last executing test programs: 4.056081614s ago: executing program 3 (id=555): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0xa, 0x1, 0x84) getsockopt$auto(r0, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x9b) openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, 0x0, 0x385083, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0x4800) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) msgsnd$auto(0x2, &(0x7f0000000000)={0x9, 0x2}, 0x2, 0x0) 3.441746516s ago: executing program 0 (id=559): mmap$auto(0x0, 0x2, 0x1000000004, 0x9b72, 0x2, 0x8000) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="00010000", @ANYRES16=0x0, @ANYBLOB="000326bd7000fcdbdf2503000000790008805b4f2525b2dc3a73ec37e7122e6f0d55382854d419b883b7ed64bd3c7b9fb15273e787030718751e0a22cc6cabcae114aa6448d0356183e1ca7c01536c5c6f37915b26a3e75515ab02807fe932b8a415a581dcdc7800f91e231c001d800400d3800c002000f3000000002b3c0c7e9b52baf56fe40000000008008c00ac1414aa000000700002806a00e400addd3588300c750bd8c6341eedf20d260a37a63d761fd730c00d02e9ba0a478e7a2f6629a6ad62011d9ab5dc40c928"], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x42) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x2d, 0x9}, 0x7}, 0x3, 0x0) 3.291561633s ago: executing program 3 (id=561): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async) fanotify_init$auto(0x200, 0x1) (async, rerun: 64) r0 = open(&(0x7f0000000140)='./file0\x00', 0x2ac41, 0x0) (async, rerun: 64) shmctl$auto(0x2, 0x2, &(0x7f0000000280)={{0x6, 0xee00, 0xee01, 0x77a800, 0xa, 0x892, 0x80}, 0x3, 0x800, 0x3, 0x80, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff, 0x5, 0x0, &(0x7f0000000180)="8367d715b3e01f85873af2ed293f11c803480ef8670b73789874b18f9a649079a688a9a2820f48dc3287ea70b5e918", &(0x7f00000001c0)="768f195d12882bf43bed6f6e1eb03c60b7d08862e3d35754e38e6ea394090e9b246887838dc6a87ab31e5682baf2a1cb1bd88be6dc475486a858613b5dd6ae1af59b3fe0090090e3d3a2ac4a064cc1ea8cd0c1fd745c632a0e9e8a11c80ce942ae202228d563031f6a1165d537e6c50fd554d445e05c8f4c836410b2bb8e6e7736b345ac5ec87ad562fcf9b1bc29ea9f0a2fc7cf1544e5c82d9f1e1a7e26a7d9dc56a4468d3e581524a8d5e0f8f7c388119b176f16bca327"}) (async, rerun: 64) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram8/queue/discard_max_bytes\x00', 0x181842, 0x0) (rerun: 64) sendfile$auto(r2, r2, 0x0, 0xe00000000) (async, rerun: 64) r3 = setfsuid$auto(0xee00) (rerun: 64) setreuid$auto(r3, 0x0) (async) r4 = getegid() setregid$auto(r4, r4) (async) keyctl$auto(0x8001, r1, r3, r4, 0x9) fanotify_mark$auto(0x0, 0x21, 0xa, r0, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyda\x00', 0x0, 0x0) (async) clock_adjtime$auto(0x0, &(0x7f0000000040)={0xfbb, 0x0, 0x7f, 0xfffffffff7fffffe, 0x600, 0x1, 0x7, 0x0, 0x7, 0x2, 0x5, {0x3ff, 0x7}, 0xf9f, 0xa5, 0xa, 0x13c, 0x0, 0xc3, 0x1000, 0x9, 0x5, 0x6de, 0xfffffff5}) (async) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/rc_rateidx_mcs_mask_5ghz\x00', 0x40000, 0x0) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r6, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0x1d, 0x2, 0x7) (async, rerun: 32) socket(0x2, 0x1, 0x0) (async, rerun: 32) bind$auto(0x3, &(0x7f0000000040)=@can, 0x6a) (async, rerun: 32) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32) ioctl$auto(r5, 0x540a, 0xffffffffffffffff) 3.233962983s ago: executing program 0 (id=562): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto(r0, 0x9, r0) r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x210800, 0x0) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000ac0), r2) (async) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000b00)={'veth0_to_bridge\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_LINKINFO_GET(r2, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f0000000b40)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010025bd7000fddbdf25020000000c00018000000000", @ANYRES32=r4, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0xc880}, 0x20000) (async) r5 = socket(0x10, 0x2, 0x4) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/ip_vs\x00', 0x20b00, 0x0) (async) r6 = socket(0x2c, 0x3, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'xfrm0\x00'}) (async) sendmsg$auto_ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x2000000, 0x28000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x2000c031) (async) sendmsg$auto_NFSD_CMD_THREADS_SET(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="0c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4000004}, 0x4830) write$auto(r5, &(0x7f0000000000)='-\x00', 0x2fb) mmap$auto(0x400, 0x400008, 0x101, 0x9b72, r1, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) (async) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x401bf, 0x7352, 0x40, 0x65c, 0x1ffde, 0x7, 0x3, 0x2, 0x9, 0x3, 0x5, 0x4, 0x3000, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x1ffc, 0x203, 0x400, 0x84, [0x0, 0x0, 0x0, 0x100, 0x0, 0x2000, 0xfffffffffffffffd, 0xa, 0x78624ce7, 0x0, 0xfffffffffffffffd, 0x0, 0x3, 0x1, 0x4, 0x7, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x200000000000, 0x0, 0xffffffffefffffff, 0x3, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd, 0x400000000005b8, 0xc, 0x4000000000, 0x8, 0x4, 0x6, 0xffffffffffffffff, 0x890, 0x800000000000a, 0xfffffffffffffffc, 0x1000, 0xa38, 0x0, 0x0, 0x6, 0x2, 0x4000000000, 0x6, 0x0, 0x100000]}, 0x1fe, 0xd) (async) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) (async) mkdir$auto(&(0x7f0000004440)='./file0\x00', 0x1) mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9) (async) rename$auto(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040)='./file0\x00') (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r8 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r8, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async) r9 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x0, 0x0) read$auto(r9, 0x0, 0x1f40) (async) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) 3.134554316s ago: executing program 1 (id=563): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x121080, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000280)=""/175, 0xaf) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/pids.max\x00', 0xa0942, 0x0) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x200000000000001, 0x368e, 0x2, {0x100000000, 0x4}, 0xff, 0x6, 0x1e, 0x1008000, 0x0, 0x8000000c, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000440)='/dev/sequencer\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) r3 = socket(0x15, 0x0, 0x1) ustat$auto(0x801, 0x0) sendmsg$auto(r3, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb5, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x23, 0x0) fcntl$auto_F_SETOWN(0xffffffffffffffff, 0x8, 0xffffffffffffffff) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup/cgroup.type\x00', 0x103042, 0x0) sendfile$auto(r5, r5, 0x0, 0x2) listmount$auto(&(0x7f00000001c0)={0x200, @inferred=r0, 0x7f, 0x81, 0x400}, &(0x7f0000000140)=0x10000, 0xf, 0x5) socket(0x11, 0x3, 0x1803) ioctl$auto(r1, 0xc8, 0x10000000000402) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1eb842, 0x0) write$auto(r6, &(0x7f0000000300)='*o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=ANY=[@ANYBLOB="a10d0000ff1f7c362353c449a3f7114ff79aba9811a6848f9834fd9a683d1c1bfc3f35ee197c6973652d8a62ddf36f8fb20c0bffe2ceaa752675e8979872497611a291414a3a3d184815ca81297aff147455fd55fcfef2f6b0f8ca517fc4cec4f092fcf8fb9b1b399c992b1f026ffaa5126a3b894f60d78400ad012f15c1a03d90", @ANYRES16=r8, @ANYBLOB="01032cb57000fbdadf250a000000060001001700000008000a0007000000"], 0x24}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) r9 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r7) sendmsg$auto_MACSEC_CMD_UPD_TXSA(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYRESOCT=r0, @ANYRES16=r9, @ANYBLOB="01002dbd7000fbdb91f2519550cee6aefc354f2911747bb27f353aff37b1df", @ANYRES32, @ANYRESOCT=r4], 0x24}, 0x1, 0x0, 0x0, 0x4008000}, 0x4c840) 3.134435578s ago: executing program 3 (id=564): flistxattr$auto(0x2, 0xfffffffffffffffd, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = socket(0xa, 0x801, 0x5) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa102, 0x0) setsockopt$auto(r0, 0x10000000084, 0x80, 0x0, 0x8000008) openat$auto_ubifs_dir_operations_ubifs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bluetooth/hci1/power\x00', 0x101000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0) 2.528918346s ago: executing program 0 (id=566): r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYBLOB="02002abd7000ffdbdf2502000000040002001c00048005bc48242d10b34cfb6a801306b44fd2162bb3596680cddf080007000010000008000100"], 0x44}, 0x1, 0x0, 0x0, 0x4004004}, 0x8000) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='T'], 0x1ac}}, 0x40000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop1\x00', 0x44002, 0x0) ioctl$auto(0xffffffffffffffff, 0x4b48, 0x9) mmap$auto(0x0, 0x9, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) fstat$auto(0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000d80), r2) sendmsg$auto_CGROUPSTATS_CMD_GET(r2, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000e00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000acdd158b9a8b687040f28fbc8330b9eaab3028285f2fa188c0172ad3b9941f57e15973158105ea44fe987cdb76a351a25716d3934ef4b75b4f8289395e3fafc1fd1c70b46b748d3b3f594c6a9edf382f2a20ee32781e630000000000000000", @ANYRES16=r3, @ANYBLOB="010029bd7000ffdbdf250400000008000100", @ANYRES32=r2, @ANYBLOB], 0x1c}}, 0x20000004) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0x400000000000fc2}, 0x2, &(0x7f00000001c0), 0x7, 0x4}}, 0x7, 0x4008) mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xb, 0x801, 0x84) iopl$auto(0x2) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000080), r2) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff) sendmsg$auto_OVS_METER_CMD_SET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x38, r6, 0x82652360e804c8d3, 0x9, 0x25dfdbfe, {}, [@OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_STATS={0x14, 0x3, {0x9}}, @OVS_METER_ATTR_BANDS={0x4}, @OVS_METER_ATTR_ID={0x8, 0x1, 0xfffffff8}]}, 0x38}}, 0x8080) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) 2.373079783s ago: executing program 1 (id=567): r0 = open(&(0x7f0000000040)='./file1\x00', 0x200000, 0x0) ppoll$auto(0x0, 0x7f, 0x0, &(0x7f00000001c0)={0x5}, 0x8) mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x200, &(0x7f00000001c0)) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x0, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) read$auto(0x3, 0x0, 0x80) readv$auto(r3, &(0x7f0000000a80)={0x0, 0x10002}, 0x400) write$auto(r2, &(0x7f0000000400)='\'\xc3\x16\x18\xa9audio1\x00', 0x80000008) read$auto(0x3, 0x0, 0x8) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x800, 0x0) close_range$auto(r1, 0xfffffffffffff000, 0x6) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r4, 0x4b3a, 0x1) ioctl$auto_VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x5) mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) ioctl$auto(0xffffffffffffffff, 0x4004af07, 0xffffffffffffffff) read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000240)=""/4096, 0x1000) ioctl$auto_RNDADDENTROPY2(r0, 0x40085203, &(0x7f0000001240)=[0x2, 0x6]) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) r5 = getsockopt$auto_SO_PEERCRED(r2, 0x8, 0x11, &(0x7f0000001280)='\xde/{.\x00', &(0x7f00000012c0)=0x7) writev$auto(r5, &(0x7f0000000140)={0x0, 0xa}, 0x1) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) socket(0x2a, 0x2, 0x0) 2.280890509s ago: executing program 3 (id=568): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) set_mempolicy$auto(0xfffff000, 0x0, 0x9) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x288b00, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) unshare$auto(0x20000) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') setns(r2, 0x0) openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, 0x0, 0x20100, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000) r5 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r5, 0xc004743e, 0x0) ioctl$auto_PPPIOCSMRU(r5, 0x40047452, 0x0) sendmsg$auto_NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x2c, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x200}, @NL80211_ATTR_TDLS_OPERATION={0x5, 0x8a, 0xe}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x7, 0xbe, "4bace3"}]}, 0x2c}, 0x1, 0x0, 0x0, 0x48840}, 0x20000000) madvise$auto(0x110c230000, 0x8031ca, 0x9) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), 0xffffffffffffffff) ioctl$auto(0x3, 0xae41, r1) r6 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0xc0900, 0x0) ioctl$auto(r6, 0x4, 0xffffffffffffffff) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae80, 0x0) unshare$auto(0x40000080) 2.17910004s ago: executing program 0 (id=569): mmap$auto(0x0, 0x2, 0x1000000004, 0x9b72, 0x2, 0x8000) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="00010000", @ANYRES16=0x0, @ANYBLOB="000326bd7000fcdbdf2503000000790008805b4f2525b2dc3a73ec37e7122e6f0d55382854d419b883b7ed64bd3c7b9fb15273e787030718751e0a22cc6cabcae114aa6448d0356183e1ca7c01536c5c6f37915b26a3e75515ab02807fe932b8a415a581dcdc7800f91e231c001d800400d3800c002000f3000000002b3c0c7e9b52baf56fe40000000008008c00ac1414aa000000700002806a00e400addd3588300c750bd8c6341eedf20d260a37a63d761fd730c00d02e9ba0a478e7a2f6629a6ad62011d9ab5dc40c928"], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x42) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000380), r0) r1 = socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) mmap$auto(0x0, 0x40009, 0xdf, 0x7b2, 0xffffffffffffffff, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) memfd_create$auto(0x0, 0x7) socket(0xa, 0x2, 0x3a) socket(0x2, 0x1, 