last executing test programs:

10.159921356s ago: executing program 0 (id=4844):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000001f40), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_GET383(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000001fc0)={0x1c, r1, 0x4b3cda97fd2bffcd, 0x70bd27, 0x25dfdbfc, {}, [@OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x2}]}, 0x1c}, 0x1, 0x3f, 0x0, 0x8010}, 0xc000)

9.640845268s ago: executing program 0 (id=4845):
close_range$auto(0x80000000, 0xfffffffffffffffc, 0x4000000000002)
close_range$auto(0x5, 0x101, 0x6)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
shutdown$auto(0x5, 0x2)

9.141970926s ago: executing program 0 (id=4848):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000140), r0)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT25(r1, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x84400000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)={0x10c, r2, 0x18, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_CABLE_TEST_TDR_CFG={0xf0, 0x2, "56c064bebb8c8cbd3fde4f83c53dd34bb30a542446ab5acab778808e3ad6a4123a50f71290ef01dba904df30f163aae32b1235a90080721b1b34d1bf7246c66811cf9bfc62690af8e35d23b62592e9bd87841d6a67bec87b48994af635712cc27243b481c5d9fd28e476eba8ae94f6a571e3b65059a68937b68836f0b284ba2b9b314852f9018de2b989a9e30391b1f0317d258db51c8388d6a85f2ce713bb60b04030249960fc0eb7c1d69e13912c369bd8d5fa77d0bfd441c11b495cf8fc7200749eacdd7b9f8d060a29f47d65c6d71191f4ed510cc9c973938ff67b953deb6939e1b2c396b452c6ec4eed"}, @ETHTOOL_A_CABLE_TEST_TDR_HEADER={0x7, 0x1, "1b2c8d"}]}, 0x10c}, 0x1, 0x0, 0x0, 0x80}, 0x20000004)
sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK296(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x7b2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40040}, 0x4040000)
socket(0x21, 0x2, 0x2)
setsockopt$auto(0x3, 0x1000000110, 0x2, 0x5, 0x8001)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000063c0), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_POOL_MODE_SET200(r0, &(0x7f0000006480)={0x0, 0x0, &(0x7f0000006440)={&(0x7f0000006400)={0x1c, r3, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@NFSD_A_POOL_MODE_MODE={0x8, 0x1, '!\\\'\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000084}, 0x4)

8.428783095s ago: executing program 0 (id=4851):
mmap$auto(0x0, 0x8, 0xdf, 0x8d5, 0xfffffffffffff077, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x3, 0x3, 0x970)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x1e, 0x1, 0x0)
ioperm$auto(0x7, 0x6, 0x2)
pidfd_getfd$auto(0x1ff, 0x6, 0x40)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
rt_sigprocmask$auto(0x100000000, 0x8fd8, 0x5e, 0x8)
memfd_create$auto(0x5, 0xc)
mmap$auto(0xb, 0x8, 0x1000000016, 0x13, 0x3, 0x180000000)
madvise$auto(0x2000, 0x80000001, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
mmap$auto(0x5, 0xfffffffffffffff7, 0x1, 0xfffffffffffffff9, 0x9, 0x7)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
syslog$auto(0x4, 0x210, 0x0)
getsockopt$auto(0x100000006, 0x0, 0x18, 0x9, 0x0)
pidfd_getfd$auto(0x8, 0x3, 0x5)

7.235768419s ago: executing program 3 (id=4855):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
rt_sigaction$auto(0x3, 0x0, 0xc, 0x8)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
setrlimit$auto(0x8, 0xff)
mlockall$auto(0x7)
r1 = syz_genetlink_get_family_id$auto_TASKSTATS(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TASKSTATS_CMD_GET425(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x7c, r1, 0x8, 0x70bd27, 0x25dfdbff, {}, [@TASKSTATS_CMD_ATTR_TGID={0x8, 0x2, 0x6}, @TASKSTATS_CMD_ATTR_DEREGISTER_CPUMASK={0x5, 0x4, '+'}, @TASKSTATS_CMD_ATTR_TGID={0x8, 0x2, 0x9}, @TASKSTATS_CMD_ATTR_DEREGISTER_CPUMASK={0xe, 0x4, 'TASKSTATS\x00'}, @TASKSTATS_CMD_ATTR_DEREGISTER_CPUMASK={0xe, 0x4, 'TASKSTATS\x00'}, @TASKSTATS_CMD_ATTR_REGISTER_CPUMASK={0x17, 0x3, '.:-{^\xa4/\\%((\'\xc5&--*,+'}, @TASKSTATS_CMD_ATTR_DEREGISTER_CPUMASK={0xe, 0x4, 'TASKSTATS\x00'}, @TASKSTATS_CMD_ATTR_PID={0x8, 0x1, 0xffffff42}]}, 0x7c}, 0x1, 0x0, 0x0, 0xc000}, 0x400c814)
open(&(0x7f0000000000)='./file0\x00', 0x40440, 0x40)
read$auto(0x3, 0x0, 0x80)

5.962824428s ago: executing program 3 (id=4860):
alarm$auto(0x8)
alarm$auto(0x9)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x9a, 0x9, 0x3, 0x16, 0x9, 0x4)
futex_waitv$auto(0x1, 0x7f, 0x0, 0x0, 0x7)
socket(0x22, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_ASSOCIATE208(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0xf4e46fb82b3880e8}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4001}, 0x4000000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x594, 0x8000)
r0 = socket(0xa, 0x2, 0x73)
sendmsg$auto_NL80211_CMD_SET_WOWLAN299(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80c0}, 0x20000884)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00')
r1 = socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
get_robust_list$auto(0x100000000, 0x2, 0x7f)
sendmsg$auto_CGROUPSTATS_CMD_GET19(r1, 0x0, 0x20004080)
setsockopt$auto(0x4, 0x1, 0x24, 0x7, 0x100)
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/pid_for_children\x00')
socket(0x2b, 0x1, 0x1)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x27f1)
recvfrom$auto(0x3, 0x8, 0x4, 0xa203, 0xffffffff, 0x100020)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
recvfrom$auto(0x4, 0xff, 0x0, 0x4, 0x86, 0x7ff)
sendmsg$auto_NBD_CMD_DISCONNECT159(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1400fb0458ab0e2f5e65053f66db7f84bb0c2c1e9e0fdf2b5057b6a79a536d", @ANYRES16=0x0, @ANYBLOB="85802bbd7000fbdbdf2502000000"], 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x8040)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x27f1)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
socket(0xa, 0x801, 0x106)

5.09496211s ago: executing program 1 (id=4862):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x27f1)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
socket(0xa, 0x801, 0x106)
dup2$auto(0x5, 0x4)
sendfile$auto(0x1, 0x3, 0xf2ffffff, 0xc01)

4.732117534s ago: executing program 2 (id=4863):
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x4f1, 0x0)
socket(0x26, 0x80805, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/mnt\x00')
memfd_create$auto(0x9, 0xf)
fanotify_mark$auto(0x0, 0x1, 0x409, 0x4, 0x0)
mmap$auto(0x80000000000000, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)

4.381943229s ago: executing program 1 (id=4864):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000080), r0)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET380(r0, &(0x7f0000001fc0)={0x0, 0x0, &(0x7f0000001f80)={&(0x7f00000000c0)=ANY=[@ANYBLOB="8c000000", @ANYRES16=r1, @ANYBLOB], 0x8c}}, 0x2004c000)

4.142486385s ago: executing program 2 (id=4865):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mbind$auto(0x1ffff000, 0x6, 0x1, 0x0, 0x7ffb, 0x2)
mbind$auto(0xf000, 0x8000000000000001, 0x100000000, 0x0, 0x6, 0x2)
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP456(r0, 0x0, 0x800)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
getsockopt$auto(0x3, 0x200000000001, 0x42, 0x0, 0x7fe)
setsockopt$auto(0x5, 0x10f, 0x82, 0x9, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0x7, 0x7ffffeffffffffff, 0xa8c, 0x6, 0xffffffffffffffff)
socket(0x15, 0x5, 0x0)
socket(0x2, 0x1, 0x106)
getsockopt$auto(0x4, 0x6, 0x24, 0x83bf, 0x6)
remap_file_pages$auto(0x3, 0x1000, 0x0, 0x0, 0x100000)
madvise$auto(0xfff, 0x7fffffff, 0x1ff)
setsockopt$auto(0x5, 0x6, 0x1000, 0x6, 0x7)
r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000000c0), r1)
sendmsg$auto_OVS_DP_CMD_NEW384(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010028bd7000fcdbdf2501000000060001002d0000000800070005000000210001000032c2f865000059f9c9b8a12d13f868d3aadd6ae102c0d0cec649e28800000008000200030000000a0001002400000000710000060001003500000008000900c89fc35905c2ec64aad83d7bec0f4776692bc81a1f"], 0x6c}, 0x1, 0x0, 0x0, 0x40a4}, 0x4004)
remap_file_pages$auto(0x2, 0x9, 0x1, 0x0, 0x4805)
mremap$auto(0x56, 0xb, 0x7ff, 0x6bbc, 0x6)
syz_open_procfs$namespace(0x0, 0x0)

3.80103307s ago: executing program 0 (id=4866):
close_range$auto(0x80000000, 0xfffffffffffffffc, 0x4000000000002)
close_range$auto(0x5, 0x101, 0x6)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x27f1)
shutdown$auto(0x5, 0x2)

3.691137964s ago: executing program 1 (id=4867):
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x4f1, 0x0)
socket(0x26, 0x80805, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/mnt\x00')
memfd_create$auto(0x9, 0xf)
fanotify_mark$auto(0x0, 0x1, 0x409, 0x4, 0x0)
mmap$auto(0x10000000000000, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)

3.075636816s ago: executing program 2 (id=4868):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x8, 0x1, 0x0, 0x19, 0x4, 0x7)
chdir$auto(0x8000)
membarrier$auto(0x9c, 0x3, 0x100000000)

2.697903296s ago: executing program 1 (id=4869):
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socketpair$auto(0xffffffbf, 0x5, 0x8000000000000000, 0x27f1)

2.492035287s ago: executing program 2 (id=4870):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000140), r0)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT25(r1, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x84400000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)={0x10c, r2, 0x18, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_CABLE_TEST_TDR_CFG={0xf0, 0x2, "56c064bebb8c8cbd3fde4f83c53dd34bb30a542446ab5acab778808e3ad6a4123a50f71290ef01dba904df30f163aae32b1235a90080721b1b34d1bf7246c66811cf9bfc62690af8e35d23b62592e9bd87841d6a67bec87b48994af635712cc27243b481c5d9fd28e476eba8ae94f6a571e3b65059a68937b68836f0b284ba2b9b314852f9018de2b989a9e30391b1f0317d258db51c8388d6a85f2ce713bb60b04030249960fc0eb7c1d69e13912c369bd8d5fa77d0bfd441c11b495cf8fc7200749eacdd7b9f8d060a29f47d65c6d71191f4ed510cc9c973938ff67b953deb6939e1b2c396b452c6ec4eed"}, @ETHTOOL_A_CABLE_TEST_TDR_HEADER={0x7, 0x1, "1b2c8d"}]}, 0x10c}, 0x1, 0x0, 0x0, 0x80}, 0x20000004)
sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK296(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x7b2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40040}, 0x4040000)
socket(0x21, 0x2, 0x2)
setsockopt$auto(0x3, 0x1000000110, 0x2, 0x5, 0x8001)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000063c0), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_POOL_MODE_SET200(r0, &(0x7f0000006480)={0x0, 0x0, &(0x7f0000006440)={&(0x7f0000006400)={0x1c, r3, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@NFSD_A_POOL_MODE_MODE={0x8, 0x1, '!\\\'\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000084}, 0x4)

2.443248102s ago: executing program 0 (id=4871):
rseq$auto(0xfffffffffffffc00, 0xfffffffffffff876, 0x100000000, 0x8000000000000000)
landlock_create_ruleset$auto(0x8, 0x10, 0x8000000000000000)
socket(0x1, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x80000001)
syz_genetlink_get_family_id$auto_IPVS(0x0, 0xffffffffffffffff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
socket$nl_generic(0x10, 0x3, 0x10)
connect$auto(0x5, 0x11, 0x36)

1.996472607s ago: executing program 2 (id=4872):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x1)
io_uring_setup$auto(0x3ff, 0x3)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
socket(0xa, 0x3, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x20009, 0x4000040000df, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
ioperm$auto(0x3, 0x5, 0x149)
dup$auto(0x1)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x801, 0x100)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
socket(0x2, 0x2, 0x0)
semctl$auto(0x3, 0x2, 0x13, 0x9)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
socketpair$auto(0x3, 0x5, 0x7, 0x1)
bpf$auto(0x0, 0x1, 0xaf1)

1.82936709s ago: executing program 3 (id=4873):
mmap$auto(0x0, 0x20009, 0xdf, 0x10000000000eb1, 0x401, 0x8000)
socket(0x11, 0xa, 0x300)
write$auto(0x800000000000c8, 0x9, 0x3)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000000), r0)
socket(0x1a, 0x5, 0x0)

1.361980133s ago: executing program 2 (id=4874):
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socketpair$auto(0xffffff80, 0x5, 0x8000000000000000, 0x27f1)

826.304115ms ago: executing program 1 (id=4875):
ioperm$auto(0x3b, 0xf99b, 0x6)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$auto(0x41, 0x101, 0x2, 0x0, 0x8)
socket(0x29, 0x5, 0x1)
ioperm$auto(0x7, 0x6, 0xfffffffffffffff0)
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
uname$auto(0x10)
arch_prctl$auto(0x1001, 0x8000000000000001)
sendmsg$auto_HANDSHAKE_CMD_ACCEPT72(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x5c, 0x0, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x8}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x9}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x800}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x1}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x86}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x5}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0xfffffffc}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x7}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10}, 0x4000081)
setns(0xffffffffffffffff, 0x0)

371.276428ms ago: executing program 3 (id=4876):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_IOAM6(&(0x7f0000000540), 0xffffffffffffffff)
mmap$auto(0x0, 0x7fff, 0x8, 0xbf8, 0x7, 0x0)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x1, 0x80000001, 0x353f, 0xc, 0x80, 0x0)
ioperm$auto(0x7, 0x6, 0x5)
fchownat$auto(0x2, 0x40, 0x0, 0x99, 0x1000)
sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA115(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="0127bd4724ca3bdd990006", @ANYRES8=r1, @ANYRES16=r1], 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x40000)

283.278977ms ago: executing program 1 (id=4877):
socket$nl_generic(0x10, 0x3, 0x10)
pidfd_open$auto(0x1, 0x0)
socket(0x2, 0x2, 0x1)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x1d, 0x3, 0x1)
socketpair$auto(0xffff, 0x6, 0xfffffffffffffff7, 0xb)
io_uring_setup$auto(0x3ff, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
getsockopt$auto(0x3, 0x200000000001, 0x14, 0x0, 0x7fe)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
memfd_secret$auto(0x5)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x27f1)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mlockall$auto(0x8000000000000001)
mprotect$auto(0x1ffff000, 0x100000002, 0x8)
mprotect$auto(0x1ffff000, 0x810002, 0x6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

170.777919ms ago: executing program 3 (id=4878):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
io_uring_setup$auto(0x3ff, 0x3)
ioperm$auto(0x7, 0x6, 0x2)
mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x5, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
select$auto(0x40010001, 0x8000000000006, 0x0, 0xa7b3, 0xc)
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x8, 0x7, 0x40, 0x10, 0x510, 0xff)
setuid$auto(0xe)
ioprio_set$auto(0x1003, 0x800000000, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x18, 0x5, 0x0)
memfd_create$auto(0x5, 0xf)
fallocate$auto(0x3, 0x3, 0x200000, 0x5)

