981617][T16624] __tun_chr_ioctl+0x4b4/0x4960 [ 493.986484][T16624] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 493.991787][T16624] ? __fget_files+0x206/0x3a0 [ 493.996472][T16624] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 494.001594][T16624] __x64_sys_ioctl+0x190/0x200 [ 494.006364][T16624] do_syscall_64+0xcd/0x250 [ 494.010878][T16624] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 494.016778][T16624] RIP: 0033:0x7fabadf85d29 [ 494.021195][T16624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 494.040805][T16624] RSP: 002b:00007fabaeddb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 494.049225][T16624] RAX: ffffffffffffffda RBX: 00007fabae175fa0 RCX: 00007fabadf85d29 [ 494.057200][T16624] RDX: 0000000000005c8d RSI: 00000000400454ca RDI: 00000000000000c8 [ 494.065177][T16624] RBP: 00007fabaeddb090 R08: 0000000000000000 R09: 0000000000000000 [ 494.073153][T16624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 494.081129][T16624] R13: 0000000000000000 R14: 00007fabae175fa0 R15: 00007ffcbc78b928 [ 494.089118][T16624] [ 494.193737][T16624] kernel write not supported for file /trace_marker (pid: 16624 comm: syz.1.4454) [ 494.416721][T16628] kernel write not supported for file /trace_marker (pid: 16628 comm: syz.1.4456) [ 494.526379][T16636] device-mapper: ioctl: Unable to rename non-existent device, to [ 494.547988][T16634] lo: entered allmulticast mode [ 494.711611][T16633] lo: left allmulticast mode [ 494.770635][T16633] kernel write not supported for file /trace_marker (pid: 16633 comm: syz.1.4460) [ 494.798260][T16647] netlink: 4755 bytes leftover after parsing attributes in process `syz.3.4461'. [ 495.022023][T16655] netlink: zone id is out of range [ 495.050134][T16655] netlink: zone id is out of range [ 495.077067][T16655] netlink: set zone limit has 8 unknown bytes [ 495.095642][T16649] kernel write not supported for file /trace_marker (pid: 16649 comm: syz.1.4462) [ 495.444120][T16659] kernel write not supported for file /trace_marker (pid: 16659 comm: syz.1.4465) [ 495.729023][T16664] kernel write not supported for file /trace_marker (pid: 16664 comm: syz.1.4467) [ 496.185390][T16674] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4470'. [ 497.389283][T16669] kernel write not supported for file /trace_marker (pid: 16669 comm: syz.1.4470) [ 498.852488][T16707] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4480'. [ 499.477674][T16690] kernel write not supported for file /trace_marker (pid: 16690 comm: syz.1.4475) [ 500.053718][T16737] netlink: zone id is out of range [ 500.068134][T16737] netlink: zone id is out of range [ 500.081646][T16737] netlink: zone id is out of range [ 500.090103][T16737] netlink: set zone limit has 4 unknown bytes [ 500.977358][T16743] kernel write not supported for file /trace_marker (pid: 16743 comm: syz.1.4486) [ 501.185899][T16766] kernel write not supported for file /trace_marker (pid: 16766 comm: syz.1.4495) [ 501.307553][T16770] kernel write not supported for file /trace_marker (pid: 16770 comm: syz.1.4497) [ 501.339825][T16773] netlink: zone id is out of range [ 501.366481][T16773] netlink: zone id is out of range [ 501.388272][T16773] netlink: zone id is out of range [ 501.397093][T16773] netlink: set zone limit has 4 unknown bytes [ 501.599030][T16779] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ek [ 502.134003][T16790] dump_stack_lvl+0x16c/0x1f0 [ 502.138721][T16790] should_fail_ex+0x497/0x5b0 [ 502.143435][T16790] ? fs_reclaim_acquire+0xae/0x150 [ 502.148587][T16790] should_failslab+0xc2/0x120 [ 502.153305][T16790] __kmalloc_node_track_caller_noprof+0xcf/0x520 [ 502.159665][T16790] ? bitmap_parselist_user+0x24/0x90 [ 502.165007][T16790] memdup_user_nul+0x2b/0x110 [ 502.169728][T16790] bitmap_parselist_user+0x24/0x90 [ 502.174890][T16790] irq_affinity_list_proc_write+0x148/0x260 [ 502.180828][T16790] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 502.187329][T16790] ? rcu_is_watching+0x12/0xc0 [ 502.192125][T16790] ? trace_lock_acquire+0x14e/0x1f0 [ 502.197364][T16790] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 502.203820][T16790] proc_reg_write+0x23d/0x330 [ 502.208538][T16790] ? __pfx_proc_reg_write+0x10/0x10 [ 502.213774][T16790] vfs_writev+0x6da/0xdd0 [ 502.218123][T16790] ? fdget_pos+0x267/0x390 [ 502.222583][T16790] ? __pfx_vfs_writev+0x10/0x10 [ 502.227457][T16790] ? __mutex_lock+0x1cc/0xa60 [ 502.232252][T16790] ? find_held_lock+0x2d/0x110 [ 502.237056][T16790] ? __pfx___mutex_lock+0x10/0x10 [ 502.242110][T16790] ? trace_lock_acquire+0x14e/0x1f0 [ 502.247346][T16790] ? __fget_files+0x206/0x3a0 [ 502.252057][T16790] ? do_writev+0x133/0x340 [ 502.256502][T16790] do_writev+0x133/0x340 [ 502.260771][T16790] ? __pfx_do_writev+0x10/0x10 [ 502.265665][T16790] do_syscall_64+0xcd/0x250 [ 502.270209][T16790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 502.276140][T16790] RIP: 0033:0x7f6fc7785d29 [ 502.280584][T16790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 502.300227][T16790] RSP: 002b:00007f6fc857f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 502.308677][T16790] RAX: ffffffffffffffda RBX: 00007f6fc7975fa0 RCX: 00007f6fc7785d29 [ 502.316687][T16790] RDX: 0000000000000008 RSI: 0000000020000100 RDI: 0000000000000003 [ 502.324687][T16790] RBP: 00007f6fc857f090 R08: 0000000000000000 R09: 0000000000000000 [ 502.332683][T16790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 502.340680][T16790] R13: 0000000000000000 R14: 00007f6fc7975fa0 R15: 00007ffe28d53738 [ 502.348703][T16790] [ 502.395543][T16792] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4505'. [ 502.821056][T16807] netlink: zone id is out of range [ 502.861437][T16807] netlink: zone id is out of range [ 503.114424][T16678] kernel write not supported for file /trace_marker (pid: 16678 comm: syz.1.4470) [ 504.710696][T16776] Process accounting paused [ 504.900955][T16836] FAULT_INJECTION: forcing a failure. [ 504.900955][T16836] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 504.923061][T16836] CPU: 0 UID: 0 PID: 16836 Comm: syz.3.4515 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 504.933889][T16836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 504.944150][T16836] Call Trace: [ 504.947450][T16836] [ 504.950397][T16836] dump_stack_lvl+0x16c/0x1f0 [ 504.955102][T16836] should_fail_ex+0x497/0x5b0 [ 504.959793][T16836] _copy_from_user+0x2e/0xd0 [ 504.964419][T16836] memdup_user_nul+0x72/0x110 [ 504.969194][T16836] bitmap_parselist_user+0x24/0x90 [ 504.974321][T16836] irq_affinity_list_proc_write+0x148/0x260 [ 504.980223][T16836] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 504.986649][T16836] ? rcu_is_watching+0x12/0xc0 [ 504.991426][T16836] ? trace_lock_acquire+0x14e/0x1f0 [ 504.996635][T16836] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 