0x0) sendmsg$auto_BATADV_CMD_GET_GATEWAYS(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x44, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_ACTIVE={0x4}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x3}, @BATADV_ATTR_FLAG_BEST={0x4}, @BATADV_ATTR_VERSION={0xb, 0x1, '*\'&,%\'('}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x7f}, @BATADV_ATTR_ACTIVE={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0x81) socket(0x2b, 0x1, 0x1) listen$auto(0x3, 0x81) ioctl$auto(0x3, 0x800005411, 0x38) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.842647379s ago: executing program 0 (id=570): r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(r0, 0x104000000000010e, 0xa, 0x0, 0x3) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(r1, 0x400454ca, 0x38) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400005, 0x800000000000df, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)={0x14, r3, 0x1, 0x5, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x44004811}, 0x40000c0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/ubifs/parameters/default_version\x00', 0xa041, 0x0) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x40, 0x10006, 0x0) shutdown$auto(0x200000003, 0x2) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) memfd_secret$auto(0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) ftruncate$auto(0x3, 0x700) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/pcm0c/sub3/xrun_injection\x00', 0x100, 0x0) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) 1.71770964s ago: executing program 2 (id=571): mmap$auto(0x0, 0x2, 0x1000000004, 0x9b72, 0x2, 0x8000) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="00010000", @ANYRES16=0x0, @ANYBLOB="000326bd7000fcdbdf2503000000790008805b4f2525b2dc3a73ec37e7122e6f0d55382854d419b883b7ed64bd3c7b9fb15273e787030718751e0a22cc6cabcae114aa6448d0356183e1ca7c01536c5c6f37915b26a3e75515ab02807fe932b8a415a581dcdc7800f91e231c001d800400d3800c002000f3000000002b3c0c7e9b52baf56fe40000000008008c00ac1414aa000000700002806a00e400addd3588300c750bd8c6341eedf20d260a37a63d761fd730c00d02e9ba0a478e7a2f6629a6ad62011d9ab5dc40c928"], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x42) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x5f, 0x9}, 0x7}, 0x3, 0x0) 1.376261364s ago: executing program 2 (id=572): mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$auto_WG_CMD_SET_DEVICE(r0, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000000)={0x30, r1, 0x21, 0x70bd26, 0x25dfdbfe, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e20}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x80) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x1, 0x0, 0x0) io_uring_register$auto(0xffffffffffffffff, 0x5, 0x0, 0x5) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/system/node/node1/hugepages/hugepages-2048kB/nr_hugepages\x00', 0x2402, 0x0) mmap$auto(0x0, 0x4020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x6, 0x0) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x4, 0x2020009, 0x7, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffff7ffffffffffa, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_GET_INFO(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000080)={0x14, r3, 0x1, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40011}, 0x4000000) madvise$auto(0x4, 0xffffffffffff0005, 0x7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) time$auto(&(0x7f00000001c0)=0x5) madvise$auto(0x0, 0xffffffffffff0005, 0x19) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0xa) setgroups$auto(0x6, 0x0) 1.326712069s ago: executing program 1 (id=573): socket(0x28, 0x1, 0x0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="2f212abd7800fd"], 0x14}}, 0x4000000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon1\x00', 0x4ac03, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x6d4382, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00') fremovexattr$auto(r1, &(0x7f0000000240)='/sys/devices/platform/dummy_hcd.4/usb5/descriptors\x00') openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x200000, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) getsockopt$auto(0x3, 0x200000000001, 0x41, 0x0, 0x0) madvise$auto(0x108000, 0x800034, 0xa) unshare$auto(0x40000080) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x108002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) epoll_create$auto(0x3e) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) eventfd$auto(0x3) 1.129675289s ago: executing program 3 (id=574): mmap$auto(0x0, 0x2020009, 0x8, 0xeb1, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) r0 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) r1 = openat$auto_dfs_dom_ops_debugfs(0xffffffffffffff9c, &(0x7f00000032c0), 0x109200, 0x0) read$auto_dfs_dom_ops_debugfs(r1, &(0x7f0000003300)=""/163, 0xa3) select$auto(0x7, 0x0, &(0x7f0000000080)={[0x8, 0xc0b, 0x3, 0x16, 0x1001, 0xffffffffffffffff, 0xf, 0x9, 0xb, 0x1, 0x7ff, 0x2e3, 0x5, 0x0, 0x800000001, 0x7fffffff]}, 0x0, 0x0) unshare$auto(0x40000080) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/neigh/veth0_vlan/retrans_time\x00', 0x98285, 0x0) sendfile$auto(0xffffffffffffffff, r3, 0x0, 0xb) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001f00), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_BEARER_ENABLE(r2, &(0x7f0000003a80)={0x0, 0x0, &(0x7f0000003a40)={&(0x7f00000001c0)=ANY=[@ANYRESDEC, @ANYRESOCT=r0, @ANYRES8=r3], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x24040044) io_cancel$auto(0x6, 0x0, 0x0) setns(0xffffffffffffffff, 0x0) r4 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d63882a712, 0x0) memfd_secret$auto(0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x8, 0xfffffffffffffffa, 0x13, 0x3, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000140)=ANY=[@ANYRES8=r1, @ANYRES64, @ANYRESDEC=r4], 0x14}, 0x1, 0x0, 0x0, 0x140008c6}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r5 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r5, 0x80503d0a, 0x0) sysfs$auto(0x2, 0x10000000000048, 0x0) 942.536144ms ago: executing program 2 (id=575): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/ping_group_range\x00', 0x202, 0x0) openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f0000000180), 0x2000, 0x0) (async) r1 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f0000000180), 0x2000, 0x0) pread64$auto(r1, &(0x7f00000001c0)='\x00', 0xca31, 0x4) sendfile$auto(r0, r0, 0x0, 0x2) r2 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x800, 0x0) (async) r3 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x800, 0x0) ioctl$auto_VHOST_SET_LOG_FD2(r2, 0x4004af07, &(0x7f0000000100)=r3) 698.369785ms ago: executing program 2 (id=576): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x121080, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000280)=""/175, 0xaf) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/pids.max\x00', 0xa0942, 0x0) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x200000000000001, 0x368e, 0x2, {0x100000000, 0x4}, 0xff, 0x6, 0x1e, 0x1008000, 0x0, 0x8000000c, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000440)='/dev/sequencer\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) r3 = socket(0x15, 0x0, 0x1) ustat$auto(0x801, 0x0) sendmsg$auto(r3, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb5, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x23, 0x0) fcntl$auto_F_SETOWN(0xffffffffffffffff, 0x8, 0xffffffffffffffff) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup/cgroup.type\x00', 0x103042, 0x0) sendfile$auto(r5, r5, 0x0, 0x2) listmount$auto(&(0x7f00000001c0)={0x200, @inferred=r0, 0x7f, 0x81, 0x400}, &(0x7f0000000140)=0x10000, 0xf, 0x5) socket(0x11, 0x3, 0x1803) ioctl$auto(r1, 0xc8, 0x10000000000402) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1eb842, 0x0) write$auto(r6, &(0x7f0000000300)='*o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=ANY=[@ANYBLOB="a10d0000ff1f7c362353c449a3f7114ff79aba9811a6848f9834fd9a683d1c1bfc3f35ee197c6973652d8a62ddf36f8fb20c0bffe2ceaa752675e8979872497611a291414a3a3d184815ca81297aff147455fd55fcfef2f6b0f8ca517fc4cec4f092fcf8fb9b1b399c992b1f026ffaa5126a3b894f60d78400ad012f15c1a03d90", @ANYRES16=r8, @ANYBLOB="01032cb57000fbdadf250a000000060001001700000008000a0007000000"], 0x24}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) r9 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r7) sendmsg$auto_MACSEC_CMD_UPD_TXSA(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYRESOCT=r0, @ANYRES16=r9, @ANYBLOB="01002dbd7000fbdb91f2519550cee6aefc354f2911747bb27f353aff37b1df", @ANYRES32, @ANYRESOCT=r4], 0x24}, 0x1, 0x0, 0x0, 0x4008000}, 0x4c840) 585.822837ms ago: executing program 2 (id=577): r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYBLOB="02002abd7000ffdbdf2502000000040002001c00048005bc48242d10b34cfb6a801306b44fd2162bb3596680cddf080007000010000008000100"], 0x44}, 0x1, 0x0, 0x0, 0x4004004}, 0x8000) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='T'], 0x1ac}}, 0x40000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop1\x00', 0x44002, 0x0) ioctl$auto(0xffffffffffffffff, 0x4b48, 0x9) mmap$auto(0x0, 0x9, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) fstat$auto(0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000d80), r2) sendmsg$auto_CGROUPSTATS_CMD_GET(r2, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000e00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000acdd158b9a8b687040f28fbc8330b9eaab3028285f2fa188c0172ad3b9941f57e15973158105ea44fe987cdb76a351a25716d3934ef4b75b4f8289395e3fafc1fd1c70b46b748d3b3f594c6a9edf382f2a20ee32781e630000000000000000", @ANYRES16=r3, @ANYBLOB="010029bd7000ffdbdf250400000008000100", @ANYRES32=r2, @ANYBLOB], 0x1c}}, 0x20000004) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0x400000000000fc2}, 0x2, &(0x7f00000001c0), 0x7, 0x4}}, 0x7, 0x4008) mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xb, 0x801, 0x84) iopl$auto(0x2) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000080), r2) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff) sendmsg$auto_OVS_METER_CMD_SET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x38, r6, 0x82652360e804c8d3, 0x9, 0x25dfdbfe, {}, [@OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_STATS={0x14, 0x3, {0x9}}, @OVS_METER_ATTR_BANDS={0x4}, @OVS_METER_ATTR_ID={0x8, 0x1, 0xfffffff8}]}, 0x38}}, 0x8080) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) 491.922602ms ago: executing program 2 (id=578): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x60800, 0x0) (async) write$auto(0xc8, 0x0, 0x4040f6) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) (rerun: 64) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x20, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE={0x4}, @HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), r2) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'wg0\x00'}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) rseq$auto(&(0x7f0000000000)={0xe, 0x400, 0x0, 0x20006, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) (async, rerun: 32) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async) fanotify_init$auto(0x5, 0x2000000000002) (async) socket(0x26, 0x80805, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) socket(0xa, 0x2, 0x3a) (rerun: 32) r3 = fanotify_init$auto(0x0, 0x1) (async) fanotify_mark$auto(0x0, 0x201, 0x9, 0x4, 0x0) fanotify_mark$auto(r3, 0x1, 0x9, 0x4, 0x0) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) brk$auto(0xffffffffffffff66) (async) fanotify_init$auto(0x65, 0x2) (async, rerun: 32) fsopen$auto(0x0, 0x1) (async, rerun: 32) kcmp$auto(0x1, 0x1, 0x0, 0x100000004, 0x100000001) (async) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000200), 0x100000, 0x0) (async, rerun: 64) close_range$auto(0x0, 0xfffffffffffff000, 0x0) (async, rerun: 64) mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0) (async) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0xda) (async) gettid() 334.812028ms ago: executing program 1 (id=579): r0 = socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x800) bpf$auto(0x6, &(0x7f00000001c0)=@test={r0, 0x10004, 0x0, 0x1000, 0x106, 0x0, 0x0, 0xfff, 0x10000, 0x9, 0x0, 0x4, 0x7, 0x2, 0xfffeffff}, 0x1) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) ioctl$auto_SNDCTL_SEQ_PANIC(r3, 0x5111, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRESHEX=r3, @ANYRESHEX=r2, @ANYRES16=r1, @ANYRESHEX=0x0, @ANYRES64=r0, @ANYRES64=r1], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket(0x10, 0x2, 0x4) (async) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x800) (async) bpf$auto(0x6, &(0x7f00000001c0)=@test={r0, 0x10004, 0x0, 0x1000, 0x106, 0x0, 0x0, 0xfff, 0x10000, 0x9, 0x0, 0x4, 0x7, 0x2, 0xfffeffff}, 0x1) (async) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) (async) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async) ioctl$auto_SNDCTL_SEQ_PANIC(r3, 0x5111, 0x0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRESHEX=r3, @ANYRESHEX=r2, @ANYRES16=r1, @ANYRESHEX=0x0, @ANYRES64=r0, @ANYRES64=r1], 0x1ac}}, 0x40000) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async) 251.376199ms ago: executing program 0 (id=580): mmap$auto(0x0, 0x2, 0x1000000004, 0x9b72, 0x2, 0x8000) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="00010000", @ANYRES16=0x0, @ANYBLOB="000326bd7000fcdbdf2503000000790008805b4f2525b2dc3a73ec37e7122e6f0d55382854d419b883b7ed64bd3c7b9fb15273e787030718751e0a22cc6cabcae114aa6448d0356183e1ca7c01536c5c6f37915b26a3e75515ab02807fe932b8a415a581dcdc7800f91e231c001d800400d3800c002000f3000000002b3c0c7e9b52baf56fe40000000008008c00ac1414aa000000700002806a00e400addd3588300c750bd8c6341eedf20d260a37a63d761fd730c00d02e9ba0a478e7a2f6629a6ad62011d9ab5dc40c928"], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x42) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mprotect$auto(0x8000, 