0s ago: executing program 3 (id=4879):
close_range$auto(0x80000000, 0xfffffffffffffffc, 0x4000000000002)
close_range$auto(0x5, 0x101, 0x6)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x27f1)
shutdown$auto(0x5, 0x2)

kernel console output (not intermixed with test programs):

ype 2 family 0 port 6081 - 0
[ 1125.518019][T19857] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1125.558482][T19857] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1125.887781][ T6471] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1125.928289][ T6471] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1125.990411][T16411] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1126.014658][T16411] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1126.265037][T20044] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4170'.
[ 1126.507924][T20063] FAULT_INJECTION: forcing a failure.
[ 1126.507924][T20063] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1126.609194][T20063] CPU: 1 UID: 0 PID: 20063 Comm: syz.2.4172 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1126.619701][T20063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1126.629802][T20063] Call Trace:
[ 1126.633111][T20063]  <TASK>
[ 1126.636082][T20063]  dump_stack_lvl+0x16c/0x1f0
[ 1126.640838][T20063]  should_fail_ex+0x497/0x5b0
[ 1126.645585][T20063]  ? fs_reclaim_acquire+0xae/0x160
[ 1126.650770][T20063]  should_fail_alloc_page+0xe7/0x130
[ 1126.656259][T20063]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1126.662455][T20063]  ? hlock_class+0x4e/0x130
[ 1126.666987][T20063]  __alloc_pages_noprof+0x194/0x23f0
[ 1126.672309][T20063]  ? __pfx_mark_lock+0x10/0x10
[ 1126.677115][T20063]  ? __pfx_mark_lock+0x10/0x10
[ 1126.681919][T20063]  ? __pfx___lock_acquire+0x10/0x10
[ 1126.687164][T20063]  ? hlock_class+0x4e/0x130
[ 1126.691684][T20063]  ? __lock_acquire+0xbdd/0x3ce0
[ 1126.696650][T20063]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1126.702435][T20063]  ? __pfx___lock_acquire+0x10/0x10
[ 1126.707663][T20063]  ? __lock_acquire+0x163e/0x3ce0
[ 1126.712726][T20063]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1126.718640][T20063]  ? policy_nodemask+0xea/0x4e0
[ 1126.723608][T20063]  alloc_pages_mpol_noprof+0x275/0x610
[ 1126.729113][T20063]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1126.735160][T20063]  ? find_held_lock+0x2d/0x110
[ 1126.739959][T20063]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1126.745288][T20063]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1126.750614][T20063]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1126.756538][T20063]  ? find_held_lock+0x2d/0x110
[ 1126.761356][T20063]  __handle_mm_fault+0x2d27/0x5470
[ 1126.766508][T20063]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1126.772020][T20063]  ? follow_page_pte+0x3dc/0x1cf0
[ 1126.777140][T20063]  handle_mm_fault+0x498/0xa60
[ 1126.782059][T20063]  __get_user_pages+0x475/0x15c0
[ 1126.787052][T20063]  ? __pfx___get_user_pages+0x10/0x10
[ 1126.792481][T20063]  populate_vma_page_range+0x27f/0x3a0
[ 1126.797985][T20063]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1126.804059][T20063]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1126.809931][T20063]  ? vm_mmap_pgoff+0x25b/0x360
[ 1126.814738][T20063]  __mm_populate+0x1d6/0x380
[ 1126.819370][T20063]  ? __pfx___mm_populate+0x10/0x10
[ 1126.824520][T20063]  ? up_write+0x1b2/0x520
[ 1126.828893][T20063]  vm_mmap_pgoff+0x293/0x360
[ 1126.833527][T20063]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1126.838696][T20063]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1126.843426][T20063]  ? __pfx_ksys_write+0x10/0x10
[ 1126.848321][T20063]  __x64_sys_mmap+0x125/0x190
[ 1126.853027][T20063]  do_syscall_64+0xcd/0x250
[ 1126.857566][T20063]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1126.863488][T20063] RIP: 0033:0x7fb9c877def9
[ 1126.867932][T20063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1126.887594][T20063] RSP: 002b:00007fb9c962f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1126.896036][T20063] RAX: ffffffffffffffda RBX: 00007fb9c8935f80 RCX: 00007fb9c877def9
[ 1126.904165][T20063] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1126.912257][T20063] RBP: 00007fb9c962f090 R08: 0000000000000002 R09: 0000000000008000
[ 1126.920256][T20063] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002
[ 1126.928253][T20063] R13: 0000000000000001 R14: 00007fb9c8935f80 R15: 00007ffcc375d168
[ 1126.936267][T20063]  </TASK>
[ 1127.106481][   T29] audit: type=1326 audit(1727106811.140:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20064 comm="syz.3.4173" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd07e37def9 code=0x0
[ 1127.572497][   T29] audit: type=1326 audit(1727106811.610:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20073 comm="syz.0.4174" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcc47f7def9 code=0x0
[ 1127.785506][   T29] audit: type=1326 audit(1727106811.820:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20077 comm="syz.3.4175" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd07e37def9 code=0x0
[ 1129.016863][T20103] coredump: 622(syz.1.4180): coredump has not been created, error -13
[ 1129.117984][T19984] coredump: 146(syz.0.4158): written to core: VMAs: 37, size 85032960; core: 64230510 bytes, pos 85041152
[ 1129.316519][T19983] coredump: 145(syz.0.4158): written to core: VMAs: 38, size 101806080; core: 64230566 bytes, pos 101814272
[ 1129.731074][T20113] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4183'.
[ 1130.491163][   T29] audit: type=1326 audit(1727106814.520:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20123 comm="syz.2.4189" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb9c877def9 code=0x0
[ 1131.426977][T20071] coredump: 8(syz.3.4173): written to core: VMAs: 38, size 99840000; core: 62391506 bytes, pos 99848192
[ 1134.103259][T20114] coredump: 627(syz.1.4183): written to core: VMAs: 34, size 99577856; core: 62260228 bytes, pos 99594240
[ 1134.183675][   T29] audit: type=1326 audit(1727106818.220:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20153 comm="syz.3.4199" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd07e37def9 code=0x0
[ 1136.556066][T20081] coredump: 56(syz.2.4172): written to core: VMAs: 36, size 80965632; core: 60208182 bytes, pos 80973824
[ 1137.746900][T20051] coredump: 157(syz.0.4170): written to core: VMAs: 36, size 99708928; core: 62260322 bytes, pos 99717120
[ 1138.178611][   T29] audit: type=1326 audit(1727106822.210:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20189 comm="syz.2.4208" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb9c877def9 code=0x0
[ 1138.542799][T20170] coredump: 37(syz.3.4201): interrupted: fatal signal pending
[ 1138.612848][T20170] coredump: 37(syz.3.4201): written to core: VMAs: 34, size 80834560; core: 34495114 bytes, pos 55066624
[ 1138.653854][T20156] coredump: 31(syz.3.4199): written to core: VMAs: 38, size 97742848; core: 60294354 bytes, pos 97751040
[ 1138.675105][T20080] coredump: 161(syz.0.4174): written to core: VMAs: 36, size 97742848; core: 60286006 bytes, pos 97751040
[ 1139.570251][T16763] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1139.589611][T16763] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1139.597863][T16763] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1139.608790][T16763] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1139.625167][T16763] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1139.634991][T16763] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1139.872530][T20198] chnl_net:caif_netlink_parms(): no params data found
[ 1140.353143][T20126] coredump: 67(syz.2.4189): written to core: VMAs: 38, size 97742848; core: 60298450 bytes, pos 97751040
[ 1140.585112][T20198] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1140.598544][T20198] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1140.618549][T20198] bridge_slave_0: entered allmulticast mode
[ 1140.630990][T20198] bridge_slave_0: entered promiscuous mode
[ 1140.665825][T20198] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1140.697500][T20198] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1140.738665][T20198] bridge_slave_1: entered allmulticast mode
[ 1140.745905][T20198] bridge_slave_1: entered promiscuous mode
[ 1141.147209][T20198] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1141.197405][T20198] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1141.580625][T20198] team0: Port device team_slave_0 added
[ 1141.606539][T20198] team0: Port device team_slave_1 added
[ 1141.679672][   T54] Bluetooth: hci3: command tx timeout
[ 1141.834067][   T29] audit: type=1326 audit(1727106825.870:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20224 comm="syz.1.4217" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fdcf817def9 code=0x0
[ 1142.070333][T20198] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1142.077438][T20198] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1142.146620][T20198] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1142.333961][T20198] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1142.341405][T20198] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1142.415437][T20198] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1142.488229][T20182] coredump: 656(syz.1.4205): written to core: VMAs: 35, size 97353728; core: 60027964 bytes, pos 97370112
[ 1143.701301][T16411] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1143.759306][   T54] Bluetooth: hci3: command tx timeout
[ 1143.852328][T20198] hsr_slave_0: entered promiscuous mode
[ 1143.987962][T20198] hsr_slave_1: entered promiscuous mode
[ 1144.069431][T20198] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1144.095937][T20198] Cannot create hsr debugfs directory
[ 1144.422272][T16411] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1144.631004][T16411] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1145.065813][T16411] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1145.646733][   T29] audit: type=1326 audit(1727106829.680:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20258 comm="syz.3.4227" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd07e37def9 code=0x0
[ 1145.758760][   T29] audit: type=1326 audit(1727106829.780:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20261 comm="syz.2.4228" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb9c877def9 code=0x0
[ 1145.838866][   T54] Bluetooth: hci3: command tx timeout
[ 1145.865020][T16411] bridge_slave_1: left allmulticast mode
[ 1145.871605][T16411] bridge_slave_1: left promiscuous mode
[ 1145.878677][T16411] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1145.922824][T16411] bridge_slave_0: left allmulticast mode
[ 1145.957929][T16411] bridge_slave_0: left promiscuous mode
[ 1145.986595][T16411] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1147.036051][T20229] coredump: 666(syz.1.4217): written to core: VMAs: 38, size 97742848; core: 60298450 bytes, pos 97751040
[ 1147.919333][   T54] Bluetooth: hci3: command tx timeout
[ 1148.494849][T20193] coredump: 81(syz.2.4208): written to core: VMAs: 36, size 99840000; core: 62383158 bytes, pos 99848192
[ 1148.851139][T16411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1149.058620][T16411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1149.199308][T16411] bond0 (unregistering): Released all slaves
[ 1149.658296][T20306] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4236'.
[ 1149.742449][T20265] coredump: 62(syz.3.4227): written to core: VMAs: 36, size 99840000; core: 62379062 bytes, pos 99848192
[ 1151.935090][T20340] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4243'.
[ 1152.362139][T16411] hsr_slave_0: left promiscuous mode
[ 1152.464870][T16411] hsr_slave_1: left promiscuous mode
[ 1152.559140][T16411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1152.566636][T16411] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1152.606264][T16411] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1152.616239][T16411] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1152.725566][T16411] veth1_macvtap: left promiscuous mode
[ 1152.739251][T16411] veth0_macvtap: left promiscuous mode
[ 1152.755464][T16411] veth1_vlan: left promiscuous mode
[ 1152.765572][T16411] veth0_vlan: left promiscuous mode
[ 1154.237637][T20270] coredump: 102(syz.2.4228): written to core: VMAs: 38, size 97742848; core: 60298494 bytes, pos 97751040
[ 1154.910861][T16411] team0 (unregistering): Port device team_slave_1 removed
[ 1155.188110][T16411] team0 (unregistering): Port device team_slave_0 removed
[ 1155.340116][T20368] coredump: 701(syz.1.4255): interrupted: fatal signal pending
[ 1155.347771][T20368] coredump: 701(syz.1.4255): written to core: VMAs: 36, size 97611776; core: 56812642 bytes, pos 94269440
[ 1155.492156][T20347] coredump: 696(syz.1.4243): written to core: VMAs: 36, size 97611776; core: 60163170 bytes, pos 97619968
[ 1155.533953][T20307] coredump: 109(syz.2.4236): written to core: VMAs: 36, size 99708928; core: 62260322 bytes, pos 99717120
[ 1156.808972][T20366] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4255'.
[ 1156.866041][T20198] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1156.894179][T20198] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1156.931700][T20198] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1156.985169][T20198] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1157.024615][T20375] coredump: 90(syz.3.4251): written to core: VMAs: 1, size 4096; core: 2659 bytes, pos 8192
[ 1157.205234][T20198] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1157.286464][T20198] 8021q: adding VLAN 0 to HW filter on device team0
[ 1157.327195][T16398] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1157.334406][T16398] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1157.402358][T16398] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1157.409564][T16398] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1157.970010][T20198] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1158.112482][T20198] veth0_vlan: entered promiscuous mode
[ 1158.144799][T20198] veth1_vlan: entered promiscuous mode
[ 1158.251970][T20198] veth0_macvtap: entered promiscuous mode
[ 1158.281092][T20198] veth1_macvtap: entered promiscuous mode
[ 1158.328645][T20198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1158.348793][T20198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.378499][T20198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1158.408505][T20198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.428431][T20198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1158.441936][T20198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.488525][T20198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1158.519345][T20198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.548471][T20198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1158.598586][T20198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.631498][T20198] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1158.672473][T20198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1158.698309][T20198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.724552][T20198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1158.753449][T20198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.788592][T20198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1158.818489][T20198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.852906][T20198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1158.891712][T20198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.918113][T20198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1158.948531][T20198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.970691][T20198] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1159.011665][T20198] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1159.046990][T20198] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1159.069309][T20198] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1159.106459][T20198] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1159.130182][T20420] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4258'.
[ 1159.428061][T16396] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1159.463141][T16396] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1159.537531][T16387] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1159.565986][T16387] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1160.331673][T20453] FAULT_INJECTION: forcing a failure.
[ 1160.331673][T20453] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1160.442058][T20453] CPU: 0 UID: 0 PID: 20453 Comm: syz.1.4262 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1160.452589][T20453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1160.462786][T20453] Call Trace:
[ 1160.466101][T20453]  <TASK>
[ 1160.469078][T20453]  dump_stack_lvl+0x16c/0x1f0
[ 1160.473838][T20453]  should_fail_ex+0x497/0x5b0
[ 1160.478585][T20453]  ? fs_reclaim_acquire+0xae/0x160
[ 1160.483762][T20453]  should_fail_alloc_page+0xe7/0x130
[ 1160.489123][T20453]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1160.495351][T20453]  ? hlock_class+0x4e/0x130
[ 1160.499917][T20453]  __alloc_pages_noprof+0x194/0x23f0
[ 1160.505275][T20453]  ? __pfx_mark_lock+0x10/0x10
[ 1160.510108][T20453]  ? __pfx_mark_lock+0x10/0x10
[ 1160.515030][T20453]  ? __pfx___lock_acquire+0x10/0x10
[ 1160.520298][T20453]  ? hlock_class+0x4e/0x130
[ 1160.524868][T20453]  ? __lock_acquire+0xbdd/0x3ce0
[ 1160.529875][T20453]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1160.535681][T20453]  ? __pfx___lock_acquire+0x10/0x10
[ 1160.540944][T20453]  ? __lock_acquire+0x163e/0x3ce0
[ 1160.546043][T20453]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1160.551993][T20453]  ? policy_nodemask+0xea/0x4e0