505.003057][T16836] proc_reg_write+0x23d/0x330 [ 505.007741][T16836] ? __pfx_proc_reg_write+0x10/0x10 [ 505.012946][T16836] vfs_writev+0x6da/0xdd0 [ 505.017285][T16836] ? fdget_pos+0x267/0x390 [ 505.021747][T16836] ? __pfx_vfs_writev+0x10/0x10 [ 505.026602][T16836] ? __mutex_lock+0x1cc/0xa60 [ 505.031284][T16836] ? find_held_lock+0x2d/0x110 [ 505.036063][T16836] ? __pfx___mutex_lock+0x10/0x10 [ 505.041096][T16836] ? trace_lock_acquire+0x14e/0x1f0 [ 505.046315][T16836] ? __fget_files+0x206/0x3a0 [ 505.051005][T16836] ? do_writev+0x133/0x340 [ 505.055427][T16836] do_writev+0x133/0x340 [ 505.059677][T16836] ? __pfx_do_writev+0x10/0x10 [ 505.064453][T16836] do_syscall_64+0xcd/0x250 [ 505.068968][T16836] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.074871][T16836] RIP: 0033:0x7fe9c9785d29 [ 505.079288][T16836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 505.098903][T16836] RSP: 002b:00007fe9ca4d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 505.107324][T16836] RAX: ffffffffffffffda RBX: 00007fe9c9975fa0 RCX: 00007fe9c9785d29 [ 505.115299][T16836] RDX: 0000000000000008 RSI: 0000000020000100 RDI: 0000000000000003 [ 505.123273][T16836] RBP: 00007fe9ca4d6090 R08: 0000000000000000 R09: 0000000000000000 [ 505.131252][T16836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 505.139233][T16836] R13: 0000000000000000 R14: 00007fe9c9975fa0 R15: 00007ffe148b0448 [ 505.147227][T16836] [ 505.501068][T16840] net_ratelimit: 2 callbacks suppressed [ 505.501090][T16840] netlink: zone id is out of range [ 505.533906][T16840] netlink: zone id is out of range [ 505.539455][T16840] netlink: zone id is out of range [ 505.557155][T16840] netlink: set zone limit has 4 unknown bytes [ 506.686154][T16864] ip6_vti0: entered allmulticast mode [ 506.984118][T16872] Invalid ELF header magic: != ELF [ 507.133373][T16865] Invalid ELF header magic: != ELF [ 507.284559][T16889] netlink: zone id is out of range [ 507.289996][T16889] netlink: zone id is out of range [ 507.295457][T16889] netlink: zone id is out of range [ 507.300696][T16889] netlink: set zone limit has 4 unknown bytes [ 507.498224][T16884] ------------[ cut here ]------------ [ 507.503935][T16884] WARNING: CPU: 0 PID: 16884 at mm/page_alloc.c:4729 __alloc_pages_noprof+0xeff/0x25b0 [ 507.513771][T16884] Modules linked in: [ 507.517891][T16884] CPU: 0 UID: 0 PID: 16884 Comm: syz.1.4530 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 507.528950][T16884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 507.539157][T16884] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 507.545445][T16884] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 04 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9 [ 507.565277][T16884] RSP: 0018:ffffc9000ebdf918 EFLAGS: 00010246 [ 507.571633][T16884] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 507.580016][T16884] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 507.588412][T16884] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 507.596622][T16884] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000013 [ 507.605082][T16884] R13: 0000000000040cc0 R14: 1ffff92001d7bf37 R15: 00000000ffffffff [ 507.613395][T16884] FS: 00007fabaeddb6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 507.622941][T16884] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 507.629589][T16884] CR2: 0000001b313f0ff8 CR3: 00000000382d4000 CR4: 00000000003526f0 [ 