last executing test programs: 10.08527539s ago: executing program 4 (id=419): recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x20000, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)={0x4c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @local}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20004081}, 0x4000080) 9.973588222s ago: executing program 4 (id=421): syz_emit_ethernet(0x68, &(0x7f0000005a40)=ANY=[@ANYBLOB="bbbbbbbbbbbb607620010000000000000000000000000000ff020000000000000000000000000001040090780000000060a3579e00002b00ff01000000000000778f3deac08b951cd90000000000000001fe8000000000000000"], 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="850000009a000000040000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140)) ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000180)={0x2, &(0x7f0000000000)=[{0x50, 0x0, 0x0, 0xfffffffe}, {0x6, 0x0, 0x4d}]}) writev(r0, &(0x7f0000001d40)=[{&(0x7f0000000580)="03f8", 0x2}], 0x1) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000000040)=0x7) close(0x4) 9.587352266s ago: executing program 4 (id=426): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@newtaction={0x21c, 0x30, 0x4, 0x70bd2b, 0x25dfdbfc, {}, [{0x208, 0x1, [@m_police={0x160, 0xd, 0x0, 0x0, {{0xb}, {0x5c, 0x2, 0x0, 0x1, [[@TCA_POLICE_RESULT={0x8}, @TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE64={0xc, 0x8, 0xa}, @TCA_POLICE_TBF={0x3c, 0x1, {0x6c0f, 0xffffffffffffffff, 0x2, 0x8, 0x2, {0xe1, 0x1, 0x9, 0xc, 0x7, 0x61}, {0x5, 0x1, 0x1ff, 0x2, 0xf800, 0x8}, 0x10, 0xf, 0x1}}]]}, {0xd9, 0x6, "68c07aba6ad618551b548713b672beb627d70ad2d3f62e0a8cb3cdc8d813efe1acbcc44cb590c1e70867144f66b9f3d0c5a4665d215e6fa199fe89b5f04662c4d831a02d6dd42f127ecf6c07da6c0d4cec15e69ecd5496e7bced7fbc4e77d3d7b8b8c9e0442b80b638dd4a019657a81d293861d37d2c641b3a78f2636c93a8b94caab8e9bd87923c3db915eff62a3cfa9ac4a32be42b0722c84f7dc7b3536dff34b6b9476df85ebb3d7dfe0b316b108840e3a18c3283ee5ff31284afb4275629214e6ad02c63c63f5bfceee59e1ebb88e187424587"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_tunnel_key={0xa4, 0x16, 0x0, 0x0, {{0xf}, {0x4}, {0x72, 0x6, "7aea8acdba5ba519ab94d146413ccce4c57af8369623fbe5abfd3d84adfce2cea54d630fd39c278fc32862b720ebe11ec62d3b35433032fae9a1825b9ce45d04085d163aa11006b35787f3f6b62dc079ffac848ec7767e5f70b4bc94c7624966ea8af7154e690e8f95b72e0a3078"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x21c}, 0x1, 0x0, 0x0, 0x81}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 9.502462832s ago: executing program 3 (id=428): r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 9.328213754s ago: executing program 4 (id=430): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@cgroup=r1, r0, 0x2, 0x0, 0x4000, @void, @value}, 0x10) r2 = socket$kcm(0x2, 0x2, 0x73) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) r6 = socket(0xa, 0x3, 0x3a) r7 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000003c0)={'bridge0\x00', 0x0}) setsockopt$MRT6_ADD_MIF(r6, 0x29, 0xca, &(0x7f0000000000)={0x4, 0x0, 0x0, r8}, 0xc) setsockopt$SO_BINDTODEVICE_wg(r2, 0x1, 0x19, &(0x7f0000000180)='wg2\x00', 0x4) setsockopt$MRT6_ADD_MIF(r6, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1, 0x6, r8, 0xffffff8f}, 0xc) setsockopt$MRT6_ADD_MFC_PROXY(r6, 0x29, 0xd2, &(0x7f00000000c0)={{0xa, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x0, @mcast1}, 0x0, {[0x691]}}, 0x5c) sendmsg$nl_route(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x18}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0xffffff14, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000010008105e9c51c000000000000000000", @ANYRES32=r9, @ANYBLOB="01000000000000002800128009000100766c616e000000001800028006000100000000000c0002000c0000000d00000008000500", @ANYRES64=r4], 0x50}}, 0x0) sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="2c0000001000030400"/20, @ANYRES32=r9, @ANYBLOB="a5fdad88000000000a000100aaaaaaaaaa0000005822f9ae7b8007"], 0x2c}}, 0x0) 9.203379597s ago: executing program 3 (id=431): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000009f910000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000b183616d000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r2, 0x0, 0x0) setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="3400000010001fff000000000800000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468"], 0x34}}, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r4, &(0x7f0000000200)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000), 0x4) r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x183442, 0x0) ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f0000000100)) 8.962612621s ago: executing program 4 (id=433): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x409c884, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @mcast1, 0x4}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000000c0)="bd736ad9120838f4ba8002e9e5c4f18ccc3a9362e6850bdcb392ca9787a7e48121e2434a5eefb358af84ab8207fd1fbe61155ef26feb268050ff62b0f966452fed1bdaaa0972be305824c62b51be3e20f61370d085b546108fd118834ae49225ffc7927722e5f37c66a6d897000964c8df", 0x71}, {&(0x7f0000000140)="11a415ce55a7a6e4ba699534abedd6db262d8fb88708b632312ca07a6fbf5c00b7a9b698a60953729d10d5342789b7cf368bbbac8157ee52534176c0a822da4dd7343a0d913c9117", 0x48}], 0x2}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000380)="24782ce7d4c309796e4beec1849a0073d60c38049810a8ca2694945907cbebbdf8488a8fadf1efbed6f836188afe7ed7acb3ad9b74b88f59c6863961db", 0x3d}, {&(0x7f00000003c0)="4c412d50339afea075f75f5a4499d3ab56f69233f89a9adb78057875d8d2b334784633f77ec9965eed03d2aba3c356b6f9208a050d54339e51cc918ba96c8a5c4cacabec43e6bf8c8a6fbbb7ca875590", 0x50}, {&(0x7f0000000440)="efadd73bc61f1df5bd5e320acd179b54f136050d13729281c8cf9793d74d3ba5ecec4618422410d880440119f6c664946cb0981eac590a597876f1e72f39c7e33f3230849b205ee606d85ec159c64143b81d71b4ac9593b4a7d7be46d81a9178496a1c07a27ad4e49360eb69ec607ceb24cc7c75e3282e1f32de4ac80b6ebde9ea5b3f9c1c82a73fa8428784e637c898043e2c738f50327047ecd2627364ddcaac71f13c4eae8a51e69c358185d4cb720fb0d2aaff44", 0xb6}, {&(0x7f0000000500)="603d6c79b692701a6c0d4508133427b87f0bc4256a95168946696a2091be150747f055fd190b6b33bf1140b844e08039527b5a57c05de8693b689c4443679ae6334f5044c6e2e056da1ac2e5ba192743bf80ba86bdfa5725ae09d8f370d5b59cc6b2a5a8ddedd07b7bedd4439f2d3f0220bee9e618c3fb4d0fc794ef765f1e6abcd618021e50c6e3bc05", 0x8a}], 0x4}}, {{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000001740)="3b8e79ff25b815898ca2a145af1f89b42d258d7b90f1e37a45dd7687b35301f6ac537f7e9b31a299af9aef3391b425171dd232ad4e45a39b1925aed016b17bf80a38d052070a6ef95c22cbc163cb7dc976a2b2a09d", 0x55}], 0x1}}, {{0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000001800)="37dc1a746cdc932b117d502e4fc049e550f8e84b8d6e79e71eee11e44f44114cc24771d9e3c67675e206a3c809a14266e5bb07eac7d6473264aec93d0aca7b92366c9bb22762d6d5517e2d046cd73db3737a524d531d35e388f9384ae7f9198555d79af53dde9282793db26016a7c5ed36234c2916f35aa68bd7cb27ae640d0799a0aa36f89a23e56ce58a842196fa98d42ca7e984b86b1fd24874311cac88a17dca4ab0d88e17142030e370e9db5d75c6e034cdb527f8655fa2a3", 0xbb}, {&(0x7f00000018c0)="18846edd3fbb9378ed", 0x9}, {&(0x7f0000001900)="dacdd6847a920a5b93aa3833d765b663caa7d8db0e7f83c3246d04f035a5122c0f500d0a61fd7ea00261943fb95627d37c7da92ecdca0651d20829b40f2b562ff60e9f2136e1ce6c04d2f377a1b8", 0x4e}, {&(0x7f0000001980)="da75b82b69760f0eef927ec47600295a45a36084ca90a2c7ab2b5f21ce3540ee0c03713e87a94d56ed1d16268cf9468f2017248d604c4f94de72a81c5c924cd552b275af30234930ef1306c3ddc175c9b4c5d5ce5c2483179d15fbc8789b3c39006fde3bb4649541b6e5ec0b5cc5dc9eafe4b3100ae694fe85b63c91c45c81a48a850feb57f5642192149a29c9042bf9683d8e90", 0x94}, {&(0x7f0000001a40)="3991af84bb1922945a441e95ec6fe86fb1270e66ec6c9d1b9f7029b049aed52b60e8f74aab0c3f2e3c4042d2384854ec07ed54ff40dd962f62067bccc445158bc5f43d41f6d41039abcea6df566c4db9f63ef00e3edf0e3d5c091f4b747cea8f05002db6309f1d3aaa3cec15a9ea35cf62b12573f63cea3840437464ecbc1d9c272cc2c42c13bca4c4736a52319b7c0b9bd1e4fbb228d8a3394b2fce32a1522717cc90d0b7c312ed79a3", 0xaa}, {&(0x7f0000001b00)="c53d67c401bb05d42edae37a2512fc5b00290b94bd5d8dede1ccd35a18f8d62190a3965cfb638c70ab7f3f0542a2b24421706b7f098c2d1e700b8f19a87a5f464677824726e88d12e24389861062c2c25ed148b175b0497eb2c23d75", 0x5c}], 0x6}}], 0x4, 0x20008004) sendto$inet6(r1, &(0x7f0000000000)="a008007a1a", 0x5, 0x5, 0x0, 0x0) recvfrom(r1, &(0x7f0000000640)=""/4101, 0x1005, 0x20, 0x0, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x1c, 0x2a, 0xb, 0x0, 0x0, {0x6}, [@typed={0x8, 0x31, 0x0, 0x0, @u32=0xfffffffb}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x0) 8.642852611s ago: executing program 1 (id=436): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'wlan0\x00', 0x6}) ioctl(r0, 0x8b22, &(0x7f0000000040)) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)={0x34, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x2, 0x7, 0x0, 0x1, [@IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x20004081}, 0x4000080) 8.515400796s ago: executing program 3 (id=438): unshare(0x62040200) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) 8.413346545s ago: executing program 1 (id=440): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r0, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8822d55593a2179}, 0xc) r1 = socket$inet6(0xa, 0x3, 0x87) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20040000}, 0x80) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001d00070f000000000000000007"], 0x24}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_INITMSG(r5, 0x84, 0x2, &(0x7f0000000080), &(0x7f0000000200)=0x8) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000280)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="5400000010000104000000000200000000000000", @ANYRES32=r6, @ANYBLOB="0000faffffff000034001280110001006272696467655f736c617665000000001c000580050021000000000006001f0000000000080022"], 0x54}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000190001000000000000000000021800000000fd000000ed0008000100ac1414000800080004"], 0x2c}}, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@empty, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x9}, {0x0, 0x1000000000, 0x53e5, 0x20}, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1}, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x2, 0x32}, 0x2, @in6=@private0, 0x0, 0x1}}, 0xe8) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x8, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) 8.325804583s ago: executing program 4 (id=442): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/12, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x4}}, [@NFT_MSG_DELTABLE={0xc0, 0x2, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_USERDATA={0x75, 0x6, "6e56555375a3166868fab2ea3de93afdc7c15d4c4bce35c0608f49b8142ba19e9508fd02d24b15c851e0d8610418d0e37835b5f9e4dce9d364362eacb8d12b28437d22ef751aa63b922d7bba8fb177fe9025c5d177b6eb40a643ea51065da628ae8159578aa972ad6806b84a9051536619"}]}], {0x14}}, 0xe8}}, 0x0) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY_LEVEL(r2, 0x0, 0x2, &(0x7f0000000140)=0xfffffffb, 0x4) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='sched_switch\x00', r3}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_opts(r4, 0x29, 0x40, &(0x7f0000000140)=ANY=[@ANYBLOB="000a0000000000000730000000000a0000000000000000000000000000000000000000ebffffff0000000000000000000000000000000020000007200000000006004dee00000000000000005f000000000000000104"], 0x60) r5 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_int(r5, 0x0, 0x19, 0x0, &(0x7f00000001c0)=0x2) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r6 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r6, 0x8914, 0x0) syz_emit_ethernet(0x2a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaa8aaaaa560a8e390c7608004507001c006800006802907864010101ac14"], 0x0) write$tun(0xffffffffffffffff, &(0x7f0000000540)=ANY=[@ANYBLOB="00004000000000008490788583b8bdac1414aa00000000c926ed44010146c788cabcf762c2b20b3f6dbacd", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="ba000000907800090b6f00050200000000000000000002d58838068b91000000"], 0x4e) mmap(&(0x7f0000ffc000/0x1000)=nil, 0xfffffffffffff002, 0x0, 0x32, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="0000f62d76"], 0x48) 7.812944007s ago: executing program 0 (id=445): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@newtaction={0x628, 0x30, 0x4, 0x70bd2b, 0x25dfdbfc, {}, [{0x614, 0x1, [@m_police={0x564, 0xd, 0x0, 0x0, {{0xb}, {0x460, 0x2, 0x0, 0x1, [[@TCA_POLICE_RESULT={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0xfffffffa, 0x8, 0x8000, 0x8, 0x6, 0x3, 0x7, 0x9, 0x5, 0x9, 0x8, 0xe, 0x2, 0x8, 0x1, 0x0, 0x80, 0x4, 0x7f, 0x5000, 0x5, 0x4, 0x6, 0x4, 0x10, 0xc9e, 0x6, 0x4, 0x8, 0x7b3dd35b, 0x9, 0x8, 0x4, 0x8, 0xb9b, 0x2d9c000, 0x7, 0x1000, 0x3, 0xb, 0x1, 0x0, 0x7, 0x81, 0xaff, 0xfff, 0x400, 0x9, 0x2, 0x280000, 0x3, 0x80000000, 0x4, 0xd0b, 0x6, 0x7, 0x8, 0x8, 0x0, 0x6, 0x7, 0x7, 0x3, 0x6, 0x40000005, 0x1, 0x0, 0x0, 0x1, 0xfffffffc, 0x401, 0x7f, 0xce9, 0x0, 0xa95, 0x9, 0x5, 0x7f, 0x76, 0x5, 0x8, 0xffff8000, 0x5, 0x2, 0xea0, 0x5, 0x9, 0x4, 0x58603ef2, 0x8, 0x4, 0x10, 0x8, 0x5, 0x2, 0xab7, 0x80000000, 0xdc, 0xa, 0x3, 0x0, 0x1a, 0xf, 0x200, 0x10, 0xa1, 0x7f, 0xffffffff, 0x0, 0x5, 0x9, 0x3, 0xffff62af, 0x2, 0x8, 0x9, 0x5, 0x80000001, 0x2, 0x80000000, 0x40, 0xb314, 0x4d, 0x4, 0x8000, 0x0, 0x80, 0x2, 0x4, 0x6, 0x5, 0x7, 0x0, 0x4, 0x40, 0x0, 0x2c, 0x13, 0x6, 0x6, 0x3, 0x0, 0x3, 0x8, 0x6, 0x3dde, 0x1, 0x248, 0x5, 0x0, 0x401, 0x2, 0xd, 0x7f, 0x2c04, 0x4, 0x9, 0x2, 0x1, 0xf, 0xfffffffb, 0x8, 0x418, 0x200, 0x0, 0x3, 0x8, 0x2, 0x41f, 0x9, 0x91, 0x8, 0x3ff, 0xf, 0x7f, 0x4, 0x3, 0x5, 0x747b0a57, 0x3, 0x6c84, 0x10001, 0x1, 0xcf5c, 0x40d, 0x8, 0x448, 0x0, 0x7, 0x7, 0x0, 0x9, 0x1, 0xa, 0x8000, 0x10f3, 0x3, 0x8, 0x7fff, 0x1, 0x3, 0x7ff, 0x38000000, 0x1, 0x6, 0x7, 0x10, 0x2, 0x2, 0x7fff, 0xffffffff, 0x0, 0x5, 0x2, 0x9, 0xb948, 0x0, 0x676, 0x6, 0xffff8000, 0x0, 0xb9, 0x7, 0x1, 0x80, 0x5d, 0x0, 0xffffffff, 0xf3, 0xa, 0x5, 0x80, 0xffffff68, 0x80000000, 0x10001, 0x959a, 0x1, 0x4, 0xb6, 0xfff, 0x8, 0x7fffffff, 0x5, 0x2, 0x18a48b8b, 0xad, 0x9, 0x80, 0x9, 0x2, 0x200, 0xd, 0x35da, 0x8, 0x4, 0x8]}, @TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE64={0xc, 0x8, 0xa}, @TCA_POLICE_TBF={0x3c, 0x1, {0x6c0f, 0xffffffffffffffff, 0x2, 0x8, 0x2, {0xe1, 0x1, 0x9, 0xc, 0x7, 0x61}, {0x5, 0x1, 0x1ff, 0x2, 0xf800, 0x8}, 0x10, 0xf, 0x1}}]]}, {0xd9, 0x6, "68c07aba6ad618551b548713b672beb627d70ad2d3f62e0a8cb3cdc8d813efe1acbcc44cb590c1e70867144f66b9f3d0c5a4665d215e6fa199fe89b5f04662c4d831a02d6dd42f127ecf6c07da6c0d4cec15e69ecd5496e7bced7fbc4e77d3d7b8b8c9e0442b80b638dd4a019657a81d293861d37d2c641b3a78f2636c93a8b94caab8e9bd87923c3db915eff62a3cfa9ac4a32be42b0722c84f7dc7b3536dff34b6b9476df85ebb3d7dfe0b316b108840e3a18c3283ee5ff31284afb4275629214e6ad02c63c63f5bfceee59e1ebb88e187424587"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_tunnel_key={0xac, 0x16, 0x0, 0x0, {{0xf}, {0x4}, {0x79, 0x6, "7aea8acdba5ba519ab94d146413ccce4c57af8369623fbe5abfd3d84adfce2cea54d630fd39c278fc32862b720ebe11ec62d3b35433032fae9a1825b9ce45d04085d163aa11006b35787f3f6b62dc079ffac848ec7767e5f70b4bc94c7624966ea8af7154e690e8f95b72e0a3078616860bc103ba2"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x628}, 0x1, 0x0, 0x0, 0x81}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400}) 7.793260548s ago: executing program 1 (id=446): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000500)="d8000000180081054e81f782db4cb904021d0800fe207c05e8fe55a10a0015000200142603600e12080005007f370401a8001600200006000500027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2e98a61e284ce5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b", 0xd2}], 0x1}, 0x0) 7.580094471s ago: executing program 1 (id=447): socket$netlink(0x10, 0x3, 