0x8, 0x8) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) personality$auto(0x40004010410ffc) io_setup$auto(0x10000, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ip6gre0/statistics/rx_errors\x00', 0x40, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 150.770059ms ago: executing program 1 (id=581): mmap$auto(0x0, 0x2, 0x1000000004, 0x9b72, 0x2, 0x8000) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="00010000", @ANYRES16=0x0, @ANYBLOB="000326bd7000fcdbdf2503000000790008805b4f2525b2dc3a73ec37e7122e6f0d55382854d419b883b7ed64bd3c7b9fb15273e787030718751e0a22cc6cabcae114aa6448d0356183e1ca7c01536c5c6f37915b26a3e75515ab02807fe932b8a415a581dcdc7800f91e231c001d800400d3800c002000f3000000002b3c0c7e9b52baf56fe40000000008008c00ac1414aa000000700002806a00e400addd3588300c750bd8c6341eedf20d260a37a63d761fd730c00d02e9ba0a478e7a2f6629a6ad62011d9ab5dc40c928"], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x42) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x300, 0x9}, 0x7}, 0x3, 0x0) 143.167499ms ago: executing program 3 (id=582): r0 = open(&(0x7f0000000040)='./file1\x00', 0x200000, 0x0) ppoll$auto(0x0, 0x7f, 0x0, &(0x7f00000001c0)={0x5}, 0x8) mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x200, &(0x7f00000001c0)) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x0, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) read$auto(0x3, 0x0, 0x80) readv$auto(r3, &(0x7f0000000a80)={0x0, 0x10002}, 0x400) write$auto(r2, &(0x7f0000000400)='\'\xc3\x16\x18\xa9audio1\x00', 0x80000008) read$auto(0x3, 0x0, 0x8) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x800, 0x0) close_range$auto(r1, 0xfffffffffffff000, 0x6) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty12\x00', 0x800, 0x0) r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x5) mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, r4, 0x8000) ioctl$auto(r4, 0x4004af07, r4) read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000240)=""/4096, 0x1000) ioctl$auto_RNDADDENTROPY2(r0, 0x40085203, &(0x7f0000001240)=[0x2, 0x6]) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) r5 = getsockopt$auto_SO_PEERCRED(r2, 0x8, 0x11, &(0x7f0000001280)='\xde/{.\x00', &(0x7f00000012c0)=0x7) writev$auto(r5, &(0x7f0000000140)={0x0, 0xa}, 0x1) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) socket(0x2a, 0x2, 0x0) 0s ago: executing program 1 (id=583): personality$auto(0x40004010410ffc) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) remap_file_pages$auto(0x6a25, 0x1000, 0x0, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000240), 0xffffffffffffffff) socket(0x18, 0x4, 0x3) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000040c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd7000fedbdf25010000000c000280080001000300000008000100", @ANYRES32=0x0, @ANYBLOB="5eb9b912660fada6ea0000"], 0x28}, 0x1, 0x0, 0x0, 0x20040801}, 0x8040840) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0xffe, 0xffb, 0x8000000008011, 0x3, 0x0) write$auto(0x3, 0x0, 0x100082) getsockopt$auto_SO_NO_CHECK(r0, 0x8, 0xb, &(0x7f0000000040)='macsec\x00', &(0x7f0000000080)=0xfffffffb) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.99' (ED25519) to the list of known hosts. [ 82.653700][ T5829] cgroup: Unknown subsys name 'net' [ 82.796416][ T5829] cgroup: Unknown subsys name 'cpuset' [ 82.805317][ T5829] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 84.380165][ T5829] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 86.246864][ T55] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 86.255694][ T55] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 86.263428][ T55] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 86.271635][ T55] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 86.279661][ T55] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 86.283511][ T5846] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 86.294942][ T5846] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 86.302875][ T5846] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 86.318602][ T5846] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 86.326293][ T5846] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 86.359871][ T5846] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 86.367479][ T5151] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 86.376431][ T5151] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 86.385342][ T5151] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 86.389059][ T5846] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 86.394444][ T5151] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 86.408643][ T5846] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 86.411089][ T5151] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 86.423777][ T5151] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 86.431254][ T5846] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 86.779431][ T5843] chnl_net:caif_netlink_parms(): no params data found [ 86.797018][ T5848] chnl_net:caif_netlink_parms(): no params data found [ 86.879444][ T5838] chnl_net:caif_netlink_parms(): no params data found [ 86.937741][ T5847] chnl_net:caif_netlink_parms(): no params data found [ 86.983586][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.991312][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.998970][ T5843] bridge_slave_0: entered allmulticast mode [ 87.006174][ T5843] bridge_slave_0: entered promiscuous mode [ 87.015899][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.023704][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.030934][ T5843] bridge_slave_1: entered allmulticast mode [ 87.038641][ T5843] bridge_slave_1: entered promiscuous mode [ 87.081411][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.088645][ T5848] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.096002][ T5848] bridge_slave_0: entered allmulticast mode [ 87.103419][ T5848] bridge_slave_0: entered promiscuous mode [ 87.129990][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.137288][ T5848] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.144934][ T5848] bridge_slave_1: entered allmulticast mode [ 87.151731][ T5848] bridge_slave_1: entered promiscuous mode [ 87.170312][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.181858][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 87.235921][ T5848] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.245432][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.252515][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.260655][ T5838] bridge_slave_0: entered allmulticast mode [ 87.267962][ T5838] bridge_slave_0: entered promiscuous mode [ 87.292039][ T5848] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 87.310534][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.318352][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.326166][ T5838] bridge_slave_1: entered allmulticast mode [ 87.333581][ T5838] bridge_slave_1: entered promiscuous mode [ 87.342257][ T5843] team0: Port device team_slave_0 added [ 87.351124][ T5843] team0: Port device team_slave_1 added [ 87.357765][ T5847] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.365139][ T5847] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.372326][ T5847] bridge_slave_0: entered allmulticast mode [ 87.379927][ T5847] bridge_slave_0: entered promiscuous mode [ 87.410635][ T5847] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.418013][ T5847] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.425903][ T5847] bridge_slave_1: entered allmulticast mode [ 87.432721][ T5847] bridge_slave_1: entered promiscuous mode [ 87.443525][ T5848] team0: Port device team_slave_0 added [ 87.460116][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.487229][ T5848] team0: Port device team_slave_1 added [ 87.502311][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 87.521236][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.528321][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.554764][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.589689][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.596895][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.622942][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.642230][ T5847] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.651984][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.659340][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.685396][ T5848] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.697994][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.705106][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.731356][ T5848] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.746004][ T5838] team0: Port device team_slave_0 added [ 87.754344][ T5838] team0: Port device team_slave_1 added [ 87.764176][ T5847] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 87.827109][ T5847] team0: Port device team_slave_0 added [ 87.838508][ T5843] hsr_slave_0: entered promiscuous mode [ 87.845615][ T5843] hsr_slave_1: entered promiscuous mode [ 87.862300][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.869478][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.895929][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.908428][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.916061][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.942463][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.957005][ T5847] team0: Port device team_slave_1 added [ 88.012359][ T5848] hsr_slave_0: entered promiscuous mode [ 88.019202][ T5848] hsr_slave_1: entered promiscuous mode [ 88.025740][ T5848] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 88.034136][ T5848] Cannot create hsr debugfs directory [ 88.062026][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 88.069187][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.096296][ T5847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 88.128595][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 88.136458][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.163527][ T5847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 88.181457][ T5838] hsr_slave_0: entered promiscuous mode [ 88.187949][ T5838] hsr_slave_1: entered promiscuous mode [ 88.194234][ T5838] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 88.201827][ T5838] Cannot create hsr debugfs directory [ 88.286781][ T5847] hsr_slave_0: entered promiscuous mode [ 88.293368][ T5847] hsr_slave_1: entered promiscuous mode [ 88.299434][ T5847] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 88.307338][ T5847] Cannot create hsr debugfs directory [ 88.393443][ T5846] Bluetooth: hci1: command tx timeout [ 88.402972][ T5846] Bluetooth: hci0: command tx timeout [ 88.472956][ T55] Bluetooth: hci2: command tx timeout [ 88.478892][ T5846] Bluetooth: hci3: command tx timeout [ 88.502608][ T5843] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 88.516159][ T5843] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 88.547794][ T5843] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 88.567588][ T5843] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 88.607924][ T5848] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 88.618755][ T5848] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 88.629831][ T5848] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 88.667649][ T5848] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 88.728732][ T5838] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 88.740039][ T5838] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 88.750787][ T5838] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 88.765924][ T5838] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 88.857545][ T5847] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 88.880378][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.888992][ T5847] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 88.903845][ T5847] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 88.914868][ T5847] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 88.976278][ T5843] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.995994][ T5848] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.022927][ T3506] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.030209][ T3506] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.062279][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.069441][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.087219][ T5848] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.110027][ T1319] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.117157][ T1319] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.135413][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.146177][ T3506] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.153762][ T3506] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.199410][ T5838] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.227536][ T1319] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.234701][ T1319] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.257422][ T3506] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.264607][ T3506] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.299570][ T5843] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 89.376077][ T5847] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.416878][ T5847] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.444585][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.451850][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.487918][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.495152][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.718436][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.727272][ T5848] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.792281][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.832285][ T5848] veth0_vlan: entered promiscuous mode [ 89.856295][ T5848] veth1_vlan: entered promiscuous mode [ 89.884207][ T5843] veth0_vlan: entered promiscuous mode [ 89.921487][ T5843] veth1_vlan: entered promiscuous mode [ 89.931869][ T5838] veth0_vlan: entered promiscuous mode [ 89.945159][ T5848] veth0_macvtap: entered promiscuous mode [ 89.965967][ T5838] veth1_vlan: entered promiscuous mode [ 89.975430][ T5848] veth1_macvtap: entered promiscuous mode [ 89.984410][ T5847] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.001803][ T5843] veth0_macvtap: entered promiscuous mode [ 90.035766][ T5843] veth1_macvtap: entered promiscuous mode [ 90.076460][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.092568][ T5838] veth0_macvtap: entered promiscuous mode [ 90.113842][ T5847] veth0_vlan: entered promiscuous mode [ 90.122273][ T5838] veth1_macvtap: entered promiscuous mode [ 90.133808][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.147009][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.158277][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.170090][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.187536][ T5848] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.196685][ T5848] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.205693][ T5848] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.214564][ T5848] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.226631][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.238845][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.250495][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.265556][ T5843] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.274762][ T5843] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.284546][ T5843] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.293655][ T5843] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.306169][ T5847] veth1_vlan: entered promiscuous mode [ 90.316964][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.327591][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.337922][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.348501][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.360188][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.372391][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.384223][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.395403][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.408595][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.419970][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.438000][ T5838] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.447173][ T5838] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.456144][ T5838] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.465660][ T5838] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.483561][ T5846] Bluetooth: hci0: command tx timeout [ 90.489033][ T5846] Bluetooth: hci1: command tx timeout [ 90.553018][ T5846] Bluetooth: hci3: command tx timeout [ 90.559082][ T55] Bluetooth: hci2: command tx timeout [ 90.590293][ T5847] veth0_macvtap: entered promiscuous mode [ 90.630977][ T5847] veth1_macvtap: entered promiscuous mode [ 90.652187][ T3490] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.673257][ T3490] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.705279][ T3490] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.723126][ T5847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.733831][ T3490] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.733974][ T5847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.754367][ T5847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.764907][ T5847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.775013][ T5847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.785514][ T5847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.798442][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.827587][ T5847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.838432][ T5847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.848582][ T5847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.859748][ T5847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.869839][ T5847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.882113][ T5847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.894498][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.908145][ T5847] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.917683][ T5847] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.926908][ T5847] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.935912][ T5847] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.952690][ T3506] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.965087][ T1319] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.971977][ T3506] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.975784][ T1319] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.068295][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.096766][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.112317][ T3490] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.139269][ T1319] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.153030][ T3490] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.167989][ T1319] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.216083][ T5843] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 91.233846][ T3490] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.242004][ T3490] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.741771][ T5911] process 'syz.3.4' launched ':,' with NULL argv: empty string added [ 92.553246][ T5846] Bluetooth: hci1: command tx timeout [ 92.553299][ T5846] Bluetooth: hci0: command tx timeout [ 92.643329][ T55] Bluetooth: hci3: command tx timeout [ 92.643385][ T55] Bluetooth: hci2: command tx timeout [ 92.706614][ T5927] : Can't lookup blockdev [ 94.026468][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 94.122346][ T5945] netlink: 342 bytes leftover after parsing attributes in process `syz.2.8'. [ 94.146996][ T5937] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 94.173316][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 94.633353][ T5846] Bluetooth: hci0: command tx timeout [ 94.638857][ T5846] Bluetooth: hci1: command tx timeout [ 94.713187][ T5846] Bluetooth: hci2: command tx timeout [ 94.718746][ T55] Bluetooth: hci3: command tx timeout [ 95.182426][ T5963] netlink: 146 bytes leftover after parsing attributes in process `syz.0.13'. [ 96.133533][ T5981] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 96.474042][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 96.496830][ T5989] random: crng reseeded on system resumption [ 96.824049][ T5983] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 97.052976][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 97.152450][ T47] cfg80211: failed to load regulatory.db [ 97.448501][ T6005] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000 [ 98.693026][ T6027] Zero length message leads to an empty skb [ 99.373032][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 100.416937][ T6053] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 100.484558][ T6053] sp0: Synchronizing with TNC [ 100.509134][ T6052] [U] [ 102.343044][ T6072] Invalid ELF header magic: != ELF [ 103.667609][ T6100] netlink: 146 bytes leftover after parsing attributes in process `syz.0.48'. [ 103.767530][ T6101] openvswitch: netlink: Flow key attr not present in new flow. [ 103.968222][ T6108] netlink: 146 bytes leftover after parsing attributes in process `syz.1.49'. [ 104.577650][ T6121] can0: slcan on ttyS2. [ 104.683938][ T6120] can0 (unregistered): slcan off ttyS2. [ 104.912045][ T6137] netlink: 146 bytes leftover after parsing attributes in process `syz.1.58'. [ 105.673369][ T6136] netlink: 8 bytes leftover after parsing attributes in process `syz.3.57'. [ 106.163701][ T6175] netlink: 146 bytes leftover after parsing attributes in process `syz.2.68'. [ 107.452343][ T6207] bridge0: port 3(syz_tun) entered blocking state [ 107.475436][ T6207] bridge0: port 3(syz_tun) entered disabled state [ 107.482106][ T6207] syz_tun: entered allmulticast mode [ 107.488591][ T6207] syz_tun: entered promiscuous mode [ 107.496580][ T6207] bridge0: port 3(syz_tun) entered blocking state [ 107.503886][ T6207] bridge0: port 3(syz_tun) entered forwarding state [ 107.732952][ T6214] netlink: 12 bytes leftover after parsing attributes in process `syz.2.74'. [ 107.808945][ T6206] ima: policy update failed [ 107.825754][ T30] audit: type=1802 audit(6038176429.326:2): pid=6206 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.73" res=0 errno=0 [ 107.992140][ T6225] netlink: 504 bytes leftover after parsing attributes in process `syz.2.75'. [ 108.050193][ T6225] netlink: 504 bytes leftover after parsing attributes in process `syz.2.75'. [ 109.427321][ T30] audit: type=1800 audit(6038176430.936:3): pid=6247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.83" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 109.951575][ T6263] busy [ 110.977235][ T6280] : Can't lookup blockdev [ 111.544714][ T6286] FAULT_INJECTION: forcing a failure. [ 111.544714][ T6286] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 111.657432][ T6286] CPU: 1 UID: 0 PID: 6286 Comm: syz.2.93 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 111.657480][ T6286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 111.657500][ T6286] Call Trace: [ 111.657510][ T6286] [ 111.657527][ T6286] dump_stack_lvl+0x16c/0x1f0 [ 111.657577][ T6286] should_fail_ex+0x512/0x640 [ 111.657630][ T6286] should_fail_alloc_page+0xe7/0x130 [ 111.657666][ T6286] prepare_alloc_pages.constprop.0+0x172/0x570 [ 111.657712][ T6286] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 111.657764][ T6286] __alloc_frozen_pages_noprof+0x18f/0x24d0 [ 111.657799][ T6286] ? arch_stack_walk+0xa6/0x100 [ 111.657850][ T6286] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 111.657882][ T6286] ? stack_trace_save+0x8e/0xc0 [ 111.657920][ T6286] ? __pfx_stack_trace_save+0x10/0x10 [ 111.657958][ T6286] ? stack_depot_save_flags+0x29/0x9c0 [ 111.658008][ T6286] ? find_held_lock+0x2b/0x80 [ 111.658049][ T6286] ? kasan_save_stack+0x42/0x60 [ 111.658101][ T6286] ? __lock_acquire+0xaa4/0x1ba0 [ 111.658152][ T6286] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 111.658206][ T6286] ? policy_nodemask+0xea/0x4e0 [ 111.658241][ T6286] alloc_pages_mpol+0x1fb/0x540 [ 111.658275][ T6286] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 111.658307][ T6286] ? __page_table_check_ptes_set+0x16a/0x3e0 [ 111.658340][ T6286] ? do_raw_spin_lock+0x12c/0x2b0 [ 111.658372][ T6286] ? find_held_lock+0x2b/0x80 [ 111.658414][ T6286] alloc_pages_noprof+0x131/0x390 [ 111.658447][ T6286] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 111.658495][ T6286] get_free_pages_noprof+0xc/0x40 [ 111.658532][ T6286] kasan_populate_vmalloc_pte+0x2d/0x160 [ 111.658581][ T6286] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 111.658630][ T6286] __apply_to_page_range+0x5f9/0xd30 [ 111.658679][ T6286] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 111.658733][ T6286] ? __pfx___apply_to_page_range+0x10/0x10 [ 111.658792][ T6286] ? alloc_vmap_area+0x872/0x2970 [ 111.658838][ T6286] alloc_vmap_area+0x919/0x2970 [ 111.658890][ T6286] ? __pfx_alloc_vmap_area+0x10/0x10 [ 111.658938][ T6286] __get_vm_area_node+0x1a7/0x300 [ 111.658986][ T6286] __vmalloc_node_range_noprof+0x277/0x1540 [ 111.659034][ T6286] ? __do_sys_listmount+0x1c2/0xec0 [ 111.659089][ T6286] ? __do_sys_listmount+0x1c2/0xec0 [ 111.659142][ T6286] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 111.659201][ T6286] __kvmalloc_node_noprof+0x2ff/0x600 [ 111.659250][ T6286] ? __do_sys_listmount+0x1c2/0xec0 [ 111.659298][ T6286] ? __do_sys_listmount+0x1c2/0xec0 [ 111.659348][ T6286] ? __do_sys_listmount+0x1c2/0xec0 [ 111.659392][ T6286] __do_sys_listmount+0x1c2/0xec0 [ 111.659444][ T6286] ? __x64_sys_futex+0x1e0/0x4c0 [ 111.659485][ T6286] ? __x64_sys_futex+0x1e9/0x4c0 [ 111.659528][ T6286] ? __pfx___do_sys_listmount+0x10/0x10 [ 111.659575][ T6286] ? xfd_validate_state+0x5d/0x180 [ 111.659620][ T6286] do_syscall_64+0xcd/0x260 [ 111.659664][ T6286] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.659695][ T6286] RIP: 0033:0x7f6ff618d169 [ 111.659721][ T6286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 111.659760][ T6286] RSP: 002b:00007f6ff6f4e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 111.659791][ T6286] RAX: ffffffffffffffda RBX: 00007f6ff63a6080 RCX: 00007f6ff618d169 [ 111.659812][ T6286] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 111.659831][ T6286] RBP: 00007f6ff620e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 111.659851][ T6286] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 111.659870][ T6286] R13: 0000000000000000 R14: 00007f6ff63a6080 R15: 00007ffe8e36f7b8 [ 111.659903][ T6286] [ 111.660140][ T6286] syz.2.93: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 112.041664][ T6286] CPU: 1 UID: 0 PID: 6286 Comm: syz.2.93 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 112.041708][ T6286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 112.041727][ T6286] Call Trace: [ 112.041737][ T6286] [ 112.041748][ T6286] dump_stack_lvl+0x16c/0x1f0 [ 112.041796][ T6286] warn_alloc+0x248/0x3a0 [ 112.041827][ T6286] ? __pfx_warn_alloc+0x10/0x10 [ 112.041858][ T6286] ? kfree+0x2b6/0x4d0 [ 112.041907][ T6286] ? __get_vm_area_node+0x1e5/0x300 [ 112.041958][ T6286] __vmalloc_node_range_noprof+0xd31/0x1540 [ 112.042014][ T6286] ? __do_sys_listmount+0x1c2/0xec0 [ 112.042067][ T6286] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 112.042127][ T6286] __kvmalloc_node_noprof+0x2ff/0x600 [ 112.042175][ T6286] ? __do_sys_listmount+0x1c2/0xec0 [ 112.042223][ T6286] ? __do_sys_listmount+0x1c2/0xec0 [ 112.042274][ T6286] ? __do_sys_listmount+0x1c2/0xec0 [ 112.042319][ T6286] __do_sys_listmount+0x1c2/0xec0 [ 112.042370][ T6286] ? __x64_sys_futex+0x1e0/0x4c0 [ 112.042412][ T6286] ? __x64_sys_futex+0x1e9/0x4c0 [ 112.042462][ T6286] ? __pfx___do_sys_listmount+0x10/0x10 [ 112.042509][ T6286] ? xfd_validate_state+0x5d/0x180 [ 112.042554][ T6286] do_syscall_64+0xcd/0x260 [ 112.042596][ T6286] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.042627][ T6286] RIP: 0033:0x7f6ff618d169 [ 112.042652][ T6286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 112.042681][ T6286] RSP: 002b:00007f6ff6f4e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 112.042710][ T6286] RAX: ffffffffffffffda RBX: 00007f6ff63a6080 RCX: 00007f6ff618d169 [ 112.042735][ T6286] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 112.042754][ T6286] RBP: 00007f6ff620e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 112.042772][ T6286] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 112.042790][ T6286] R13: 0000000000000000 R14: 00007f6ff63a6080 R15: 00007ffe8e36f7b8 [ 112.042823][ T6286] [ 112.312867][ T6286] Mem-Info: [ 112.334769][ T6286] active_anon:6095 inactive_anon:0 isolated_anon:0 [ 112.334769][ T6286] active_file:9769 inactive_file:38339 isolated_file:0 [ 112.334769][ T6286] unevictable:768 dirty:341 writeback:0 [ 112.334769][ T6286] slab_reclaimable:9848 slab_unreclaimable:94948 [ 112.334769][ T6286] mapped:23331 shmem:1426 pagetables:836 [ 112.334769][ T6286] sec_pagetables:0 bounce:0 [ 112.334769][ T6286] kernel_misc_reclaimable:0 [ 112.334769][ T6286] free:1350767 free_pcp:165 free_cma:0 [ 112.380585][ T6286] Node 0 active_anon:24380kB inactive_anon:0kB active_file:37576kB inactive_file:153284kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:94624kB dirty:1364kB writeback:0kB shmem:4168kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11012kB pagetables:3344kB sec_pagetables:0kB all_unreclaimable? no [ 112.413778][ T6286] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 112.445131][ T6286] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 112.473471][ T6286] lowmem_reserve[]: 0 2484 2486 2486 2486 [ 112.480158][ T6286] Node 0 DMA32 free:1481560kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:24336kB inactive_anon:0kB active_file:37576kB inactive_file:151464kB unevictable:1536kB writepending:1364kB present:3129332kB managed:2544512kB mlocked:0kB bounce:0kB free_pcp:2792kB local_pcp:636kB free_cma:0kB [ 112.510821][ T6286] lowmem_reserve[]: 0 0 1 1 1 [ 112.516187][ T6286] Node 0 Normal free:28kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1820kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 112.543731][ T6286] lowmem_reserve[]: 0 0 0 0 0 [ 112.548548][ T6286] Node 1 Normal free:3905156kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:52kB local_pcp:48kB free_cma:0kB [ 112.578580][ T6286] lowmem_reserve[]: 0 0 0 0 0 [ 112.583519][ T6286] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 112.596476][ T6286] Node 0 DMA32: 434*4kB (UM) 1175*8kB (UME) 968*16kB (UME) 391*32kB (UM) 255*64kB (UM) 52*128kB (UM) 32*256kB (UM) 13*512kB (UM) 6*1024kB (UME) 2*2048kB (UM) 341*4096kB (UM) = 1483936kB [ 112.615486][ T6286] Node 0 Normal: 1*4kB (M) 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28kB [ 112.628524][ T6286] Node 1 Normal: 171*4kB (UE) 47*8kB (UME) 38*16kB (UM) 232*32kB (UME) 102*64kB (UME) 31*128kB (UME) 14*256kB (UM) 10*512kB (UME) 6*1024kB (UME) 6*2048kB (UE) 942*4096kB (M) = 3905156kB [ 112.754676][ T6286] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 112.882965][ T6286] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 112.915344][ T6295] capability: warning: `syz.0.96' uses 32-bit capabilities (legacy support in use) [ 112.996396][ T6286] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 113.048881][ T30] audit: type=1800 audit(6038176442.553:4): pid=6299 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.93" name="dbroot" dev="configfs" ino=8893 res=0 errno=0 [ 113.069377][ T6286] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 113.093660][ T6286] 48908 total pagecache pages [ 113.098661][ T6286] 36 pages in swap cache [ 113.103094][ T6286] Free swap = 121796kB [ 113.108685][ T6286] Total swap = 124996kB [ 113.113127][ T6286] 2097051 pages RAM [ 113.117749][ T6286] 0 pages HighMem/MovableOnly [ 113.122496][ T6286] 428817 pages reserved [ 113.126982][ T6286] 0 pages cma reserved [ 114.354260][ T6322] netlink: 8 bytes leftover after parsing attributes in process `syz.3.102'. [ 115.295975][ T6350] Invalid ELF header magic: != ELF [ 115.443815][ T30] audit: type=1800 audit(6038176444.943:5): pid=6342 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.104" name="features" dev="configfs" ino=9187 res=0 errno=0 [ 115.463845][ C1] vkms_vblank_simulate: vblank timer overrun [ 116.520860][ T6375] bond0: option lp_interval: invalid value (/sys/devices/platform/vkms/graphics/fb0/rotate) [ 116.546579][ T6375] bond0: option lp_interval: allowed values 1 - 2147483647 [ 116.628159][ T6384] device-mapper: ioctl: only supply one of name or uuid, cmd(5) [ 117.034696][ T6387] usbip-vudc usbip-vudc.0: gadget not bound [ 117.159890][ T6388] netlink: 'syz.0.115': attribute type 2 has an invalid length. [ 117.189775][ T6387] Invalid ELF header magic: != ELF [ 117.194611][ T6388] netlink: 12 bytes leftover after parsing attributes in process `syz.0.115'. [ 117.412844][ T6397] mmap: syz.2.117 (6397) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 117.838097][ T6414] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 118.921031][ T6430] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 118.973355][ T6429] can: request_module (can-proto-0) failed. [ 119.153560][ T6440] netlink: 8 bytes leftover after parsing attributes in process `syz.0.124'. @[ 121.590198][ T6499] Invalid ELF header magic: != ELF [ 122.180090][ T6513] FAULT_INJECTION: forcing a failure. [ 122.180090][ T6513] name failslab, interval 1, probability 0, space 0, times 0 [ 122.494524][ T6513] CPU: 1 UID: 0 PID: 6513 Comm: syz.1.136 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 122.494580][ T6513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 122.494599][ T6513] Call Trace: [ 122.494609][ T6513] [ 122.494621][ T6513] dump_stack_lvl+0x16c/0x1f0 [ 122.494682][ T6513] should_fail_ex+0x512/0x640 [ 122.494733][ T6513] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 122.494789][ T6513] should_failslab+0xc2/0x120 [ 122.494823][ T6513] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 122.494874][ T6513] ? __proc_create+0xc3/0x8c0 [ 122.494911][ T6513] ? __proc_create+0x2ce/0x8c0 [ 122.494956][ T6513] __proc_create+0x2ce/0x8c0 [ 122.494995][ T6513] ? __pfx___proc_create+0x10/0x10 [ 122.495037][ T6513] ? _raw_write_unlock+0x28/0x50 [ 122.495075][ T6513] ? proc_register+0x314/0x5f0 [ 122.495116][ T6513] proc_create_reg+0x7d/0x180 [ 122.495157][ T6513] ? __pfx_fib_triestat_seq_show+0x10/0x10 [ 122.495209][ T6513] proc_create_net_single+0x86/0x170 [ 122.495251][ T6513] ? __pfx_proc_create_net_single+0x10/0x10 [ 122.495293][ T6513] ? __pfx___netlink_kernel_create+0x10/0x10 [ 122.495337][ T6513] fib_proc_init+0xa3/0x1b0 [ 122.495366][ T6513] fib_net_init+0x2af/0x3f0 [ 122.495397][ T6513] ? __pfx___register_sysctl_table+0x10/0x10 [ 122.495437][ T6513] ? __pfx_fib_net_init+0x10/0x10 [ 122.495469][ T6513] ? lockdep_init_map_type+0x5c/0x280 [ 122.495520][ T6513] ? __pfx_nl_fib_input+0x10/0x10 [ 122.495566][ T6513] ? devinet_init_net+0x5c2/0x910 [ 122.495606][ T6513] ? __pfx_fib_net_init+0x10/0x10 [ 122.495639][ T6513] ops_init+0x1df/0x5f0 [ 122.495674][ T6513] setup_net+0x21e/0x850 [ 122.495711][ T6513] ? __pfx_setup_net+0x10/0x10 [ 122.495743][ T6513] ? lockdep_init_map_type+0x5c/0x280 [ 122.495793][ T6513] ? __pfx_down_read_killable+0x10/0x10 [ 122.495844][ T6513] ? debug_mutex_init+0x37/0x70 [ 122.495884][ T6513] copy_net_ns+0x2a6/0x5f0 [ 122.495925][ T6513] create_new_namespaces+0x3ea/0xad0 [ 122.495974][ T6513] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 122.496022][ T6513] ksys_unshare+0x45b/0xa40 [ 122.496070][ T6513] ? __pfx_ksys_unshare+0x10/0x10 [ 122.496114][ T6513] ? xfd_validate_state+0x5d/0x180 [ 122.496151][ T6513] ? rcu_is_watching+0x12/0xc0 [ 122.496194][ T6513] __x64_sys_unshare+0x31/0x40 [ 122.496240][ T6513] do_syscall_64+0xcd/0x260 [ 122.496313][ T6513] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.496346][ T6513] RIP: 0033:0x7fd45c98d169 [ 122.496389][ T6513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.496426][ T6513] RSP: 002b:00007fd45d700038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 122.496456][ T6513] RAX: ffffffffffffffda RBX: 00007fd45cba6160 RCX: 00007fd45c98d169 [ 122.496477][ T6513] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 122.496496][ T6513] RBP: 00007fd45ca0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 122.496515][ T6513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 122.496533][ T6513] R13: 0000000000000000 R14: 00007fd45cba6160 R15: 00007ffc0722fae8 [ 122.496573][ T6513] [ 122.808456][ C1] vkms_vblank_simulate: vblank timer overrun [ 123.209950][ T6515] bond0: no command found in slaves file - use +ifname or -ifname [ 123.993418][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 124.651251][ T5846] Bluetooth: hci1: unexpected event 0x10 length: 11 > 1 [ 124.652386][ T5846] Bluetooth: hci1: hardware error 0x00 [ 125.051426][ T6537] mkiss: ax0: crc mode is auto. [ 125.129640][ T6537] FAULT_INJECTION: forcing a failure. [ 125.129640][ T6537] name failslab, interval 1, probability 0, space 0, times 0 [ 125.172868][ T6537] CPU: 1 UID: 0 PID: 6537 Comm: syz.1.141 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 125.172910][ T6537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 125.172929][ T6537] Call Trace: [ 125.172938][ T6537] [ 125.172950][ T6537] dump_stack_lvl+0x16c/0x1f0 [ 125.172998][ T6537] should_fail_ex+0x512/0x640 [ 125.173058][ T6537] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 125.173114][ T6537] should_failslab+0xc2/0x120 [ 125.173146][ T6537] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 125.173200][ T6537] ? sock_alloc_inode+0x25/0x1c0 [ 125.173239][ T6537] ? __pfx_sock_alloc_inode+0x10/0x10 [ 125.173275][ T6537] sock_alloc_inode+0x25/0x1c0 [ 125.173311][ T6537] alloc_inode+0x61/0x240 [ 125.173352][ T6537] sock_alloc+0x40/0x280 [ 125.173386][ T6537] __sock_create+0xc1/0x8d0 [ 125.173430][ T6537] __sys_socket+0x14d/0x260 [ 125.173472][ T6537] ? __pfx___sys_socket+0x10/0x10 [ 125.173525][ T6537] ? rcu_is_watching+0x12/0xc0 [ 125.173567][ T6537] __x64_sys_socket+0x72/0xb0 [ 125.173607][ T6537] ? lockdep_hardirqs_on+0x7c/0x110 [ 125.173646][ T6537] do_syscall_64+0xcd/0x260 [ 125.173689][ T6537] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.173721][ T6537] RIP: 0033:0x7fd45c98d169 [ 125.173746][ T6537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.173777][ T6537] RSP: 002b:00007fd45d742038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 125.173807][ T6537] RAX: ffffffffffffffda RBX: 00007fd45cba5fa0 RCX: 00007fd45c98d169 [ 125.173827][ T6537] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 125.173847][ T6537] RBP: 00007fd45ca0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 125.173865][ T6537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 125.173884][ T6537] R13: 0000000000000000 R14: 00007fd45cba5fa0 R15: 00007ffc0722fae8 [ 125.173918][ T6537] [ 125.173933][ T6537] socket: no more sockets [ 125.372706][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 125.721254][ T6532] kexec: Could not allocate control_code_buffer [ 125.741761][ T6543] mkiss: ax0: crc mode is auto. [ 125.871720][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 125.881112][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 126.113196][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 126.872828][ T5846] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 129.602987][ T6609] kAFS: Invalid Command on /proc/fs/afs/cells file [ 130.397089][ T6621] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 131.649062][ T6634] netlink: 8 bytes leftover after parsing attributes in process `syz.1.163'. [ 132.625219][ T6651] netlink: 28 bytes leftover after parsing attributes in process `syz.3.166'. [ 132.753056][ T6652] netlink: 28 bytes leftover after parsing attributes in process `syz.3.166'. [ 137.691099][ T6705] kexec: Could not allocate control_code_buffer [ 138.076825][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.093432][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.545705][ T6740] syz.1.180 uses obsolete (PF_INET,SOCK_PACKET) [ 139.712079][ T6759] i2c i2c-0: new_device: Missing parameters [ 139.783594][ T6754] cougar: G6 mapped to space [ 142.324068][ T6794] random: crng reseeded on system resumption [ 146.288701][ T6838] syz.2.201(6838): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 147.365496][ T6851] ubi0: attaching mtd0 [ 147.375580][ T6851] ubi0: scanning is finished [ 147.380313][ T6851] ubi0: empty MTD device detected [ 147.436661][ T6844] Invalid ELF header magic: != ELF [ 147.674996][ T6851] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 147.686237][ T6851] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 147.698730][ T6851] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 147.718715][ T6851] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 147.725114][ T6869] FAULT_INJECTION: forcing a failure. [ 147.725114][ T6869] name failslab, interval 1, probability 0, space 0, times 0 [ 147.730437][ T6851] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 147.739230][ T6869] CPU: 0 UID: 0 PID: 6869 Comm: syz.0.207 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 147.739275][ T6869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 147.739296][ T6869] Call Trace: [ 147.739307][ T6869] [ 147.739320][ T6869] dump_stack_lvl+0x16c/0x1f0 [ 147.739372][ T6869] should_fail_ex+0x512/0x640 [ 147.739426][ T6869] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 147.739480][ T6869] should_failslab+0xc2/0x120 [ 147.739516][ T6869] __kmalloc_cache_noprof+0x6a/0x3e0 [ 147.739566][ T6869] ? vsnprintf+0x318/0x1160 [ 147.739603][ T6869] ? __alloc_workqueue+0xda2/0x1810 [ 147.739658][ T6869] __alloc_workqueue+0xda2/0x1810 [ 147.739710][ T6869] ? __pfx_vsnprintf+0x10/0x10 [ 147.739749][ T6869] ? lockdep_hardirqs_on+0x7c/0x110 [ 147.739792][ T6869] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 147.739834][ T6869] alloc_workqueue+0xd2/0x200 [ 147.739894][ T6869] ? __pfx_alloc_workqueue+0x10/0x10 [ 147.739955][ T6869] ? __pfx___debug_object_init+0x10/0x10 [ 147.740001][ T6869] nci_register_device+0x21e/0xb80 [ 147.740058][ T6869] ? __pfx_nci_register_device+0x10/0x10 [ 147.740116][ T6869] ? lockdep_init_map_type+0x5c/0x280 [ 147.740175][ T6869] virtual_ncidev_open+0x141/0x220 [ 147.740231][ T6869] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 147.740304][ T6869] misc_open+0x35a/0x420 [ 147.740341][ T6869] ? __pfx_misc_open+0x10/0x10 [ 147.740376][ T6869] chrdev_open+0x231/0x6a0 [ 147.740409][ T6869] ? __pfx_apparmor_file_open+0x10/0x10 [ 147.740447][ T6869] ? __pfx_chrdev_open+0x10/0x10 [ 147.740483][ T6869] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 147.740544][ T6869] do_dentry_open+0x741/0x1c10 [ 147.740595][ T6869] ? __pfx_chrdev_open+0x10/0x10 [ 147.740630][ T6869] ? inode_permission+0xdd/0x5f0 [ 147.740674][ T6869] vfs_open+0x82/0x3f0 [ 147.740731][ T6869] ? may_open+0x1f2/0x400 [ 147.740779][ T6869] path_openat+0x1e5e/0x2d40 [ 147.740821][ T6869] ? __pfx_path_openat+0x10/0x10 [ 147.740862][ T6869] do_filp_open+0x20b/0x470 [ 147.740900][ T6869] ? __pfx_do_filp_open+0x10/0x10 [ 147.740931][ T6869] ? find_held_lock+0x2b/0x80 [ 147.740991][ T6869] ? alloc_fd+0x420/0x760 [ 147.741052][ T6869] do_sys_openat2+0x11b/0x1d0 [ 147.741093][ T6869] ? __pfx_do_sys_openat2+0x10/0x10 [ 147.741144][ T6869] __x64_sys_openat+0x174/0x210 [ 147.741187][ T6869] ? __pfx___x64_sys_openat+0x10/0x10 [ 147.741230][ T6869] ? rcu_is_watching+0x12/0xc0 [ 147.741292][ T6869] do_syscall_64+0xcd/0x260 [ 147.741340][ T6869] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.741375][ T6869] RIP: 0033:0x7f493538d169 [ 147.741403][ T6869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.741435][ T6869] RSP: 002b:00007f4936246038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 147.741466][ T6869] RAX: ffffffffffffffda RBX: 00007f49355a5fa0 RCX: 00007f493538d169 [ 147.741489][ T6869] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 147.741511][ T6869] RBP: 00007f493540e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 147.741532][ T6869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 147.741553][ T6869] R13: 0000000000000000 R14: 00007f49355a5fa0 R15: 00007ffef7aadec8 [ 147.741590][ T6869] [ 148.247186][ T6851] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 148.464712][ T6851] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1990199802 [ 148.547772][ T6851] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 148.598146][ T6867] ubi0: background thread "ubi_bgt0d" started, PID 6867 [ 148.911548][ T6878] FAULT_INJECTION: forcing a failure. [ 148.911548][ T6878] name failslab, interval 1, probability 0, space 0, times 0 [ 148.925172][ T6878] CPU: 0 UID: 0 PID: 6878 Comm: syz.1.208 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 148.925217][ T6878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 148.925235][ T6878] Call Trace: [ 148.925245][ T6878] [ 148.925257][ T6878] dump_stack_lvl+0x16c/0x1f0 [ 148.925303][ T6878] should_fail_ex+0x512/0x640 [ 148.925351][ T6878] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 148.925400][ T6878] should_failslab+0xc2/0x120 [ 148.925433][ T6878] __kmalloc_cache_noprof+0x6a/0x3e0 [ 148.925477][ T6878] ? fib_rules_register+0x403/0x500 [ 148.925510][ T6878] ? mr_table_alloc+0x5f/0x2e0 [ 148.925546][ T6878] ? do_raw_spin_unlock+0x172/0x230 [ 148.925582][ T6878] ? __pfx_ipmr_new_table_set+0x10/0x10 [ 148.925633][ T6878] mr_table_alloc+0x5f/0x2e0 [ 148.925665][ T6878] ? __pfx_ipmr_expire_process+0x10/0x10 [ 148.925695][ T6878] ? __pfx_ipmr_net_init+0x10/0x10 [ 148.925725][ T6878] ipmr_net_init+0x3c4/0x4e0 [ 148.925755][ T6878] ? __pfx_ipmr_net_init+0x10/0x10 [ 148.925813][ T6878] ops_init+0x1df/0x5f0 [ 148.925849][ T6878] setup_net+0x21e/0x850 [ 148.925886][ T6878] ? __pfx_setup_net+0x10/0x10 [ 148.925919][ T6878] ? lockdep_init_map_type+0x5c/0x280 [ 148.925970][ T6878] ? __pfx_down_read_killable+0x10/0x10 [ 148.926021][ T6878] ? debug_mutex_init+0x37/0x70 [ 148.926059][ T6878] copy_net_ns+0x2a6/0x5f0 [ 148.926097][ T6878] create_new_namespaces+0x3ea/0xad0 [ 148.926145][ T6878] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 148.926190][ T6878] ksys_unshare+0x45b/0xa40 [ 148.926235][ T6878] ? __pfx_ksys_unshare+0x10/0x10 [ 148.926278][ T6878] ? xfd_validate_state+0x5d/0x180 [ 148.926313][ T6878] ? rcu_is_watching+0x12/0xc0 [ 148.926356][ T6878] __x64_sys_unshare+0x31/0x40 [ 148.926402][ T6878] do_syscall_64+0xcd/0x260 [ 148.926445][ T6878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.926476][ T6878] RIP: 0033:0x7fd45c98d169 [ 148.926499][ T6878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 148.926529][ T6878] RSP: 002b:00007fd45d742038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 148.926553][ T6878] RAX: ffffffffffffffda RBX: 00007fd45cba5fa0 RCX: 00007fd45c98d169 [ 148.926573][ T6878] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 148.926591][ T6878] RBP: 00007fd45ca0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 148.926611][ T6878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 148.926630][ T6878] R13: 0000000000000000 R14: 00007fd45cba5fa0 R15: 00007ffc0722fae8 [ 148.926663][ T6878] [ 149.661431][ T6892] busy [ 152.609484][ T6926] FAULT_INJECTION: forcing a failure. [ 152.609484][ T6926] name failslab, interval 1, probability 0, space 0, times 0 [ 152.722947][ T6926] CPU: 0 UID: 0 PID: 6926 Comm: syz.1.218 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 152.722991][ T6926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 152.723010][ T6926] Call Trace: [ 152.723019][ T6926] [ 152.723030][ T6926] dump_stack_lvl+0x16c/0x1f0 [ 152.723076][ T6926] should_fail_ex+0x512/0x640 [ 152.723133][ T6926] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 152.723187][ T6926] should_failslab+0xc2/0x120 [ 152.723219][ T6926] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 152.723270][ T6926] ? alloc_empty_file+0x55/0x1e0 [ 152.723310][ T6926] alloc_empty_file+0x55/0x1e0 [ 152.723349][ T6926] path_openat+0xe0/0x2d40 [ 152.723375][ T6926] ? __x64_sys_openat+0x174/0x210 [ 152.723412][ T6926] ? do_syscall_64+0xcd/0x260 [ 152.723450][ T6926] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.723492][ T6926] ? __pfx_path_openat+0x10/0x10 [ 152.723528][ T6926] do_filp_open+0x20b/0x470 [ 152.723556][ T6926] ? __pfx_do_filp_open+0x10/0x10 [ 152.723584][ T6926] ? find_held_lock+0x2b/0x80 [ 152.723643][ T6926] ? alloc_fd+0x420/0x760 [ 152.723698][ T6926] do_sys_openat2+0x11b/0x1d0 [ 152.723735][ T6926] ? __pfx_do_sys_openat2+0x10/0x10 [ 152.723773][ T6926] ? find_held_lock+0x2b/0x80 [ 152.723815][ T6926] __x64_sys_openat+0x174/0x210 [ 152.723852][ T6926] ? __pfx___x64_sys_openat+0x10/0x10 [ 152.723891][ T6926] ? syscall_user_dispatch+0x78/0x140 [ 152.723931][ T6926] do_syscall_64+0xcd/0x260 [ 152.723972][ T6926] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.724003][ T6926] RIP: 0033:0x7fd45c98d169 [ 152.724025][ T6926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 152.724054][ T6926] RSP: 002b:00007fd45d721038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 152.724082][ T6926] RAX: ffffffffffffffda RBX: 00007fd45cba6080 RCX: 00007fd45c98d169 [ 152.724112][ T6926] RDX: 0000000000008c00 RSI: 00002000000011c0 RDI: ffffffffffffff9c [ 152.724132][ T6926] RBP: 00007fd45ca0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 152.724150][ T6926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 152.724168][ T6926] R13: 0000000000000000 R14: 00007fd45cba6080 R15: 00007ffc0722fae8 [ 152.724201][ T6926] [ 153.510143][ T6945] Invalid ELF header magic: != ELF [ 155.139982][ T6958] netlink: 28 bytes leftover after parsing attributes in process `syz.1.223'. [ 155.844144][ T6965] usbip-vudc usbip-vudc.0: gadget not bound /[ 158.738765][ T6995] ptrace attach of "./syz-executor exec"[5848] was attempted by ""[6995] [ 159.824734][ T7009] busy [ 160.617245][ T7016] program syz.2.234 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 162.385885][ T7047] netlink: 544 bytes leftover after parsing attributes in process `syz.2.241'. [ 166.623761][ T5846] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 173.011380][ T7219] bond0: no command found in slaves file - use +ifname or -ifname [ 173.562371][ T7226] netlink: 28 bytes leftover after parsing attributes in process `syz.1.272'. [ 173.574584][ T7222] input: f as /devices/virtual/input/input11 [ 173.757678][ T5852] udevd[5852]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory /dev/[ 177.762894][ T30] audit: type=1800 audit(6038176507.223:6): pid=7266 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.281" name="version" dev="configfs" ino=15566 res=0 errno=0 [ 182.800983][ T7378] netlink: 346 bytes leftover after parsing attributes in process `syz.3.298'. [ 186.255574][ T7416] Invalid ELF header magic: != ELF [ 188.168150][ T7446] FAULT_INJECTION: forcing a failure. [ 188.168150][ T7446] name failslab, interval 1, probability 0, space 0, times 0 [ 188.216476][ T7446] CPU: 1 UID: 0 PID: 7446 Comm: syz.0.310 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 188.216522][ T7446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 188.216541][ T7446] Call Trace: [ 188.216550][ T7446] [ 188.216566][ T7446] dump_stack_lvl+0x16c/0x1f0 [ 188.216614][ T7446] should_fail_ex+0x512/0x640 [ 188.216672][ T7446] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 188.216730][ T7446] should_failslab+0xc2/0x120 [ 188.216764][ T7446] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 188.216818][ T7446] ? sock_alloc_inode+0x25/0x1c0 [ 188.216861][ T7446] ? __pfx_sock_alloc_inode+0x10/0x10 [ 188.216898][ T7446] sock_alloc_inode+0x25/0x1c0 [ 188.216935][ T7446] alloc_inode+0x61/0x240 [ 188.216999][ T7446] sock_alloc+0x40/0x280 [ 188.217036][ T7446] sock_create_lite+0x82/0x120 [ 188.217076][ T7446] __netlink_kernel_create+0xbd/0x750 [ 188.217114][ T7446] ? __pfx___netlink_kernel_create+0x10/0x10 [ 188.217155][ T7446] ? proc_create_reg+0xe3/0x180 [ 188.217198][ T7446] xfrm_user_net_init+0xc6/0x190 [ 188.217236][ T7446] ? __pfx_xfrm_user_net_init+0x10/0x10 [ 188.217274][ T7446] ? __pfx_xfrm_netlink_rcv+0x10/0x10 [ 188.217311][ T7446] ? __pfx_tls_init_net+0x10/0x10 [ 188.217360][ T7446] ? tls_proc_init+0x58/0x70 [ 188.217398][ T7446] ? __pfx_xfrm_user_net_init+0x10/0x10 [ 188.217434][ T7446] ops_init+0x1df/0x5f0 [ 188.217476][ T7446] setup_net+0x21e/0x850 [ 188.217514][ T7446] ? __pfx_setup_net+0x10/0x10 [ 188.217547][ T7446] ? lockdep_init_map_type+0x5c/0x280 [ 188.217598][ T7446] ? __pfx_down_read_killable+0x10/0x10 [ 188.217657][ T7446] ? debug_mutex_init+0x37/0x70 [ 188.217698][ T7446] copy_net_ns+0x2a6/0x5f0 [ 188.217740][ T7446] create_new_namespaces+0x3ea/0xad0 [ 188.217790][ T7446] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 188.217851][ T7446] ksys_unshare+0x45b/0xa40 [ 188.217908][ T7446] ? __pfx_ksys_unshare+0x10/0x10 [ 188.217955][ T7446] ? xfd_validate_state+0x5d/0x180 [ 188.217992][ T7446] ? rcu_is_watching+0x12/0xc0 [ 188.218035][ T7446] __x64_sys_unshare+0x31/0x40 [ 188.218080][ T7446] do_syscall_64+0xcd/0x260 [ 188.218123][ T7446] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.218155][ T7446] RIP: 0033:0x7f493538d169 [ 188.218180][ T7446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 188.218211][ T7446] RSP: 002b:00007f4936246038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 188.218255][ T7446] RAX: ffffffffffffffda RBX: 00007f49355a5fa0 RCX: 00007f493538d169 [ 188.218277][ T7446] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 188.218296][ T7446] RBP: 00007f493540e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 188.218316][ T7446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 188.218335][ T7446] R13: 0000000000000000 R14: 00007f49355a5fa0 R15: 00007ffef7aadec8 [ 188.218376][ T7446] [ 188.506275][ C1] vkms_vblank_simulate: vblank timer overrun [ 190.387253][ T7465] busy [ 192.430383][ T7498] busy [ 192.959008][ T7507] ptrace attach of "./syz-executor exec"[5847] was attempted by "./syz-executor exec"[7507] [ 193.127091][ T7509] netlink: 12 bytes leftover after parsing attributes in process `syz.3.323'. [ 194.039730][ T7517] busy [ 197.121869][ T7542] netlink: 28 bytes leftover after parsing attributes in process `syz.3.329'. [ 197.207972][ T7545] busy [ 199.516948][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.523511][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 200.792136][ T7587] netlink: 342 bytes leftover after parsing attributes in