507.638032][T16884] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 507.646753][T16884] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 507.654972][T16884] Call Trace: [ 507.658295][T16884] [ 507.661269][T16884] ? __warn+0xea/0x3c0 [ 507.665628][T16884] ? __alloc_pages_noprof+0xeff/0x25b0 [ 507.671152][T16884] ? report_bug+0x3c0/0x580 [ 507.675794][T16884] ? handle_bug+0x54/0xa0 [ 507.680437][T16884] ? exc_invalid_op+0x17/0x50 [ 507.685603][T16884] ? asm_exc_invalid_op+0x1a/0x20 [ 507.690708][T16884] ? __alloc_pages_noprof+0xeff/0x25b0 [ 507.696352][T16884] ? __pfx___lock_acquire+0x10/0x10 [ 507.701696][T16884] ? hlock_class+0x4e/0x130 [ 507.706255][T16884] ? mark_lock+0xb5/0xc60 [ 507.710640][T16884] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 507.716498][T16884] ? find_held_lock+0x2d/0x110 [ 507.721548][T16884] ? __pfx_lock_release+0x10/0x10 [ 507.726637][T16884] ? trace_lock_acquire+0x14e/0x1f0 [ 507.732174][T16884] ? __pfx_lock_release+0x10/0x10 [ 507.737266][T16884] ___kmalloc_large_node+0x84/0x1b0 [ 507.742640][T16884] __kmalloc_large_node_noprof+0x1c/0x70 [ 507.748338][T16884] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 507.755129][T16884] ? bitmap_parselist_user+0x24/0x90 [ 507.760493][T16884] memdup_user_nul+0x2b/0x110 [ 507.765316][T16884] bitmap_parselist_user+0x24/0x90 [ 507.770493][T16884] irq_affinity_list_proc_write+0x148/0x260 [ 507.776543][T16884] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 507.783348][T16884] ? rcu_is_watching+0x12/0xc0 [ 507.788171][T16884] ? trace_lock_acquire+0x14e/0x1f0 [ 507.793816][T16884] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 507.800301][T16884] proc_reg_write+0x23d/0x330 [ 507.805123][T16884] ? __pfx_proc_reg_write+0x10/0x10 [ 507.810368][T16884] vfs_write+0x24c/0x1150 [ 507.814851][T16884] ? __fget_files+0x1fc/0x3a0 [ 507.819605][T16884] ? __pfx___mutex_lock+0x10/0x10 [ 507.824948][T16884] ? __pfx_vfs_write+0x10/0x10 [ 507.829786][T16884] ? __fget_files+0x206/0x3a0 [ 507.834795][T16884] ksys_write+0x12b/0x250 [ 507.839188][T16884] ? __pfx_ksys_write+0x10/0x10 [ 507.844207][T16884] do_syscall_64+0xcd/0x250 [ 507.848778][T16884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.854834][T16884] RIP: 0033:0x7fabadf85d29 [ 507.859295][T16884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 507.879074][T16884] RSP: 002b:00007fabaeddb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 507.887962][T16884] RAX: ffffffffffffffda RBX: 00007fabae175fa0 RCX: 00007fabadf85d29 [ 507.896349][T16884] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 507.904435][T16884] RBP: 00007fabae001b08 R08: 0000000000000000 R09: 0000000000000000 [ 507.912556][T16884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 507.920579][T16884] R13: 0000000000000000 R14: 00007fabae175fa0 R15: 00007ffcbc78b928 [ 507.928891][T16884] [ 507.932300][T16884] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 507.939626][T16884] CPU: 0 UID: 0 PID: 16884 Comm: syz.1.4530 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0 [ 507.950432][T16884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 507.960525][T16884] Call Trace: [ 507.963842][T16884] [ 507.966810][T16884] dump_stack_lvl+0x3d/0x1f0 [ 507.971458][T16884] panic+0x71d/0x800 [ 507.975413][T16884] ? __pfx_panic+0x10/0x10 [ 507.979887][T16884] ? show_trace_log_lvl+0x29d/0x3d0 [ 507.985130][T16884] ? __alloc_pages_noprof+0xeff/0x25b0 [ 507.990624][T16884] check_panic_on_warn+0xab/0xb0 [ 507.995600][T16884] __warn+0xf6/0x3c0 [ 507.999524][T16884] ? __alloc_pages_noprof+0xeff/0x25b0 [ 508.005015][T16884] report_bug+0x3c0/0x580 [ 508.009366][T16884] handle_bug+0x54/0xa0 [ 508.013535][T16884] exc_invalid_op+0x17/0x50 [ 508.018054][T16884] asm_exc_invalid_op+0x1a/0x20 [ 508.022936][T16884] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 508.029018][T16884] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 04 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9 [ 508.048678][T16884] RSP: 0018:ffffc9000ebdf918 EFLAGS: 00010246 [ 508.054754][T16884] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 508.062729][T16884] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 508.070704][T16884] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 508.078684][T16884] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000013 [ 508.086664][T16884] R13: 0000000000040cc0 R14: 1ffff92001d7bf37 R15: 00000000ffffffff [ 508.094673][T16884] ? __pfx___lock_acquire+0x10/0x10 [ 508.099891][T16884] ? hlock_class+0x4e/0x130 [ 508.104412][T16884] ? mark_lock+0xb5/0xc60 [ 508.108766][T16884] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 508.114511][T16884] ? find_held_lock+0x2d/0x110 [ 508.119304][T16884] ? __pfx_lock_release+0x10/0x10 [ 508.124340][T16884] ? trace_lock_acquire+0x14e/0x1f0 [ 508.129579][T16884] ? __pfx_lock_release+0x10/0x10 [ 508.134628][T16884] ___kmalloc_large_node+0x84/0x1b0 [ 508.139876][T16884] __kmalloc_large_node_noprof+0x1c/0x70 [ 508.145526][T16884] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 508.152138][T16884] ? bitmap_parselist_user+0x24/0x90 [ 508.157451][T16884] memdup_user_nul+0x2b/0x110 [ 508.162170][T16884] bitmap_parselist_user+0x24/0x90 [ 508.167307][T16884] irq_affinity_list_proc_write+0x148/0x260 [ 508.173218][T16884] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 508.179651][T16884] ? rcu_is_watching+0x12/0xc0 [ 508.184431][T16884] ? trace_lock_acquire+0x14e/0x1f0 [ 508.189651][T16884] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 508.196088][T16884] proc_reg_write+0x23d/0x330 [ 508.200839][T16884] ? __pfx_proc_reg_write+0x10/0x10 [ 508.206054][T16884] vfs_write+0x24c/0x1150 [ 508.210404][T16884] ? __fget_files+0x1fc/0x3a0 [ 508.215098][T16884] ? __pfx___mutex_lock+0x10/0x10 [ 508.220140][T16884] ? __pfx_vfs_write+0x10/0x10 [ 508.224924][T16884] ? __fget_files+0x206/0x3a0 [ 508.229621][T16884] ksys_write+0x12b/0x250 [ 508.233967][T16884] ? __pfx_ksys_write+0x10/0x10 [ 508.238842][T16884] do_syscall_64+0xcd/0x250 [ 508.243413][T16884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 508.249327][T16884] RIP: 0033:0x7fabadf85d29 [ 508.253753][T16884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 508.273422][T16884] RSP: 002b:00007fabaeddb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 508.281854][T16884] RAX: ffffffffffffffda RBX: 00007fabae175fa0 RCX: 00007fabadf85d29 [ 508.289835][T16884] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 508.297820][T16884] RBP: 00007fabae001b08 R08: 0000000000000000 R09: 0000000000000000 [ 508.305804][T16884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 508.313788][T16884] R13: 0000000000000000 R14: 00007fabae175fa0 R15: 00007ffcbc78b928 [ 508.321790][T16884] [ 508.325099][T16884] Kernel Offset: disabled [ 508.329487][T16884] Rebooting in 86400 seconds..