0x15) r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f00000000c0)={0x0, 0x2}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000140)={r1, 0x6, 0x9, [0x6, 0x7, 0x5f6, 0x7, 0x1, 0xffff, 0xb29, 0x3, 0x9]}, &(0x7f0000000180)=0x1a) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='mmap_lock_acquire_returned\x00'}, 0x10) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) write$cgroup_subtree(r3, &(0x7f0000000100)=ANY=[], 0x32600) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10) 7.543530088s ago: executing program 0 (id=448): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x82, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', 0x8) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000700000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='ext4_es_lookup_extent_enter\x00', r1}, 0x10) bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={0x0, r2}, 0x18) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x100000, @loopback}], 0x1c) 7.216361501s ago: executing program 0 (id=449): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000070000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) socket$nl_route(0x10, 0x3, 0x0) bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000000)={0x1, 0x8002, 0x8, 0x2}, &(0x7f0000000040)=0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000200)={0x1, [0x0]}, &(0x7f00000002c0)=0x8) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000300)={r2, 0x3ab7}, &(0x7f0000000340)=0x8) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001840)=ANY=[@ANYBLOB], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='ext4_ext_convert_to_initialized_fastpath\x00', r3}, 0x18) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10) sendmsg$netlink(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)}, 0x0) socket$inet(0x2, 0x0, 0x0) r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8b04, &(0x7f0000000000)={'wlan1\x00'}) setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f00000000c0)={0x43, 0x1, 0x2}, 0x10) sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={0x20, 0x0, 0x1, 0x3, 0x0, {0x22}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4080}, 0x0) 7.21592242s ago: executing program 3 (id=450): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x82, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x100000, @loopback}], 0x1c) sendto$inet6(r0, &(0x7f0000000040)="ee", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback, 0x8000005}, 0x1c) (fail_nth: 2) 6.712526299s ago: executing program 2 (id=451): syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88c19edace00000000000000002100000002ff02000000000000000000000000000104004e20"], 0x0) 6.71213858s ago: executing program 3 (id=452): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@newtaction={0x170, 0x30, 0x4, 0x70bd2b, 0x25dfdbfc, {}, [{0x15c, 0x1, [@m_police={0x124, 0xd, 0x0, 0x0, {{0xb}, {0x20, 0x2, 0x0, 0x1, [[@TCA_POLICE_RESULT={0x8}, @TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE64={0xc, 0x8, 0xa}]]}, {0xd9, 0x6, "68c07aba6ad618551b548713b672beb627d70ad2d3f62e0a8cb3cdc8d813efe1acbcc44cb590c1e70867144f66b9f3d0c5a4665d215e6fa199fe89b5f04662c4d831a02d6dd42f127ecf6c07da6c0d4cec15e69ecd5496e7bced7fbc4e77d3d7b8b8c9e0442b80b638dd4a019657a81d293861d37d2c641b3a78f2636c93a8b94caab8e9bd87923c3db915eff62a3cfa9ac4a32be42b0722c84f7dc7b3536dff34b6b9476df85ebb3d7dfe0b316b108840e3a18c3283ee5ff31284afb4275629214e6ad02c63c63f5bfceee59e1ebb88e187424587"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_tunnel_key={0x34, 0x16, 0x0, 0x0, {{0xf}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x170}, 0x1, 0x0, 0x0, 0x81}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 6.571314823s ago: executing program 1 (id=453): socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet(0x2, 0x4000000805, 0x100004) sendmmsg(r2, &(0x7f0000000e40)=[{{&(0x7f0000000000)=@l2tp={0x2, 0x0, @local}, 0x80, &(0x7f0000000300)=[{&(0x7f00000000c0)="ae", 0x1}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x600}}], 0x2, 0x0) sendmsg$inet(r1, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0xff0f}], 0x1}, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_int(r3, &(0x7f0000000080)='hugetlb.2MB.rsvd.limit_in_bytes\x00', 0x2, 0x0) write$cgroup_subtree(r4, &(0x7f0000000180)=ANY=[], 0x27) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) sendmmsg$inet6(r5, &(0x7f0000000400)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3}, 0x1c, &(0x7f0000000300)=[{&(0x7f0000000180)="d7", 0x1}], 0x1}}], 0x1, 0x0) shutdown(r5, 0x1) r6 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_TCP_CONGESTION(r6, 0x6, 0xd, &(0x7f0000000100)='scalable\x00', 0x9) getsockopt$inet_sctp6_SCTP_RTOINFO(r5, 0x84, 0x0, &(0x7f0000000240)={0x0, 0x7, 0x1, 0xdb725100}, &(0x7f0000000280)=0x10) close(r1) r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r8 = socket$pppl2tp(0x18, 0x1, 0x1) r9 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r8, &(0x7f0000000740)=@pppol2tpv3={0x18, 0x1, {0x3, r9, {0x2, 0x4e24, @broadcast}, 0x2, 0x0, 0x4}}, 0x2e) r10 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff) r11 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$L2TP_CMD_SESSION_DELETE(r11, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x34, r10, 0x1, 0x1070bd2c, 0x4, {0x5}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0xaa8}, @L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x7}]}, 0x34}}, 0x20) r12 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r12, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}, 0x2}}, 0x26) setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r12, 0x111, 0x3, 0x20000008, 0x4) ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) ioctl$TUNSETIFINDEX(r7, 0x400454da, 0x0) r13 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$sock_int(r13, 0x1, 0x12, &(0x7f0000000080)=0xfffffffc, 0x4) recvmsg(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000580)=""/91, 0x5b}], 0x1, 0x0, 0xa6d7d765e9c5ad88}, 0x161) 6.481130881s ago: executing program 2 (id=454): r0 = socket(0x200000000000011, 0x2, 0x1) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'syz_tun\x00', 0x0}) bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, r1, 0x1, 0x0, 0x6, @multicast}, 0x14) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4) syz_emit_ethernet(0xfdef, &(0x7f0000000300)=ANY=[], 0x0) 6.347116884s ago: executing program 2 (id=455): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'lo\x00'}) sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0xc0}, 0x4000810) 6.329789129s ago: executing program 3 (id=456): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r1, 0x0, 0x0) epoll_create1(0x0) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10) ppoll(&(0x7f0000000500)=[{r2}], 0x1, 0x0, 0x0, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0) 6.329026526s ago: executing program 0 (id=457): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x9) bind$inet6(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x28, r3, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x28, r5, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r6, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000) 6.15014364s ago: executing program 2 (id=458): socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x3, 0x0) socket$inet_udp(0x2, 0x2, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) socket$inet(0x2, 0x6, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) socket$inet6_udp(0xa, 0x2, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) socket$inet6_sctp(0xa, 0x1, 0x84) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xf, 0x4, 0x8, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) socket(0x28, 0x5, 0x0) socket$inet_sctp(0x2, 0x5, 0x84) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) socket$packet(0x11, 0x2, 0x300) openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r0, @ANYRESHEX=r0], 0x20) 6.100721058s ago: executing program 1 (id=459): r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x5, 0x0, 0x0, 0x0, 0xfffc], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0xff}]}]}]}}]}, 0xa4}}, 0x0) 6.014680492s ago: executing program 0 (id=460): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x58, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x2c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'syz_tun\x00'}]}]}]}], {0x14}}, 0x80}}, 0x0) syz_emit_ethernet(0x4a, &(0x7f000001f8c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x29}, @void, {@ipv4={0x8864, @tipc={{0x5, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x21, 0x0, 0x6, 0x0, @rand_addr, @initdev={0xac, 0x1e, 0x0, 0x0}}, @name_distributor={{0x28, 0x0, 0x0, 0x0, 0x0, 0xa, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}}}}}}, 0x0) 5.914312678s ago: executing program 0 (id=461): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@newtaction={0x21c, 0x30, 0x4, 0x70bd2b, 0x25dfdbfc, {}, [{0x208, 0x1, [@m_police={0x160, 0xd, 0x0, 0x0, {{0xb}, {0x5c, 0x2, 0x0, 0x1, [[@TCA_POLICE_RESULT={0x8}, @TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE64={0xc, 0x8, 0xa}, @TCA_POLICE_TBF={0x3c, 0x1, {0x6c0f, 0xffffffffffffffff, 0x2, 0x8, 0x2, {0xe1, 0x1, 0x9, 0xc, 0x7, 0x61}, {0x5, 0x1, 0x1ff, 0x2, 0xf800, 0x8}, 0x10, 0xf, 0x1}}]]}, {0xd9, 0x6, "68c07aba6ad618551b548713b672beb627d70ad2d3f62e0a8cb3cdc8d813efe1acbcc44cb590c1e70867144f66b9f3d0c5a4665d215e6fa199fe89b5f04662c4d831a02d6dd42f127ecf6c07da6c0d4cec15e69ecd5496e7bced7fbc4e77d3d7b8b8c9e0442b80b638dd4a019657a81d293861d37d2c641b3a78f2636c93a8b94caab8e9bd87923c3db915eff62a3cfa9ac4a32be42b0722c84f7dc7b3536dff34b6b9476df85ebb3d7dfe0b316b108840e3a18c3283ee5ff31284afb4275629214e6ad02c63c63f5bfceee59e1ebb88e187424587"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_tunnel_key={0xa4, 0x16, 0x0, 0x0, {{0xf}, {0x4}, {0x72, 0x6, "7aea8acdba5ba519ab94d146413ccce4c57af8369623fbe5abfd3d84adfce2cea54d630fd39c278fc32862b720ebe11ec62d3b35433032fae9a1825b9ce45d04085d163aa11006b35787f3f6b62dc079ffac848ec7767e5f70b4bc94c7624966ea8af7154e690e8f95b72e0a3078"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x21c}, 0x1, 0x0, 0x0, 0x81}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 82.534139ms ago: executing program 2 (id=462): unshare(0x24060400) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x0, 0x3938700}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r0, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}], 0x48}, 0x0) r1 = socket$inet6_icmp(0xa, 0x2, 0x3a) ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f00000000c0)={{'\x00', 0x3}, {0x8000000000000001}, 0x19, 0x0, 0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, &(0x7f0000000440)={0x2, 0xfb, {0x1, 0xc, 0xb8, "f39d101c3c2f8f217a01001caa59e9107bded8a3b11079e1aaab9f7e6c50b6717c9f3007ee6859fca9973a09ce9e973eecd7a3b5d754dab1c39bfa55d49df04fe610146eab6f6f0593374613f528e8f62b347711c3ef53f7d23fbd1e0a7ef77798e4b8accd309434acc37395973068924a77e5f0dd72ec4757bce0f607a4f14f2a012dab5964f7be9a2223c316ec9fcb188398d0a302e2ba1c0aad59bf5e430e1c03ea1337810f4e3e248e5ae70e395277cd62fc3f084a3c", 0x36, "cb541067eb067e94b53b1201219a54ec32ff02d8d6469833bd4ba8f0c857d0ab2e2a8fa2a4c902a2b5ae67983aec996de902332ab047"}, 0x9a, "9f020043bfc4f6a59c8c87d1460f0bc934eceb0e190e06deaeee261b24159469771b5b73d3c89282799cb5de3d5e245e4f67bd9d6716d192f289a9f1b85b9e82a771591de414d93385489f8abd4c08be18a0d21c1781b9402fb35c654dee41eab317401e909061f8e7777620037dab7f03b475db20b6e31457d4f172aaa88b91e30f7205684c61bfe007839d9e5e8651f7b424059a120de1124b"}, 0x1a1}) 0s ago: executing program 2 (id=463): r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x1}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x3, 0x0, @dev={0xfe, 0x80, '\x00', 0x2}, 0x1}, 0x1c) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), r1) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001819e2e2bb72d80002000000000000000100"/39], &(0x7f0000000240)=""/220, 0x32, 0xdc, 0xa, 0x0, 0x0, @void, @value}, 0x20) sendmsg$NL802154_CMD_NEW_SEC_KEY(r1, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r2, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400000000000000080001000300000005000200000000000500020008000000240003"], 0x12c}, 0x1, 0x0, 0x0, 0x20000020}, 0x0) syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), 0xffffffffffffffff) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r3) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000080)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010026bd7000ffdbdf252e00000005002b000100000005002e00b20000000c0005000201aaaaaaaaaaaa08000200", @ANYRES32=r5, @ANYBLOB="a6299563d4e1803451cd971e1f38791795cc7998451399ee78ae35f89ce60437aef5d99c1adf164211d99da656ae6b49e9d4377537b912776f1d9b5483ff88d0b614ead4eb2a98c4cc792de2e86c0288574cccd2434ea8cd3a2897d947d72307d35151abe63c0a5fb763201d82a67508a718cb33f7bf9b2c7dbbde01c531529058b92ace7d2a2f7d593fca18a32de0492375faf547aad8fad72adadfc6a8149112d5"], 0x38}, 0x1, 0x0, 0x0, 0x24000804}, 0x850) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wpan3\x00'}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wpan0\x00'}) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) r7 = socket$inet(0x2, 0x2, 0x1) sendmmsg$inet(r7, &(0x7f0000000540)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000c00)="08001497733f5c3edb", 0x9}, {0x0}], 0x2}}], 0x1, 0x2004004) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r8) sendmsg$NLBL_CIPSOV4_C_ADD(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000080)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000000100000008000200030000000800010000000000340004"], 0x5c}}, 0x0) sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)=ANY=[@ANYBLOB="54000000020601030000000000000000000000000900020073797a30000000000500010006002300050005008000000005000400000000000c00078005001500080000000d000300686173683a6d616300000000383ba94edb3cc8f486e690d54fd191f0c90f3bb6f3adb467ed7d11804f6c404934a2089cacd30ac721a0d6815056b4931bbe8a4371e4e533209538c5ae7ae52cdb4c9279ecc227c6"], 0x54}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.190' (ED25519) to the list of known hosts. [ 75.760949][ T5842] cgroup: Unknown subsys name 'net' [ 75.913398][ T5842] cgroup: Unknown subsys name 'cpuset' [ 75.921996][ T5842] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 77.466632][ T5842] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 81.377331][ T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 81.386146][ T54] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 81.400359][ T5870] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 81.408231][ T5870] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 81.416034][ T5870] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 81.424291][ T5870] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 81.433365][ T5870] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 81.441536][ T5870] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 81.447981][ T5871] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 81.456363][ T5871] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 81.458311][ T5870] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 81.472470][ T5871] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 81.480672][ T5871] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 81.488505][ T5871] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 81.496134][ T5872] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 81.498205][ T5873] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 81.505312][ T5872] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 81.511499][ T5873] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 81.518083][ T5872] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 81.525804][ T5873] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 81.531700][ T5871] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 81.540711][ T5873] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 81.547734][ T5163] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 81.556013][ T5873] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 81.562543][ T5163] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 81.568209][ T5873] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 81.575390][ T5163] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 81.596481][ T5163] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 81.604400][ T5163] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 81.615181][ T5163] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 81.968538][ T5852] chnl_net:caif_netlink_parms(): no params data found [ 82.110950][ T5862] chnl_net:caif_netlink_parms(): no params data found [ 82.183011][ T5854] chnl_net:caif_netlink_parms(): no params data found [ 82.271396][ T5856] chnl_net:caif_netlink_parms(): no params data found [ 82.286485][ T5852] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.294692][ T5852] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.302385][ T5852] bridge_slave_0: entered allmulticast mode [ 82.309708][ T5852] bridge_slave_0: entered promiscuous mode [ 82.342980][ T5852] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.350325][ T5852] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.357506][ T5852] bridge_slave_1: entered allmulticast mode [ 82.364503][ T5852] bridge_slave_1: entered promiscuous mode [ 82.400506][ T5853] chnl_net:caif_netlink_parms(): no params data found [ 82.452755][ T5862] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.460130][ T5862] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.467399][ T5862] bridge_slave_0: entered allmulticast mode [ 82.474363][ T5862] bridge_slave_0: entered promiscuous mode [ 82.482030][ T5862] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.493209][ T5862] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.500506][ T5862] bridge_slave_1: entered allmulticast mode [ 82.507286][ T5862] bridge_slave_1: entered promiscuous mode [ 82.544973][ T5852] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.574150][ T5854] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.584073][ T5854] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.593052][ T5854] bridge_slave_0: entered allmulticast mode [ 82.600833][ T5854] bridge_slave_0: entered promiscuous mode [ 82.613556][ T5852] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 82.653594][ T5854] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.660916][ T5854] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.668515][ T5854] bridge_slave_1: entered allmulticast mode [ 82.675303][ T5854] bridge_slave_1: entered promiscuous mode [ 82.706614][ T5852] team0: Port device team_slave_0 added [ 82.735535][ T5862] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.747187][ T5862] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 82.775814][ T5852] team0: Port device team_slave_1 added [ 82.806250][ T5852] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 82.813477][ T5852] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 82.839611][ T5852] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 82.862966][ T5854] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.887187][ T5856] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.894553][ T5856] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.901923][ T5856] bridge_slave_0: entered allmulticast mode [ 82.908982][ T5856] bridge_slave_0: entered promiscuous mode [ 82.935224][ T5852] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 82.942337][ T5852] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 82.968720][ T5852] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 82.995087][ T5862] team0: Port device team_slave_0 added [ 83.010986][ T5854] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.029622][ T5856] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.036839][ T5856] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.044711][ T5856] bridge_slave_1: entered allmulticast mode [ 83.051791][ T5856] bridge_slave_1: entered promiscuous mode [ 83.070430][ T5853] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.077983][ T5853] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.085224][ T5853] bridge_slave_0: entered allmulticast mode [ 83.092477][ T5853] bridge_slave_0: entered promiscuous mode [ 83.101942][ T5853] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.109526][ T5853] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.116776][ T5853] bridge_slave_1: entered allmulticast mode [ 83.124980][ T5853] bridge_slave_1: entered promiscuous mode [ 83.135250][ T5862] team0: Port device team_slave_1 added [ 83.160757][ T5854] team0: Port device team_slave_0 added [ 83.168692][ T5854] team0: Port device team_slave_1 added [ 83.201554][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.208735][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.235106][ T5862] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.259896][ T5856] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 83.291352][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.300315][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.326470][ T5862] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.351184][ T5854] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.358413][ T5854] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.384488][ T5854] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.397742][ T5856] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.420493][ T5852] hsr_slave_0: entered promiscuous mode [ 83.427238][ T5852] hsr_slave_1: entered promiscuous mode [ 83.437043][ T5853] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 83.450273][ T5853] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.461599][ T5854] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.468687][ T5854] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.494826][ T5854] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.537225][ T5853] team0: Port device team_slave_0 added [ 83.580743][ T5853] team0: Port device team_slave_1 added [ 83.598717][ T5867] Bluetooth: hci3: command tx timeout [ 83.601373][ T5856] team0: Port device team_slave_0 added [ 83.604544][ T5867] Bluetooth: hci0: command tx timeout [ 83.636476][ T5856] team0: Port device team_slave_1 added [ 83.663096][ T5862] hsr_slave_0: entered promiscuous mode [ 83.669874][ T5862] hsr_slave_1: entered promiscuous mode [ 83.676000][ T5862] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 83.683881][ T5867] Bluetooth: hci4: command tx timeout [ 83.687927][ T5863] Bluetooth: hci2: command tx timeout [ 83.689928][ T5862] Cannot create hsr debugfs directory [ 83.695217][ T5867] Bluetooth: hci1: command tx timeout [ 83.714156][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.721199][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.747398][ T5853] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.794197][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.801253][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.828173][ T5853] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.840324][ T5856] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.847329][ T5856] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.874007][ T5856] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.917831][ T5856] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.924864][ T5856] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.952122][ T5856] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.966406][ T5854] hsr_slave_0: entered promiscuous mode [ 83.974209][ T5854] hsr_slave_1: entered promiscuous mode [ 83.980611][ T5854] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 83.988630][ T5854] Cannot create hsr debugfs directory [ 84.106357][ T5853] hsr_slave_0: entered promiscuous mode [ 84.113102][ T5853] hsr_slave_1: entered promiscuous mode [ 84.119989][ T5853] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 84.129458][ T5853] Cannot create hsr debugfs directory [ 84.180302][ T5856] hsr_slave_0: entered promiscuous mode [ 84.186718][ T5856] hsr_slave_1: entered promiscuous mode [ 84.193939][ T5856] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 84.201628][ T5856] Cannot create hsr debugfs directory [ 84.414523][ T5852] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 84.446397][ T5852] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 84.470472][ T5852] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 84.508682][ T5852] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 84.546494][ T5862] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 84.588685][ T5862] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 84.599758][ T5862] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 84.626079][ T5862] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 84.696122][ T5854] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 84.709234][ T5854] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 84.733375][ T5854] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 84.760229][ T5854] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 84.827339][ T5853] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 84.838834][ T5853] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 84.849679][ T5853] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 84.884056][ T5853] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 84.982414][ T5852] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.991122][ T5856] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 85.001744][ T5856] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 85.023619][ T5862] 8021q: adding VLAN 0 to HW filter on device bond0 [ 85.031174][ T5856] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 85.042871][ T5856] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 85.084125][ T5852] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.134242][ T3567] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.141679][ T3567] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.152508][ T3567] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.159733][ T3567] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.181741][ T5862] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.242165][ T5854] 8021q: adding VLAN 0 to HW filter on device bond0 [ 85.284797][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.291968][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.302514][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.309859][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.329446][ T5854] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.348540][ T5853] 8021q: adding VLAN 0 to HW filter on device bond0 [ 85.381374][ T5852] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 85.404835][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.412054][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.425384][ T5853] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.497403][ T3567] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.505249][ T3567] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.525811][ T3567] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.532966][ T3567] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.543902][ T3567] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.551115][ T3567] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.654104][ T5862] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 85.679622][ T5867] Bluetooth: hci0: command tx timeout [ 85.685112][ T5863] Bluetooth: hci3: command tx timeout [ 85.714997][ T5856] 8021q: adding VLAN 0 to HW filter on device bond0 [ 85.726218][ T5852] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.758440][ T5863] Bluetooth: hci2: command tx timeout [ 85.758572][ T5163] Bluetooth: hci4: command tx timeout [ 85.763959][ T5867] Bluetooth: hci1: command tx timeout [ 85.786300][ T5856] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.895643][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.902884][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.923524][ T5852] veth0_vlan: entered promiscuous mode [ 85.954374][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.961596][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 86.011055][ T5852] veth1_vlan: entered promiscuous mode [ 86.069887][ T5854] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.167053][ T5852] veth0_macvtap: entered promiscuous mode [ 86.205980][ T5862] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.254504][ T5852] veth1_macvtap: entered promiscuous mode [ 86.295152][ T5854] veth0_vlan: entered promiscuous mode [ 86.331904][ T5853] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.346171][ T5862] veth0_vlan: entered promiscuous mode [ 86.364691][ T5854] veth1_vlan: entered promiscuous mode [ 86.404375][ T5862] veth1_vlan: entered promiscuous mode [ 86.418949][ T5852] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.471235][ T5852] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.513386][ T5856] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.524146][ T5852] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.534775][ T5852] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.544113][ T5852] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.553620][ T5852] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.622505][ T5854] veth0_macvtap: entered promiscuous mode [ 86.636501][ T5862] veth0_macvtap: entered promiscuous mode [ 86.665539][ T5854] veth1_macvtap: entered promiscuous mode [ 86.680171][ T5862] veth1_macvtap: entered promiscuous mode [ 86.753913][ T5856] veth0_vlan: entered promiscuous mode [ 86.781462][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 86.793623][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.806167][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.825593][ T749] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.839834][ T749] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.856349][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 86.867236][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.887046][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.902918][ T5862] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.914030][ T5862] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.922915][ T5862] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.932461][ T5862] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.966185][ T5854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 86.977031][ T5854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.987225][ T5854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 86.998054][ T5854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.010471][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.030024][ T5856] veth1_vlan: entered promiscuous mode [ 87.050673][ T5853] veth0_vlan: entered promiscuous mode [ 87.060776][ T8] cfg80211: failed to load regulatory.db [ 87.075106][ T5854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 87.086033][ T5854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.103011][ T5854] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 87.113995][ T5854] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.129831][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 87.173589][ T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.196565][ T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.218322][ T5854] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.227162][ T5854] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.236129][ T5854] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.248617][ T5854] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.266392][ T5853] veth1_vlan: entered promiscuous mode [ 87.379284][ T5852] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 87.405920][ T5856] veth0_macvtap: entered promiscuous mode [ 87.444976][ T3567] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.468935][ T3567] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.519451][ T5856] veth1_macvtap: entered promiscuous mode [ 87.545078][ T5853] veth0_macvtap: entered promiscuous mode [ 87.583021][ T5853] veth1_macvtap: entered promiscuous mode [ 87.641424][ T5939] bond0: option fail_over_mac: unable to set because the bond device has slaves [ 87.659261][ T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.691175][ T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.749729][ T5856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.760454][ T5867] Bluetooth: hci0: command tx timeout [ 87.760465][ T5163] Bluetooth: hci3: command tx timeout [ 87.773249][ T5856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.795876][ T5856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.809016][ T5856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.835213][ T5856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.838244][ T5163] Bluetooth: hci4: command tx timeout [ 87.851194][ T5867] Bluetooth: hci1: command tx timeout [ 87.851239][ T5867] Bluetooth: hci2: command tx timeout [ 87.869730][ T5856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.882581][ T5856] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.896322][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.908875][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.922379][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.939646][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.951321][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.962274][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.973645][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.986143][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.996652][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 88.008711][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.021073][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 88.043654][ T5942] ip6tnl1: entered promiscuous mode [ 88.052502][ T5942] ip6tnl1: entered allmulticast mode [ 88.119409][ T5856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.135873][ T5856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.150886][ T5856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.162084][ T5856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.172303][ T5856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.182939][ T5856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.195384][ T5856] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.207280][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.219261][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.234945][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.255430][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.266957][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.284803][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.295737][ T5853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.306518][ T5853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.331922][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.378375][ T5856] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.387756][ T5856] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.397421][ T5856] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.427714][ T5856] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.450928][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.469182][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.488782][ T5853] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.505590][ T5853] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.515691][ T5853] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.525082][ T5853] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.535301][ T5950] FAULT_INJECTION: forcing a failure. [ 88.535301][ T5950] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 88.554401][ T5950] CPU: 0 UID: 0 PID: 5950 Comm: syz.3.4 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 88.564566][ T5950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 88.574687][ T5950] Call Trace: [ 88.578010][ T5950] [ 88.580980][ T5950] dump_stack_lvl+0x241/0x360 [ 88.585713][ T5950] ? __pfx_dump_stack_lvl+0x10/0x10 [ 88.590958][ T5950] ? __pfx__printk+0x10/0x10 [ 88.595600][ T5950] ? __pfx_lock_release+0x10/0x10 [ 88.600766][ T5950] should_fail_ex+0x3b0/0x4e0 [ 88.605504][ T5950] _copy_from_user+0x2f/0xc0 [ 88.610154][ T5950] copy_msghdr_from_user+0xae/0x680 [ 88.615415][ T5950] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 88.621280][ T5950] ? __fget_files+0x2a/0x410 [ 88.626026][ T5950] ? __fget_files+0x2a/0x410 [ 88.630712][ T5950] __sys_sendmsg+0x209/0x350 [ 88.635350][ T5950] ? __pfx_lock_release+0x10/0x10 [ 88.640430][ T5950] ? __pfx___sys_sendmsg+0x10/0x10 [ 88.645598][ T5950] ? __pfx_vfs_write+0x10/0x10 [ 88.650456][ T5950] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 88.656943][ T5950] ? do_syscall_64+0x100/0x230 [ 88.661765][ T5950] ? do_syscall_64+0xb6/0x230 [ 88.666516][ T5950] do_syscall_64+0xf3/0x230 [ 88.671080][ T5950] ? clear_bhb_loop+0x35/0x90 [ 88.675831][ T5950] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.681786][ T5950] RIP: 0033:0x7fc806180849 [ 88.686263][ T5950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 88.705922][ T5950] RSP: 002b:00007fc806f67058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 88.714394][ T5950] RAX: ffffffffffffffda RBX: 00007fc806345fa0 RCX: 00007fc806180849 [ 88.717313][ T5952] FAULT_INJECTION: forcing a failure. [ 88.717313][ T5952] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 88.722471][ T5950] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003 [ 88.722491][ T5950] RBP: 00007fc806f670a0 R08: 0000000000000000 R09: 0000000000000000 [ 88.722506][ T5950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 88.722532][ T5950] R13: 0000000000000000 R14: 00007fc806345fa0 R15: 00007ffce1e1f518 [ 88.722563][ T5950] [ 88.770570][ T5952] CPU: 1 UID: 0 PID: 5952 Comm: syz.2.8 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 88.780690][ T5952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 88.790796][ T5952] Call Trace: [ 88.794100][ T5952] [ 88.797047][ T5952] dump_stack_lvl+0x241/0x360 [ 88.801758][ T5952] ? __pfx_dump_stack_lvl+0x10/0x10 [ 88.806978][ T5952] ? __pfx__printk+0x10/0x10 [ 88.811608][ T5952] ? __pfx_lock_release+0x10/0x10 [ 88.816654][ T5952] should_fail_ex+0x3b0/0x4e0 [ 88.821376][ T5952] _copy_from_user+0x2f/0xc0 [ 88.825987][ T5952] copy_msghdr_from_user+0xae/0x680 [ 88.831212][ T5952] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 88.837037][ T5952] ? __fget_files+0x2a/0x410 [ 88.841649][ T5952] ? __fget_files+0x2a/0x410 [ 88.846265][ T5952] __sys_sendmsg+0x209/0x350 [ 88.850872][ T5952] ? __pfx_lock_release+0x10/0x10 [ 88.855913][ T5952] ? __pfx___sys_sendmsg+0x10/0x10 [ 88.861049][ T5952] ? __pfx_vfs_write+0x10/0x10 [ 88.865863][ T5952] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 88.872207][ T5952] ? do_syscall_64+0x100/0x230 [ 88.876986][ T5952] ? do_syscall_64+0xb6/0x230 [ 88.881677][ T5952] do_syscall_64+0xf3/0x230 [ 88.886196][ T5952] ? clear_bhb_loop+0x35/0x90 [ 88.890898][ T5952] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.896807][ T5952] RIP: 0033:0x7f7838f80849 [ 88.901237][ T5952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 88.920876][ T5952] RSP: 002b:00007f7839e41058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 88.929315][ T5952] RAX: ffffffffffffffda RBX: 00007f7839145fa0 RCX: 00007f7838f80849 [ 88.937303][ T5952] RDX: 0000000000044004 RSI: 00000000200000c0 RDI: 0000000000000004 [ 88.945295][ T5952] RBP: 00007f7839e410a0 R08: 0000000000000000 R09: 0000000000000000 [ 88.953283][ T5952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 88.961268][ T5952] R13: 0000000000000000 R14: 00007f7839145fa0 R15: 00007ffc7f9e3318 [ 88.969396][ T5952] [ 89.099663][ T5956] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 89.291209][ T5963] FAULT_INJECTION: forcing a failure. [ 89.291209][ T5963] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 89.334056][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.353533][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.369510][ T5963] CPU: 1 UID: 0 PID: 5963 Comm: syz.0.11 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 89.379751][ T5963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 89.389858][ T5963] Call Trace: [ 89.393183][ T5963] [ 89.396153][ T5963] dump_stack_lvl+0x241/0x360 [ 89.400890][ T5963] ? __pfx_dump_stack_lvl+0x10/0x10 [ 89.406126][ T5963] ? __pfx__printk+0x10/0x10 [ 89.410806][ T5963] ? __pfx_lock_release+0x10/0x10 [ 89.415890][ T5963] should_fail_ex+0x3b0/0x4e0 [ 89.420667][ T5963] _copy_from_user+0x2f/0xc0 [ 89.425313][ T5963] __sys_bpf+0x1a4/0x810 [ 89.429625][ T5963] ? __pfx___sys_bpf+0x10/0x10 [ 89.434441][ T5963] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 89.440485][ T5963] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 89.446941][ T5963] ? do_syscall_64+0x100/0x230 [ 89.451746][ T5963] __x64_sys_bpf+0x7c/0x90 [ 89.456228][ T5963] do_syscall_64+0xf3/0x230 [ 89.460774][ T5963] ? clear_bhb_loop+0x35/0x90 [ 89.465514][ T5963] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 89.471440][ T5963] RIP: 0033:0x7fc0ec780849 [ 89.475872][ T5963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 89.497232][ T5963] RSP: 002b:00007fc0ed4ca058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 89.505688][ T5963] RAX: ffffffffffffffda RBX: 00007fc0ec945fa0 RCX: 00007fc0ec780849 [ 89.513757][ T5963] RDX: 0000000000000094 RSI: 0000000020000140 RDI: 0000000000000005 [ 89.521749][ T5963] RBP: 00007fc0ed4ca0a0 R08: 0000000000000000 R09: 0000000000000000 [ 89.529738][ T5963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 89.537719][ T5963] R13: 0000000000000001 R14: 00007fc0ec945fa0 R15: 00007ffe8c720428 [ 89.545721][ T5963] [ 89.581382][ T3567] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.592941][ T3567] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.744158][ T5971] netlink: 4 bytes leftover after parsing attributes in process `syz.0.14'. [ 89.765575][ T5973] FAULT_INJECTION: forcing a failure. [ 89.765575][ T5973] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 89.778917][ T5973] CPU: 1 UID: 0 PID: 5973 Comm: syz.2.15 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 89.789209][ T5973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 89.799313][ T5973] Call Trace: [ 89.802625][ T5973] [ 89.805618][ T5973] dump_stack_lvl+0x241/0x360 [ 89.810347][ T5973] ? __pfx_dump_stack_lvl+0x10/0x10 [ 89.815589][ T5973] ? __pfx__printk+0x10/0x10 [ 89.820456][ T5973] ? vfs_write+0x730/0xd30 [ 89.824926][ T5973] should_fail_ex+0x3b0/0x4e0 [ 89.829674][ T5973] _copy_from_user+0x2f/0xc0 [ 89.834414][ T5973] move_addr_to_kernel+0x82/0x150 [ 89.839512][ T5973] __sys_bind+0x124/0x290 [ 89.843905][ T5973] ? __pfx___sys_bind+0x10/0x10 [ 89.848825][ T5973] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 89.855205][ T5973] ? do_syscall_64+0x100/0x230 [ 89.860026][ T5973] __x64_sys_bind+0x7a/0x90 [ 89.864593][ T5973] do_syscall_64+0xf3/0x230 [ 89.869150][ T5973] ? clear_bhb_loop+0x35/0x90 [ 89.873889][ T5973] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 89.879394][ T5867] Bluetooth: hci3: command tx timeout [ 89.879806][ T5973] RIP: 0033:0x7f7838f80849 [ 89.879833][ T5973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 89.909280][ T5973] RSP: 002b:00007f7839e41058 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 89.911395][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.917732][ T5973] RAX: ffffffffffffffda RBX: 00007f7839145fa0 RCX: 00007f7838f80849 [ 89.917755][ T5973] RDX: 0000000000000020 RSI: 0000000020000140 RDI: 0000000000000004 [ 89.917771][ T5973] RBP: 00007f7839e410a0 R08: 0000000000000000 R09: 0000000000000000 [ 89.917785][ T5973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 89.917800][ T5973] R13: 0000000000000000 R14: 00007f7839145fa0 R15: 00007ffc7f9e3318 [ 89.917833][ T5973] [ 89.975640][ T5867] Bluetooth: hci4: command tx timeout [ 89.981539][ T5867] Bluetooth: hci1: command tx timeout [ 89.986989][ T5867] Bluetooth: hci0: command tx timeout [ 89.998052][ T5867] Bluetooth: hci2: command tx timeout [ 90.015383][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.126508][ T1159] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.140539][ T1159] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.499444][ T5986] netlink: 8 bytes leftover after parsing attributes in process `syz.1.18'. [ 90.525894][ T5986] geneve2: entered promiscuous mode [ 90.548326][ T5986] geneve2: entered allmulticast mode [ 90.889076][ T5993] Zero length message leads to an empty skb [ 91.033262][ T6003] netlink: 4 bytes leftover after parsing attributes in process `syz.2.24'. [ 91.092312][ T6005] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 91.219461][ T6005] smc: net device bond0 applied user defined pnetid SYZ0 [ 91.287689][ T6005] netlink: 116 bytes leftover after parsing attributes in process `syz.3.25'. [ 91.329676][ T6005] smc: net device bond0 erased user defined pnetid SYZ0 [ 91.395675][ T6013] netlink: 8 bytes leftover after parsing attributes in process `syz.1.28'. [ 91.412806][ T6013] netlink: 48 bytes leftover after parsing attributes in process `syz.1.28'. [ 91.425111][ T6012] warning: `syz.2.27' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 91.705193][ T6020] netlink: 'syz.1.28': attribute type 4 has an invalid length. [ 91.808464][ T6022] ip6t_srh: unknown srh invflags 4000 [ 91.958282][ T6027] FAULT_INJECTION: forcing a failure. [ 91.958282][ T6027] name failslab, interval 1, probability 0, space 0, times 1 [ 91.989636][ T6027] CPU: 1 UID: 0 PID: 6027 Comm: syz.0.31 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 91.999889][ T6027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 92.009970][ T6027] Call Trace: [ 92.013262][ T6027] [ 92.016214][ T6027] dump_stack_lvl+0x241/0x360 [ 92.020915][ T6027] ? __pfx_dump_stack_lvl+0x10/0x10 [ 92.026153][ T6027] ? __pfx__printk+0x10/0x10 [ 92.030771][ T6027] ? kmem_cache_alloc_noprof+0x48/0x380 [ 92.036366][ T6027] ? __pfx___might_resched+0x10/0x10 [ 92.041682][ T6027] ? __fget_files+0x2a/0x410 [ 92.046300][ T6027] should_fail_ex+0x3b0/0x4e0 [ 92.051010][ T6027] should_failslab+0xac/0x100 [ 92.055738][ T6027] ? getname_flags+0xb7/0x540 [ 92.060461][ T6027] kmem_cache_alloc_noprof+0x70/0x380 [ 92.065871][ T6027] getname_flags+0xb7/0x540 [ 92.070403][ T6027] __x64_sys_mkdirat+0x7a/0xa0 [ 92.075215][ T6027] do_syscall_64+0xf3/0x230 [ 92.079767][ T6027] ? clear_bhb_loop+0x35/0x90 [ 92.084487][ T6027] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.090412][ T6027] RIP: 0033:0x7fc0ec780849 [ 92.094844][ T6027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 92.114477][ T6027] RSP: 002b:00007fc0ed4ca058 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 92.122943][ T6027] RAX: ffffffffffffffda RBX: 00007fc0ec945fa0 RCX: 00007fc0ec780849 [ 92.131050][ T6027] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 0000000000000003 [ 92.139040][ T6027] RBP: 00007fc0ed4ca0a0 R08: 0000000000000000 R09: 0000000000000000 [ 92.147030][ T6027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 