[ 1160.556917][T20453]  alloc_pages_mpol_noprof+0x275/0x610
[ 1160.562456][T20453]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1160.568511][T20453]  ? find_held_lock+0x2d/0x110
[ 1160.573331][T20453]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1160.578686][T20453]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1160.584042][T20453]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1160.590009][T20453]  ? find_held_lock+0x2d/0x110
[ 1160.594839][T20453]  __handle_mm_fault+0x2d27/0x5470
[ 1160.600122][T20453]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1160.605663][T20453]  ? follow_page_pte+0x3dc/0x1cf0
[ 1160.610773][T20453]  handle_mm_fault+0x498/0xa60
[ 1160.616123][T20453]  __get_user_pages+0x475/0x15c0
[ 1160.621175][T20453]  ? __pfx___get_user_pages+0x10/0x10
[ 1160.626631][T20453]  populate_vma_page_range+0x27f/0x3a0
[ 1160.632178][T20453]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1160.638227][T20453]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1160.644102][T20453]  ? vm_mmap_pgoff+0x25b/0x360
[ 1160.648942][T20453]  __mm_populate+0x1d6/0x380
[ 1160.653608][T20453]  ? __pfx___mm_populate+0x10/0x10
[ 1160.658793][T20453]  ? up_write+0x1b2/0x520
[ 1160.663198][T20453]  vm_mmap_pgoff+0x293/0x360
[ 1160.667858][T20453]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1160.673056][T20453]  ? __pfx___schedule+0x10/0x10
[ 1160.677971][T20453]  ? handle_softirqs+0x5bb/0x8f0
[ 1160.682962][T20453]  ? lockdep_softirqs_on+0x221/0x340
[ 1160.688334][T20453]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1160.693079][T20453]  ? xfd_validate_state+0x5d/0x180
[ 1160.698268][T20453]  __x64_sys_mmap+0x125/0x190
[ 1160.703005][T20453]  do_syscall_64+0xcd/0x250
[ 1160.707579][T20453]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1160.713526][T20453] RIP: 0033:0x7fdcf817def9
[ 1160.717985][T20453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1160.737648][T20453] RSP: 002b:00007fdcf8fbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1160.746129][T20453] RAX: ffffffffffffffda RBX: 00007fdcf8335f80 RCX: 00007fdcf817def9
[ 1160.754158][T20453] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1160.762187][T20453] RBP: 00007fdcf8fbe090 R08: 0000000000000002 R09: 0000000000008000
[ 1160.770224][T20453] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002
[ 1160.778325][T20453] R13: 0000000000000001 R14: 00007fdcf8335f80 R15: 00007ffdb8c3bae8
[ 1160.786369][T20453]  </TASK>
[ 1161.009098][T20386] coredump: 122(syz.2.4252): interrupted: fatal signal pending
[ 1161.037206][T20386] coredump: 122(syz.2.4252): written to core: VMAs: 33, size 80568320; core: 30964306 bytes, pos 51527680
[ 1162.760251][   T29] audit: type=1326 audit(1727106846.800:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20471 comm="syz.2.4266" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb9c877def9 code=0x0
[ 1164.327297][T20493] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4272'.
[ 1164.807047][T20466] coredump: 8(syz.0.4264): written to core: VMAs: 36, size 80834560; core: 60154346 bytes, pos 80846848
[ 1165.218855][   T29] audit: type=1326 audit(1727106849.250:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20512 comm="syz.3.4280" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd07e37def9 code=0x0
[ 1165.607461][T20421] coredump: 710(syz.1.4258): written to core: VMAs: 36, size 97611776; core: 60163170 bytes, pos 97619968
[ 1166.856624][T20534] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4286'.
[ 1167.782599][T20547] FAULT_INJECTION: forcing a failure.
[ 1167.782599][T20547] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1168.028510][T20547] CPU: 1 UID: 0 PID: 20547 Comm: syz.1.4290 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1168.039034][T20547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1168.049134][T20547] Call Trace:
[ 1168.052441][T20547]  <TASK>
[ 1168.055402][T20547]  dump_stack_lvl+0x16c/0x1f0
[ 1168.060155][T20547]  should_fail_ex+0x497/0x5b0
[ 1168.064901][T20547]  ? fs_reclaim_acquire+0xae/0x160
[ 1168.070082][T20547]  should_fail_alloc_page+0xe7/0x130
[ 1168.075437][T20547]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1168.081656][T20547]  ? hlock_class+0x4e/0x130
[ 1168.086221][T20547]  __alloc_pages_noprof+0x194/0x23f0
[ 1168.091571][T20547]  ? __pfx_mark_lock+0x10/0x10
[ 1168.096402][T20547]  ? __pfx_mark_lock+0x10/0x10
[ 1168.101234][T20547]  ? __pfx___lock_acquire+0x10/0x10
[ 1168.106506][T20547]  ? hlock_class+0x4e/0x130
[ 1168.111060][T20547]  ? __lock_acquire+0xbdd/0x3ce0
[ 1168.116146][T20547]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1168.121945][T20547]  ? __pfx___lock_acquire+0x10/0x10
[ 1168.127213][T20547]  ? __lock_acquire+0x163e/0x3ce0
[ 1168.132317][T20547]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1168.138249][T20547]  ? policy_nodemask+0xea/0x4e0
[ 1168.143142][T20547]  alloc_pages_mpol_noprof+0x275/0x610
[ 1168.148677][T20547]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1168.154708][T20547]  ? find_held_lock+0x2d/0x110
[ 1168.159509][T20547]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1168.164841][T20547]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1168.170183][T20547]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1168.176116][T20547]  ? find_held_lock+0x2d/0x110
[ 1168.180911][T20547]  __handle_mm_fault+0x2d27/0x5470
[ 1168.186072][T20547]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1168.191568][T20547]  ? follow_page_pte+0x3dc/0x1cf0
[ 1168.196672][T20547]  handle_mm_fault+0x498/0xa60
[ 1168.201496][T20547]  __get_user_pages+0x475/0x15c0
[ 1168.206505][T20547]  ? __pfx___get_user_pages+0x10/0x10
[ 1168.211919][T20547]  populate_vma_page_range+0x27f/0x3a0
[ 1168.217413][T20547]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1168.223442][T20547]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1168.229285][T20547]  ? vm_mmap_pgoff+0x25b/0x360
[ 1168.234088][T20547]  __mm_populate+0x1d6/0x380
[ 1168.238718][T20547]  ? __pfx___mm_populate+0x10/0x10
[ 1168.243868][T20547]  ? up_write+0x1b2/0x520
[ 1168.248239][T20547]  vm_mmap_pgoff+0x293/0x360
[ 1168.252880][T20547]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1168.258035][T20547]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1168.262739][T20547]  ? __pfx_ksys_write+0x10/0x10
[ 1168.267614][T20547]  __x64_sys_mmap+0x125/0x190
[ 1168.272332][T20547]  do_syscall_64+0xcd/0x250
[ 1168.276881][T20547]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1168.282803][T20547] RIP: 0033:0x7fdcf817def9
[ 1168.287230][T20547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1168.306858][T20547] RSP: 002b:00007fdcf8fbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1168.315298][T20547] RAX: ffffffffffffffda RBX: 00007fdcf8335f80 RCX: 00007fdcf817def9
[ 1168.323292][T20547] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1168.331279][T20547] RBP: 00007fdcf8fbe090 R08: 0000000000000002 R09: 0000000000008000
[ 1168.339286][T20547] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002
[ 1168.347278][T20547] R13: 0000000000000001 R14: 00007fdcf8335f80 R15: 00007ffdb8c3bae8
[ 1168.355283][T20547]  </TASK>
[ 1169.826777][T20540] coredump: 17(syz.0.4288): interrupted: fatal signal pending
[ 1169.838287][T20540] coredump: 17(syz.0.4288): written to core: VMAs: 35, size 97873920; core: 59415278 bytes, pos 96751616
[ 1170.160701][   T29] audit: type=1326 audit(1727106854.200:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20555 comm="syz.3.4293" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd07e37def9 code=0x0
[ 1170.202955][T20479] coredump: 129(syz.2.4266): written to core: VMAs: 38, size 97742848; core: 60290302 bytes, pos 97751040
[ 1171.092484][T20459] coredump: 719(syz.1.4262): written to core: VMAs: 36, size 80965632; core: 60208182 bytes, pos 80973824
[ 1171.745694][T20496] coredump: 116(syz.3.4272): written to core: VMAs: 34, size 97480704; core: 60158980 bytes, pos 97497088
[ 1172.200079][T20551] coredump: 147(syz.2.4292): interrupted: fatal signal pending
[ 1172.246472][T20551] coredump: 147(syz.2.4292): written to core: VMAs: 34, size 97484800; core: 24423094 bytes, pos 33218560
[ 1172.501918][   T29] audit: type=1326 audit(1727106856.540:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20574 comm="syz.1.4298" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fdcf817def9 code=0x0
[ 1173.428173][T20518] coredump: 123(syz.3.4280): written to core: VMAs: 38, size 97742848; core: 60286206 bytes, pos 97751040
[ 1174.083616][   T29] audit: type=1326 audit(1727106858.120:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20590 comm="syz.1.4304" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fdcf817def9 code=0x0
[ 1174.420808][T20606] FAULT_INJECTION: forcing a failure.
[ 1174.420808][T20606] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1174.498147][T20606] CPU: 1 UID: 0 PID: 20606 Comm: syz.2.4311 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1174.509552][T20606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1174.519664][T20606] Call Trace:
[ 1174.522980][T20606]  <TASK>
[ 1174.525997][T20606]  dump_stack_lvl+0x16c/0x1f0
[ 1174.530769][T20606]  should_fail_ex+0x497/0x5b0
[ 1174.535531][T20606]  _copy_to_user+0x30/0xc0
[ 1174.540014][T20606]  simple_read_from_buffer+0xd0/0x160
[ 1174.545448][T20606]  proc_fail_nth_read+0x198/0x270
[ 1174.550551][T20606]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1174.556192][T20606]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1174.561822][T20606]  vfs_read+0x1ce/0xbd0
[ 1174.566034][T20606]  ? __fdget_pos+0xe8/0x170
[ 1174.570729][T20606]  ? __pfx_vfs_read+0x10/0x10
[ 1174.575455][T20606]  ? __pfx___mutex_lock+0x10/0x10
[ 1174.580549][T20606]  ? __fget_files+0x244/0x3f0
[ 1174.585315][T20606]  ksys_read+0x12f/0x260
[ 1174.589717][T20606]  ? __pfx_ksys_read+0x10/0x10
[ 1174.594545][T20606]  do_syscall_64+0xcd/0x250
[ 1174.599124][T20606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1174.605075][T20606] RIP: 0033:0x7fb9c877c93c
[ 1174.609534][T20606] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1174.629281][T20606] RSP: 002b:00007fb9c960e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1174.637740][T20606] RAX: ffffffffffffffda RBX: 00007fb9c8936058 RCX: 00007fb9c877c93c
[ 1174.645751][T20606] RDX: 000000000000000f RSI: 00007fb9c960e0a0 RDI: 0000000000000005
[ 1174.653770][T20606] RBP: 00007fb9c960e090 R08: 0000000000000000 R09: 0000000000000000
[ 1174.661788][T20606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1174.669802][T20606] R13: 0000000000000000 R14: 00007fb9c8936058 R15: 00007ffcc375d168
[ 1174.677836][T20606]  </TASK>
[ 1177.668816][T20628] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4319'.
[ 1177.769184][T20631] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4320'.
[ 1177.796172][T20507] coredump: 730(syz.1.4274): written to core: VMAs: 35, size 97353728; core: 60032016 bytes, pos 97370112
[ 1178.115723][T20637] FAULT_INJECTION: forcing a failure.
[ 1178.115723][T20637] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1178.212813][T20637] CPU: 1 UID: 0 PID: 20637 Comm: syz.0.4321 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1178.223346][T20637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1178.233445][T20637] Call Trace:
[ 1178.236766][T20637]  <TASK>
[ 1178.239720][T20637]  dump_stack_lvl+0x16c/0x1f0
[ 1178.244439][T20637]  should_fail_ex+0x497/0x5b0
[ 1178.249155][T20637]  ? fs_reclaim_acquire+0xae/0x160
[ 1178.254816][T20637]  should_fail_alloc_page+0xe7/0x130
[ 1178.260135][T20637]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1178.266328][T20637]  ? hlock_class+0x4e/0x130
[ 1178.270854][T20637]  __alloc_pages_noprof+0x194/0x23f0
[ 1178.276189][T20637]  ? __pfx_mark_lock+0x10/0x10
[ 1178.280992][T20637]  ? __pfx_mark_lock+0x10/0x10
[ 1178.285786][T20637]  ? __pfx___lock_acquire+0x10/0x10
[ 1178.291023][T20637]  ? hlock_class+0x4e/0x130
[ 1178.295564][T20637]  ? __lock_acquire+0xbdd/0x3ce0
[ 1178.300550][T20637]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1178.306324][T20637]  ? __pfx___lock_acquire+0x10/0x10
[ 1178.311550][T20637]  ? __lock_acquire+0x163e/0x3ce0
[ 1178.316613][T20637]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1178.322548][T20637]  ? policy_nodemask+0xea/0x4e0
[ 1178.327435][T20637]  alloc_pages_mpol_noprof+0x275/0x610
[ 1178.332932][T20637]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1178.338959][T20637]  ? find_held_lock+0x2d/0x110
[ 1178.343754][T20637]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1178.349077][T20637]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1178.354399][T20637]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1178.360335][T20637]  ? find_held_lock+0x2d/0x110
[ 1178.365130][T20637]  __handle_mm_fault+0x2d27/0x5470
[ 1178.370290][T20637]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1178.375788][T20637]  ? follow_page_pte+0x3dc/0x1cf0
[ 1178.380876][T20637]  handle_mm_fault+0x498/0xa60
[ 1178.385690][T20637]  __get_user_pages+0x475/0x15c0
[ 1178.390683][T20637]  ? __pfx___get_user_pages+0x10/0x10
[ 1178.396095][T20637]  populate_vma_page_range+0x27f/0x3a0
[ 1178.401598][T20637]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1178.407618][T20637]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1178.413460][T20637]  ? vm_mmap_pgoff+0x25b/0x360
[ 1178.418273][T20637]  __mm_populate+0x1d6/0x380
[ 1178.422905][T20637]  ? __pfx___mm_populate+0x10/0x10
[ 1178.428058][T20637]  ? up_write+0x1b2/0x520
[ 1178.432430][T20637]  vm_mmap_pgoff+0x293/0x360
[ 1178.437062][T20637]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1178.442241][T20637]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1178.446964][T20637]  ? __pfx_ksys_write+0x10/0x10
[ 1178.451860][T20637]  __x64_sys_mmap+0x125/0x190
[ 1178.456565][T20637]  do_syscall_64+0xcd/0x250
[ 1178.461108][T20637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1178.467029][T20637] RIP: 0033:0x7f66c437def9
[ 1178.471465][T20637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1178.491113][T20637] RSP: 002b:00007f66c5236038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1178.499552][T20637] RAX: ffffffffffffffda RBX: 00007f66c4535f80 RCX: 00007f66c437def9
[ 1178.507543][T20637] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1178.515533][T20637] RBP: 00007f66c5236090 R08: 0000000000000002 R09: 0000000000008000
[ 1178.523527][T20637] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002
[ 1178.531533][T20637] R13: 0000000000000001 R14: 00007f66c4535f80 R15: 00007fff964320d8
[ 1178.539541][T20637]  </TASK>
[ 1178.901245][   T29] audit: type=1326 audit(1727106862.940:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20638 comm="syz.3.4322" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd07e37def9 code=0x0
[ 1179.101029][T20641] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4323'.
[ 1181.020236][   T29] audit: type=1326 audit(1727106865.060:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20660 comm="syz.0.4327" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f66c437def9 code=0x0
[ 1181.197603][T20558] coredump: 131(syz.3.4293): written to core: VMAs: 37, size 97742848; core: 60286106 bytes, pos 97751040
[ 1181.569649][T20665] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4330'.
[ 1181.675592][T20538] coredump: 740(syz.1.4286): written to core: VMAs: 34, size 97480704; core: 60163076 bytes, pos 97497088
[ 1182.561268][ T1270] ieee802154 phy0 wpan0: encryption failed: -22
[ 1182.567660][ T1270] ieee802154 phy1 wpan1: encryption failed: -22
[ 1182.808729][   T29] audit: type=1326 audit(1727106866.850:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20675 comm="syz.3.4333" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd07e37def9 code=0x0
[ 1183.919238][T20690] nbd: couldn't find device at index 65536
[ 1184.161254][T20634] coredump: 46(syz.0.4320): written to core: VMAs: 34, size 99577856; core: 62256132 bytes, pos 99594240
[ 1184.413215][T20553] coredump: 745(syz.1.4290): written to core: VMAs: 36, size 80965632; core: 60208182 bytes, pos 80973824
[ 1185.068987][T20703] coredump: 777(syz.1.4336): interrupted: fatal signal pending
[ 1185.076627][T20703] coredump: 777(syz.1.4336): Core dump to core has been interrupted
[ 1185.385627][T20580] coredump: 754(syz.1.4298): interrupted: fatal signal pending
[ 1185.558498][T20703] coredump: 777(syz.1.4336): coredump has not been created, error -11
[ 1185.743186][T20603] coredump: 758(syz.1.4304): interrupted: fatal signal pending
[ 1185.798992][T20580] coredump: 754(syz.1.4298): written to core: VMAs: 36, size 97742848; core: 44520502 bytes, pos 81985536
[ 1185.916541][T20692] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4338'.
[ 1186.008856][T20603] coredump: 758(syz.1.4304): written to core: VMAs: 37, size 97742848; core: 38458522 bytes, pos 75919360
[ 1186.517428][T20689] coredump: 769(syz.1.4336): interrupted: fatal signal pending
[ 1186.570156][T20647] coredump: 51(syz.0.4321): written to core: VMAs: 36, size 80965632; core: 60204086 bytes, pos 80973824
[ 1186.703745][T20689] coredump: 769(syz.1.4336): written to core: VMAs: 34, size 76771328; core: 2614258 bytes, pos 3002368
[ 1186.999151][T20698] coredump: 772(syz.1.4336): interrupted: fatal signal pending
[ 1187.006901][T20698] coredump: 772(syz.1.4336): written to core: VMAs: 38, size 93941760; core: 1279142 bytes, pos 1908736
[ 1187.400251][T20644] coredump: 168(syz.2.4323): written to core: VMAs: 34, size 99577856; core: 62260228 bytes, pos 99594240
[ 1188.300743][T13954] bridge_slave_1: left allmulticast mode
[ 1188.306478][T13954] bridge_slave_1: left promiscuous mode
[ 1188.321195][T13954] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1188.750027][T13954] bridge_slave_0: left allmulticast mode