process `syz.3.341'. [ 201.012508][ T7592] netlink: 346 bytes leftover after parsing attributes in process `syz.2.339'. [ 202.493080][ T7615] FAULT_INJECTION: forcing a failure. [ 202.493080][ T7615] name failslab, interval 1, probability 0, space 0, times 0 [ 202.529494][ T7615] CPU: 1 UID: 0 PID: 7615 Comm: syz.0.346 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 202.529539][ T7615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 202.529558][ T7615] Call Trace: [ 202.529567][ T7615] [ 202.529578][ T7615] dump_stack_lvl+0x16c/0x1f0 [ 202.529625][ T7615] should_fail_ex+0x512/0x640 [ 202.529674][ T7615] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 202.529732][ T7615] should_failslab+0xc2/0x120 [ 202.529765][ T7615] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 202.529820][ T7615] ? alloc_inode+0xc3/0x240 [ 202.529875][ T7615] alloc_inode+0xc3/0x240 [ 202.529916][ T7615] alloc_anon_inode+0x28/0x3e0 [ 202.529947][ T7615] secretmem_file_create.constprop.0+0x4d/0x2c0 [ 202.529988][ T7615] __x64_sys_memfd_secret+0xc5/0x1a0 [ 202.530023][ T7615] do_syscall_64+0xcd/0x260 [ 202.530068][ T7615] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.530100][ T7615] RIP: 0033:0x7f493538d169 [ 202.530124][ T7615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.530154][ T7615] RSP: 002b:00007f4936246038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf [ 202.530183][ T7615] RAX: ffffffffffffffda RBX: 00007f49355a5fa0 RCX: 00007f493538d169 [ 202.530204][ T7615] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 202.530222][ T7615] RBP: 00007f493540e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 202.530240][ T7615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 202.530258][ T7615] R13: 0000000000000000 R14: 00007f49355a5fa0 R15: 00007ffef7aadec8 [ 202.530291][ T7615] [ 205.847814][ T7673] bridge0: port 3(team0) entered blocking state [ 205.922964][ T7673] bridge0: port 3(team0) entered disabled state [ 205.956390][ T7673] team0: entered allmulticast mode [ 206.063106][ T7673] team_slave_0: entered allmulticast mode [ 206.068910][ T7673] team_slave_1: entered allmulticast mode [ 206.189219][ T7673] team0: entered promiscuous mode [ 206.194470][ T7673] team_slave_0: entered promiscuous mode [ 206.200360][ T7673] team_slave_1: entered promiscuous mode [ 206.206701][ T7673] bridge0: port 3(team0) entered blocking state [ 206.213102][ T7673] bridge0: port 3(team0) entered forwarding state [ 207.692621][ T7702] Invalid ELF header magic: != ELF [ 208.080640][ T7702] netlink: 20 bytes leftover after parsing attributes in process `syz.0.359'. [ 208.906315][ T7730] FAULT_INJECTION: forcing a failure. [ 208.906315][ T7730] name failslab, interval 1, probability 0, space 0, times 0 [ 208.959650][ T7730] CPU: 0 UID: 0 PID: 7730 Comm: syz.3.368 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 208.959697][ T7730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 208.959716][ T7730] Call Trace: [ 208.959726][ T7730] [ 208.959738][ T7730] dump_stack_lvl+0x16c/0x1f0 [ 208.959788][ T7730] should_fail_ex+0x512/0x640 [ 208.959839][ T7730] ? fs_reclaim_acquire+0xae/0x150 [ 208.959884][ T7730] should_failslab+0xc2/0x120 [ 208.959918][ T7730] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 208.959970][ T7730] ? security_inode_alloc+0x3b/0x2b0 [ 208.960026][ T7730] security_inode_alloc+0x3b/0x2b0 [ 208.960078][ T7730] inode_init_always_gfp+0xce4/0x1030 [ 208.960112][ T7730] alloc_inode+0x86/0x240 [ 208.960152][ T7730] new_inode+0x22/0x1c0 [ 208.960193][ T7730] shmem_get_inode+0x19a/0xfb0 [ 208.960230][ T7730] shmem_symlink+0xf7/0x780 [ 208.960273][ T7730] ? __pfx_shmem_symlink+0x10/0x10 [ 208.960313][ T7730] ? bpf_lsm_inode_permission+0x9/0x10 [ 208.960360][ T7730] ? security_inode_permission+0xbf/0x260 [ 208.960402][ T7730] ? inode_permission+0xdd/0x5f0 [ 208.960446][ T7730] vfs_symlink+0x400/0x680 [ 208.960492][ T7730] do_symlinkat+0x261/0x310 [ 208.960521][ T7730] ? strncpy_from_user+0x20a/0x2d0 [ 208.960565][ T7730] ? __pfx_do_symlinkat+0x10/0x10 [ 208.960598][ T7730] ? getname_flags.part.0+0x1c2/0x540 [ 208.960649][ T7730] __x64_sys_symlinkat+0x93/0xc0 [ 208.960683][ T7730] do_syscall_64+0xcd/0x260 [ 208.960726][ T7730] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.960758][ T7730] RIP: 0033:0x7fa841f8d169 [ 208.960783][ T7730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 208.960814][ T7730] RSP: 002b:00007fa842d89038 EFLAGS: 00000246 ORIG_RAX: 000000000000010a [ 208.960844][ T7730] RAX: ffffffffffffffda RBX: 00007fa8421a5fa0 RCX: 00007fa841f8d169 [ 208.960865][ T7730] RDX: 0000200000000040 RSI: ffffffffffffff9c RDI: 0000200000000000 [ 208.960885][ T7730] RBP: 00007fa84200e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 208.960904][ T7730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 208.960922][ T7730] R13: 0000000000000000 R14: 00007fa8421a5fa0 R15: 00007ffdf94fcc88 [ 208.960957][ T7730] [ 209.620884][ T7737] busy [ 209.971193][ T7742] netlink: 28 bytes leftover after parsing attributes in process `syz.2.371'. [ 210.133310][ T7742] veth0_macvtap: left promiscuous mode [ 210.271937][ T7741] busy [ 210.302753][ T7742] macvtap0: entered promiscuous mode [ 210.362920][ T7742] macvtap0: entered allmulticast mode [ 211.388771][ T7753] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 211.401446][ T7753] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 211.477171][ T7753] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 211.505297][ T7753] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 211.547630][ T7753] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 211.575626][ T7753] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 211.927865][ T7785] netlink: 8 bytes leftover after parsing attributes in process `syz.1.377'. [ 211.973449][ T7784] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ek [ 222.082898][ T7914] dump_stack_lvl+0x16c/0x1f0 [ 222.082944][ T7914] warn_alloc+0x248/0x3a0 [ 222.082974][ T7914] ? __pfx_warn_alloc+0x10/0x10 [ 222.083024][ T7914] ? alloc_pages_mpol+0x25a/0x540 [ 222.083058][ T7914] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 222.083094][ T7914] ? trace_kmalloc+0x2b/0xd0 [ 222.083138][ T7914] __vmalloc_node_range_noprof+0x12d2/0x1540 [ 222.083192][ T7914] ? kernel_clone+0xfc/0x960 [ 222.083235][ T7914] ? __memcg_slab_post_alloc_hook+0x4d0/0x940 [ 222.083277][ T7914] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 222.083329][ T7914] ? trace_kmem_cache_alloc+0x28/0xc0 [ 222.083365][ T7914] ? kmem_cache_alloc_node_noprof+0x225/0x3b0 [ 222.083418][ T7914] ? kernel_clone+0xfc/0x960 [ 222.083461][ T7914] copy_process+0x3063/0x9130 [ 222.083503][ T7914] ? kernel_clone+0xfc/0x960 [ 222.083544][ T7914] ? find_held_lock+0x2b/0x80 [ 222.083582][ T7914] ? schedule+0x2d7/0x3a0 [ 222.083617][ T7914] ? futex_wait_queue+0x24/0x220 [ 222.083665][ T7914] ? schedule+0xf1/0x3a0 [ 222.083698][ T7914] ? futex_unqueue+0xba/0x140 [ 222.083743][ T7914] ? __pfx_copy_process+0x10/0x10 [ 222.083785][ T7914] ? __pfx___futex_wait+0x10/0x10 [ 222.083839][ T7914] ? __pfx_futex_wake_mark+0x10/0x10 [ 222.083895][ T7914] kernel_clone+0xfc/0x960 [ 222.083939][ T7914] ? __pfx_kernel_clone+0x10/0x10 [ 222.084005][ T7914] __do_sys_clone+0xce/0x120 [ 222.084050][ T7914] ? __pfx___do_sys_clone+0x10/0x10 [ 222.084106][ T7914] ? rcu_is_watching+0x12/0xc0 [ 222.084149][ T7914] do_syscall_64+0xcd/0x260 [ 222.084192][ T7914] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.084223][ T7914] RIP: 0033:0x7fd45c98d169 [ 222.084248][ T7914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.084278][ T7914] RSP: 002b:00007fd45d720fe8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 222.084305][ T7914] RAX: ffffffffffffffda RBX: 00007fd45cba6080 RCX: 00007fd45c98d169 [ 222.084325][ T7914] RDX: 0000000000000000 RSI: 000000000000ffb0 RDI: 0000000100281091 [ 222.084344][ T7914] RBP: 00007fd45ca0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 222.084362][ T7914] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 222.084380][ T7914] R13: 0000000000000000 R14: 00007fd45cba6080 R15: 00007ffc0722fae8 [ 222.084413][ T7914] [ 222.084538][ T7914] Mem-Info: [ 222.362917][ T7914] active_anon:112902 inactive_anon:0 isolated_anon:0 [ 222.362917][ T7914] active_file:7476 inactive_file:49027 isolated_file:0 [ 222.362917][ T7914] unevictable:768 dirty:804 writeback:0 [ 222.362917][ T7914] slab_reclaimable:10560 slab_unreclaimable:95925 [ 222.362917][ T7914] mapped:40651 shmem:100057 pagetables:1088 [ 222.362917][ T7914] sec_pagetables:0 bounce:0 [ 222.362917][ T7914] kernel_misc_reclaimable:0 [ 222.362917][ T7914] free:1223341 free_pcp:8823 free_cma:0 [ 222.482784][ T7914] Node 0 active_anon:455708kB inactive_anon:0kB active_file:29904kB inactive_file:196104kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:164004kB dirty:3216kB writeback:0kB shmem:402792kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12236kB pagetables:4352kB sec_pagetables:0kB all_unreclaimable? no [ 222.689157][ T7914] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 222.788447][ T7914] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 222.925216][ T7914] lowmem_reserve[]: 0 2484 2486 2486 2486 [ 222.931088][ T7914] Node 0 DMA32 free:977412kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:476264kB inactive_anon:0kB active_file:29904kB inactive_file:194288kB unevictable:1536kB writepending:3216kB present:3129332kB managed:2544512kB mlocked:0kB bounce:0kB free_pcp:2720kB local_pcp:2592kB free_cma:0kB [ 223.053173][ T7914] lowmem_reserve[]: 0 0 1 1 1 [ 223.058179][ T7914] Node 0 Normal free:28kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1816kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:8kB free_cma:0kB [ 223.203321][ T7914] lowmem_reserve[]: 0 0 0 0 0 [ 223.208209][ T7914] Node 1 Normal free:3880172kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:29532kB local_pcp:29532kB free_cma:0kB [ 223.562824][ T7914] lowmem_reserve[]: 0 0 0 0 0 [ 223.567866][ T7914] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 223.580936][ T7914] Node 0 DMA32: 853*4kB (UME) 230*8kB (UME) 195*16kB (UE) 205*32kB (UME) 159*64kB (UE) 51*128kB (UME) 33*256kB (UE) 29*512kB (UE) 30*1024kB (UME) 6*2048kB (UE) 212*4096kB (UM) = 966292kB [ 223.630455][ T7914] Node 0 Normal: 1*4kB (M) 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28kB [ 223.713002][ T7914] Node 1 Normal: 208*4kB (UME) 60*8kB (UME) 43*16kB (UME) 239*32kB (UME) 107*64kB (UME) 37*128kB (UME) 20*256kB (UM) 17*512kB (UME) 9*1024kB (UME) 9*2048kB (UME) 932*4096kB (M) = 3880176kB [ 223.802858][ T7914] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 223.812490][ T7914] Node 0 hugepages_total=6 hugepages_free=0 hugepages_surp=2 hugepages_size=2048kB [ 223.909196][ T7914] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 223.952756][ T7914] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 223.967938][ T7914] 159778 total pagecache pages [ 224.012827][ T7914] 0 pages in swap cache [ 224.017267][ T7914] Free swap = 124672kB [ 224.021450][ T7914] Total swap = 124996kB [ 224.062769][ T7914] 2097051 pages RAM [ 224.082975][ T7914] 0 pages HighMem/MovableOnly [ 224.106607][ T7914] 428817 pages reserved [ 224.110941][ T7914] 0 pages cma reserved [ 225.570196][ T7942] busy [ 226.755671][ T7949] ubi0: detaching mtd0 [ 226.777581][ T7949] ubi0: mtd0 is detached [ 228.132114][ T7961] netlink: 342 bytes leftover after parsing attributes in process `syz.1.419'. [ 229.889404][ T7992] netlink: zone id is out of range [ 229.904701][ T7992] netlink: zone id is out of range [ 229.931400][ T7992] netlink: zone id is out of range [ 229.996576][ T7992] netlink: zone id is out of range [ 230.001770][ T7992] netlink: zone id is out of range [ 230.107739][ T7992] netlink: zone id is out of range [ 230.152616][ T7992] netlink: zone id is out of range [ 230.176119][ T7992] netlink: zone id is out of range [ 230.209215][ T7992] netlink: zone id is out of range [ 230.231105][ T7992] netlink: zone id is out of range [ 230.933135][ T8017] could not allocate digest TFM handle [ 231.827798][ T8042] FAULT_INJECTION: forcing a failure. [ 231.827798][ T8042] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 231.871721][ T8042] CPU: 1 UID: 0 PID: 8042 Comm: syz.1.435 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 231.871762][ T8042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 231.871780][ T8042] Call Trace: [ 231.871789][ T8042] [ 231.871799][ T8042] dump_stack_lvl+0x16c/0x1f0 [ 231.871844][ T8042] should_fail_ex+0x512/0x640 [ 231.871896][ T8042] _copy_from_user+0x2e/0xd0 [ 231.871927][ T8042] copy_msghdr_from_user+0x98/0x160 [ 231.871957][ T8042] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 231.872001][ T8042] ? __pfx__kstrtoull+0x10/0x10 [ 231.872046][ T8042] ___sys_sendmsg+0xfe/0x1d0 [ 231.872078][ T8042] ? __pfx____sys_sendmsg+0x10/0x10 [ 231.872121][ T8042] ? find_held_lock+0x2b/0x80 [ 231.872173][ T8042] __sys_sendmmsg+0x200/0x420 [ 231.872205][ T8042] ? __pfx___sys_sendmmsg+0x10/0x10 [ 231.872244][ T8042] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 231.872299][ T8042] ? fput+0x70/0xf0 [ 231.872333][ T8042] ? ksys_write+0x1b9/0x240 [ 231.872379][ T8042] ? __pfx_ksys_write+0x10/0x10 [ 231.872424][ T8042] ? rcu_is_watching+0x12/0xc0 [ 231.872465][ T8042] __x64_sys_sendmmsg+0x9c/0x100 [ 231.872495][ T8042] ? lockdep_hardirqs_on+0x7c/0x110 [ 231.872532][ T8042] do_syscall_64+0xcd/0x260 [ 231.872573][ T8042] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.872603][ T8042] RIP: 0033:0x7fd45c98d169 [ 231.872626][ T8042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.872656][ T8042] RSP: 002b:00007fd45d742038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 