92.155106][ T6027] R13: 0000000000000000 R14: 00007fc0ec945fa0 R15: 00007ffe8c720428 [ 92.163122][ T6027] [ 93.236342][ T6058] netlink: 4 bytes leftover after parsing attributes in process `syz.2.42'. [ 93.294682][ T6060] FAULT_INJECTION: forcing a failure. [ 93.294682][ T6060] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 93.310674][ T6060] CPU: 0 UID: 0 PID: 6060 Comm: syz.4.41 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 93.321082][ T6060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 93.331192][ T6060] Call Trace: [ 93.334522][ T6060] [ 93.337504][ T6060] dump_stack_lvl+0x241/0x360 [ 93.342329][ T6060] ? __pfx_dump_stack_lvl+0x10/0x10 [ 93.347582][ T6060] ? __pfx__printk+0x10/0x10 [ 93.352249][ T6060] ? __pfx_lock_release+0x10/0x10 [ 93.357432][ T6060] should_fail_ex+0x3b0/0x4e0 [ 93.362191][ T6060] _copy_from_user+0x2f/0xc0 [ 93.366880][ T6060] copy_msghdr_from_user+0xae/0x680 [ 93.372154][ T6060] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 93.378022][ T6060] ? __fget_files+0x2a/0x410 [ 93.382677][ T6060] ? __fget_files+0x2a/0x410 [ 93.387347][ T6060] __sys_sendmsg+0x209/0x350 [ 93.392168][ T6060] ? __pfx_lock_release+0x10/0x10 [ 93.397335][ T6060] ? __pfx___sys_sendmsg+0x10/0x10 [ 93.402513][ T6060] ? __pfx_vfs_write+0x10/0x10 [ 93.407372][ T6060] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 93.413765][ T6060] ? do_syscall_64+0x100/0x230 [ 93.418764][ T6060] ? do_syscall_64+0xb6/0x230 [ 93.423504][ T6060] do_syscall_64+0xf3/0x230 [ 93.428241][ T6060] ? clear_bhb_loop+0x35/0x90 [ 93.432987][ T6060] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.438935][ T6060] RIP: 0033:0x7f2373f80849 [ 93.443418][ T6060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 93.463175][ T6060] RSP: 002b:00007f2374cc4058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 93.471738][ T6060] RAX: ffffffffffffffda RBX: 00007f2374145fa0 RCX: 00007f2373f80849 [ 93.479842][ T6060] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 93.487954][ T6060] RBP: 00007f2374cc40a0 R08: 0000000000000000 R09: 0000000000000000 [ 93.496064][ T6060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 93.504091][ T6060] R13: 0000000000000000 R14: 00007f2374145fa0 R15: 00007fff93ad9748 [ 93.512312][ T6060] [ 93.845734][ T6072] netlink: 44 bytes leftover after parsing attributes in process `syz.0.43'. [ 93.871201][ T6073] netlink: 4 bytes leftover after parsing attributes in process `syz.3.45'. [ 94.219989][ T6083] netlink: 8 bytes leftover after parsing attributes in process `syz.2.49'. [ 94.234870][ T6083] geneve2: entered promiscuous mode [ 94.241333][ T6083] geneve2: entered allmulticast mode [ 94.760204][ T6091] netlink: 4 bytes leftover after parsing attributes in process `syz.4.51'. [ 95.095472][ T6091] team0 (unregistering): Port device team_slave_0 removed [ 95.133021][ T6091] team0 (unregistering): Port device team_slave_1 removed [ 95.775071][ T6109] netlink: 20 bytes leftover after parsing attributes in process `syz.4.58'. [ 95.888350][ T6113] FAULT_INJECTION: forcing a failure. [ 95.888350][ T6113] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 95.947653][ T6113] CPU: 1 UID: 0 PID: 6113 Comm: syz.3.59 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 95.957894][ T6113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 95.968004][ T6113] Call Trace: [ 95.971312][ T6113] [ 95.974270][ T6113] dump_stack_lvl+0x241/0x360 [ 95.978989][ T6113] ? __pfx_dump_stack_lvl+0x10/0x10 [ 95.984225][ T6113] ? __pfx__printk+0x10/0x10 [ 95.988869][ T6113] ? __pfx_lock_release+0x10/0x10 [ 95.993944][ T6113] should_fail_ex+0x3b0/0x4e0 [ 95.998672][ T6113] _copy_from_user+0x2f/0xc0 [ 96.003312][ T6113] copy_msghdr_from_user+0xae/0x680 [ 96.008567][ T6113] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 96.014415][ T6113] ? __fget_files+0x2a/0x410 [ 96.019056][ T6113] ? __fget_files+0x2a/0x410 [ 96.023698][ T6113] __sys_sendmmsg+0x32b/0x720 [ 96.028451][ T6113] ? __pfx___sys_sendmmsg+0x10/0x10 [ 96.033706][ T6113] ? __pfx_lock_release+0x10/0x10 [ 96.038995][ T6113] ? kstrtouint_from_user+0x128/0x190 [ 96.044432][ T6113] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 96.050374][ T6113] ? ksys_write+0x22a/0x2b0 [ 96.054922][ T6113] ? __pfx_lock_release+0x10/0x10 [ 96.060032][ T6113] ? vfs_write+0x730/0xd30 [ 96.064504][ T6113] ? __mutex_unlock_slowpath+0x21e/0x790 [ 96.070202][ T6113] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 96.076226][ T6113] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 96.082604][ T6113] ? do_syscall_64+0x100/0x230 [ 96.087412][ T6113] __x64_sys_sendmmsg+0xa0/0xb0 [ 96.092303][ T6113] do_syscall_64+0xf3/0x230 [ 96.096842][ T6113] ? clear_bhb_loop+0x35/0x90 [ 96.101561][ T6113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 96.107492][ T6113] RIP: 0033:0x7fc806180849 [ 96.111939][ T6113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 96.131588][ T6113] RSP: 002b:00007fc806f67058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 96.140050][ T6113] RAX: ffffffffffffffda RBX: 00007fc806345fa0 RCX: 00007fc806180849 [ 96.148155][ T6113] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000004 [ 96.156256][ T6113] RBP: 00007fc806f670a0 R08: 0000000000000000 R09: 0000000000000000 [ 96.164285][ T6113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 96.172302][ T6113] R13: 0000000000000000 R14: 00007fc806345fa0 R15: 00007ffce1e1f518 [ 96.180363][ T6113] [ 96.572795][ T6116] netlink: 4 bytes leftover after parsing attributes in process `syz.4.61'. [ 96.820616][ T6125] netlink: 16 bytes leftover after parsing attributes in process `syz.3.64'. [ 96.889386][ T6125] netlink: 4 bytes leftover after parsing attributes in process `syz.3.64'. [ 96.907957][ T6125] netlink: 4 bytes leftover after parsing attributes in process `syz.3.64'. [ 97.080373][ T6125] netlink: 4 bytes leftover after parsing attributes in process `syz.3.64'. [ 97.108658][ T6125] netlink: 4 bytes leftover after parsing attributes in process `syz.3.64'. [ 97.221742][ T6135] Bluetooth: MGMT ver 1.23 [ 97.246436][ T6137] FAULT_INJECTION: forcing a failure. [ 97.246436][ T6137] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 97.347897][ T6137] CPU: 0 UID: 0 PID: 6137 Comm: syz.2.67 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 97.358148][ T6137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 97.368257][ T6137] Call Trace: [ 97.371633][ T6137] [ 97.374619][ T6137] dump_stack_lvl+0x241/0x360 [ 97.378087][ T6125] netlink: 4 bytes leftover after parsing attributes in process `syz.3.64'. [ 97.379328][ T6137] ? __pfx_dump_stack_lvl+0x10/0x10 [ 97.393268][ T6137] ? __pfx__printk+0x10/0x10 [ 97.397927][ T6137] ? __pfx_lock_release+0x10/0x10 [ 97.403068][ T6137] should_fail_ex+0x3b0/0x4e0 [ 97.407878][ T6137] _copy_from_user+0x2f/0xc0 [ 97.412533][ T6137] do_sock_getsockopt+0x1d1/0x7e0 [ 97.417620][ T6137] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 97.423213][ T6137] ? __fget_files+0x2a/0x410 [ 97.427847][ T6137] ? __fget_files+0x395/0x410 [ 97.432555][ T6137] ? __fget_files+0x2a/0x410 [ 97.437171][ T6137] __x64_sys_getsockopt+0x2a1/0x370 [ 97.442413][ T6137] ? __pfx___x64_sys_getsockopt+0x10/0x10 [ 97.448148][ T6137] ? do_syscall_64+0x100/0x230 [ 97.452941][ T6137] ? do_syscall_64+0xb6/0x230 [ 97.457643][ T6137] do_syscall_64+0xf3/0x230 [ 97.462170][ T6137] ? clear_bhb_loop+0x35/0x90 [ 97.466869][ T6137] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 97.472783][ T6137] RIP: 0033:0x7f7838f80849 [ 97.477212][ T6137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 97.496841][ T6137] RSP: 002b:00007f7839e41058 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 97.505291][ T6137] RAX: ffffffffffffffda RBX: 00007f7839145fa0 RCX: 00007f7838f80849 [ 97.513380][ T6137] RDX: 00000000000000f8 RSI: 000000000000010d RDI: 0000000000000004 [ 97.521372][ T6137] RBP: 00007f7839e410a0 R08: 00000000200005c0 R09: 0000000000000000 [ 97.529359][ T6137] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000001 [ 97.537345][ T6137] R13: 0000000000000000 R14: 00007f7839145fa0 R15: 00007ffc7f9e3318 [ 97.545354][ T6137] [ 97.570518][ T6125] netlink: 4 bytes leftover after parsing attributes in process `syz.3.64'. [ 97.748136][ T6072] Set syz1 is full, maxelem 65536 reached [ 98.966173][ T6189] syz.1.78 uses obsolete (PF_INET,SOCK_PACKET) [ 98.977263][ T6193] geneve2: entered promiscuous mode [ 98.985250][ T6193] geneve2: entered allmulticast mode [ 99.207325][ T6201] geneve2: entered promiscuous mode [ 99.239316][ T6201] geneve2: entered allmulticast mode [ 99.803422][ T6222] __nla_validate_parse: 5 callbacks suppressed [ 99.803446][ T6222] netlink: 28 bytes leftover after parsing attributes in process `syz.0.88'. [ 99.819108][ T6222] netlink: 52 bytes leftover after parsing attributes in process `syz.0.88'. [ 99.828765][ T6222] netlink: 28 bytes leftover after parsing attributes in process `syz.0.88'. [ 99.848077][ T6222] netlink: 52 bytes leftover after parsing attributes in process `syz.0.88'. [ 100.415592][ T6242] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 100.900888][ T6255] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input5 [ 101.641246][ T6280] FAULT_INJECTION: forcing a failure. [ 101.641246][ T6280] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 101.661764][ T6283] netlink: 4 bytes leftover after parsing attributes in process `syz.4.106'. [ 101.667636][ T6280] CPU: 1 UID: 0 PID: 6280 Comm: syz.0.105 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 101.680868][ T6280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 101.690976][ T6280] Call Trace: [ 101.694314][ T6280] [ 101.697290][ T6280] dump_stack_lvl+0x241/0x360 [ 101.702021][ T6280] ? __pfx_dump_stack_lvl+0x10/0x10 [ 101.707269][ T6280] ? __pfx__printk+0x10/0x10 [ 101.711918][ T6280] ? __pfx_lock_release+0x10/0x10 [ 101.717019][ T6280] should_fail_ex+0x3b0/0x4e0 [ 101.721765][ T6280] _copy_from_user+0x2f/0xc0 [ 101.726410][ T6280] copy_msghdr_from_user+0xae/0x680 [ 101.731676][ T6280] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 101.737543][ T6280] ? __fget_files+0x2a/0x410 [ 101.742194][ T6280] ? __fget_files+0x2a/0x410 [ 101.746848][ T6280] __sys_recvmsg+0x200/0x390 [ 101.751497][ T6280] ? __pfx___sys_recvmsg+0x10/0x10 [ 101.756675][ T6280] ? __mutex_unlock_slowpath+0x21e/0x790 [ 101.762392][ T6280] ? __fget_files+0x2a/0x410 [ 101.767076][ T6280] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 101.773464][ T6280] ? do_syscall_64+0x100/0x230 [ 101.778285][ T6280] ? do_syscall_64+0xb6/0x230 [ 101.783020][ T6280] do_syscall_64+0xf3/0x230 [ 101.787569][ T6280] ? clear_bhb_loop+0x35/0x90 [ 101.792305][ T6280] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 101.798254][ T6280] RIP: 0033:0x7fc0ec780849 [ 101.802719][ T6280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 101.822378][ T6280] RSP: 002b:00007fc0ed4ca058 EFLAGS: 00000246 ORIG_RAX: 000000000000002f [ 101.830846][ T6280] RAX: ffffffffffffffda RBX: 00007fc0ec945fa0 RCX: 00007fc0ec780849 [ 101.838893][ T6280] RDX: 0000000000010002 RSI: 0000000020000580 RDI: 0000000000000003 [ 101.846919][ T6280] RBP: 00007fc0ed4ca0a0 R08: 0000000000000000 R09: 0000000000000000 [ 101.854951][ T6280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 101.863249][ T6280] R13: 0000000000000000 R14: 00007fc0ec945fa0 R15: 00007ffe8c720428 [ 101.871295][ T6280] [ 101.916834][ T6288] netlink: 'syz.1.104': attribute type 10 has an invalid length. [ 102.045303][ T6288] 8021q: adding VLAN 0 to HW filter on device team0 [ 102.101272][ T6288] bond0: (slave team0): Enslaving as an active interface with an up link [ 102.463361][ T6303] netlink: 4 bytes leftover after parsing attributes in process `syz.1.109'. [ 102.654098][ T6307] FAULT_INJECTION: forcing a failure. [ 102.654098][ T6307] name failslab, interval 1, probability 0, space 0, times 0 [ 102.688963][ T6307] CPU: 1 UID: 0 PID: 6307 Comm: syz.3.110 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 102.699294][ T6307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 102.709404][ T6307] Call Trace: [ 102.712727][ T6307] [ 102.715695][ T6307] dump_stack_lvl+0x241/0x360 [ 102.720430][ T6307] ? __pfx_dump_stack_lvl+0x10/0x10 [ 102.725680][ T6307] ? __pfx__printk+0x10/0x10 [ 102.730332][ T6307] ? __kmalloc_noprof+0xb5/0x4c0 [ 102.735498][ T6307] ? __pfx___might_resched+0x10/0x10 [ 102.740948][ T6307] should_fail_ex+0x3b0/0x4e0 [ 102.745698][ T6307] should_failslab+0xac/0x100 [ 102.750443][ T6307] __kmalloc_noprof+0xdd/0x4c0 [ 102.755271][ T6307] ? iovec_from_user+0x87/0x240 [ 102.760187][ T6307] iovec_from_user+0x87/0x240 [ 102.764934][ T6307] ? mark_lock+0x9a/0x360 [ 102.769322][ T6307] __import_iovec+0x152/0x870 [ 102.774065][ T6307] import_iovec+0xeb/0x120 [ 102.778550][ T6307] vfs_readv+0x1ad/0xa80 [ 102.782872][ T6307] ? __pfx_lock_acquire+0x10/0x10 [ 102.788044][ T6307] ? __pfx_vfs_readv+0x10/0x10 [ 102.792867][ T6307] ? __pfx_vfs_write+0x10/0x10 [ 102.797665][ T6307] ? __fget_files+0x2a/0x410 [ 102.802290][ T6307] ? __fget_files+0x395/0x410 [ 102.806986][ T6307] ? __fget_files+0x2a/0x410 [ 102.811606][ T6307] do_readv+0x1b6/0x360 [ 102.815790][ T6307] ? __pfx_do_readv+0x10/0x10 [ 102.820484][ T6307] ? do_syscall_64+0x100/0x230 [ 102.825257][ T6307] ? do_syscall_64+0xb6/0x230 [ 102.829964][ T6307] do_syscall_64+0xf3/0x230 [ 102.834483][ T6307] ? clear_bhb_loop+0x35/0x90 [ 102.839180][ T6307] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.845085][ T6307] RIP: 0033:0x7fc806180849 [ 102.849621][ T6307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 102.869346][ T6307] RSP: 002b:00007fc806f46058 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 102.877807][ T6307] RAX: ffffffffffffffda RBX: 00007fc806346080 RCX: 00007fc806180849 [ 102.885840][ T6307] RDX: 0000000000000010 RSI: 0000000020000040 RDI: 0000000000000003 [ 102.893846][ T6307] RBP: 00007fc806f460a0 R08: 0000000000000000 R09: 0000000000000000 [ 102.901839][ T6307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 102.909829][ T6307] R13: 0000000000000000 R14: 00007fc806346080 R15: 00007ffce1e1f518 [ 102.917840][ T6307] [ 103.210578][ T6315] netlink: 28 bytes leftover after parsing attributes in process `syz.3.113'. [ 103.220077][ T6315] netlink: 44 bytes leftover after parsing attributes in process `syz.3.113'. [ 103.227693][ T6313] netlink: 168 bytes leftover after parsing attributes in process `syz.1.112'. [ 103.343966][ T6319] FAULT_INJECTION: forcing a failure. [ 103.343966][ T6319] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 103.365874][ T6319] CPU: 1 UID: 0 PID: 6319 Comm: syz.4.115 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 103.368583][ T6315] netlink: 28 bytes leftover after parsing attributes in process `syz.3.113'. [ 103.376173][ T6319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 103.376195][ T6319] Call Trace: [ 103.376205][ T6319] [ 103.376216][ T6319] dump_stack_lvl+0x241/0x360 [ 103.406090][ T6319] ? __pfx_dump_stack_lvl+0x10/0x10 [ 103.411349][ T6319] ? __pfx__printk+0x10/0x10 [ 103.415998][ T6319] ? __pfx_lock_release+0x10/0x10 [ 103.421168][ T6319] should_fail_ex+0x3b0/0x4e0 [ 103.425907][ T6319] _copy_from_user+0x2f/0xc0 [ 103.430557][ T6319] __sys_bpf+0x1a4/0x810 [ 103.434849][ T6319] ? __pfx___sys_bpf+0x10/0x10 [ 103.439666][ T6319] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 103.445698][ T6319] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 103.452102][ T6319] ? do_syscall_64+0x100/0x230 [ 103.456940][ T6319] __x64_sys_bpf+0x7c/0x90 [ 103.461432][ T6319] do_syscall_64+0xf3/0x230 [ 103.465984][ T6319] ? clear_bhb_loop+0x35/0x90 [ 103.470739][ T6319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 103.476687][ T6319] RIP: 