[ 1188.755739][T13954] bridge_slave_0: left promiscuous mode
[ 1188.790184][T13954] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1190.837623][T20668] coredump: 178(syz.2.4330): written to core: VMAs: 34, size 99577856; core: 62260228 bytes, pos 99594240
[ 1191.566985][T20735] coredump: 73(syz.0.4345): written to core: VMAs: 37, size 97484800; core: 60028014 bytes, pos 97492992
[ 1191.717787][T20626] coredump: 144(syz.3.4318): written to core: VMAs: 38, size 80965632; core: 60155090 bytes, pos 80973824
[ 1193.351523][T20633] coredump: 148(syz.3.4319): written to core: VMAs: 34, size 97480704; core: 60158980 bytes, pos 97497088
[ 1193.887231][T20765] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1193.896618][T20765] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1193.912821][T20765] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1193.948091][T20765] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1193.968614][T20765] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1193.977274][T20765] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1193.977840][T13954] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1194.218127][T13954] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1194.288678][T13954] bond0 (unregistering): Released all slaves
[ 1194.346316][T20755] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4350'.
[ 1194.812389][T20764] chnl_net:caif_netlink_parms(): no params data found
[ 1195.138105][   T29] audit: type=1326 audit(1727106879.170:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20782 comm="syz.2.4355" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb9c877def9 code=0x0
[ 1195.363654][T20645] coredump: 152(syz.3.4322): written to core: VMAs: 37, size 97742848; core: 60286106 bytes, pos 97751040
[ 1195.751121][T20756] coredump: 200(syz.2.4350): written to core: VMAs: 36, size 97611776; core: 60163170 bytes, pos 97619968
[ 1196.080195][T20765] Bluetooth: hci1: command tx timeout
[ 1196.778719][T20656] coredump: 156(syz.3.4324): written to core: VMAs: 35, size 97353728; core: 60027920 bytes, pos 97370112
[ 1197.636837][T20706] coredump: 165(syz.3.4338): written to core: VMAs: 34, size 97480704; core: 60158980 bytes, pos 97497088
[ 1198.168502][T20765] Bluetooth: hci1: command tx timeout
[ 1198.254238][T20806] FAULT_INJECTION: forcing a failure.
[ 1198.254238][T20806] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1198.267815][T20806] CPU: 0 UID: 0 PID: 20806 Comm: syz.3.4362 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1198.278301][T20806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1198.288398][T20806] Call Trace:
[ 1198.291714][T20806]  <TASK>
[ 1198.294685][T20806]  dump_stack_lvl+0x16c/0x1f0
[ 1198.299444][T20806]  should_fail_ex+0x497/0x5b0
[ 1198.304183][T20806]  ? fs_reclaim_acquire+0xae/0x160
[ 1198.309358][T20806]  should_fail_alloc_page+0xe7/0x130
[ 1198.314795][T20806]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1198.321008][T20806]  ? hlock_class+0x4e/0x130
[ 1198.325564][T20806]  __alloc_pages_noprof+0x194/0x23f0
[ 1198.330918][T20806]  ? __pfx_mark_lock+0x10/0x10
[ 1198.335755][T20806]  ? __pfx_mark_lock+0x10/0x10
[ 1198.340577][T20806]  ? __pfx___lock_acquire+0x10/0x10
[ 1198.345843][T20806]  ? hlock_class+0x4e/0x130
[ 1198.350402][T20806]  ? __lock_acquire+0xbdd/0x3ce0
[ 1198.350699][T20764] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1198.355384][T20806]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1198.368177][T20806]  ? __pfx___lock_acquire+0x10/0x10
[ 1198.373433][T20806]  ? __lock_acquire+0x163e/0x3ce0
[ 1198.378506][T20806]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1198.384427][T20806]  ? policy_nodemask+0xea/0x4e0
[ 1198.389354][T20806]  alloc_pages_mpol_noprof+0x275/0x610
[ 1198.394856][T20806]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1198.400884][T20806]  ? find_held_lock+0x2d/0x110
[ 1198.405678][T20806]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1198.411016][T20806]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1198.416346][T20806]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1198.422328][T20806]  ? find_held_lock+0x2d/0x110
[ 1198.427126][T20806]  __handle_mm_fault+0x2d27/0x5470
[ 1198.432375][T20806]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1198.437870][T20806]  ? follow_page_pte+0x3dc/0x1cf0
[ 1198.442948][T20806]  handle_mm_fault+0x498/0xa60
[ 1198.447756][T20806]  __get_user_pages+0x475/0x15c0
[ 1198.452740][T20806]  ? __pfx___get_user_pages+0x10/0x10
[ 1198.458246][T20806]  populate_vma_page_range+0x27f/0x3a0
[ 1198.463749][T20806]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1198.469770][T20806]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1198.475621][T20806]  ? vm_mmap_pgoff+0x25b/0x360
[ 1198.480428][T20806]  __mm_populate+0x1d6/0x380
[ 1198.485068][T20806]  ? __pfx___mm_populate+0x10/0x10
[ 1198.490255][T20806]  ? up_write+0x1b2/0x520
[ 1198.494627][T20806]  vm_mmap_pgoff+0x293/0x360
[ 1198.499260][T20806]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1198.504429][T20806]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1198.509143][T20806]  ? __pfx_ksys_write+0x10/0x10
[ 1198.514043][T20806]  __x64_sys_mmap+0x125/0x190
[ 1198.518760][T20806]  do_syscall_64+0xcd/0x250
[ 1198.523321][T20806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1198.529249][T20806] RIP: 0033:0x7fd07e37def9
[ 1198.533683][T20806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1198.553322][T20806] RSP: 002b:00007fd07f17d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1198.561944][T20806] RAX: ffffffffffffffda RBX: 00007fd07e535f80 RCX: 00007fd07e37def9
[ 1198.569937][T20806] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1198.578024][T20806] RBP: 00007fd07f17d090 R08: 0000000000000002 R09: 0000000000008000
[ 1198.586103][T20806] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002
[ 1198.594095][T20806] R13: 0000000000000001 R14: 00007fd07e535f80 R15: 00007ffd7e0c95a8
[ 1198.602128][T20806]  </TASK>
[ 1198.638833][T20764] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1198.646657][T20764] bridge_slave_0: entered allmulticast mode
[ 1198.659922][T20764] bridge_slave_0: entered promiscuous mode
[ 1198.872324][T20764] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1198.879765][T20764] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1198.905865][T20764] bridge_slave_1: entered allmulticast mode
[ 1198.923382][T20764] bridge_slave_1: entered promiscuous mode
[ 1199.651790][T20762] coredump: 181(syz.3.4351): interrupted: fatal signal pending
[ 1199.767124][T20787] coredump: 210(syz.2.4355): written to core: VMAs: 36, size 97742848; core: 60290102 bytes, pos 97751040
[ 1199.810890][T20762] coredump: 181(syz.3.4351): written to core: VMAs: 39, size 97611776; core: 1979720 bytes, pos 2490368
[ 1200.238645][T20765] Bluetooth: hci1: command tx timeout
[ 1200.382937][T20764] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1200.572916][T20764] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1200.714832][T20764] team0: Port device team_slave_0 added
[ 1200.752382][T20764] team0: Port device team_slave_1 added
[ 1201.041974][T13954] hsr_slave_0: left promiscuous mode
[ 1201.118801][T13954] hsr_slave_1: left promiscuous mode
[ 1201.298805][T13954] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1201.306286][T13954] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1201.411359][T13954] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1201.419758][T13954] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1201.583997][T13954] veth1_macvtap: left promiscuous mode
[ 1201.598504][T13954] veth0_macvtap: left promiscuous mode
[ 1201.604620][T13954] veth1_vlan: left promiscuous mode
[ 1201.621517][T13954] veth0_vlan: left promiscuous mode
[ 1202.318741][T20765] Bluetooth: hci1: command tx timeout
[ 1202.369875][T20773] coredump: 80(syz.0.4353): written to core: VMAs: 33, size 97345536; core: 60011406 bytes, pos 97353728
[ 1202.380637][T20681] coredump: 162(syz.3.4333): written to core: VMAs: 37, size 97742848; core: 60286106 bytes, pos 97751040
[ 1202.797579][T20784] coredump: 83(syz.0.4353): written to core: VMAs: 37, size 97472512; core: 60019822 bytes, pos 97480704
[ 1203.087526][T20781] coredump: 82(syz.0.4353): written to core: VMAs: 36, size 97476608; core: 60019766 bytes, pos 97484800
[ 1203.102493][T20819] kexec: Could not allocate control_code_buffer
[ 1203.509079][   T29] audit: type=1326 audit(1727106887.550:88): auid=4294967295 uid=0 gid=14 ses=4294967295 subj=unconfined pid=20834 comm="syz.3.4367" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd07e37def9 code=0x0
[ 1205.187160][   T29] audit: type=1326 audit(1727106889.220:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20850 comm="syz.0.4374" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f66c437def9 code=0x0
[ 1205.632134][T13954] team0 (unregistering): Port device team_slave_1 removed
[ 1205.720883][T20810] coredump: 185(syz.3.4362): written to core: VMAs: 36, size 80965632; core: 60204086 bytes, pos 80973824
[ 1205.872248][T20858] openvswitch: netlink: Key type 919 is out of range max 32
[ 1205.982307][T13954] team0 (unregistering): Port device team_slave_0 removed
[ 1206.902365][T20824] coredump: 229(syz.2.4365): written to core: VMAs: 36, size 99573760; core: 62116967 bytes, pos 99581952
[ 1208.606340][T20764] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1208.623806][T20764] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1208.717078][T20764] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1208.761930][T20764] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1208.780168][T20764] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1208.848642][T20764] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1208.883602][T20896] FAULT_INJECTION: forcing a failure.
[ 1208.883602][T20896] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1208.954192][T20896] CPU: 0 UID: 0 PID: 20896 Comm: syz.0.4388 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1208.965057][T20896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1208.975170][T20896] Call Trace:
[ 1208.978502][T20896]  <TASK>
[ 1208.981485][T20896]  dump_stack_lvl+0x16c/0x1f0
[ 1208.986242][T20896]  should_fail_ex+0x497/0x5b0
[ 1208.991000][T20896]  ? fs_reclaim_acquire+0xae/0x160
[ 1208.996174][T20896]  should_fail_alloc_page+0xe7/0x130
[ 1209.001543][T20896]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1209.007862][T20896]  ? hlock_class+0x4e/0x130
[ 1209.012432][T20896]  __alloc_pages_noprof+0x194/0x23f0
[ 1209.017798][T20896]  ? __pfx_mark_lock+0x10/0x10
[ 1209.022682][T20896]  ? __pfx_mark_lock+0x10/0x10
[ 1209.027513][T20896]  ? __pfx___lock_acquire+0x10/0x10
[ 1209.032872][T20896]  ? hlock_class+0x4e/0x130
[ 1209.037439][T20896]  ? __lock_acquire+0xbdd/0x3ce0
[ 1209.042453][T20896]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1209.048265][T20896]  ? __pfx___lock_acquire+0x10/0x10
[ 1209.053540][T20896]  ? __lock_acquire+0x163e/0x3ce0
[ 1209.058650][T20896]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1209.064616][T20896]  ? policy_nodemask+0xea/0x4e0
[ 1209.069544][T20896]  alloc_pages_mpol_noprof+0x275/0x610
[ 1209.075083][T20896]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1209.081163][T20896]  ? find_held_lock+0x2d/0x110
[ 1209.085987][T20896]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1209.091349][T20896]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1209.096761][T20896]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1209.102797][T20896]  ? find_held_lock+0x2d/0x110
[ 1209.107642][T20896]  __handle_mm_fault+0x2d27/0x5470
[ 1209.112849][T20896]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1209.118380][T20896]  ? follow_page_pte+0x3dc/0x1cf0
[ 1209.123509][T20896]  handle_mm_fault+0x498/0xa60
[ 1209.128361][T20896]  __get_user_pages+0x475/0x15c0
[ 1209.133375][T20896]  ? __pfx___get_user_pages+0x10/0x10
[ 1209.138848][T20896]  populate_vma_page_range+0x27f/0x3a0
[ 1209.144384][T20896]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1209.150523][T20896]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1209.156401][T20896]  ? vm_mmap_pgoff+0x25b/0x360
[ 1209.161257][T20896]  __mm_populate+0x1d6/0x380
[ 1209.165931][T20896]  ? __pfx___mm_populate+0x10/0x10
[ 1209.171122][T20896]  ? up_write+0x1b2/0x520
[ 1209.175527][T20896]  vm_mmap_pgoff+0x293/0x360
[ 1209.180195][T20896]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1209.185393][T20896]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1209.190139][T20896]  ? __pfx_ksys_write+0x10/0x10
[ 1209.195068][T20896]  __x64_sys_mmap+0x125/0x190
[ 1209.199809][T20896]  do_syscall_64+0xcd/0x250
[ 1209.204380][T20896]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1209.210334][T20896] RIP: 0033:0x7f66c437def9
[ 1209.214794][T20896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1209.234469][T20896] RSP: 002b:00007f66c5236038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1209.242962][T20896] RAX: ffffffffffffffda RBX: 00007f66c4535f80 RCX: 00007f66c437def9
[ 1209.250985][T20896] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1209.259011][T20896] RBP: 00007f66c5236090 R08: 0000000000000002 R09: 0000000000008000
[ 1209.267034][T20896] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002
[ 1209.275061][T20896] R13: 0000000000000001 R14: 00007f66c4535f80 R15: 00007fff964320d8
[ 1209.283104][T20896]  </TASK>
[ 1209.332219][T20764] hsr_slave_0: entered promiscuous mode
[ 1209.405275][T20764] hsr_slave_1: entered promiscuous mode
[ 1210.193619][T20764] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1210.457658][T20847] coredump: 239(syz.2.4371): written to core: VMAs: 38, size 97742848; core: 60167378 bytes, pos 97751040
[ 1210.609744][T20764] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1210.772662][T20855] coredump: 100(syz.0.4374): written to core: VMAs: 36, size 99840000; core: 62383158 bytes, pos 99848192
[ 1210.934904][T20764] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1211.274403][T20764] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1211.802026][T20921] delete_channel: no stack
[ 1211.901142][T20764] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1211.961088][T20764] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1212.025808][T20764] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1212.111714][T20764] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1212.350123][T20764] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1212.390189][T20764] 8021q: adding VLAN 0 to HW filter on device team0
[ 1212.434230][T16396] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1212.441415][T16396] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1212.476654][T16396] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1212.483877][T16396] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1212.529099][   T29] audit: type=1326 audit(1727106896.570:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20927 comm="syz.0.4398" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f66c437def9 code=0x0
[ 1212.962957][T20764] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1213.072883][T20764] veth0_vlan: entered promiscuous mode
[ 1213.121456][T20764] veth1_vlan: entered promiscuous mode
[ 1213.196817][T20764] veth0_macvtap: entered promiscuous mode
[ 1213.228012][T20764] veth1_macvtap: entered promiscuous mode
[ 1213.275143][T20764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1213.331555][T20764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.342049][T20764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1213.353787][T20764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.366482][T20764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1213.377464][T20764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.388695][T20764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1213.418418][T20764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.428300][T20764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1213.508564][T20764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.540523][T20764] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1213.587939][T20764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1213.616106][T20764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.636901][T20764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1213.667923][T20764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.688767][T20764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1213.709649][T20764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.740273][T20764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1213.771380][T20764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.790363][T20764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1213.823935][T20764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.849900][T20764] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1213.896732][T20764] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1213.928458][T20764] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1213.937244][T20764] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1213.988523][T20764] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1214.278847][T16398] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1214.287616][T16398] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1214.353215][T16396] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1214.369794][T16396] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1214.756635][T20873] coredump: 246(syz.2.4379): written to core: VMAs: 36, size 99840000; core: 62387254 bytes, pos 99848192
[ 1214.951869][T20964] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4403'.
[ 1215.263309][T20898] coredump: 116(syz.0.4388): written to core: VMAs: 36, size 80965632; core: 60204086 bytes, pos 80973824