231.872687][ T8042] RAX: ffffffffffffffda RBX: 00007fd45cba5fa0 RCX: 00007fd45c98d169 [ 231.872706][ T8042] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 231.872724][ T8042] RBP: 00007fd45d742090 R08: 0000000000000000 R09: 0000000000000000 [ 231.872741][ T8042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 231.872758][ T8042] R13: 0000000000000000 R14: 00007fd45cba5fa0 R15: 00007ffc0722fae8 [ 231.872791][ T8042] [ 231.905221][ T8017] RDS: rds_bind could not find a transport for ::ffff:172.20.20.55, load rds_tcp or rds_rdma? [ 235.021331][ T8112] netlink: 'syz.2.451': attribute type 10 has an invalid length. [ 236.099566][ T8141] net_ratelimit: 75 callbacks suppressed [ 236.099591][ T8141] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8) [ 236.124616][ T8141] netlink: 'syz.1.458': attribute type 4 has an invalid length. [ 236.132413][ T8141] netlink: 314 bytes leftover after parsing attributes in process `syz.1.458'. [ 236.151346][ T8146] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8) [ 236.164066][ T8147] netlink: 'syz.1.458': attribute type 4 has an invalid length. [ 236.172098][ T8147] netlink: 314 bytes leftover after parsing attributes in process `syz.1.458'. [ 240.553243][ T8252] FAULT_INJECTION: forcing a failure. [ 240.553243][ T8252] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 240.702831][ T8252] CPU: 0 UID: 0 PID: 8252 Comm: syz.3.480 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 240.702877][ T8252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 240.702897][ T8252] Call Trace: [ 240.702906][ T8252] [ 240.702918][ T8252] dump_stack_lvl+0x16c/0x1f0 [ 240.702965][ T8252] should_fail_ex+0x512/0x640 [ 240.703020][ T8252] _copy_to_user+0x32/0xd0 [ 240.703065][ T8252] do_pipe2+0x142/0x1c0 [ 240.703098][ T8252] ? __pfx_do_pipe2+0x10/0x10 [ 240.703141][ T8252] __x64_sys_pipe+0x33/0x50 [ 240.703174][ T8252] do_syscall_64+0xcd/0x260 [ 240.703217][ T8252] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.703249][ T8252] RIP: 0033:0x7fa841f8d169 [ 240.703273][ T8252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 240.703304][ T8252] RSP: 002b:00007fa842d47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 240.703333][ T8252] RAX: ffffffffffffffda RBX: 00007fa8421a6160 RCX: 00007fa841f8d169 [ 240.703354][ T8252] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 240.703372][ T8252] RBP: 00007fa84200e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 240.703391][ T8252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 240.703409][ T8252] R13: 0000000000000000 R14: 00007fa8421a6160 R15: 00007ffdf94fcc88 [ 240.703443][ T8252] [ 240.853890][ C0] vkms_vblank_simulate: vblank timer overrun [ 242.836044][ T8302] netlink: 28 bytes leftover after parsing attributes in process `syz.2.491'. [ 242.910669][ T8305] netlink: 146 bytes leftover after parsing attributes in process `syz.1.492'. [ 243.057568][ T8302] mac80211_hwsim hwsim6 wlan1: entered allmulticast mode [ 243.616239][ T8316] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 244.317012][ T8323] FAULT_INJECTION: forcing a failure. [ 244.317012][ T8323] name failslab, interval 1, probability 0, space 0, times 0 [ 244.402748][ T8323] CPU: 0 UID: 0 PID: 8323 Comm: syz.0.496 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 244.402793][ T8323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 244.402812][ T8323] Call Trace: [ 244.402820][ T8323] [ 244.402833][ T8323] dump_stack_lvl+0x16c/0x1f0 [ 244.402879][ T8323] should_fail_ex+0x512/0x640 [ 244.402927][ T8323] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 244.402973][ T8323] should_failslab+0xc2/0x120 [ 244.403004][ T8323] __kmalloc_cache_noprof+0x6a/0x3e0 [ 244.403049][ T8323] ? mark_held_locks+0x49/0x80 [ 244.403098][ T8323] ? kobject_create_and_add+0x4a/0xf0 [ 244.403145][ T8323] ? lockdep_hardirqs_on+0x7c/0x110 [ 244.403186][ T8323] kobject_create_and_add+0x4a/0xf0 [ 244.403236][ T8323] add_disk_fwnode+0x83b/0x13a0 [ 244.403278][ T8323] zram_add+0x494/0x6c0 [ 244.403325][ T8323] ? __pfx_zram_add+0x10/0x10 [ 244.403395][ T8323] ? __pfx___might_resched+0x10/0x10 [ 244.403474][ T8323] ? __pfx_hot_add_show+0x10/0x10 [ 244.403521][ T8323] hot_add_show+0x21/0x80 [ 244.403568][ T8323] class_attr_show+0x6f/0xa0 [ 244.403610][ T8323] ? __pfx_class_attr_show+0x10/0x10 [ 244.403650][ T8323] sysfs_kf_seq_show+0x23e/0x410 [ 244.403705][ T8323] seq_read_iter+0x506/0x12b0 [ 244.403762][ T8323] kernfs_fop_read_iter+0x422/0x5a0 [ 244.403803][ T8323] ? rw_verify_area+0xcf/0x680 [ 244.403845][ T8323] vfs_read+0x8c8/0xc70 [ 244.403893][ T8323] ? __pfx___mutex_lock+0x10/0x10 [ 244.403934][ T8323] ? __pfx_vfs_read+0x10/0x10 [ 244.403996][ T8323] ksys_read+0x12a/0x240 [ 244.404040][ T8323] ? __pfx_ksys_read+0x10/0x10 [ 244.404084][ T8323] ? rcu_is_watching+0x12/0xc0 [ 244.404130][ T8323] do_syscall_64+0xcd/0x260 [ 244.404173][ T8323] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.404204][ T8323] RIP: 0033:0x7f493538d169 [ 244.404229][ T8323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.404259][ T8323] RSP: 002b:00007f4936246038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 244.404289][ T8323] RAX: ffffffffffffffda RBX: 00007f49355a5fa0 RCX: 00007f493538d169 [ 244.404309][ T8323] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 000000000000000a [ 244.404328][ T8323] RBP: 00007f493540e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 244.404346][ T8323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 244.404365][ T8323] R13: 0000000000000000 R14: 00007f49355a5fa0 R15: 00007ffef7aadec8 [ 244.404414][ T8323] [ 244.657481][ C0] vkms_vblank_simulate: vblank timer overrun [ 245.238736][ T8351] netlink: 146 bytes leftover after parsing attributes in process `syz.1.502'. [ 245.485556][ T8355] FAULT_INJECTION: forcing a failure. [ 245.485556][ T8355] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 245.543565][ T8355] CPU: 1 UID: 0 PID: 8355 Comm: syz.3.504 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 245.543608][ T8355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 245.543626][ T8355] Call Trace: [ 245.543634][ T8355] [ 245.543645][ T8355] dump_stack_lvl+0x16c/0x1f0 [ 245.543690][ T8355] should_fail_ex+0x512/0x640 [ 245.543743][ T8355] _copy_from_user+0x2e/0xd0 [ 245.543774][ T8355] move_addr_to_kernel+0x74/0x160 [ 245.543819][ T8355] __sys_sendto+0x1be/0x510 [ 245.543867][ T8355] ? __pfx___sys_sendto+0x10/0x10 [ 245.543923][ T8355] ? fd_install+0x1db/0x670 [ 245.543982][ T8355] ? __pfx___sys_socket+0x10/0x10 [ 245.544023][ T8355] ? __pfx_fput_close_sync+0x10/0x10 [ 245.544067][ T8355] __x64_sys_sendto+0xe0/0x1c0 [ 245.544114][ T8355] ? do_syscall_64+0x91/0x260 [ 245.544154][ T8355] ? lockdep_hardirqs_on+0x7c/0x110 [ 245.544191][ T8355] do_syscall_64+0xcd/0x260 [ 245.544233][ T8355] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.544265][ T8355] RIP: 0033:0x7fa841f8effc [ 245.544297][ T8355] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b [ 245.544327][ T8355] RSP: 002b:00007fa842d87ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 245.544355][ T8355] RAX: ffffffffffffffda RBX: 00007fa842d87fc0 RCX: 00007fa841f8effc [ 245.544375][ T8355] RDX: 0000000000000024 RSI: 00007fa842d88010 RDI: 000000000000001f [ 245.544394][ T8355] RBP: 0000000000000000 R08: 00007fa842d87f14 R09: 000000000000000c [ 245.544412][ T8355] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000001f [ 245.544430][ T8355] R13: 00007fa842d87f68 R14: 00007fa842d88010 R15: 0000000000000000 [ 245.544462][ T8355] [ 246.239403][ T8367] netlink: 8 bytes leftover after parsing attributes in process `syz.1.506'. [ 246.930780][ T8385] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 248.653339][ T8429] netlink: 8 bytes leftover after parsing attributes in process `syz.3.522'. [ 248.834330][ T8428] netlink: 146 bytes leftover after parsing attributes in process `syz.2.519'. [ 249.630863][ T8448] busy [ 250.552346][ T8469] netlink: 28 bytes leftover after parsing attributes in process `syz.3.530'. [ 252.390061][ T8487] Invalid ELF header magic: != ELF [ 252.519668][ T8493] busy [ 252.656501][ T8494] netlink: 146 bytes leftover after parsing attributes in process `syz.1.536'. [ 253.859583][ T8512] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13 [ 255.470623][ T8541] random: crng reseeded on system resumption [ 257.276775][ T8576] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 258.348729][ T8606] busy [ 258.404057][ T8603] netlink: 8 bytes leftover after parsing attributes in process `syz.0.562'. [ 258.503807][ T8610] netlink: 28 bytes leftover after parsing attributes in process `syz.0.562'. [ 258.518278][ T8610] veth1_macvtap: left promiscuous mode [ 258.526380][ T8610] macsec0: entered allmulticast mode [ 260.955298][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.961863][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.601216][ T8682] netlink: 146 bytes leftover after parsing attributes in process `syz.0.580'. [ 261.725730][ T8690] netlink: 'syz.1.583': attribute type 1 has an invalid length. [ 262.234293][ T55] ================================================================== [ 262.242488][ T55] BUG: KASAN: vmalloc-out-of-bounds in hci_devcd_dump+0x142/0x240 [ 262.250414][ T55] Read of size 140 at addr ffffc900044b7000 by task kworker/u9:0/55 [ 262.258441][ T55] [ 262.260797][ T55] CPU: 0 UID: 0 PID: 55 Comm: kworker/u9:0 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 262.260838][ T55] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 262.260858][ T55] Workqueue: hci0 hci_devcd_timeout [ 262.260897][ T55] Call Trace: [ 262.260906][ T55] [ 262.260918][ T55] dump_stack_lvl+0x116/0x1f0 [ 262.260960][ T55] print_report+0xc3/0x670 [ 262.260992][ T55] ? __virt_addr_valid+0x5e/0x590 [ 262.261039][ T55] ? hci_devcd_dump+0x142/0x240 [ 262.261074][ T55] kasan_report+0xe0/0x110 [ 262.261105][ T55] ? hci_devcd_dump+0x142/0x240 [ 262.261145][ T55] kasan_check_range+0xef/0x1a0 [ 262.261184][ T55] __asan_memcpy+0x23/0x60 [ 262.261228][ T55] hci_devcd_dump+0x142/0x240 [ 262.261264][ T55] hci_devcd_timeout+0xb5/0x2e0 [ 262.261299][ T55] ? rcu_is_watching+0x12/0xc0 [ 262.261337][ T55] process_one_work+0x9cc/0x1b70 [ 262.261378][ T55] ? __pfx_process_one_work+0x10/0x10 [ 262.261416][ T55] ? assign_work+0x1a0/0x250 [ 262.261446][ T55] worker_thread+0x6c8/0xf10 [ 262.261505][ T55] ? __pfx_worker_thread+0x10/0x10 [ 262.261539][ T55] kthread+0x3c2/0x780 [ 262.261575][ T55] ? __pfx_kthread+0x10/0x10 [ 262.261602][ T55] ? __pfx_kthread+0x10/0x10 [ 262.261630][ T55] ? __pfx_kthread+0x10/0x10 [ 262.261658][ T55] ? __pfx_kthread+0x10/0x10 [ 262.261686][ T55] ? rcu_is_watching+0x12/0xc0 [ 262.261721][ T55] ? __pfx_kthread+0x10/0x10 [ 262.261750][ T55] ret_from_fork+0x45/0x80 [ 262.261781][ T55] ? __pfx_kthread+0x10/0x10 [ 262.261809][ T55] ret_from_fork_asm+0x1a/0x30 [ 262.261865][ T55] [ 262.261875][ T55] [ 262.422661][ T55] The buggy address ffffc900044b7000 belongs to a vmalloc virtual mapping [ 262.431184][ T55] Memory state around the buggy address: [ 262.436828][ T55] ffffc900044b6f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 262.445339][ T55] ffffc900044b6f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 262.453427][ T55] >ffffc900044b7000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 262.461580][ T55] ^ [ 262.465683][ T55] ffffc900044b7080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 262.473756][ T55] ffffc900044b7100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 262.481824][ T55] ================================================================== [ 262.503022][ T55] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 262.510275][ T55] CPU: 0 UID: 0 PID: 55 Comm: kworker/u9:0 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 262.522013][ T55] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 262.532084][ T55] Workqueue: hci0 hci_devcd_timeout [ 262.537312][ T55] Call Trace: [ 262.540599][ T55] [ 262.543550][ T55] dump_stack_lvl+0x3d/0x1f0 [ 262.548326][ T55] panic+0x71c/0x800 [ 262.552275][ T55] ? __pfx_panic+0x10/0x10 [ 262.556723][ T55] ? irqentry_exit+0x3b/0x90 [ 262.561338][ T55] ? lockdep_hardirqs_on+0x7c/0x110 [ 262.566563][ T55] ? preempt_schedule_thunk+0x16/0x30 [ 262.571955][ T55] ? hci_devcd_dump+0x142/0x240 [ 262.576831][ T55] ? preempt_schedule_common+0x44/0xc0 [ 262.582312][ T55] ? check_panic_on_warn+0x1f/0xb0 [ 262.587444][ T55] ? hci_devcd_dump+0x142/0x240 [ 262.592314][ T55] check_panic_on_warn+0xab/0xb0 [ 262.597270][ T55] end_report+0x107/0x170 [ 262.601718][ T55] kasan_report+0xee/0x110 [ 262.606155][ T55] ? hci_devcd_dump+0x142/0x240 [ 262.611136][ T55] kasan_check_range+0xef/0x1a0 [ 262.616037][ T55] __asan_memcpy+0x23/0x60 [ 262.620495][ T55] hci_devcd_dump+0x142/0x240 [ 262.625204][ T55] hci_devcd_timeout+0xb5/0x2e0 [ 262.630078][ T55] ? rcu_is_watching+0x12/0xc0 [ 262.634866][ T55] process_one_work+0x9cc/0x1b70 [ 262.639828][ T55] ? __pfx_process_one_work+0x10/0x10 [ 262.645755][ T55] ? assign_work+0x1a0/0x250 [ 262.650383][ T55] worker_thread+0x6c8/0xf10 [ 262.654999][ T55] ? __pfx_worker_thread+0x10/0x10 [ 262.660129][ T55] kthread+0x3c2/0x780 [ 262.664240][ T55] ? __pfx_kthread+0x10/0x10 [ 262.668980][ T55] ? __pfx_kthread+0x10/0x10 [ 262.673589][ T55] ? __pfx_kthread+0x10/0x10 [ 262.678205][ T55] ? __pfx_kthread+0x10/0x10 [ 262.682813][ T55] ? rcu_is_watching+0x12/0xc0 [ 262.687861][ T55] ? __pfx_kthread+0x10/0x10 [ 262.692467][ T55] ret_from_fork+0x45/0x80 [ 262.696908][ T55] ? __pfx_kthread+0x10/0x10 [ 262.701517][ T55] ret_from_fork_asm+0x1a/0x30 [ 262.706330][ T55] [ 262.709782][ T55] Kernel Offset: disabled [ 262.714123][ T55] Rebooting in 86400 seconds..