0033:0x7f2373f80849 [ 103.481156][ T6319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 103.500811][ T6319] RSP: 002b:00007f2374cc4058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 103.509284][ T6319] RAX: ffffffffffffffda RBX: 00007f2374145fa0 RCX: 00007f2373f80849 [ 103.517304][ T6319] RDX: 0000000000000094 RSI: 0000000020000140 RDI: 0000000000000005 [ 103.525323][ T6319] RBP: 00007f2374cc40a0 R08: 0000000000000000 R09: 0000000000000000 [ 103.533338][ T6319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 103.541352][ T6319] R13: 0000000000000001 R14: 00007f2374145fa0 R15: 00007fff93ad9748 [ 103.549473][ T6319] [ 103.901452][ T6333] FAULT_INJECTION: forcing a failure. [ 103.901452][ T6333] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 103.960198][ T6333] CPU: 0 UID: 0 PID: 6333 Comm: syz.4.119 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 103.970621][ T6333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 103.980727][ T6333] Call Trace: [ 103.984057][ T6333] [ 103.987032][ T6333] dump_stack_lvl+0x241/0x360 [ 103.991936][ T6333] ? __pfx_dump_stack_lvl+0x10/0x10 [ 103.997185][ T6333] ? __pfx__printk+0x10/0x10 [ 104.001842][ T6333] ? __pfx_lock_release+0x10/0x10 [ 104.006929][ T6333] should_fail_ex+0x3b0/0x4e0 [ 104.011783][ T6333] _copy_from_user+0x2f/0xc0 [ 104.016432][ T6333] __sys_bpf+0x1a4/0x810 [ 104.020732][ T6333] ? __pfx___sys_bpf+0x10/0x10 [ 104.025554][ T6333] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 104.031591][ T6333] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 104.037969][ T6333] ? do_syscall_64+0x100/0x230 [ 104.042792][ T6333] __x64_sys_bpf+0x7c/0x90 [ 104.047263][ T6333] do_syscall_64+0xf3/0x230 [ 104.051807][ T6333] ? clear_bhb_loop+0x35/0x90 [ 104.056539][ T6333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 104.062493][ T6333] RIP: 0033:0x7f2373f80849 [ 104.066943][ T6333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 104.086593][ T6333] RSP: 002b:00007f2374cc4058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 104.095068][ T6333] RAX: ffffffffffffffda RBX: 00007f2374145fa0 RCX: 00007f2373f80849 [ 104.103107][ T6333] RDX: 0000000000000094 RSI: 0000000020000140 RDI: 0000000000000005 [ 104.111256][ T6333] RBP: 00007f2374cc40a0 R08: 0000000000000000 R09: 0000000000000000 [ 104.119278][ T6333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 104.127299][ T6333] R13: 0000000000000001 R14: 00007f2374145fa0 R15: 00007fff93ad9748 [ 104.135339][ T6333] [ 104.213124][ T6340] FAULT_INJECTION: forcing a failure. [ 104.213124][ T6340] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 104.234599][ T6340] CPU: 1 UID: 0 PID: 6340 Comm: syz.0.120 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 104.244932][ T6340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 104.255038][ T6340] Call Trace: [ 104.258362][ T6340] [ 104.261337][ T6340] dump_stack_lvl+0x241/0x360 [ 104.266073][ T6340] ? __pfx_dump_stack_lvl+0x10/0x10 [ 104.271321][ T6340] ? __pfx__printk+0x10/0x10 [ 104.275981][ T6340] ? snprintf+0xda/0x120 [ 104.280282][ T6340] should_fail_ex+0x3b0/0x4e0 [ 104.285023][ T6340] _copy_to_user+0x31/0xb0 [ 104.289503][ T6340] simple_read_from_buffer+0xca/0x150 [ 104.294943][ T6340] proc_fail_nth_read+0x1e9/0x250 [ 104.300084][ T6340] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 104.305720][ T6340] ? rw_verify_area+0x55e/0x6f0 [ 104.310621][ T6340] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 104.316219][ T6340] vfs_read+0x1fc/0xb70 [ 104.320429][ T6340] ? __pfx___mutex_lock+0x10/0x10 [ 104.325504][ T6340] ? __pfx_vfs_read+0x10/0x10 [ 104.330245][ T6340] ? __fget_files+0x2a/0x410 [ 104.334894][ T6340] ? __fget_files+0x395/0x410 [ 104.339632][ T6340] ? __fget_files+0x2a/0x410 [ 104.344290][ T6340] ksys_read+0x18f/0x2b0 [ 104.348595][ T6340] ? __pfx_ksys_read+0x10/0x10 [ 104.353418][ T6340] ? do_syscall_64+0x100/0x230 [ 104.358243][ T6340] ? do_syscall_64+0xb6/0x230 [ 104.362973][ T6340] do_syscall_64+0xf3/0x230 [ 104.367902][ T6340] ? clear_bhb_loop+0x35/0x90 [ 104.372655][ T6340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 104.378638][ T6340] RIP: 0033:0x7fc0ec77f25c [ 104.383105][ T6340] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48 [ 104.402764][ T6340] RSP: 002b:00007fc0ea5f6050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 104.411243][ T6340] RAX: ffffffffffffffda RBX: 00007fc0ec946160 RCX: 00007fc0ec77f25c [ 104.419267][ T6340] RDX: 000000000000000f RSI: 00007fc0ea5f60b0 RDI: 0000000000000006 [ 104.427300][ T6340] RBP: 00007fc0ea5f60a0 R08: 0000000000000000 R09: 0000000000000000 [ 104.435322][ T6340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 104.443342][ T6340] R13: 0000000000000001 R14: 00007fc0ec946160 R15: 00007ffe8c720428 [ 104.451380][ T6340] [ 105.225476][ T6367] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 105.308941][ T6369] netlink: 'syz.0.134': attribute type 10 has an invalid length. [ 105.342723][ T6375] FAULT_INJECTION: forcing a failure. [ 105.342723][ T6375] name failslab, interval 1, probability 0, space 0, times 0 [ 105.361691][ T6375] CPU: 0 UID: 0 PID: 6375 Comm: syz.2.136 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 105.372035][ T6375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 105.382149][ T6375] Call Trace: [ 105.385446][ T6375] [ 105.388397][ T6375] dump_stack_lvl+0x241/0x360 [ 105.393098][ T6375] ? __pfx_dump_stack_lvl+0x10/0x10 [ 105.398310][ T6375] ? __pfx__printk+0x10/0x10 [ 105.402949][ T6375] ? kmem_cache_alloc_node_noprof+0x4f/0x380 [ 105.408968][ T6375] ? __pfx___might_resched+0x10/0x10 [ 105.414303][ T6375] should_fail_ex+0x3b0/0x4e0 [ 105.419022][ T6375] should_failslab+0xac/0x100 [ 105.423726][ T6375] kmem_cache_alloc_node_noprof+0x77/0x380 [ 105.429553][ T6375] ? __alloc_skb+0x1c3/0x440 [ 105.434158][ T6375] __alloc_skb+0x1c3/0x440 [ 105.438593][ T6375] ? __pfx___alloc_skb+0x10/0x10 [ 105.443559][ T6375] ? netlink_autobind+0xd6/0x2f0 [ 105.448520][ T6375] ? netlink_autobind+0x2b0/0x2f0 [ 105.453563][ T6375] netlink_sendmsg+0x638/0xcb0 [ 105.458351][ T6375] ? __pfx_netlink_sendmsg+0x10/0x10 [ 105.463652][ T6375] ? aa_sock_msg_perm+0x91/0x160 [ 105.468628][ T6375] ? __pfx_netlink_sendmsg+0x10/0x10 [ 105.473930][ T6375] __sock_sendmsg+0x221/0x270 [ 105.478630][ T6375] ____sys_sendmsg+0x52a/0x7e0 [ 105.483412][ T6375] ? __pfx_____sys_sendmsg+0x10/0x10 [ 105.488710][ T6375] ? __fget_files+0x2a/0x410 [ 105.493326][ T6375] ? __fget_files+0x2a/0x410 [ 105.497956][ T6375] __sys_sendmsg+0x269/0x350 [ 105.502577][ T6375] ? __pfx_lock_release+0x10/0x10 [ 105.507619][ T6375] ? __pfx___sys_sendmsg+0x10/0x10 [ 105.512759][ T6375] ? __pfx_vfs_write+0x10/0x10 [ 105.517578][ T6375] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 105.523932][ T6375] ? do_syscall_64+0x100/0x230 [ 105.528716][ T6375] ? do_syscall_64+0xb6/0x230 [ 105.533406][ T6375] do_syscall_64+0xf3/0x230 [ 105.537922][ T6375] ? clear_bhb_loop+0x35/0x90 [ 105.542648][ T6375] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 105.548556][ T6375] RIP: 0033:0x7f7838f80849 [ 105.552990][ T6375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 105.572629][ T6375] RSP: 002b:00007f7839e41058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 105.581094][ T6375] RAX: ffffffffffffffda RBX: 00007f7839145fa0 RCX: 00007f7838f80849 [ 105.589107][ T6375] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003 [ 105.597100][ T6375] RBP: 00007f7839e410a0 R08: 0000000000000000 R09: 0000000000000000 [ 105.605105][ T6375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 105.613208][ T6375] R13: 0000000000000000 R14: 00007f7839145fa0 R15: 00007ffc7f9e3318 [ 105.621247][ T6375] [ 105.638792][ T6369] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 105.752325][ T6369] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 105.843906][ T6369] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link [ 105.872842][ T6386] FAULT_INJECTION: forcing a failure. [ 105.872842][ T6386] name failslab, interval 1, probability 0, space 0, times 0 [ 105.893711][ T6386] CPU: 1 UID: 0 PID: 6386 Comm: syz.1.139 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 105.904037][ T6386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 105.914136][ T6386] Call Trace: [ 105.917448][ T6386] [ 105.920416][ T6386] dump_stack_lvl+0x241/0x360 [ 105.925232][ T6386] ? __pfx_dump_stack_lvl+0x10/0x10 [ 105.930481][ T6386] ? __pfx__printk+0x10/0x10 [ 105.935124][ T6386] ? __kmalloc_noprof+0xb5/0x4c0 [ 105.940105][ T6386] ? __pfx___might_resched+0x10/0x10 [ 105.945443][ T6386] should_fail_ex+0x3b0/0x4e0 [ 105.950172][ T6386] should_failslab+0xac/0x100 [ 105.954897][ T6386] __kmalloc_noprof+0xdd/0x4c0 [ 105.959712][ T6386] ? bpf_test_init+0xe1/0x180 [ 105.964531][ T6386] bpf_test_init+0xe1/0x180 [ 105.969088][ T6386] bpf_prog_test_run_xdp+0x48e/0x11e0 [ 105.974479][ T6386] ? __pfx_lock_release+0x10/0x10 [ 105.979526][ T6386] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 105.985438][ T6386] ? __fget_files+0x2a/0x410 [ 105.990051][ T6386] ? __fget_files+0x2a/0x410 [ 105.994671][ T6386] ? fput+0x21b/0x290 [ 105.998721][ T6386] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 106.004548][ T6386] bpf_prog_test_run+0x2e4/0x360 [ 106.009512][ T6386] __sys_bpf+0x48d/0x810 [ 106.013770][ T6386] ? __pfx___sys_bpf+0x10/0x10 [ 106.018552][ T6386] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 106.024567][ T6386] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 106.030960][ T6386] ? do_syscall_64+0x100/0x230 [ 106.035806][ T6386] __x64_sys_bpf+0x7c/0x90 [ 106.040304][ T6386] do_syscall_64+0xf3/0x230 [ 106.044836][ T6386] ? clear_bhb_loop+0x35/0x90 [ 106.049538][ T6386] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.055458][ T6386] RIP: 0033:0x7f593a980849 [ 106.059900][ T6386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 106.079557][ T6386] RSP: 002b:00007f593b72b058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 106.087998][ T6386] RAX: ffffffffffffffda RBX: 00007f593ab45fa0 RCX: 00007f593a980849 [ 106.096013][ T6386] RDX: 0000000000000050 RSI: 0000000020000240 RDI: 000000000000000a [ 106.104031][ T6386] RBP: 00007f593b72b0a0 R08: 0000000000000000 R09: 0000000000000000 [ 106.112132][ T6386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 106.120121][ T6386] R13: 0000000000000000 R14: 00007f593ab45fa0 R15: 00007ffe1caf0ce8 [ 106.128127][ T6386] [ 106.178094][ C1] Illegal XDP return value 16128 on prog (id 50) dev batadv_slave_0, expect packet loss! [ 106.300937][ T6390] __nla_validate_parse: 6 callbacks suppressed [ 106.300959][ T6390] netlink: 4 bytes leftover after parsing attributes in process `syz.2.142'. [ 106.396591][ T6395] netlink: 80 bytes leftover after parsing attributes in process `syz.4.143'. [ 107.019195][ T6416] FAULT_INJECTION: forcing a failure. [ 107.019195][ T6416] name failslab, interval 1, probability 0, space 0, times 0 [ 107.073286][ T6416] CPU: 0 UID: 0 PID: 6416 Comm: syz.1.150 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 107.083692][ T6416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 107.093766][ T6416] Call Trace: [ 107.097059][ T6416] [ 107.100001][ T6416] dump_stack_lvl+0x241/0x360 [ 107.104699][ T6416] ? __pfx_dump_stack_lvl+0x10/0x10 [ 107.109912][ T6416] ? __pfx__printk+0x10/0x10 [ 107.114571][ T6416] ? kmem_cache_alloc_node_noprof+0x4f/0x380 [ 107.120607][ T6416] ? __pfx___might_resched+0x10/0x10 [ 107.125938][ T6416] should_fail_ex+0x3b0/0x4e0 [ 107.130652][ T6416] should_failslab+0xac/0x100 [ 107.135379][ T6416] kmem_cache_alloc_node_noprof+0x77/0x380 [ 107.141302][ T6416] ? __alloc_skb+0x1c3/0x440 [ 107.145916][ T6416] __alloc_skb+0x1c3/0x440 [ 107.150361][ T6416] ? __pfx___alloc_skb+0x10/0x10 [ 107.155424][ T6416] ? netlink_autobind+0xd6/0x2f0 [ 107.160375][ T6416] ? netlink_autobind+0x2b0/0x2f0 [ 107.165435][ T6416] netlink_sendmsg+0x638/0xcb0 [ 107.170224][ T6416] ? __pfx_netlink_sendmsg+0x10/0x10 [ 107.175548][ T6416] ? aa_sock_msg_perm+0x91/0x160 [ 107.180515][ T6416] ? __pfx_netlink_sendmsg+0x10/0x10 [ 107.185810][ T6416] __sock_sendmsg+0x221/0x270 [ 107.190509][ T6416] ____sys_sendmsg+0x52a/0x7e0 [ 107.195302][ T6416] ? __pfx_____sys_sendmsg+0x10/0x10 [ 107.200609][ T6416] ? __fget_files+0x2a/0x410 [ 107.205224][ T6416] ? __fget_files+0x2a/0x410 [ 107.209840][ T6416] __sys_sendmsg+0x269/0x350 [ 107.214445][ T6416] ? __pfx_lock_release+0x10/0x10 [ 107.219486][ T6416] ? __pfx___sys_sendmsg+0x10/0x10 [ 107.224627][ T6416] ? __pfx_vfs_write+0x10/0x10 [ 107.229450][ T6416] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 107.235798][ T6416] ? do_syscall_64+0x100/0x230 [ 107.240588][ T6416] ? do_syscall_64+0xb6/0x230 [ 107.245291][ T6416] do_syscall_64+0xf3/0x230 [ 107.249820][ T6416] ? clear_bhb_loop+0x35/0x90 [ 107.254643][ T6416] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.260560][ T6416] RIP: 0033:0x7f593a980849 [ 107.264987][ T6416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 107.284699][ T6416] RSP: 002b:00007f593b72b058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 107.293161][ T6416] RAX: ffffffffffffffda RBX: 00007f593ab45fa0 RCX: 00007f593a980849 [ 107.301147][ T6416] RDX: 0000000000000000 RSI: 0000000020001380 RDI: 0000000000000003 [ 107.309151][ T6416] RBP: 00007f593b72b0a0 R08: 0000000000000000 R09: 0000000000000000 [ 107.317150][ T6416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 107.325133][ T6416] R13: 0000000000000000 R14: 00007f593ab45fa0 R15: 00007ffe1caf0ce8 [ 107.333132][ T6416] [ 107.348244][ T6418] netlink: 8 bytes leftover after parsing attributes in process `syz.0.151'. [ 107.536163][ T6429] FAULT_INJECTION: forcing a failure. [ 107.536163][ T6429] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 107.584936][ T6429] CPU: 0 UID: 0 PID: 6429 Comm: syz.1.154 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 107.595282][ T6429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 107.605510][ T6429] Call Trace: [ 107.608830][ T6429] [ 107.611802][ T6429] dump_stack_lvl+0x241/0x360 [ 107.616526][ T6429] ? __pfx_dump_stack_lvl+0x10/0x10 [ 107.621766][ T6429] ? __pfx__printk+0x10/0x10 [ 107.626419][ T6429] should_fail_ex+0x3b0/0x4e0 [ 107.631150][ T6429] _copy_from_user+0x2f/0xc0 [ 107.635788][ T6429] move_addr_to_kernel+0x82/0x150 [ 107.640869][ T6429] copy_msghdr_from_user+0x43e/0x680 [ 107.646212][ T6429] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 107.652070][ T6429] ? __fget_files+0x2a/0x410 [ 107.656732][ T6429] ? __fget_files+0x2a/0x410 [ 107.661398][ T6429] __sys_sendmmsg+0x32b/0x720 [ 107.666131][ T6429] ? __pfx___sys_sendmmsg+0x10/0x10 [ 107.671387][ T6429] ? __pfx_lock_release+0x10/0x10 [ 107.676452][ T6429] ? kstrtouint_from_user+0x128/0x190 [ 107.681896][ T6429] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 107.687942][ T6429] ? ksys_write+0x22a/0x2b0 [ 107.692510][ T6429] ? __pfx_lock_release+0x10/0x10 [ 107.697597][ T6429] ? vfs_write+0x730/0xd30 [ 107.702073][ T6429] ? __mutex_unlock_slowpath+0x21e/0x790 [ 107.707785][ T6429] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 107.713813][ T6429] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 107.720184][ T6429] ? do_syscall_64+0x100/0x230 [ 107.725094][ T6429] __x64_sys_sendmmsg+0xa0/0xb0 [ 107.730015][ T6429] do_syscall_64+0xf3/0x230 [ 107.734558][ T6429] ? clear_bhb_loop+0x35/0x90 [ 107.739288][ T6429] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.745236][ T6429] RIP: 0033:0x7f593a980849 [ 107.749777][ T6429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 107.769435][ T6429] RSP: 002b:00007f593b72b058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 107.777910][ T6429] RAX: ffffffffffffffda RBX: 00007f593ab45fa0 RCX: 00007f593a980849 [ 