[ 1215.361030][   T54] Bluetooth: hci2: command 0x0406 tx timeout
[ 1215.813973][T20992] FAULT_INJECTION: forcing a failure.
[ 1215.813973][T20992] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1215.878555][T20992] CPU: 1 UID: 0 PID: 20992 Comm: syz.3.4414 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1215.889067][T20992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1215.899183][T20992] Call Trace:
[ 1215.902498][T20992]  <TASK>
[ 1215.905465][T20992]  dump_stack_lvl+0x16c/0x1f0
[ 1215.910217][T20992]  should_fail_ex+0x497/0x5b0
[ 1215.914967][T20992]  ? fs_reclaim_acquire+0xae/0x160
[ 1215.920155][T20992]  should_fail_alloc_page+0xe7/0x130
[ 1215.925522][T20992]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1215.931744][T20992]  ? hlock_class+0x4e/0x130
[ 1215.936305][T20992]  __alloc_pages_noprof+0x194/0x23f0
[ 1215.941666][T20992]  ? __pfx_mark_lock+0x10/0x10
[ 1215.946493][T20992]  ? __pfx_mark_lock+0x10/0x10
[ 1215.951321][T20992]  ? __pfx___lock_acquire+0x10/0x10
[ 1215.956593][T20992]  ? hlock_class+0x4e/0x130
[ 1215.961151][T20992]  ? __lock_acquire+0xbdd/0x3ce0
[ 1215.966138][T20992]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1215.971912][T20992]  ? __pfx___lock_acquire+0x10/0x10
[ 1215.977153][T20992]  ? __lock_acquire+0x163e/0x3ce0
[ 1215.982223][T20992]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1215.988148][T20992]  ? policy_nodemask+0xea/0x4e0
[ 1215.993041][T20992]  alloc_pages_mpol_noprof+0x275/0x610
[ 1215.998632][T20992]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1216.004657][T20992]  ? find_held_lock+0x2d/0x110
[ 1216.009455][T20992]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1216.014805][T20992]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1216.020154][T20992]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1216.026123][T20992]  ? find_held_lock+0x2d/0x110
[ 1216.030920][T20992]  __handle_mm_fault+0x2d27/0x5470
[ 1216.036082][T20992]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1216.041584][T20992]  ? follow_page_pte+0x3dc/0x1cf0
[ 1216.046663][T20992]  handle_mm_fault+0x498/0xa60
[ 1216.051472][T20992]  __get_user_pages+0x475/0x15c0
[ 1216.056453][T20992]  ? __pfx___get_user_pages+0x10/0x10
[ 1216.061874][T20992]  populate_vma_page_range+0x27f/0x3a0
[ 1216.067374][T20992]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1216.073408][T20992]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1216.079248][T20992]  ? vm_mmap_pgoff+0x25b/0x360
[ 1216.084053][T20992]  __mm_populate+0x1d6/0x380
[ 1216.088687][T20992]  ? __pfx___mm_populate+0x10/0x10
[ 1216.093836][T20992]  ? up_write+0x1b2/0x520
[ 1216.098212][T20992]  vm_mmap_pgoff+0x293/0x360
[ 1216.102851][T20992]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1216.108012][T20992]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1216.112809][T20992]  ? __pfx_ksys_write+0x10/0x10
[ 1216.117706][T20992]  __x64_sys_mmap+0x125/0x190
[ 1216.122413][T20992]  do_syscall_64+0xcd/0x250
[ 1216.126976][T20992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1216.132908][T20992] RIP: 0033:0x7fd07e37def9
[ 1216.137349][T20992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1216.156983][T20992] RSP: 002b:00007fd07f17d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1216.165516][T20992] RAX: ffffffffffffffda RBX: 00007fd07e535f80 RCX: 00007fd07e37def9
[ 1216.173512][T20992] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1216.181503][T20992] RBP: 00007fd07f17d090 R08: 0000000000000002 R09: 0000000000008000
[ 1216.189495][T20992] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002
[ 1216.197488][T20992] R13: 0000000000000001 R14: 00007fd07e535f80 R15: 00007ffd7e0c95a8
[ 1216.205514][T20992]  </TASK>
[ 1216.251456][T20903] coredump: 213(syz.3.4389): written to core: VMAs: 34, size 99708928; core: 62374854 bytes, pos 99717120
[ 1219.359446][T21033] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4429'.
[ 1219.581890][T21000] coredump: 140(syz.0.4417): interrupted: fatal signal pending
[ 1219.620809][T21000] coredump: 140(syz.0.4417): Error writing out the process memory
[ 1219.668027][T21000] coredump: 140(syz.0.4417): written to core: VMAs: 33, size 80568320; core: 25283172 bytes, pos 34054144
[ 1220.746147][T20918] coredump: 255(syz.2.4394): written to core: VMAs: 34, size 97611776; core: 60281798 bytes, pos 97619968
[ 1221.841455][T20948] coredump: 226(syz.3.4402): written to core: VMAs: 39, size 97615872; core: 60036318 bytes, pos 97624064
[ 1222.447139][T21014] coredump: 28(syz.1.4421): written to core: VMAs: 34, size 97611776; core: 60281798 bytes, pos 97619968
[ 1222.464439][T21029] coredump: 285(syz.2.4426): interrupted: fatal signal pending
[ 1222.538470][T21029] coredump: 285(syz.2.4426): written to core: VMAs: 35, size 97480704; core: 22350574 bytes, pos 31117312
[ 1223.768877][T21062] svc: failed to register nfsdv3 RPC service (errno 111).
[ 1223.779733][T21062] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 1223.967760][T20986] coredump: 275(syz.2.4410): written to core: VMAs: 36, size 97742848; core: 60290102 bytes, pos 97751040
[ 1224.060035][T21069] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4439'.
[ 1225.544026][T20991] coredump: 139(syz.0.4411): written to core: VMAs: 40, size 114327552; core: 93648341 bytes, pos 114343936
[ 1226.001910][T21043] coredump: 43(syz.1.4430): written to core: VMAs: 39, size 99713024; core: 62137566 bytes, pos 99721216
[ 1226.083328][T21009] coredump: 235(syz.3.4414): written to core: VMAs: 36, size 80965632; core: 60204086 bytes, pos 80973824
[ 1226.833234][T21101] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4450'.
[ 1227.463889][T21075] coredump: 150(syz.0.4440): interrupted: fatal signal pending
[ 1227.513524][T21075] coredump: 150(syz.0.4440): written to core: VMAs: 35, size 80699392; core: 37061016 bytes, pos 57757696
[ 1227.681827][T21044] coredump: 241(syz.3.4431): written to core: VMAs: 34, size 97611776; core: 60277702 bytes, pos 97619968
[ 1229.433285][T21135] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4461'.
[ 1230.391514][T21160] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4470'.
[ 1230.702383][T21165] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4469'.
[ 1231.981419][T21179] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4475'.
[ 1232.407492][T21138] coredump: 69(syz.1.4462): interrupted: fatal signal pending
[ 1232.448619][T21138] coredump: 69(syz.1.4462): written to core: VMAs: 33, size 80568320; core: 33720932 bytes, pos 54288384
[ 1232.557798][T21190] netlink: zone id is out of range
[ 1232.600696][T21190] netlink: get zone limit has 4 unknown bytes
[ 1232.728194][T21115] coredump: 62(syz.1.4455): written to core: VMAs: 33, size 97345536; core: 60015502 bytes, pos 97353728
[ 1232.760430][T21166] coredump: 164(syz.0.4472): written to core: VMAs: 33, size 80568320; core: 60013156 bytes, pos 80584704
[ 1234.409012][   T29] audit: type=1326 audit(1727106918.450:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21200 comm="syz.0.4491" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f66c437def9 code=0x0
[ 1235.501545][T21216] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4489'.
[ 1235.572240][T21227] coredump: 327(syz.2.4487): coredump has not been created, error -2
[ 1235.849022][   T54] Bluetooth: hci6: command 0x0406 tx timeout
[ 1237.203947][T21122] coredump: 300(syz.2.4458): interrupted: fatal signal pending
[ 1237.397505][T21124] coredump: 302(syz.2.4458): interrupted: fatal signal pending
[ 1237.426295][T21122] coredump: 300(syz.2.4458): written to core: VMAs: 33, size 97345536; core: 44213134 bytes, pos 81551360
[ 1237.459026][T21141] coredump: 308(syz.2.4461): interrupted: fatal signal pending
[ 1237.478652][T21124] coredump: 302(syz.2.4458): written to core: VMAs: 36, size 97476608; core: 38511670 bytes, pos 75972608
[ 1237.510363][T21158] coredump: 311(syz.2.4466): interrupted: fatal signal pending
[ 1237.518100][T21158] coredump: 311(syz.2.4466): written to core: VMAs: 34, size 97611776; core: 27775942 bytes, pos 65114112
[ 1237.576823][T21141] coredump: 308(syz.2.4461): written to core: VMAs: 34, size 97345536; core: 31294424 bytes, pos 68628480
[ 1237.596386][T21258] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4500'.
[ 1237.925611][T21183] coredump: 318(syz.2.4475): interrupted: fatal signal pending
[ 1238.078560][T21183] coredump: 318(syz.2.4475): written to core: VMAs: 34, size 97345536; core: 25617368 bytes, pos 34381824
[ 1238.146177][T21266] FAULT_INJECTION: forcing a failure.
[ 1238.146177][T21266] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1238.228469][T21266] CPU: 1 UID: 0 PID: 21266 Comm: syz.1.4503 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1238.239078][T21266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1238.249190][T21266] Call Trace:
[ 1238.252511][T21266]  <TASK>
[ 1238.255484][T21266]  dump_stack_lvl+0x16c/0x1f0
[ 1238.260236][T21266]  should_fail_ex+0x497/0x5b0
[ 1238.265071][T21266]  ? fs_reclaim_acquire+0xae/0x160
[ 1238.270252][T21266]  should_fail_alloc_page+0xe7/0x130
[ 1238.275605][T21266]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1238.281823][T21266]  ? hlock_class+0x4e/0x130
[ 1238.286391][T21266]  __alloc_pages_noprof+0x194/0x23f0
[ 1238.291739][T21266]  ? __pfx_mark_lock+0x10/0x10
[ 1238.296565][T21266]  ? __pfx_mark_lock+0x10/0x10
[ 1238.301380][T21266]  ? __pfx___lock_acquire+0x10/0x10
[ 1238.306630][T21266]  ? hlock_class+0x4e/0x130
[ 1238.311176][T21266]  ? __lock_acquire+0xbdd/0x3ce0
[ 1238.316168][T21266]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1238.321933][T21266]  ? __pfx___lock_acquire+0x10/0x10
[ 1238.327179][T21266]  ? __lock_acquire+0x163e/0x3ce0
[ 1238.332239][T21266]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1238.338160][T21266]  ? policy_nodemask+0xea/0x4e0
[ 1238.343064][T21266]  alloc_pages_mpol_noprof+0x275/0x610
[ 1238.348577][T21266]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1238.354614][T21266]  ? find_held_lock+0x2d/0x110
[ 1238.359494][T21266]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1238.364990][T21266]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1238.370321][T21266]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1238.376256][T21266]  ? find_held_lock+0x2d/0x110
[ 1238.381051][T21266]  __handle_mm_fault+0x2d27/0x5470
[ 1238.386213][T21266]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1238.391727][T21266]  ? follow_page_pte+0x3dc/0x1cf0
[ 1238.396800][T21266]  handle_mm_fault+0x498/0xa60
[ 1238.401607][T21266]  __get_user_pages+0x475/0x15c0
[ 1238.406582][T21266]  ? __pfx___get_user_pages+0x10/0x10
[ 1238.412012][T21266]  populate_vma_page_range+0x27f/0x3a0
[ 1238.417515][T21266]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1238.423532][T21266]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1238.429383][T21266]  ? vm_mmap_pgoff+0x25b/0x360
[ 1238.434310][T21266]  __mm_populate+0x1d6/0x380
[ 1238.438962][T21266]  ? __pfx___mm_populate+0x10/0x10
[ 1238.444122][T21266]  ? up_write+0x1b2/0x520
[ 1238.448505][T21266]  vm_mmap_pgoff+0x293/0x360
[ 1238.453168][T21266]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1238.458343][T21266]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1238.463078][T21266]  ? __pfx_ksys_write+0x10/0x10
[ 1238.468075][T21266]  __x64_sys_mmap+0x125/0x190
[ 1238.472782][T21266]  do_syscall_64+0xcd/0x250
[ 1238.477396][T21266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1238.483347][T21266] RIP: 0033:0x7fbf2a97def9
[ 1238.487781][T21266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1238.507422][T21266] RSP: 002b:00007fbf2b6f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1238.515865][T21266] RAX: ffffffffffffffda RBX: 00007fbf2ab35f80 RCX: 00007fbf2a97def9
[ 1238.523885][T21266] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1238.531882][T21266] RBP: 00007fbf2b6f8090 R08: 0000000000000002 R09: 0000000000008000
[ 1238.539877][T21266] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002
[ 1238.547869][T21266] R13: 0000000000000001 R14: 00007fbf2ab35f80 R15: 00007ffdc6237658
[ 1238.555882][T21266]  </TASK>
[ 1240.226837][T21275] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4506'.
[ 1241.191743][T16411] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1241.246457][T21181] coredump: 289(syz.3.4477): written to core: VMAs: 39, size 103768064; core: 66315486 bytes, pos 103776256
[ 1241.805808][T21225] coredump: 81(syz.1.4488): written to core: VMAs: 39, size 103768064; core: 66327792 bytes, pos 103784448
[ 1242.059571][T21188] coredump: 293(syz.3.4478): written to core: VMAs: 36, size 97742848; core: 60286006 bytes, pos 97751040
[ 1242.657849][T21232] coredump: 176(syz.0.4502): written to core: VMAs: 34, size 97611776; core: 60277702 bytes, pos 97619968
[ 1244.007938][ T1270] ieee802154 phy0 wpan0: encryption failed: -22
[ 1244.014717][ T1270] ieee802154 phy1 wpan1: encryption failed: -22
[ 1244.239023][T21298] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4512'.
[ 1244.269038][T21300] netlink: zone id is out of range
[ 1244.348479][T21300] netlink: get zone limit has 4 unknown bytes
[ 1244.376508][T16411] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1244.534640][   T54] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1244.544509][   T54] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1244.553667][   T54] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1244.562675][   T54] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1244.571272][   T54] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1244.579265][   T54] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1244.674476][T21277] coredump: 98(syz.1.4503): written to core: VMAs: 36, size 80965632; core: 60208182 bytes, pos 80973824
[ 1245.274456][T16411] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1245.629721][T21303] chnl_net:caif_netlink_parms(): no params data found
[ 1246.052305][T21270] coredump: 191(syz.0.4505): written to core: VMAs: 34, size 97611776; core: 60277702 bytes, pos 97619968
[ 1246.066902][T16411] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1246.642331][T21279] coredump: 196(syz.0.4506): written to core: VMAs: 36, size 97611776; core: 60159074 bytes, pos 97619968
[ 1246.648513][T20765] Bluetooth: hci2: command tx timeout
[ 1246.868441][T21321] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4517'.
[ 1247.299950][T21303] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1247.307108][T21303] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1247.346443][T21303] bridge_slave_0: entered allmulticast mode
[ 1247.372548][T21303] bridge_slave_0: entered promiscuous mode
[ 1247.418607][T21303] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1247.425848][T21303] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1247.448736][T21303] bridge_slave_1: entered allmulticast mode
[ 1247.455983][T21303] bridge_slave_1: entered promiscuous mode
[ 1247.986359][T21303] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1248.090644][T21303] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1248.507042][T16411] bridge_slave_1: left allmulticast mode
[ 1248.518386][T16411] bridge_slave_1: left promiscuous mode
[ 1248.530948][T16411] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1248.718444][T20765] Bluetooth: hci2: command tx timeout
[ 1248.751310][T16411] bridge_slave_0: left allmulticast mode
[ 1248.757023][T16411] bridge_slave_0: left promiscuous mode
[ 1248.783691][T16411] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1248.829441][   T29] audit: type=1326 audit(1727106932.860:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21333 comm="syz.0.4528" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f66c437def9 code=0x0
[ 1249.917091][T21224] coredump: 304(syz.3.4489): written to core: VMAs: 34, size 97345536; core: 60023768 bytes, pos 97361920
[ 1250.023921][T21246] coredump: 307(syz.3.4504): written to core: VMAs: 33, size 99442688; core: 62108558 bytes, pos 99450880
[ 1250.518941][   T29] audit: type=1326 audit(1727106934.560:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21357 comm="syz.0.4526" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f66c437def9 code=0x0
[ 1250.758908][T21308] coredump: 107(syz.1.4515): written to core: VMAs: 34, size 97611776; core: 60281798 bytes, pos 97619968
[ 1250.803869][T20765] Bluetooth: hci2: command tx timeout
[ 1251.184544][T21252] coredump: 308(syz.3.4504): written to core: VMAs: 34, size 99442688; core: 62108614 bytes, pos 99450880
[ 1252.055597][T21323] coredump: 114(syz.1.4517): written to core: VMAs: 36, size 97611776; core: 60163170 bytes, pos 97619968
[ 1252.547527][T16411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1252.823543][T16411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1252.878484][T20765] Bluetooth: hci2: command tx timeout
[ 1253.262592][T21355] coredump: 213(syz.0.4524): written to core: VMAs: 36, size 99573760; core: 62239847 bytes, pos 99581952
[ 1253.339964][T16411] bond0 (unregistering): Released all slaves
[ 1253.450303][T21303] team0: Port device team_slave_0 added
[ 1253.596452][T21303] team0: Port device team_slave_1 added
[ 1254.172154][T21303] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1254.198068][T21303] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1254.328465][T21303] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1254.855913][T21303] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1254.877116][T21303] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1254.904946][T21438] netlink: zone id is out of range
[ 1254.918984][T21438] netlink: get zone limit has 4 unknown bytes
[ 1254.958577][T21303] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1255.023917][T21428] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4539'.
[ 1255.805216][T21303] hsr_slave_0: entered promiscuous mode
[ 1255.818623][T21456] FAULT_INJECTION: forcing a failure.
[ 1255.818623][T21456] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1255.852442][T21303] hsr_slave_1: entered promiscuous mode
[ 1255.878869][T21456] CPU: 1 UID: 0 PID: 21456 Comm: syz.0.4545 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1255.889365][T21456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1255.899470][T21456] Call Trace:
[ 1255.902802][T21456]  <TASK>
[ 1255.905790][T21456]  dump_stack_lvl+0x16c/0x1f0
[ 1255.910553][T21456]  should_fail_ex+0x497/0x5b0
[ 1255.915295][T21456]  ? fs_reclaim_acquire+0xae/0x160
[ 1255.920464][T21456]  should_fail_alloc_page+0xe7/0x130
[ 1255.925802][T21456]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1255.931999][T21456]  __alloc_pages_noprof+0x194/0x23f0
[ 1255.937335][T21456]  ? copy_splice_read+0x1a8/0xb90
[ 1255.942394][T21456]  ? stack_trace_save+0x95/0xd0
[ 1255.947286][T21456]  ? __pfx_stack_trace_save+0x10/0x10
[ 1255.952697][T21456]  ? stack_depot_save_flags+0x28/0x900
[ 1255.958196][T21456]  ? mark_lock+0xb5/0xc60
[ 1255.962580][T21456]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1255.968344][T21456]  ? kasan_save_stack+0x42/0x60
[ 1255.973245][T21456]  ? kasan_save_stack+0x33/0x60
[ 1255.978128][T21456]  ? kasan_save_track+0x14/0x30
[ 1255.983013][T21456]  ? __kasan_kmalloc+0xaa/0xb0
[ 1255.987799][T21456]  ? __kmalloc_noprof+0x1e8/0x410
[ 1255.992847][T21456]  ? copy_splice_read+0x1a8/0xb90
[ 1255.997899][T21456]  ? sock_splice_read+0xe9/0x110
[ 1256.002868][T21456]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1256.008981][T21456]  alloc_pages_bulk_noprof+0x742/0x14f0
[ 1256.014576][T21456]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[ 1256.020605][T21456]  ? trace_kmalloc+0x2d/0xe0
[ 1256.025218][T21456]  ? __kmalloc_noprof+0x207/0x410
[ 1256.030281][T21456]  copy_splice_read+0x1e3/0xb90
[ 1256.035176][T21456]  ? __pfx_copy_splice_read+0x10/0x10
[ 1256.040577][T21456]  ? trace_contention_end+0xea/0x140
[ 1256.045901][T21456]  ? find_held_lock+0x2d/0x110
[ 1256.050695][T21456]  ? __pfx___mutex_lock+0x10/0x10
[ 1256.055808][T21456]  ? ksys_write+0x12f/0x260
[ 1256.060360][T21456]  sock_splice_read+0xe9/0x110
[ 1256.065156][T21456]  ? __pfx_sock_splice_read+0x10/0x10
[ 1256.070558][T21456]  do_splice_read+0x282/0x370
[ 1256.075270][T21456]  splice_file_to_pipe+0x109/0x120
[ 1256.080420][T21456]  do_sendfile+0x431/0xe40
[ 1256.084894][T21456]  ? __pfx_do_sendfile+0x10/0x10
[ 1256.089881][T21456]  __x64_sys_sendfile64+0x1da/0x220
[ 1256.095112][T21456]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1256.100859][T21456]  ? syscall_user_dispatch+0x77/0x140
[ 1256.106265][T21456]  do_syscall_64+0xcd/0x250
[ 1256.110805][T21456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1256.116728][T21456] RIP: 0033:0x7f66c437def9
[ 1256.121163][T21456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1256.140793][T21456] RSP: 002b:00007f66c5236038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1256.149249][T21456] RAX: ffffffffffffffda RBX: 00007f66c4535f80 RCX: 00007f66c437def9
[ 1256.157248][T21456] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001
[ 1256.165246][T21456] RBP: 00007f66c5236090 R08: 0000000000000000 R09: 0000000000000000
[ 1256.173239][T21456] R10: 0000000000000c01 R11: 0000000000000246 R12: 0000000000000001
[ 1256.181322][T21456] R13: 0000000000000000 R14: 00007f66c4535f80 R15: 00007fff964320d8
[ 1256.189417][T21456]  </TASK>
[ 1256.270832][T21303] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1256.282270][T21303] Cannot create hsr debugfs directory
[ 1256.624869][T21316] coredump: 324(syz.3.4514): written to core: VMAs: 41, size 80977920; core: 60159398 bytes, pos 80986112
[ 1256.710239][T21311] coredump: 323(syz.3.4514): written to core: VMAs: 39, size 80834560; core: 60147086 bytes, pos 80842752
[ 1257.017880][T21465] netlink: get zone limit has 4 unknown bytes
[ 1257.128950][   T29] audit: type=1326 audit(1727106941.170:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21466 comm="syz.0.4549" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f66c437def9 code=0x0
[ 1257.579201][T16411] hsr_slave_0: left promiscuous mode
[ 1257.628526][T16411] hsr_slave_1: left promiscuous mode
[ 1257.709472][T16411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1257.747687][T16411] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1257.772596][T16411] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1257.815264][T16411] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1257.910072][T16411] veth1_macvtap: left promiscuous mode
[ 1257.915680][T16411] veth0_macvtap: left promiscuous mode
[ 1257.948567][T16411] veth1_vlan: left promiscuous mode
[ 1257.953963][T16411] veth0_vlan: left promiscuous mode
[ 1259.911755][T21449] coredump: 228(syz.0.4543): written to core: VMAs: 34, size 97611776; core: 60277702 bytes, pos 97619968
[ 1260.311603][T21440] coredump: 151(syz.1.4539): written to core: VMAs: 34, size 97480704; core: 60158980 bytes, pos 97497088
[ 1260.397607][T21474] coredump: 343(syz.3.4550): interrupted: fatal signal pending
[ 1260.405903][T21474] coredump: 343(syz.3.4550): written to core: VMAs: 33, size 80568320; core: 29665874 bytes, pos 50237440
[ 1260.550784][T16411] team0 (unregistering): Port device team_slave_1 removed
[ 1260.773007][T16411] team0 (unregistering): Port device team_slave_0 removed
[ 1261.097471][T21509] netlink: get zone limit has 4 unknown bytes
[ 1262.115208][T21483] coredump: 160(syz.1.4551): written to core: VMAs: 34, size 80834560; core: 60273606 bytes, pos 80842752
[ 1262.823839][T21538] FAULT_INJECTION: forcing a failure.
[ 1262.823839][T21538] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1262.869863][T21538] CPU: 1 UID: 0 PID: 21538 Comm: syz.3.4567 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1262.880373][T21538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1262.890567][T21538] Call Trace:
[ 1262.893880][T21538]  <TASK>
[ 1262.896846][T21538]  dump_stack_lvl+0x16c/0x1f0
[ 1262.901598][T21538]  should_fail_ex+0x497/0x5b0
[ 1262.906367][T21538]  _copy_to_user+0x30/0xc0
[ 1262.910822][T21538]  simple_read_from_buffer+0xd0/0x160
[ 1262.916234][T21538]  proc_fail_nth_read+0x198/0x270
[ 1262.921307][T21538]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1262.926903][T21538]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1262.932499][T21538]  vfs_read+0x1ce/0xbd0
[ 1262.936700][T21538]  ? fput+0x30/0x390
[ 1262.940718][T21538]  ? __fdget_pos+0xe8/0x170
[ 1262.945266][T21538]  ? __pfx_vfs_read+0x10/0x10
[ 1262.949978][T21538]  ? __pfx___mutex_lock+0x10/0x10
[ 1262.955056][T21538]  ? __fget_files+0x244/0x3f0
[ 1262.959801][T21538]  ksys_read+0x12f/0x260
[ 1262.964108][T21538]  ? __pfx_ksys_read+0x10/0x10
[ 1262.968921][T21538]  ? syscall_user_dispatch+0x77/0x140
[ 1262.974338][T21538]  do_syscall_64+0xcd/0x250
[ 1262.978881][T21538]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1262.984806][T21538] RIP: 0033:0x7fd07e37c93c
[ 1262.989277][T21538] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1263.008914][T21538] RSP: 002b:00007fd07f17d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1263.017354][T21538] RAX: ffffffffffffffda RBX: 00007fd07e535f80 RCX: 00007fd07e37c93c
[ 1263.025434][T21538] RDX: 000000000000000f RSI: 00007fd07f17d0a0 RDI: 0000000000000006
[ 1263.033504][T21538] RBP: 00007fd07f17d090 R08: 0000000000000000 R09: 0000000000000000
[ 1263.041499][T21538] R10: 0000000000000c01 R11: 0000000000000246 R12: 0000000000000001
[ 1263.049493][T21538] R13: 0000000000000000 R14: 00007fd07e535f80 R15: 00007ffd7e0c95a8
[ 1263.057496][T21538]  </TASK>
[ 1264.023379][T21303] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1264.062971][T21303] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1264.106391][T21303] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1264.136020][T21303] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1264.293414][T21303] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1264.342627][T21303] 8021q: adding VLAN 0 to HW filter on device team0
[ 1264.382109][T21415] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1264.389323][T21415] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1264.440079][T21431] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1264.447241][T21431] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1264.556078][T21303] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1264.599576][T21303] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1265.112906][T21303] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1265.262862][T21303] veth0_vlan: entered promiscuous mode
[ 1265.301240][T21303] veth1_vlan: entered promiscuous mode
[ 1265.373669][T21303] veth0_macvtap: entered promiscuous mode
[ 1265.422024][T21303] veth1_macvtap: entered promiscuous mode
[ 1265.485057][T21303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1265.526398][T21303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1265.574678][T21303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1265.593772][T21303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1265.622691][T21303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1265.643283][T21303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1265.664433][T21303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1265.685996][T21303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1265.723499][T21303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1265.757613][T21303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1265.796713][T21303] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1265.832187][T21303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1265.858532][T21303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1265.872626][T21303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1265.930025][T21303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1265.958684][T21303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1265.986230][T21303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1266.006214][T21303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1266.042109][T21303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1266.059607][T21303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1266.088696][T21303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1266.117621][T21303] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1266.154677][T21303] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1266.186759][T21303] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1266.220077][T21303] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1266.242383][T21303] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1266.561536][   T54] Bluetooth: hci3: command 0x0406 tx timeout
[ 1266.750038][T21432] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1266.757927][T21432] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1266.901088][T21432] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1266.938567][T21432] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1267.316647][   T29] audit: type=1326 audit(1727106951.350:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21642 comm="syz.1.4581" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbf2a97def9 code=0x0
[ 1268.600353][T21678] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4590'.
[ 1269.402663][T21699] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4593'.
[ 1270.219386][   T29] audit: type=1326 audit(1727106954.250:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21718 comm="syz.1.4600" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbf2a97def9 code=0x0
[ 1270.311555][T21529] coredump: 362(syz.3.4564): written to core: VMAs: 37, size 101675008; core: 64214126 bytes, pos 101683200
[ 1270.418928][T21722] coredump: 382(syz.3.4599): coredump has not been created, error -13
[ 1270.779501][T21528] coredump: 1(syz.3.4564): written to core: VMAs: 37, size 101675008; core: 64214126 bytes, pos 101683200
[ 1272.689334][T21594] coredump: 261(syz.0.4575): written to core: VMAs: 34, size 97611776; core: 60273606 bytes, pos 97619968
[ 1272.987060][T21743] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4606'.
[ 1273.148227][T21604] coredump: 264(syz.0.4576): written to core: VMAs: 33, size 80568320; core: 60003214 bytes, pos 80576512
[ 1273.242902][T21749] FAULT_INJECTION: forcing a failure.
[ 1273.242902][T21749] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1273.315012][T21749] CPU: 0 UID: 0 PID: 21749 Comm: syz.1.4610 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1273.325523][T21749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1273.335630][T21749] Call Trace:
[ 1273.338959][T21749]  <TASK>
[ 1273.341926][T21749]  dump_stack_lvl+0x16c/0x1f0
[ 1273.346668][T21749]  should_fail_ex+0x497/0x5b0
[ 1273.351428][T21749]  _copy_from_user+0x30/0xf0
[ 1273.356156][T21749]  __sys_bpf+0x239/0x5590
[ 1273.360557][T21749]  ? __pfx___sys_bpf+0x10/0x10
[ 1273.365389][T21749]  ? ksys_write+0x12f/0x260
[ 1273.369951][T21749]  ? find_held_lock+0x2d/0x110
[ 1273.374751][T21749]  ? ksys_write+0x21c/0x260
[ 1273.379295][T21749]  ? __pfx_lock_release+0x10/0x10
[ 1273.384376][T21749]  ? vfs_write+0x14d/0x1140
[ 1273.388949][T21749]  ? __mutex_unlock_slowpath+0x164/0x650
[ 1273.394653][T21749]  ? fput+0x30/0x390
[ 1273.398588][T21749]  ? ksys_write+0x1ab/0x260
[ 1273.403135][T21749]  ? __pfx_ksys_write+0x10/0x10
[ 1273.408045][T21749]  __x64_sys_bpf+0x78/0xc0
[ 1273.412507][T21749]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1273.417741][T21749]  do_syscall_64+0xcd/0x250
[ 1273.422285][T21749]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1273.428210][T21749] RIP: 0033:0x7fbf2a97def9
[ 1273.432677][T21749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1273.452329][T21749] RSP: 002b:00007fbf2b6f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1273.460775][T21749] RAX: ffffffffffffffda RBX: 00007fbf2ab35f80 RCX: 00007fbf2a97def9
[ 1273.468780][T21749] RDX: 0000000000000af1 RSI: 0000000000000001 RDI: 0000000000000000
[ 1273.476785][T21749] RBP: 00007fbf2b6f8090 R08: 0000000000000000 R09: 0000000000000000
[ 1273.484779][T21749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1273.492768][T21749] R13: 0000000000000000 R14: 00007fbf2ab35f80 R15: 00007ffdc6237658
[ 1273.500810][T21749]  </TASK>
[ 1273.507678][T21717] coredump: 20(syz.2.4597): interrupted: fatal signal pending
[ 1273.570473][T21717] coredump: 20(syz.2.4597): written to core: VMAs: 37, size 80834560; core: 25211426 bytes, pos 34099200
[ 1274.128629][T21757] can: request_module (can-proto-0) failed.
[ 1275.191031][T21769] FAULT_INJECTION: forcing a failure.
[ 1275.191031][T21769] name failslab, interval 1, probability 0, space 0, times 0
[ 1275.328469][T21769] CPU: 0 UID: 0 PID: 21769 Comm: syz.1.4617 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1275.338985][T21769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1275.349175][T21769] Call Trace:
[ 1275.352502][T21769]  <TASK>
[ 1275.355471][T21769]  dump_stack_lvl+0x16c/0x1f0
[ 1275.360223][T21769]  should_fail_ex+0x497/0x5b0
[ 1275.364972][T21769]  ? fs_reclaim_acquire+0xae/0x160
[ 1275.370153][T21769]  should_failslab+0xc2/0x120
[ 1275.374915][T21769]  kmem_cache_alloc_lru_noprof+0x72/0x2f0
[ 1275.380698][T21769]  ? sock_alloc_inode+0x25/0x1c0
[ 1275.385709][T21769]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 1275.391141][T21769]  sock_alloc_inode+0x25/0x1c0
[ 1275.395944][T21769]  alloc_inode+0x5d/0x230
[ 1275.400300][T21769]  sock_alloc+0x40/0x280
[ 1275.404676][T21769]  __sock_create+0xc0/0x800
[ 1275.409220][T21769]  __sys_socketpair+0x1d9/0x5a0
[ 1275.414123][T21769]  ? __pfx___sys_socketpair+0x10/0x10
[ 1275.419541][T21769]  ? fput+0x30/0x390
[ 1275.423470][T21769]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x230
[ 1275.429677][T21769]  ? syscall_user_dispatch+0x77/0x140
[ 1275.435087][T21769]  __x64_sys_socketpair+0x96/0x100
[ 1275.440241][T21769]  do_syscall_64+0xcd/0x250
[ 1275.444803][T21769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1275.450928][T21769] RIP: 0033:0x7fbf2a97def9
[ 1275.455368][T21769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1275.475003][T21769] RSP: 002b:00007fbf2b6f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[ 1275.483447][T21769] RAX: ffffffffffffffda RBX: 00007fbf2ab35f80 RCX: 00007fbf2a97def9
[ 1275.491555][T21769] RDX: 8000000000000000 RSI: 0000000000000005 RDI: 0000000000000001
[ 1275.499576][T21769] RBP: 00007fbf2b6f8090 R08: 0000000000000000 R09: 0000000000000000
[ 1275.507569][T21769] R10: 00000000000027f1 R11: 0000000000000246 R12: 0000000000000001
[ 1275.515569][T21769] R13: 0000000000000000 R14: 00007fbf2ab35f80 R15: 00007ffdc6237658
[ 1275.523599][T21769]  </TASK>
[ 1275.624989][T21769] socket: no more sockets
[ 1275.694402][T21681] coredump: 15(syz.2.4590): written to core: VMAs: 34, size 97480704; core: 60163076 bytes, pos 97497088
[ 1275.896038][T21782] FAULT_INJECTION: forcing a failure.
[ 1275.896038][T21782] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1275.997491][T21782] CPU: 0 UID: 0 PID: 21782 Comm: syz.2.4620 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1276.008016][T21782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1276.018130][T21782] Call Trace:
[ 1276.021451][T21782]  <TASK>
[ 1276.024553][T21782]  dump_stack_lvl+0x16c/0x1f0
[ 1276.029309][T21782]  should_fail_ex+0x497/0x5b0
[ 1276.034060][T21782]  ? fs_reclaim_acquire+0xae/0x160
[ 1276.039238][T21782]  should_fail_alloc_page+0xe7/0x130
[ 1276.044610][T21782]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1276.050833][T21782]  ? hlock_class+0x4e/0x130
[ 1276.055398][T21782]  __alloc_pages_noprof+0x194/0x23f0
[ 1276.060754][T21782]  ? __pfx_mark_lock+0x10/0x10
[ 1276.065592][T21782]  ? __pfx_mark_lock+0x10/0x10
[ 1276.070427][T21782]  ? __pfx___lock_acquire+0x10/0x10