107.785932][ T6429] RDX: 0000000000000002 RSI: 0000000020001c80 RDI: 0000000000000003 [ 107.793958][ T6429] RBP: 00007f593b72b0a0 R08: 0000000000000000 R09: 0000000000000000 [ 107.801974][ T6429] R10: 00000000240080c4 R11: 0000000000000246 R12: 0000000000000001 [ 107.809990][ T6429] R13: 0000000000000000 R14: 00007f593ab45fa0 R15: 00007ffe1caf0ce8 [ 107.818027][ T6429] [ 107.965846][ T6437] FAULT_INJECTION: forcing a failure. [ 107.965846][ T6437] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 108.001001][ T6437] CPU: 0 UID: 0 PID: 6437 Comm: syz.4.157 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 108.011344][ T6437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 108.021444][ T6437] Call Trace: [ 108.024763][ T6437] [ 108.027734][ T6437] dump_stack_lvl+0x241/0x360 [ 108.032461][ T6437] ? __pfx_dump_stack_lvl+0x10/0x10 [ 108.037715][ T6437] ? __pfx__printk+0x10/0x10 [ 108.042369][ T6437] ? snprintf+0xda/0x120 [ 108.046756][ T6437] should_fail_ex+0x3b0/0x4e0 [ 108.051499][ T6437] _copy_to_user+0x31/0xb0 [ 108.055980][ T6437] simple_read_from_buffer+0xca/0x150 [ 108.061414][ T6437] proc_fail_nth_read+0x1e9/0x250 [ 108.066496][ T6437] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 108.072104][ T6437] ? rw_verify_area+0x55e/0x6f0 [ 108.077000][ T6437] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 108.082579][ T6437] vfs_read+0x1fc/0xb70 [ 108.086766][ T6437] ? __pfx___mutex_lock+0x10/0x10 [ 108.091878][ T6437] ? __pfx_vfs_read+0x10/0x10 [ 108.096582][ T6437] ? __fget_files+0x2a/0x410 [ 108.101205][ T6437] ? __fget_files+0x395/0x410 [ 108.105930][ T6437] ? __fget_files+0x2a/0x410 [ 108.110552][ T6437] ksys_read+0x18f/0x2b0 [ 108.114818][ T6437] ? __pfx_ksys_read+0x10/0x10 [ 108.119602][ T6437] ? do_syscall_64+0x100/0x230 [ 108.124377][ T6437] ? do_syscall_64+0xb6/0x230 [ 108.129064][ T6437] do_syscall_64+0xf3/0x230 [ 108.133613][ T6437] ? clear_bhb_loop+0x35/0x90 [ 108.138333][ T6437] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 108.144284][ T6437] RIP: 0033:0x7f2373f7f25c [ 108.148730][ T6437] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48 [ 108.168367][ T6437] RSP: 002b:00007f2374cc4050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 108.176811][ T6437] RAX: ffffffffffffffda RBX: 00007f2374145fa0 RCX: 00007f2373f7f25c [ 108.184795][ T6437] RDX: 000000000000000f RSI: 00007f2374cc40b0 RDI: 0000000000000003 [ 108.192785][ T6437] RBP: 00007f2374cc40a0 R08: 0000000000000000 R09: 0000000000000000 [ 108.200770][ T6437] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000001 [ 108.208763][ T6437] R13: 0000000000000000 R14: 00007f2374145fa0 R15: 00007fff93ad9748 [ 108.216771][ T6437] [ 108.232726][ T6441] netlink: 8 bytes leftover after parsing attributes in process `syz.0.159'. [ 108.241848][ T6441] netlink: 48 bytes leftover after parsing attributes in process `syz.0.159'. [ 108.672421][ T6447] netlink: 28 bytes leftover after parsing attributes in process `syz.3.161'. [ 108.822572][ T6462] FAULT_INJECTION: forcing a failure. [ 108.822572][ T6462] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 108.857787][ T6462] CPU: 0 UID: 0 PID: 6462 Comm: syz.4.165 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 108.868213][ T6462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 108.878326][ T6462] Call Trace: [ 108.881648][ T6462] [ 108.884625][ T6462] dump_stack_lvl+0x241/0x360 [ 108.889361][ T6462] ? __pfx_dump_stack_lvl+0x10/0x10 [ 108.894622][ T6462] ? __pfx__printk+0x10/0x10 [ 108.899295][ T6462] ? snprintf+0xda/0x120 [ 108.903592][ T6462] should_fail_ex+0x3b0/0x4e0 [ 108.908333][ T6462] _copy_to_user+0x31/0xb0 [ 108.912808][ T6462] simple_read_from_buffer+0xca/0x150 [ 108.918279][ T6462] proc_fail_nth_read+0x1e9/0x250 [ 108.923338][ T6462] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 108.929102][ T6462] ? rw_verify_area+0x55e/0x6f0 [ 108.934011][ T6462] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 108.939598][ T6462] vfs_read+0x1fc/0xb70 [ 108.943805][ T6462] ? __pfx___mutex_lock+0x10/0x10 [ 108.948910][ T6462] ? __pfx_vfs_read+0x10/0x10 [ 108.953620][ T6462] ? __fget_files+0x2a/0x410 [ 108.958253][ T6462] ? __fget_files+0x395/0x410 [ 108.962997][ T6462] ? __fget_files+0x2a/0x410 [ 108.967649][ T6462] ksys_read+0x18f/0x2b0 [ 108.971936][ T6462] ? __pfx_ksys_read+0x10/0x10 [ 108.976721][ T6462] ? do_syscall_64+0x100/0x230 [ 108.981507][ T6462] ? do_syscall_64+0xb6/0x230 [ 108.986246][ T6462] do_syscall_64+0xf3/0x230 [ 108.990763][ T6462] ? clear_bhb_loop+0x35/0x90 [ 108.995484][ T6462] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.001480][ T6462] RIP: 0033:0x7f2373f7f25c [ 109.005909][ T6462] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48 [ 109.025620][ T6462] RSP: 002b:00007f2374ca3050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 109.034071][ T6462] RAX: ffffffffffffffda RBX: 00007f2374146080 RCX: 00007f2373f7f25c [ 109.042054][ T6462] RDX: 000000000000000f RSI: 00007f2374ca30b0 RDI: 0000000000000004 [ 109.050124][ T6462] RBP: 00007f2374ca30a0 R08: 0000000000000000 R09: 0000000000000000 [ 109.058104][ T6462] R10: 0000000020000100 R11: 0000000000000246 R12: 0000000000000001 [ 109.066089][ T6462] R13: 0000000000000001 R14: 00007f2374146080 R15: 00007fff93ad9748 [ 109.074095][ T6462] [ 110.596799][ T6507] netlink: 168 bytes leftover after parsing attributes in process `syz.2.179'. [ 110.649486][ T6509] netlink: 32 bytes leftover after parsing attributes in process `syz.4.181'. [ 110.714762][ T6505] netlink: 40 bytes leftover after parsing attributes in process `syz.0.180'. [ 110.732682][ T6511] netlink: 'syz.4.182': attribute type 4 has an invalid length. [ 110.740648][ T6511] netlink: 17 bytes leftover after parsing attributes in process `syz.4.182'. [ 110.996635][ T6526] pimreg: entered allmulticast mode [ 111.033721][ T6528] pimreg: left allmulticast mode [ 111.095856][ T6526] FAULT_INJECTION: forcing a failure. [ 111.095856][ T6526] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 111.125339][ T6531] pimreg: entered allmulticast mode [ 111.132318][ T6526] CPU: 1 UID: 0 PID: 6526 Comm: syz.2.186 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 111.142681][ T6526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 111.152781][ T6526] Call Trace: [ 111.156104][ T6526] [ 111.159087][ T6526] dump_stack_lvl+0x241/0x360 [ 111.163814][ T6526] ? __pfx_dump_stack_lvl+0x10/0x10 [ 111.169056][ T6526] ? __pfx__printk+0x10/0x10 [ 111.173710][ T6526] ? snprintf+0xda/0x120 [ 111.178008][ T6526] should_fail_ex+0x3b0/0x4e0 [ 111.182778][ T6526] _copy_to_user+0x31/0xb0 [ 111.187434][ T6526] simple_read_from_buffer+0xca/0x150 [ 111.192874][ T6526] proc_fail_nth_read+0x1e9/0x250 [ 111.197966][ T6526] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 111.203582][ T6526] ? rw_verify_area+0x55e/0x6f0 [ 111.208480][ T6526] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 111.214113][ T6526] vfs_read+0x1fc/0xb70 [ 111.218321][ T6526] ? __pfx___mutex_lock+0x10/0x10 [ 111.223388][ T6526] ? __pfx_vfs_read+0x10/0x10 [ 111.228111][ T6526] ? __fget_files+0x2a/0x410 [ 111.232845][ T6526] ? __fget_files+0x395/0x410 [ 111.237576][ T6526] ? __fget_files+0x2a/0x410 [ 111.242215][ T6526] ksys_read+0x18f/0x2b0 [ 111.246477][ T6526] ? __pfx_ksys_read+0x10/0x10 [ 111.251256][ T6526] ? do_syscall_64+0x100/0x230 [ 111.256040][ T6526] ? do_syscall_64+0xb6/0x230 [ 111.260733][ T6526] do_syscall_64+0xf3/0x230 [ 111.265277][ T6526] ? clear_bhb_loop+0x35/0x90 [ 111.270412][ T6526] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.276342][ T6526] RIP: 0033:0x7f7838f7f25c [ 111.280801][ T6526] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48 [ 111.300433][ T6526] RSP: 002b:00007f7839e41050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 111.308880][ T6526] RAX: ffffffffffffffda RBX: 00007f7839145fa0 RCX: 00007f7838f7f25c [ 111.316896][ T6526] RDX: 000000000000000f RSI: 00007f7839e410b0 RDI: 0000000000000004 [ 111.324885][ T6526] RBP: 00007f7839e410a0 R08: 0000000000000000 R09: 0000000000000000 [ 111.332878][ T6526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 111.340865][ T6526] R13: 0000000000000000 R14: 00007f7839145fa0 R15: 00007ffc7f9e3318 [ 111.348869][ T6526] [ 111.371577][ T6533] pimreg: left allmulticast mode [ 111.403898][ T6538] FAULT_INJECTION: forcing a failure. [ 111.403898][ T6538] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 111.417304][ T6538] CPU: 1 UID: 0 PID: 6538 Comm: syz.4.190 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 111.427607][ T6538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 111.437716][ T6538] Call Trace: [ 111.441043][ T6538] [ 111.444020][ T6538] dump_stack_lvl+0x241/0x360 [ 111.448752][ T6538] ? __pfx_dump_stack_lvl+0x10/0x10 [ 111.454010][ T6538] ? __pfx__printk+0x10/0x10 [ 111.458692][ T6538] ? __pfx_lock_release+0x10/0x10 [ 111.463789][ T6538] should_fail_ex+0x3b0/0x4e0 [ 111.468543][ T6538] _copy_from_user+0x2f/0xc0 [ 111.473199][ T6538] copy_msghdr_from_user+0xae/0x680 [ 111.478658][ T6538] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 111.484534][ T6538] ? __fget_files+0x2a/0x410 [ 111.489204][ T6538] ? __fget_files+0x2a/0x410 [ 111.493892][ T6538] __sys_recvmsg+0x200/0x390 [ 111.498556][ T6538] ? __pfx___sys_recvmsg+0x10/0x10 [ 111.503828][ T6538] ? __mutex_unlock_slowpath+0x21e/0x790 [ 111.509551][ T6538] ? __fget_files+0x2a/0x410 [ 111.514238][ T6538] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 111.520654][ T6538] ? do_syscall_64+0x100/0x230 [ 111.525478][ T6538] ? do_syscall_64+0xb6/0x230 [ 111.530213][ T6538] do_syscall_64+0xf3/0x230 [ 111.534879][ T6538] ? clear_bhb_loop+0x35/0x90 [ 111.539610][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.545560][ T6538] RIP: 0033:0x7f2373f80849 [ 111.550025][ T6538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 111.569685][ T6538] RSP: 002b:00007f2374cc4058 EFLAGS: 00000246 ORIG_RAX: 000000000000002f [ 111.578160][ T6538] RAX: ffffffffffffffda RBX: 00007f2374145fa0 RCX: 00007f2373f80849 [ 111.586188][ T6538] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003 [ 111.594214][ T6538] RBP: 00007f2374cc40a0 R08: 0000000000000000 R09: 0000000000000000 [ 111.602253][ T6538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 111.610286][ T6538] R13: 0000000000000000 R14: 00007f2374145fa0 R15: 00007fff93ad9748 [ 111.618335][ T6538] [ 112.045889][ T6555] pimreg: entered allmulticast mode [ 112.073074][ T6555] pimreg: left allmulticast mode [ 112.157238][ T6558] (unnamed net_device) (uninitialized): option mode: invalid value (33) [ 112.176728][ T6557] pimreg: entered allmulticast mode [ 112.194315][ T6560] pimreg: left allmulticast mode [ 112.523825][ T6568] pimreg: entered allmulticast mode [ 112.531422][ T6568] pimreg: left allmulticast mode [ 112.927246][ T6583] FAULT_INJECTION: forcing a failure. [ 112.927246][ T6583] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 113.017835][ T6583] CPU: 0 UID: 0 PID: 6583 Comm: syz.2.202 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 113.028349][ T6583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 113.038452][ T6583] Call Trace: [ 113.041807][ T6583] [ 113.044785][ T6583] dump_stack_lvl+0x241/0x360 [ 113.049541][ T6583] ? __pfx_dump_stack_lvl+0x10/0x10 [ 113.054796][ T6583] ? __pfx__printk+0x10/0x10 [ 113.059458][ T6583] ? snprintf+0xda/0x120 [ 113.063758][ T6583] should_fail_ex+0x3b0/0x4e0 [ 113.068508][ T6583] _copy_to_user+0x31/0xb0 [ 113.072993][ T6583] simple_read_from_buffer+0xca/0x150 [ 113.078441][ T6583] proc_fail_nth_read+0x1e9/0x250 [ 113.083536][ T6583] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 113.089293][ T6583] ? rw_verify_area+0x55e/0x6f0 [ 113.094207][ T6583] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 113.099837][ T6583] vfs_read+0x1fc/0xb70 [ 113.104047][ T6583] ? __pfx___mutex_lock+0x10/0x10 [ 113.109371][ T6583] ? __pfx_vfs_read+0x10/0x10 [ 113.114071][ T6583] ? __fget_files+0x2a/0x410 [ 113.118718][ T6583] ? __fget_files+0x395/0x410 [ 113.123418][ T6583] ? __fget_files+0x2a/0x410 [ 113.128043][ T6583] ksys_read+0x18f/0x2b0 [ 113.132423][ T6583] ? __pfx_ksys_read+0x10/0x10 [ 113.137235][ T6583] ? do_syscall_64+0x100/0x230 [ 113.142205][ T6583] ? do_syscall_64+0xb6/0x230 [ 113.146988][ T6583] do_syscall_64+0xf3/0x230 [ 113.151518][ T6583] ? clear_bhb_loop+0x35/0x90 [ 113.156273][ T6583] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.162195][ T6583] RIP: 0033:0x7f7838f7f25c [ 113.166626][ T6583] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48 [ 113.186347][ T6583] RSP: 002b:00007f7839e41050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 113.194791][ T6583] RAX: ffffffffffffffda RBX: 00007f7839145fa0 RCX: 00007f7838f7f25c [ 113.202781][ T6583] RDX: 000000000000000f RSI: 00007f7839e410b0 RDI: 0000000000000005 [ 113.210765][ T6583] RBP: 00007f7839e410a0 R08: 0000000000000000 R09: 0000000000000000 [ 113.218759][ T6583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 113.226749][ T6583] R13: 0000000000000000 R14: 00007f7839145fa0 R15: 00007ffc7f9e3318 [ 113.234756][ T6583] [ 113.283540][ T6584] syzkaller0: entered promiscuous mode [ 113.287785][ T6578] __nla_validate_parse: 2 callbacks suppressed [ 113.287810][ T6578] netlink: 20 bytes leftover after parsing attributes in process `syz.4.199'. [ 113.299238][ T6584] syzkaller0: entered allmulticast mode [ 113.311242][ T6570] netlink: 4 bytes leftover after parsing attributes in process `syz.4.199'. [ 113.575348][ T6602] netlink: 'syz.3.204': attribute type 4 has an invalid length. [ 113.584410][ T6602] netlink: 152 bytes leftover after parsing attributes in process `syz.3.204'. [ 115.328419][ T6614] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR [ 115.580862][ T6630] skbuff: bad partial csum: csum=65506/2 headroom=66 headlen=65526 [ 115.852318][ T6641] batadv0: entered allmulticast mode [ 116.693701][ T6678] FAULT_INJECTION: forcing a failure. [ 116.693701][ T6678] name failslab, interval 1, probability 0, space 0, times 0 [ 116.767859][ T6678] CPU: 0 UID: 0 PID: 6678 Comm: syz.3.232 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 116.778366][ T6678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 116.788443][ T6678] Call Trace: [ 116.791738][ T6678] [ 116.794683][ T6678] dump_stack_lvl+0x241/0x360 [ 116.799481][ T6678] ? __pfx_dump_stack_lvl+0x10/0x10 [ 116.804718][ T6678] ? __pfx__printk+0x10/0x10 [ 116.809339][ T6678] ? fs_reclaim_acquire+0x93/0x130 [ 116.814470][ T6678] ? __pfx___might_resched+0x10/0x10 [ 116.819780][ T6678] ? dynamic_dname+0x141/0x1b0 [ 116.824574][ T6678] should_fail_ex+0x3b0/0x4e0 [ 116.829291][ T6678] should_failslab+0xac/0x100 [ 116.834057][ T6678] __kmalloc_noprof+0xdd/0x4c0 [ 116.838851][ T6678] ? tomoyo_encode+0x26f/0x540 [ 116.843638][ T6678] tomoyo_encode+0x26f/0x540 [ 116.848278][ T6678] ? __pfx_sockfs_dname+0x10/0x10 [ 116.853332][ T6678] tomoyo_realpath_from_path+0x59e/0x5e0 [ 116.859045][ T6678] tomoyo_path_number_perm+0x236/0x860 [ 116.864561][ T6678] ? __lock_acquire+0x1397/0x2100 [ 116.869917][ T6678] ? tomoyo_path_number_perm+0x206/0x860 [ 116.875786][ T6678] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 116.881856][ T6678] ? __fget_files+0x2a/0x410 [ 116.886484][ T6678] ? __fget_files+0x2a/0x410 [ 116.891107][ T6678] security_file_ioctl+0xc6/0x2a0 [ 116.896160][ T6678] __se_sys_ioctl+0x46/0x170 [ 116.900804][ T6678] do_syscall_64+0xf3/0x230 [ 116.905364][ T6678] ? clear_bhb_loop+0x35/0x90 [ 116.910076][ T6678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.916122][ T6678] RIP: 0033:0x7fc806180849 [ 116.920569][ T6678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 116.940201][ T6678] RSP: 002b:00007fc806f67058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 