[ 1276.075700][T21782]  ? hlock_class+0x4e/0x130
[ 1276.080270][T21782]  ? __lock_acquire+0xbdd/0x3ce0
[ 1276.085364][T21782]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1276.091252][T21782]  ? __pfx___lock_acquire+0x10/0x10
[ 1276.096519][T21782]  ? __lock_acquire+0x163e/0x3ce0
[ 1276.101617][T21782]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1276.107570][T21782]  ? policy_nodemask+0xea/0x4e0
[ 1276.112497][T21782]  alloc_pages_mpol_noprof+0x275/0x610
[ 1276.118032][T21782]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1276.124089][T21782]  ? find_held_lock+0x2d/0x110
[ 1276.128914][T21782]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1276.134280][T21782]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1276.139643][T21782]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1276.145629][T21782]  ? find_held_lock+0x2d/0x110
[ 1276.150466][T21782]  __handle_mm_fault+0x2d27/0x5470
[ 1276.155670][T21782]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1276.161207][T21782]  ? follow_page_pte+0x3dc/0x1cf0
[ 1276.166342][T21782]  handle_mm_fault+0x498/0xa60
[ 1276.171187][T21782]  __get_user_pages+0x475/0x15c0
[ 1276.176199][T21782]  ? __pfx___get_user_pages+0x10/0x10
[ 1276.181685][T21782]  populate_vma_page_range+0x27f/0x3a0
[ 1276.187223][T21782]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1276.193278][T21782]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1276.199241][T21782]  ? vm_mmap_pgoff+0x25b/0x360
[ 1276.204081][T21782]  __mm_populate+0x1d6/0x380
[ 1276.208759][T21782]  ? __pfx___mm_populate+0x10/0x10
[ 1276.214039][T21782]  ? up_write+0x1b2/0x520
[ 1276.218451][T21782]  vm_mmap_pgoff+0x293/0x360
[ 1276.223123][T21782]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1276.228326][T21782]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1276.233075][T21782]  ? __pfx_ksys_write+0x10/0x10
[ 1276.238148][T21782]  __x64_sys_mmap+0x125/0x190
[ 1276.242885][T21782]  do_syscall_64+0xcd/0x250
[ 1276.247509][T21782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1276.253471][T21782] RIP: 0033:0x7f3322b7def9
[ 1276.257942][T21782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1276.277609][T21782] RSP: 002b:00007f3323a65038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1276.286094][T21782] RAX: ffffffffffffffda RBX: 00007f3322d35f80 RCX: 00007f3322b7def9
[ 1276.294123][T21782] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1276.302146][T21782] RBP: 00007f3323a65090 R08: 0000000000000002 R09: 0000000000008000
[ 1276.310253][T21782] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002
[ 1276.318273][T21782] R13: 0000000000000001 R14: 00007f3322d35f80 R15: 00007ffe23456738
[ 1276.326315][T21782]  </TASK>
[ 1276.417118][T21700] coredump: 19(syz.2.4593): written to core: VMAs: 34, size 99577856; core: 62260228 bytes, pos 99594240
[ 1277.043500][T21790] coredump: 406(syz.3.4622): coredump has not been created, error -13
[ 1277.059389][T21784] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4621'.
[ 1277.122396][T21762] coredump: 290(syz.0.4613): interrupted: fatal signal pending
[ 1277.138418][T21762] coredump: 290(syz.0.4613): written to core: VMAs: 33, size 80568320; core: 26425938 bytes, pos 35266560
[ 1277.939809][T21800] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4625'.
[ 1278.684973][T21744] coredump: 395(syz.3.4606): written to core: VMAs: 34, size 99577856; core: 62256132 bytes, pos 99594240
[ 1279.348724][T21824] coredump: 227(syz.1.4633): coredump has not been created, error -2
[ 1279.936795][T21827] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4634'.
[ 1279.996551][T21750] coredump: 202(syz.1.4610): written to core: VMAs: 34, size 93679616; core: 56275910 bytes, pos 93687808
[ 1280.668632][T21823] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4630'.
[ 1282.289243][T21850] FAULT_INJECTION: forcing a failure.
[ 1282.289243][T21850] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1282.338558][T21850] CPU: 0 UID: 0 PID: 21850 Comm: syz.0.4640 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1282.349060][T21850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1282.359188][T21850] Call Trace:
[ 1282.362516][T21850]  <TASK>
[ 1282.365498][T21850]  dump_stack_lvl+0x16c/0x1f0
[ 1282.370250][T21850]  should_fail_ex+0x497/0x5b0
[ 1282.375014][T21850]  _copy_to_user+0x30/0xc0
[ 1282.379581][T21850]  simple_read_from_buffer+0xd0/0x160
[ 1282.385024][T21850]  proc_fail_nth_read+0x198/0x270
[ 1282.390128][T21850]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1282.395769][T21850]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1282.401375][T21850]  vfs_read+0x1ce/0xbd0
[ 1282.405594][T21850]  ? __fdget_pos+0xe8/0x170
[ 1282.410169][T21850]  ? __pfx_vfs_read+0x10/0x10
[ 1282.414914][T21850]  ? __pfx___mutex_lock+0x10/0x10
[ 1282.420021][T21850]  ? __fget_files+0x244/0x3f0
[ 1282.424782][T21850]  ksys_read+0x12f/0x260
[ 1282.429097][T21850]  ? __pfx_ksys_read+0x10/0x10
[ 1282.433939][T21850]  do_syscall_64+0xcd/0x250
[ 1282.438526][T21850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1282.444477][T21850] RIP: 0033:0x7f66c437c93c
[ 1282.448954][T21850] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1282.468616][T21850] RSP: 002b:00007f66c5236030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1282.477076][T21850] RAX: ffffffffffffffda RBX: 00007f66c4535f80 RCX: 00007f66c437c93c
[ 1282.485097][T21850] RDX: 000000000000000f RSI: 00007f66c52360a0 RDI: 000000000000000c
[ 1282.493113][T21850] RBP: 00007f66c5236090 R08: 0000000000000000 R09: 0000000000000000
[ 1282.501128][T21850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1282.509143][T21850] R13: 0000000000000000 R14: 00007f66c4535f80 R15: 00007fff964320d8
[ 1282.517174][T21850]  </TASK>
[ 1282.932006][T21848] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4638'.
[ 1283.179128][T21801] coredump: 294(syz.0.4625): written to core: VMAs: 34, size 99577856; core: 62256132 bytes, pos 99594240
[ 1284.937855][   T29] audit: type=1326 audit(1727106968.970:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21878 comm="syz.0.4650" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f66c437def9 code=0x0
[ 1286.361499][T21788] coredump: 31(syz.2.4620): written to core: VMAs: 36, size 80965632; core: 60208182 bytes, pos 80973824
[ 1286.853090][T21910] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4662'.
[ 1287.162252][T21787] coredump: 214(syz.1.4621): written to core: VMAs: 34, size 99577856; core: 62260228 bytes, pos 99594240
[ 1287.281515][T21852] coredump: 301(syz.0.4640): written to core: VMAs: 34, size 93679616; core: 56271814 bytes, pos 93687808
[ 1288.549087][T21939] coredump: 454(syz.3.4670): coredump has not been created, error -13
[ 1288.818465][   T29] audit: type=1326 audit(1727106972.850:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21943 comm="syz.3.4673" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd07e37def9 code=0x0
[ 1289.207103][T21938] FAULT_INJECTION: forcing a failure.
[ 1289.207103][T21938] name failslab, interval 1, probability 0, space 0, times 0
[ 1289.287299][T21938] CPU: 1 UID: 0 PID: 21938 Comm: syz.1.4669 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1289.297806][T21938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1289.307913][T21938] Call Trace:
[ 1289.311230][T21938]  <TASK>
[ 1289.314205][T21938]  dump_stack_lvl+0x16c/0x1f0
[ 1289.318957][T21938]  should_fail_ex+0x497/0x5b0
[ 1289.323689][T21938]  ? fs_reclaim_acquire+0xae/0x160
[ 1289.328855][T21938]  should_failslab+0xc2/0x120
[ 1289.333598][T21938]  kmem_cache_alloc_noprof+0x6e/0x2f0
[ 1289.339024][T21938]  ? sk_prot_alloc+0x60/0x2a0
[ 1289.343766][T21938]  sk_prot_alloc+0x60/0x2a0
[ 1289.348588][T21938]  sk_alloc+0x36/0xb90
[ 1289.352730][T21938]  unix_create1+0xa6/0x6c0
[ 1289.357210][T21938]  unix_create+0x10e/0x1d0
[ 1289.361699][T21938]  __sock_create+0x32e/0x800
[ 1289.366358][T21938]  __sys_socketpair+0x1d9/0x5a0
[ 1289.371288][T21938]  ? __pfx___sys_socketpair+0x10/0x10
[ 1289.376726][T21938]  ? fput+0x30/0x390
[ 1289.380675][T21938]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x230
[ 1289.386916][T21938]  ? syscall_user_dispatch+0x77/0x140
[ 1289.392350][T21938]  __x64_sys_socketpair+0x96/0x100
[ 1289.397522][T21938]  do_syscall_64+0xcd/0x250
[ 1289.402081][T21938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1289.408025][T21938] RIP: 0033:0x7fbf2a97def9
[ 1289.412467][T21938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1289.432110][T21938] RSP: 002b:00007fbf2b6f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[ 1289.440553][T21938] RAX: ffffffffffffffda RBX: 00007fbf2ab35f80 RCX: 00007fbf2a97def9
[ 1289.448554][T21938] RDX: 8000000000000000 RSI: 0000000000000005 RDI: 0000000000000001
[ 1289.456583][T21938] RBP: 00007fbf2b6f8090 R08: 0000000000000000 R09: 0000000000000000
[ 1289.464592][T21938] R10: 00000000000027f1 R11: 0000000000000246 R12: 0000000000000001
[ 1289.472582][T21938] R13: 0000000000000000 R14: 00007fbf2ab35f80 R15: 00007ffdc6237658
[ 1289.480587][T21938]  </TASK>
[ 1289.862127][T21828] coredump: 37(syz.2.4630): written to core: VMAs: 39, size 101806080; core: 64226570 bytes, pos 101814272
[ 1290.248558][T21960] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4677'.
[ 1290.448764][T21965] coredump: 61(syz.2.4678): coredump has not been created, error -2
[ 1290.763857][T21833] coredump: 38(syz.2.4630): written to core: VMAs: 41, size 101806080; core: 64226726 bytes, pos 101814272
[ 1291.055891][T21980] FAULT_INJECTION: forcing a failure.
[ 1291.055891][T21980] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1291.201033][T21980] CPU: 0 UID: 0 PID: 21980 Comm: syz.0.4683 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1291.211564][T21980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1291.221659][T21980] Call Trace:
[ 1291.224976][T21980]  <TASK>
[ 1291.227946][T21980]  dump_stack_lvl+0x16c/0x1f0
[ 1291.232685][T21980]  should_fail_ex+0x497/0x5b0
[ 1291.237432][T21980]  ? fs_reclaim_acquire+0xae/0x160
[ 1291.242600][T21980]  should_fail_alloc_page+0xe7/0x130
[ 1291.247949][T21980]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1291.254157][T21980]  ? hlock_class+0x4e/0x130
[ 1291.258717][T21980]  __alloc_pages_noprof+0x194/0x23f0
[ 1291.264060][T21980]  ? __pfx_mark_lock+0x10/0x10
[ 1291.268887][T21980]  ? __pfx_mark_lock+0x10/0x10
[ 1291.273705][T21980]  ? __pfx___lock_acquire+0x10/0x10
[ 1291.278962][T21980]  ? hlock_class+0x4e/0x130
[ 1291.283515][T21980]  ? __lock_acquire+0xbdd/0x3ce0
[ 1291.288513][T21980]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1291.294305][T21980]  ? __pfx___lock_acquire+0x10/0x10
[ 1291.299557][T21980]  ? __lock_acquire+0x163e/0x3ce0
[ 1291.304643][T21980]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1291.310764][T21980]  ? policy_nodemask+0xea/0x4e0
[ 1291.315656][T21980]  alloc_pages_mpol_noprof+0x275/0x610
[ 1291.321166][T21980]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1291.327198][T21980]  ? find_held_lock+0x2d/0x110
[ 1291.331984][T21980]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1291.337323][T21980]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1291.342649][T21980]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1291.348577][T21980]  ? find_held_lock+0x2d/0x110
[ 1291.353367][T21980]  __handle_mm_fault+0x2d27/0x5470
[ 1291.358524][T21980]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1291.364019][T21980]  ? follow_page_pte+0x3dc/0x1cf0
[ 1291.369099][T21980]  handle_mm_fault+0x498/0xa60
[ 1291.373909][T21980]  __get_user_pages+0x475/0x15c0
[ 1291.378892][T21980]  ? __pfx___get_user_pages+0x10/0x10
[ 1291.384308][T21980]  populate_vma_page_range+0x27f/0x3a0
[ 1291.389809][T21980]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1291.395832][T21980]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1291.401688][T21980]  ? vm_mmap_pgoff+0x25b/0x360
[ 1291.406492][T21980]  __mm_populate+0x1d6/0x380
[ 1291.411209][T21980]  ? __pfx___mm_populate+0x10/0x10
[ 1291.416363][T21980]  ? up_write+0x1b2/0x520
[ 1291.420736][T21980]  vm_mmap_pgoff+0x293/0x360
[ 1291.425367][T21980]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1291.430535][T21980]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1291.435243][T21980]  ? __pfx_ksys_write+0x10/0x10
[ 1291.440145][T21980]  __x64_sys_mmap+0x125/0x190
[ 1291.444850][T21980]  do_syscall_64+0xcd/0x250
[ 1291.449397][T21980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1291.455320][T21980] RIP: 0033:0x7f66c437def9
[ 1291.459767][T21980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1291.479419][T21980] RSP: 002b:00007f66c5236038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1291.487857][T21980] RAX: ffffffffffffffda RBX: 00007f66c4535f80 RCX: 00007f66c437def9
[ 1291.495851][T21980] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1291.503840][T21980] RBP: 00007f66c5236090 R08: 0000000000000002 R09: 0000000000008000
[ 1291.511916][T21980] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002
[ 1291.519909][T21980] R13: 0000000000000001 R14: 00007f66c4535f80 R15: 00007fff964320d8
[ 1291.527916][T21980]  </TASK>
[ 1291.870276][T21830] coredump: 231(syz.1.4634): written to core: VMAs: 34, size 97480704; core: 60163076 bytes, pos 97497088
[ 1293.184891][T22002] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4689'.
[ 1293.968415][   T29] audit: type=1326 audit(1727106977.990:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22014 comm="syz.0.4694" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f66c437def9 code=0x0
[ 1295.725928][T21854] coredump: 242(syz.1.4638): written to core: VMAs: 34, size 99577856; core: 62260228 bytes, pos 99594240
[ 1296.483174][T22044] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4704'.
[ 1296.525744][T21923] coredump: 321(syz.0.4664): written to core: VMAs: 34, size 97480704; core: 60158980 bytes, pos 97497088
[ 1297.809814][T22028] coredump: 485(syz.3.4699): interrupted: fatal signal pending
[ 1297.888589][T22028] coredump: 485(syz.3.4699): written to core: VMAs: 33, size 80568320; core: 23460434 bytes, pos 32231424
[ 1298.082316][T21883] coredump: 248(syz.1.4649): written to core: VMAs: 34, size 97480704; core: 60163076 bytes, pos 97497088
[ 1298.127673][T21978] coredump: 464(syz.3.4682): written to core: VMAs: 33, size 99442688; core: 62112654 bytes, pos 99450880
[ 1298.331543][T21962] coredump: 334(syz.0.4677): written to core: VMAs: 34, size 97480704; core: 60158980 bytes, pos 97497088
[ 1301.044727][T21996] coredump: 340(syz.0.4683): written to core: VMAs: 36, size 80965632; core: 60204086 bytes, pos 80973824
[ 1301.634626][T22005] coredump: 73(syz.2.4689): written to core: VMAs: 34, size 97480704; core: 60163076 bytes, pos 97497088
[ 1301.826564][T22024] coredump: 484(syz.3.4698): written to core: VMAs: 34, size 97611776; core: 60277702 bytes, pos 97619968
[ 1302.296281][T21984] coredump: 261(syz.1.4692): written to core: VMAs: 34, size 97611776; core: 60281798 bytes, pos 97619968
[ 1302.910941][T22096] FAULT_INJECTION: forcing a failure.
[ 1302.910941][T22096] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1302.924775][T22096] CPU: 0 UID: 0 PID: 22096 Comm: syz.2.4723 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1302.935286][T22096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1302.945402][T22096] Call Trace:
[ 1302.948727][T22096]  <TASK>
[ 1302.951695][T22096]  dump_stack_lvl+0x16c/0x1f0
[ 1302.956440][T22096]  should_fail_ex+0x497/0x5b0
[ 1302.961708][T22096]  _copy_to_user+0x30/0xc0
[ 1302.966185][T22096]  simple_read_from_buffer+0xd0/0x160
[ 1302.971628][T22096]  proc_fail_nth_read+0x198/0x270
[ 1302.976732][T22096]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1302.982359][T22096]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1302.987972][T22096]  vfs_read+0x1ce/0xbd0
[ 1302.992199][T22096]  ? __fdget_pos+0xe8/0x170
[ 1302.996773][T22096]  ? __pfx_vfs_read+0x10/0x10
[ 1303.001549][T22096]  ? __pfx___mutex_lock+0x10/0x10
[ 1303.006632][T22096]  ? __fget_files+0x244/0x3f0
[ 1303.011381][T22096]  ksys_read+0x12f/0x260
[ 1303.015692][T22096]  ? __pfx_ksys_read+0x10/0x10
[ 1303.020528][T22096]  ? syscall_user_dispatch+0x77/0x140
[ 1303.025961][T22096]  do_syscall_64+0xcd/0x250
[ 1303.030617][T22096]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1303.036567][T22096] RIP: 0033:0x7f3322b7c93c
[ 1303.041158][T22096] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1303.060812][T22096] RSP: 002b:00007f3323a65030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1303.069270][T22096] RAX: ffffffffffffffda RBX: 00007f3322d35f80 RCX: 00007f3322b7c93c
[ 1303.077265][T22096] RDX: 000000000000000f RSI: 00007f3323a650a0 RDI: 0000000000000003
[ 1303.085291][T22096] RBP: 00007f3323a65090 R08: 0000000000000000 R09: 0000000000000000
[ 1303.093301][T22096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1303.101303][T22096] R13: 0000000000000000 R14: 00007f3322d35f80 R15: 00007ffe23456738
[ 1303.109358][T22096]  </TASK>
[ 1303.626359][T22033] coredump: 266(syz.1.4697): interrupted: fatal signal pending
[ 1303.648536][T22033] coredump: 266(syz.1.4697): Core dump to core has been interrupted
[ 1303.656700][T22033] coredump: 266(syz.1.4697): coredump has not been created, error -11
[ 1304.089477][   T29] audit: type=1326 audit(1727106988.130:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22109 comm="syz.0.4728" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f66c437def9 code=0x0
[ 1304.540782][   T54] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1304.556364][   T54] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1304.565915][   T54] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1304.575606][   T54] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1304.583927][   T54] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1304.591775][   T54] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1305.198052][T22117] chnl_net:caif_netlink_parms(): no params data found
[ 1305.440769][ T1270] ieee802154 phy0 wpan0: encryption failed: -22
[ 1305.447138][ T1270] ieee802154 phy1 wpan1: encryption failed: -22
[ 1305.651352][T22130] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4734'.
[ 1305.686732][T22117] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1305.708593][T22117] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1305.715933][T22117] bridge_slave_0: entered allmulticast mode
[ 1305.739720][T22117] bridge_slave_0: entered promiscuous mode
[ 1305.746522][T22039] coredump: 85(syz.2.4702): written to core: VMAs: 33, size 99442688; core: 62116750 bytes, pos 99450880
[ 1305.751811][T22117] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1305.782171][T22117] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1305.808688][T22117] bridge_slave_1: entered allmulticast mode
[ 1305.817225][T22117] bridge_slave_1: entered promiscuous mode
[ 1306.060078][T22117] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1306.093877][T22117] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1306.357130][T22117] team0: Port device team_slave_0 added
[ 1306.372667][T22048] coredump: 90(syz.2.4704): written to core: VMAs: 34, size 97480704; core: 60163076 bytes, pos 97497088
[ 1306.391419][T22117] team0: Port device team_slave_1 added
[ 1306.475254][T22071] coredump: 491(syz.3.4714): written to core: VMAs: 34, size 99708928; core: 62374854 bytes, pos 99717120
[ 1306.648504][   T54] Bluetooth: hci5: command tx timeout
[ 1306.710834][T22117] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1306.717860][T22117] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1306.758513][T22117] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1306.778111][T22117] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1306.785492][T22117] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1306.812020][T22117] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1307.253467][T22117] hsr_slave_0: entered promiscuous mode
[ 1307.337178][T22117] hsr_slave_1: entered promiscuous mode
[ 1307.365568][T22117] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1307.408681][T22117] Cannot create hsr debugfs directory
[ 1308.162284][T22117] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1308.610956][T22117] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1308.718536][   T54] Bluetooth: hci5: command tx timeout
[ 1308.942473][T22117] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1309.341093][T22117] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1309.477447][T22146] coredump: 384(syz.0.4738): interrupted: fatal signal pending
[ 1309.488459][T22146] coredump: 384(syz.0.4738): written to core: VMAs: 35, size 80703488; core: 49687278 bytes, pos 70258688
[ 1309.692727][T22117] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1309.779882][T22117] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1309.811470][T22117] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1309.845324][T22117] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1310.064252][T22117] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1310.122706][T22117] 8021q: adding VLAN 0 to HW filter on device team0
[ 1310.154678][T16411] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1310.161921][T16411] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1310.211452][T21431] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1310.218650][T21431] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1310.738528][T22117] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1310.791997][T22135] coredump: 379(syz.0.4734): written to core: VMAs: 34, size 97480704; core: 60158980 bytes, pos 97497088
[ 1310.803976][   T54] Bluetooth: hci5: command tx timeout
[ 1310.859707][T22117] veth0_vlan: entered promiscuous mode
[ 1310.918947][T22117] veth1_vlan: entered promiscuous mode
[ 1311.007851][T22117] veth0_macvtap: entered promiscuous mode
[ 1311.036737][T22117] veth1_macvtap: entered promiscuous mode
[ 1311.095225][T22117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1311.119262][T22160] coredump: 517(syz.3.4742): written to core: VMAs: 38, size 85028864; core: 64223474 bytes, pos 85041152
[ 1311.126522][T22117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1311.198721][T22117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1311.209434][T22117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1311.249279][T22117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1311.275350][T22117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1311.301136][T22117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1311.321302][T22117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1311.337908][T22117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1311.349132][T22117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1311.378415][T22117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1311.409893][T22117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1311.431327][T22117] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1311.483567][T22117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1311.519268][T22117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1311.538427][T22117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1311.568365][T22117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1311.578251][T22117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1311.618515][T22117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1311.637729][T22117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1311.651834][T22117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1311.675507][T22117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1311.699549][T22117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1311.720606][T22117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1311.738453][T22117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1311.758129][T22117] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1311.837481][T22117] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1311.875814][T22117] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1311.918455][T22117] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1311.927272][T22117] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1312.228652][T16410] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1312.236537][T16410] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1312.311927][T21431] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1312.321030][T21431] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1312.878692][   T54] Bluetooth: hci5: command tx timeout
[ 1314.511138][T22150] coredump: 115(syz.2.4739): written to core: VMAs: 34, size 99708928; core: 62378950 bytes, pos 99717120
[ 1317.317117][   T29] audit: type=1326 audit(1727107001.350:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22280 comm="syz.3.4782" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd07e37def9 code=0x0
[ 1317.762985][T20765] Bluetooth: hci1: command 0x0406 tx timeout
[ 1317.913000][T22180] coredump: 134(syz.2.4748): written to core: VMAs: 34, size 80572416; core: 60011462 bytes, pos 80580608
[ 1318.478527][   T29] audit: type=1326 audit(1727107002.510:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22292 comm="syz.1.4787" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f989157def9 code=0x0
[ 1319.597236][T22302] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4791'.
[ 1320.268195][T22319] coredump: 415(syz.0.4794): coredump has not been created, error -2
[ 1320.593540][T22288] coredump: 155(syz.2.4784): interrupted: fatal signal pending
[ 1320.601408][T22288] coredump: 155(syz.2.4784): written to core: VMAs: 33, size 80568320; core: 47516242 bytes, pos 68132864
[ 1321.941561][T22297] coredump: 561(syz.3.4789): Error writing out the process memory
[ 1321.957750][T22297] coredump: 561(syz.3.4789): written to core: VMAs: 36, size 76771328; core: 42119658 bytes, pos 62889984
[ 1322.112345][T22345] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4803'.
[ 1326.389299][   T29] audit: type=1326 audit(1727107010.400:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22385 comm="syz.1.4814" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f989157def9 code=0x0
[ 1326.658665][T22388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4815'.
[ 1326.870982][T22392] can: request_module (can-proto-0) failed.
[ 1327.210497][T22370] coredump: 178(syz.2.4810): interrupted: fatal signal pending
[ 1327.218150][T22370] coredump: 178(syz.2.4810): written to core: VMAs: 33, size 97345536; core: 39111250 bytes, pos 76447744
[ 1327.822643][T22346] coredump: 165(syz.2.4803): written to core: VMAs: 34, size 97480704; core: 60163076 bytes, pos 97497088
[ 1327.849987][T22252] coredump: 543(syz.3.4766): Error writing out the process memory
[ 1327.857965][T22252] coredump: 543(syz.3.4766): written to core: VMAs: 38, size 166948864; core: 105030866 bytes, pos 142606336
[ 1328.003199][T22310] coredump: 412(syz.0.4791): written to core: VMAs: 34, size 97480704; core: 60158980 bytes, pos 97497088
[ 1330.017202][T22325] coredump: 45(syz.1.4797): written to core: VMAs: 35, size 97607680; core: 62370814 bytes, pos 97615872
[ 1330.186724][T22322] coredump: 44(syz.1.4797): written to core: VMAs: 35, size 97607680; core: 62370814 bytes, pos 97615872
[ 1331.932989][T22207] coredump: 393(syz.0.4750): Error writing out the process memory
[ 1332.068435][T22207] coredump: 393(syz.0.4750): written to core: VMAs: 38, size 166948864; core: 105030866 bytes, pos 142606336
[ 1332.596163][T22422] coredump: 184(syz.2.4827): written to core: VMAs: 33, size 80568320; core: 60013138 bytes, pos 80576512
[ 1332.748973][   T29] audit: type=1326 audit(1727107016.790:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22438 comm="syz.3.4833" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd07e37def9 code=0x0
[ 1337.588458][   T29] audit: type=1326 audit(1727107021.610:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22493 comm="syz.1.4853" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f989157def9 code=0x0
[ 1337.834187][T22390] coredump: 424(syz.0.4815): written to core: VMAs: 34, size 97480704; core: 60158980 bytes, pos 97497088
[ 1338.377824][T22401] coredump: 427(syz.0.4817): written to core: VMAs: 34, size 97611776; core: 60277702 bytes, pos 97619968
[ 1340.806148][T22490] coredump: 444(syz.0.4851): interrupted: fatal signal pending
[ 1341.008418][T22490] coredump: 444(syz.0.4851): written to core: VMAs: 33, size 80568320; core: 17934930 bytes, pos 18325504
[ 1341.036781][T22429] coredump: 73(syz.1.4828): written to core: VMAs: 36, size 97742848; core: 60290102 bytes, pos 97751040
[ 1341.227164][T22456] coredump: 602(syz.3.4839): written to core: VMAs: 34, size 97611776; core: 60277702 bytes, pos 97619968
[ 1341.299286][T22449] coredump: 599(syz.3.4837): written to core: VMAs: 34, size 97611776; core: 60277702 bytes, pos 97619968
[ 1341.698057][T22450] coredump: 188(syz.2.4834): written to core: VMAs: 35, size 99704832; core: 64467966 bytes, pos 99713024
[ 1341.867818][T22528] 5: entered promiscuous mode
[ 1342.986293][T22515] coredump: 618(syz.3.4860): interrupted: fatal signal pending
[ 1343.038549][T22515] coredump: 618(syz.3.4860): written to core: VMAs: 36, size 97742848; core: 22053310 bytes, pos 30949376
[ 1343.270682][T22455] coredump: 189(syz.2.4834): written to core: VMAs: 35, size 99704832; core: 64467966 bytes, pos 99713024
[ 1345.350029][T22559] ------------[ cut here ]------------
[ 1345.357462][T22559] WARNING: CPU: 0 PID: 22559 at include/linux/cpumask.h:135 io_sq_offload_create+0xe3d/0x1090
[ 1345.368167][T22559] Modules linked in:
[ 1345.372789][T22559] CPU: 0 UID: 0 PID: 22559 Comm: syz.1.4877 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1345.383497][T22559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1345.393742][T22559] RIP: 0010:io_sq_offload_create+0xe3d/0x1090
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1345.399970][T22559] Code: 44 24 08 e9 2f f7 ff ff e8 70 a3 0d fd 44 89 e3 e9 06 ff ff ff e8 63 a3 0d fd 4c 89 ff e8 4b bb 7d fd eb ad e8 54 a3 0d fd 90 <0f> 0b 90 e9 f3 fd ff ff e8 46 a3 0d fd 31 ff 89 de e8 7d a5 0d fd
[ 1345.420009][T22559] RSP: 0018:ffffc9000bb27cd8 EFLAGS: 00010283
[ 1345.426138][T22559] RAX: 00000000000005fe RBX: ffff8880406ab400 RCX: ffffc9000fa0e000
[ 1345.435001][T22559] RDX: 0000000000040000 RSI: ffffffff847dabfc RDI: 0000000000000005
[ 1345.443289][T22559] RBP: ffff88807a258000 R08: 0000000000000005 R09: 0000000000000007
[ 1345.451387][T22559] R10: 0000000000000008 R11: 0000000000000000 R12: 0000000000000008
[ 1345.460412][T22559] R13: 1ffff92001764fa0 R14: ffffc9000bb27d20 R15: 0000000000000000
[ 1345.469534][T22559] FS:  00007f98923546c0(0000) GS:ffff8880b8800000(0000) knlGS:0000000000000000
[ 1345.478591][T22559] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1345.485236][T22559] CR2: 0000001b31e17ff8 CR3: 000000006e1f6000 CR4: 00000000003506f0
[ 1345.493370][T22559] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1345.501441][T22559] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1345.509544][T22559] Call Trace:
[ 1345.512869][T22559]  <TASK>
[ 1345.515838][T22559]  ? __warn+0xea/0x3d0
[ 1345.520037][T22559]  ? io_sq_offload_create+0xe3d/0x1090
[ 1345.525569][T22559]  ? report_bug+0x3c0/0x580
[ 1345.530201][T22559]  ? handle_bug+0x54/0xa0
[ 1345.534621][T22559]  ? exc_invalid_op+0x17/0x50
[ 1345.539467][T22559]  ? asm_exc_invalid_op+0x1a/0x20
[ 1345.544571][T22559]  ? io_sq_offload_create+0xe3c/0x1090
[ 1345.550186][T22559]  ? io_sq_offload_create+0xe3d/0x1090
[ 1345.555711][T22559]  ? io_sq_offload_create+0xe3c/0x1090
[ 1345.562293][T22559]  ? __pfx_io_sq_offload_create+0x10/0x10
[ 1345.568094][T22559]  ? io_pages_map+0x1dd/0x510
[ 1345.574031][T22559]  io_uring_setup+0x180f/0x3730
[ 1345.579043][T22559]  ? __pfx_io_uring_setup+0x10/0x10
[ 1345.584339][T22559]  __x64_sys_io_uring_setup+0x98/0x140
[ 1345.589944][T22559]  do_syscall_64+0xcd/0x250
[ 1345.594532][T22559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1345.600613][T22559] RIP: 0033:0x7f989157def9
[ 1345.605099][T22559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1345.625127][T22559] RSP: 002b:00007f9892354038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[ 1345.633652][T22559] RAX: ffffffffffffffda RBX: 00007f9891735f80 RCX: 00007f989157def9
[ 1345.641737][T22559] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 00000000000003ff
[ 1345.649836][T22559] RBP: 00007f98915f0b76 R08: 0000000000000000 R09: 0000000000000000
[ 1345.657853][T22559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1345.666990][T22559] R13: 0000000000000000 R14: 00007f9891735f80 R15: 00007ffd01fe3f18
[ 1345.676118][T22559]  </TASK>
[ 1345.679351][T22559] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1345.686663][T22559] CPU: 0 UID: 0 PID: 22559 Comm: syz.1.4877 Not tainted 6.11.0-syzkaller-05778-g176000734ee2 #0
[ 1345.697124][T22559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1345.707390][T22559] Call Trace:
[ 1345.710689][T22559]  <TASK>
[ 1345.713651][T22559]  dump_stack_lvl+0x3d/0x1f0
[ 1345.718298][T22559]  panic+0x70f/0x7f0
[ 1345.722233][T22559]  ? __pfx_panic+0x10/0x10
[ 1345.726675][T22559]  ? show_trace_log_lvl+0x29d/0x3d0
[ 1345.731922][T22559]  ? io_sq_offload_create+0xe3d/0x1090
[ 1345.737419][T22559]  check_panic_on_warn+0xab/0xb0
[ 1345.742405][T22559]  __warn+0xf6/0x3d0
[ 1345.746341][T22559]  ? io_sq_offload_create+0xe3d/0x1090
[ 1345.751841][T22559]  report_bug+0x3c0/0x580
[ 1345.756211][T22559]  handle_bug+0x54/0xa0
[ 1345.760436][T22559]  exc_invalid_op+0x17/0x50
[ 1345.765010][T22559]  asm_exc_invalid_op+0x1a/0x20
[ 1345.769912][T22559] RIP: 0010:io_sq_offload_create+0xe3d/0x1090
[ 1345.776027][T22559] Code: 44 24 08 e9 2f f7 ff ff e8 70 a3 0d fd 44 89 e3 e9 06 ff ff ff e8 63 a3 0d fd 4c 89 ff e8 4b bb 7d fd eb ad e8 54 a3 0d fd 90 <0f> 0b 90 e9 f3 fd ff ff e8 46 a3 0d fd 31 ff 89 de e8 7d a5 0d fd
[ 1345.795678][T22559] RSP: 0018:ffffc9000bb27cd8 EFLAGS: 00010283
[ 1345.801819][T22559] RAX: 00000000000005fe RBX: ffff8880406ab400 RCX: ffffc9000fa0e000
[ 1345.809915][T22559] RDX: 0000000000040000 RSI: ffffffff847dabfc RDI: 0000000000000005
[ 1345.817905][T22559] RBP: ffff88807a258000 R08: 0000000000000005 R09: 0000000000000007
[ 1345.825929][T22559] R10: 0000000000000008 R11: 0000000000000000 R12: 0000000000000008
[ 1345.833913][T22559] R13: 1ffff92001764fa0 R14: ffffc9000bb27d20 R15: 0000000000000000
[ 1345.841956][T22559]  ? io_sq_offload_create+0xe3c/0x1090
[ 1345.847455][T22559]  ? io_sq_offload_create+0xe3c/0x1090
[ 1345.852948][T22559]  ? __pfx_io_sq_offload_create+0x10/0x10
[ 1345.858705][T22559]  ? io_pages_map+0x1dd/0x510
[ 1345.863419][T22559]  io_uring_setup+0x180f/0x3730
[ 1345.868319][T22559]  ? __pfx_io_uring_setup+0x10/0x10
[ 1345.873596][T22559]  __x64_sys_io_uring_setup+0x98/0x140
[ 1345.879079][T22559]  do_syscall_64+0xcd/0x250
[ 1345.883618][T22559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1345.889591][T22559] RIP: 0033:0x7f989157def9
[ 1345.894057][T22559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1345.913714][T22559] RSP: 002b:00007f9892354038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[ 1345.922172][T22559] RAX: ffffffffffffffda RBX: 00007f9891735f80 RCX: 00007f989157def9
[ 1345.930172][T22559] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 00000000000003ff
[ 1345.938166][T22559] RBP: 00007f98915f0b76 R08: 0000000000000000 R09: 0000000000000000
[ 1345.946287][T22559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1345.954303][T22559] R13: 0000000000000000 R14: 00007f9891735f80 R15: 00007ffd01fe3f18
[ 1345.962333][T22559]  </TASK>
[ 1345.965614][T22559] Kernel Offset: disabled
[ 1345.970072][T22559] Rebooting in 86400 seconds..