116.948731][ T6678] RAX: ffffffffffffffda RBX: 00007fc806345fa0 RCX: 00007fc806180849 [ 116.956728][ T6678] RDX: 00000000200004c0 RSI: 0000000000008933 RDI: 0000000000000003 [ 116.964751][ T6678] RBP: 00007fc806f670a0 R08: 0000000000000000 R09: 0000000000000000 [ 116.972766][ T6678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 116.980870][ T6678] R13: 0000000000000000 R14: 00007fc806345fa0 R15: 00007ffce1e1f518 [ 116.988884][ T6678] [ 117.029773][ T6678] ERROR: Out of memory at tomoyo_realpath_from_path. [ 118.412734][ T6741] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.257'. [ 118.518416][ T6745] ebt_among: dst integrity fail: 101 [ 118.524344][ T6718] delete_channel: no stack [ 118.827096][ T6754] netlink: 8 bytes leftover after parsing attributes in process `syz.3.261'. [ 118.857841][ T9] IPVS: starting estimator thread 0... [ 118.878012][ T6754] netlink: 16 bytes leftover after parsing attributes in process `syz.3.261'. [ 118.909015][ T6764] netlink: 4 bytes leftover after parsing attributes in process `syz.0.263'. [ 118.926401][ T6765] netlink: 'syz.3.261': attribute type 39 has an invalid length. [ 118.954225][ T6754] ip6gre1: entered allmulticast mode [ 118.987720][ T6761] IPVS: using max 20 ests per chain, 48000 per kthread [ 119.333550][ T6767] hsr_slave_0: left promiscuous mode [ 119.339959][ T6767] hsr_slave_1: left promiscuous mode [ 120.045601][ T6787] netlink: 4 bytes leftover after parsing attributes in process `syz.4.270'. [ 120.073309][ T6787] netlink: 4 bytes leftover after parsing attributes in process `syz.4.270'. [ 120.391053][ T6797] geneve1: mtu less than device minimum [ 120.602102][ T6805] netlink: 16 bytes leftover after parsing attributes in process `syz.0.277'. [ 120.976809][ T6818] FAULT_INJECTION: forcing a failure. [ 120.976809][ T6818] name failslab, interval 1, probability 0, space 0, times 0 [ 121.002426][ T6818] CPU: 1 UID: 0 PID: 6818 Comm: syz.3.285 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 121.012834][ T6818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 121.022938][ T6818] Call Trace: [ 121.026263][ T6818] [ 121.029245][ T6818] dump_stack_lvl+0x241/0x360 [ 121.033988][ T6818] ? __pfx_dump_stack_lvl+0x10/0x10 [ 121.039300][ T6818] ? __pfx__printk+0x10/0x10 [ 121.043954][ T6818] ? __kmalloc_noprof+0xb5/0x4c0 [ 121.049033][ T6818] ? __pfx___might_resched+0x10/0x10 [ 121.054385][ T6818] should_fail_ex+0x3b0/0x4e0 [ 121.059133][ T6818] should_failslab+0xac/0x100 [ 121.063873][ T6818] __kmalloc_noprof+0xdd/0x4c0 [ 121.068700][ T6818] ? __kmalloc_cache_noprof+0x243/0x390 [ 121.074312][ T6818] ? alloc_pipe_info+0x1ff/0x4d0 [ 121.079323][ T6818] alloc_pipe_info+0x1ff/0x4d0 [ 121.084152][ T6818] splice_direct_to_actor+0xa9e/0xc80 [ 121.089579][ T6818] ? aa_file_perm+0x3ef/0xf50 [ 121.094454][ T6818] ? __pfx_aa_file_perm+0x10/0x10 [ 121.099538][ T6818] ? __pfx_direct_splice_actor+0x10/0x10 [ 121.105244][ T6818] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 121.111205][ T6818] ? __fget_files+0x2a/0x410 [ 121.115859][ T6818] ? __pfx_lock_release+0x10/0x10 [ 121.120944][ T6818] do_splice_direct+0x289/0x3e0 [ 121.125865][ T6818] ? __pfx_do_splice_direct+0x10/0x10 [ 121.131490][ T6818] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 121.137464][ T6818] ? rw_verify_area+0x1c3/0x6f0 [ 121.142408][ T6818] do_sendfile+0x564/0x8a0 [ 121.147173][ T6818] ? __pfx_do_sendfile+0x10/0x10 [ 121.152185][ T6818] ? __fget_files+0x2a/0x410 [ 121.156857][ T6818] __se_sys_sendfile64+0x17c/0x1e0 [ 121.162044][ T6818] ? __pfx___se_sys_sendfile64+0x10/0x10 [ 121.167749][ T6818] ? do_syscall_64+0x100/0x230 [ 121.172570][ T6818] ? do_syscall_64+0xb6/0x230 [ 121.177309][ T6818] do_syscall_64+0xf3/0x230 [ 121.181871][ T6818] ? clear_bhb_loop+0x35/0x90 [ 121.186610][ T6818] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.192562][ T6818] RIP: 0033:0x7fc806180849 [ 121.197022][ T6818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 121.216873][ T6818] RSP: 002b:00007fc806f67058 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 121.225374][ T6818] RAX: ffffffffffffffda RBX: 00007fc806345fa0 RCX: 00007fc806180849 [ 121.233491][ T6818] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005 [ 121.241511][ T6818] RBP: 00007fc806f670a0 R08: 0000000000000000 R09: 0000000000000000 [ 121.249536][ T6818] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 121.257653][ T6818] R13: 0000000000000000 R14: 00007fc806345fa0 R15: 00007ffce1e1f518 [ 121.265719][ T6818] [ 121.294552][ T6802] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512) [ 121.335821][ T6802] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512) [ 121.684270][ T6834] netlink: 16 bytes leftover after parsing attributes in process `syz.0.291'. [ 121.738132][ T6834] netlink: 4 bytes leftover after parsing attributes in process `syz.0.291'. [ 121.777691][ T6834] netlink: 4 bytes leftover after parsing attributes in process `syz.0.291'. [ 122.697213][ T6877] netlink: 'syz.3.303': attribute type 1 has an invalid length. [ 122.726545][ T6880] netlink: 'syz.3.303': attribute type 1 has an invalid length. [ 123.069112][ T6855] FAULT_INJECTION: forcing a failure. [ 123.069112][ T6855] name failslab, interval 1, probability 0, space 0, times 0 [ 123.119486][ T6855] CPU: 1 UID: 0 PID: 6855 Comm: syz.1.297 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 123.129810][ T6855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 123.139914][ T6855] Call Trace: [ 123.143249][ T6855] [ 123.146226][ T6855] dump_stack_lvl+0x241/0x360 [ 123.150960][ T6855] ? __pfx_dump_stack_lvl+0x10/0x10 [ 123.156228][ T6855] ? __pfx__printk+0x10/0x10 [ 123.160882][ T6855] ? kmem_cache_alloc_node_noprof+0x4f/0x380 [ 123.166919][ T6855] ? __pfx___might_resched+0x10/0x10 [ 123.172260][ T6855] ? validate_chain+0x11e/0x5920 [ 123.177390][ T6855] ? __lock_acquire+0x1397/0x2100 [ 123.182505][ T6855] should_fail_ex+0x3b0/0x4e0 [ 123.187250][ T6855] should_failslab+0xac/0x100 [ 123.191999][ T6855] kmem_cache_alloc_node_noprof+0x77/0x380 [ 123.197870][ T6855] ? __alloc_skb+0x1c3/0x440 [ 123.202519][ T6855] ? validate_chain+0x11e/0x5920 [ 123.207513][ T6855] __alloc_skb+0x1c3/0x440 [ 123.211982][ T6855] ? __pfx___alloc_skb+0x10/0x10 [ 123.216983][ T6855] ? unwind_next_frame+0x18e6/0x22d0 [ 123.222408][ T6855] virtio_transport_alloc_skb+0x4b/0xe90 [ 123.228112][ T6855] ? 0xffffffffa0003b40 [ 123.232309][ T6855] ? __pfx_register_lock_class+0x10/0x10 [ 123.237990][ T6855] virtio_transport_send_pkt_info+0x56f/0x10b0 [ 123.244307][ T6855] virtio_transport_release+0x2cf/0xce0 [ 123.249943][ T6855] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 123.255975][ T6855] ? __pfx_virtio_transport_release+0x10/0x10 [ 123.262208][ T6855] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 123.268598][ T6855] ? __local_bh_enable_ip+0x168/0x200 [ 123.274033][ T6855] ? __vsock_release+0x31/0x4a0 [ 123.278945][ T6855] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 123.284727][ T6855] ? __vsock_release+0x31/0x4a0 [ 123.289638][ T6855] ? do_raw_spin_unlock+0x13c/0x8b0 [ 123.294877][ T6855] __vsock_release+0x7c/0x4a0 [ 123.299669][ T6855] vsock_release+0x42/0xa0 [ 123.304214][ T6855] sock_close+0xbc/0x240 [ 123.308501][ T6855] ? __pfx_sock_close+0x10/0x10 [ 123.313389][ T6855] __fput+0x23c/0xa50 [ 123.317406][ T6855] task_work_run+0x24f/0x310 [ 123.322040][ T6855] ? __pfx_task_work_run+0x10/0x10 [ 123.327187][ T6855] ? rcu_is_watching+0x15/0xb0 [ 123.331980][ T6855] get_signal+0x15f7/0x1750 [ 123.336508][ T6855] ? fput+0x1fa/0x290 [ 123.340524][ T6855] ? __pfx___sys_recvmsg+0x10/0x10 [ 123.345653][ T6855] ? __pfx_get_signal+0x10/0x10 [ 123.350531][ T6855] arch_do_signal_or_restart+0x96/0x860 [ 123.356100][ T6855] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 123.362275][ T6855] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 123.368299][ T6855] ? syscall_exit_to_user_mode+0xa3/0x340 [ 123.374051][ T6855] syscall_exit_to_user_mode+0xce/0x340 [ 123.379619][ T6855] do_syscall_64+0x100/0x230 [ 123.384222][ T6855] ? clear_bhb_loop+0x35/0x90 [ 123.388919][ T6855] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.394827][ T6855] RIP: 0033:0x7f593a980849 [ 123.399256][ T6855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 123.418881][ T6855] RSP: 002b:00007f593b72b058 EFLAGS: 00000246 ORIG_RAX: 000000000000002f [ 123.427315][ T6855] RAX: fffffffffffffff5 RBX: 00007f593ab45fa0 RCX: 00007f593a980849 [ 123.435297][ T6855] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000006 [ 123.443280][ T6855] RBP: 00007f593b72b0a0 R08: 0000000000000000 R09: 0000000000000000 [ 123.451264][ T6855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 123.459365][ T6855] R13: 0000000000000000 R14: 00007f593ab45fa0 R15: 00007ffe1caf0ce8 [ 123.467384][ T6855] [ 123.655019][ T6901] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22 [ 123.692249][ T6901] netdevsim netdevsim3: Direct firmware load for . failed with error -22 [ 123.753183][ T6901] netdevsim netdevsim3: Falling back to sysfs fallback for: . [ 123.790908][ T6911] __nla_validate_parse: 4 callbacks suppressed [ 123.790929][ T6911] netlink: 16 bytes leftover after parsing attributes in process `syz.1.310'. [ 123.849344][ T6911] netlink: 4 bytes leftover after parsing attributes in process `syz.1.310'. [ 123.875362][ T6911] netlink: 4 bytes leftover after parsing attributes in process `syz.1.310'. [ 124.038738][ T6911] netlink: 4 bytes leftover after parsing attributes in process `syz.1.310'. [ 124.110757][ T6911] netlink: 4 bytes leftover after parsing attributes in process `syz.1.310'. [ 124.476192][ T6911] netlink: 4 bytes leftover after parsing attributes in process `syz.1.310'. [ 124.528011][ T6911] netlink: 4 bytes leftover after parsing attributes in process `syz.1.310'. [ 124.956636][ T6956] netlink: 4 bytes leftover after parsing attributes in process `syz.1.320'. [ 125.192666][ T6962] netlink: 20 bytes leftover after parsing attributes in process `syz.0.321'. [ 125.823277][ T6988] netlink: 96 bytes leftover after parsing attributes in process `syz.3.326'. [ 127.828090][ T7060] FAULT_INJECTION: forcing a failure. [ 127.828090][ T7060] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 127.908323][ T7060] CPU: 1 UID: 0 PID: 7060 Comm: syz.0.343 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 127.918670][ T7060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 127.928773][ T7060] Call Trace: [ 127.932085][ T7060] [ 127.935055][ T7060] dump_stack_lvl+0x241/0x360 [ 127.939794][ T7060] ? __pfx_dump_stack_lvl+0x10/0x10 [ 127.945040][ T7060] ? __pfx__printk+0x10/0x10 [ 127.949701][ T7060] ? snprintf+0xda/0x120 [ 127.954003][ T7060] should_fail_ex+0x3b0/0x4e0 [ 127.958748][ T7060] _copy_to_user+0x31/0xb0 [ 127.963221][ T7060] simple_read_from_buffer+0xca/0x150 [ 127.968647][ T7060] proc_fail_nth_read+0x1e9/0x250 [ 127.973724][ T7060] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 127.979328][ T7060] ? rw_verify_area+0x55e/0x6f0 [ 127.984227][ T7060] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 127.989827][ T7060] vfs_read+0x1fc/0xb70 [ 127.994036][ T7060] ? __pfx___mutex_lock+0x10/0x10 [ 127.999110][ T7060] ? __pfx_vfs_read+0x10/0x10 [ 128.003837][ T7060] ? __fget_files+0x2a/0x410 [ 128.008483][ T7060] ? __fget_files+0x395/0x410 [ 128.013211][ T7060] ? __fget_files+0x2a/0x410 [ 128.017861][ T7060] ksys_read+0x18f/0x2b0 [ 128.022166][ T7060] ? __pfx_ksys_read+0x10/0x10 [ 128.026975][ T7060] ? do_syscall_64+0x100/0x230 [ 128.031787][ T7060] ? do_syscall_64+0xb6/0x230 [ 128.036513][ T7060] do_syscall_64+0xf3/0x230 [ 128.041060][ T7060] ? clear_bhb_loop+0x35/0x90 [ 128.045792][ T7060] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.051763][ T7060] RIP: 0033:0x7fc0ec77f25c [ 128.056222][ T7060] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48 [ 128.075883][ T7060] RSP: 002b:00007fc0ed4ca050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 128.084358][ T7060] RAX: ffffffffffffffda RBX: 00007fc0ec945fa0 RCX: 00007fc0ec77f25c [ 128.092383][ T7060] RDX: 000000000000000f RSI: 00007fc0ed4ca0b0 RDI: 0000000000000003 [ 128.100413][ T7060] RBP: 00007fc0ed4ca0a0 R08: 0000000000000000 R09: 0000000000000000 [ 128.108441][ T7060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 128.116467][ T7060] R13: 0000000000000001 R14: 00007fc0ec945fa0 R15: 00007ffe8c720428 [ 128.124514][ T7060] [ 129.021635][ T7085] lo: entered promiscuous mode [ 129.039964][ T7085] netlink: 'syz.4.353': attribute type 4 has an invalid length. [ 129.104679][ T7100] ip6t_srh: unknown srh match flags 5294 [ 129.141544][ T7083] lo: left promiscuous mode [ 130.887120][ T7142] vlan2: entered promiscuous mode [ 130.924122][ T7142] ip6gretap0: entered promiscuous mode [ 130.959162][ T7142] vlan2: entered allmulticast mode [ 130.988207][ T7142] ip6gretap0: entered allmulticast mode [ 131.061426][ T7142] ip6gretap0: left allmulticast mode [ 131.095193][ T7142] ip6gretap0: left promiscuous mode [ 131.236523][ T7152] __nla_validate_parse: 5 callbacks suppressed [ 131.236547][ T7152] netlink: 56 bytes leftover after parsing attributes in process `syz.1.373'. [ 131.497990][ T7160] netlink: 112 bytes leftover after parsing attributes in process `syz.1.376'. [ 131.530338][ T7160] netlink: 112 bytes leftover after parsing attributes in process `syz.1.376'. [ 132.547644][ T7172] netlink: 168 bytes leftover after parsing attributes in process `syz.2.380'. [ 132.618141][ T7172] netlink: 4 bytes leftover after parsing attributes in process `syz.2.380'. [ 132.649736][ T7172] netlink: 48 bytes leftover after parsing attributes in process `syz.2.380'. [ 132.931716][ T7178] FAULT_INJECTION: forcing a failure. [ 132.931716][ T7178] name failslab, interval 1, probability 0, space 0, times 0 [ 132.944799][ T7178] CPU: 0 UID: 0 PID: 7178 Comm: syz.0.382 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 132.955092][ T7178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 132.965200][ T7178] Call Trace: [ 132.968524][ T7178] [ 132.971493][ T7178] dump_stack_lvl+0x241/0x360 [ 132.976219][ T7178] ? __pfx_dump_stack_lvl+0x10/0x10 [ 132.981466][ T7178] ? __pfx__printk+0x10/0x10 [ 132.986123][ T7178] ? kmem_cache_alloc_node_noprof+0x4f/0x380 [ 132.992160][ T7178] ? __pfx___might_resched+0x10/0x10 [ 132.997497][ T7178] should_fail_ex+0x3b0/0x4e0 [ 133.002234][ T7178] should_failslab+0xac/0x100 [ 133.007029][ T7178] kmem_cache_alloc_node_noprof+0x77/0x380 [ 133.012896][ T7178] ? __alloc_skb+0x1c3/0x440 [ 133.017528][ T7178] __alloc_skb+0x1c3/0x440 [ 133.021979][ T7178] ? __pfx___alloc_skb+0x10/0x10 [ 133.026985][ T7178] ? netlink_autobind+0xd6/0x2f0 [ 133.031937][ T7178] ? netlink_autobind+0x2b0/0x2f0 [ 133.037076][ T7178] netlink_sendmsg+0x638/0xcb0 [ 133.041872][ T7178] ? __pfx_netlink_sendmsg+0x10/0x10 [ 133.047176][ T7178] ? aa_sock_msg_perm+0x91/0x160 [ 133.052150][ T7178] ? __pfx_netlink_sendmsg+0x10/0x10 [ 133.057452][ T7178] __sock_sendmsg+0x221/0x270 [ 133.062157][ T7178] ____sys_sendmsg+0x52a/0x7e0 [ 133.066951][ T7178] ? __pfx_____sys_sendmsg+0x10/0x10 [ 133.072285][ T7178] ? __fget_files+0x2a/0x410 [ 133.076904][ T7178] ? __fget_files+0x2a/0x410 [ 133.081564][ T7178] __sys_sendmsg+0x269/0x350 [ 133.086174][ T7178] ? __pfx_lock_release+0x10/0x10 [ 133.091218][ T7178] ? __pfx___sys_sendmsg+0x10/0x10 [ 133.096378][ T7178] ? __pfx_vfs_write+0x10/0x10 [ 133.101204][ T7178] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 133.107564][ T7178] ? do_syscall_64+0x100/0x230 [ 133.112347][ T7178] ? do_syscall_64+0xb6/0x230 [ 133.117059][ T7178] do_syscall_64+0xf3/0x230 [ 133.121578][ T7178] ? clear_bhb_loop+0x35/0x90 [ 133.126274][ T7178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.132183][ T7178] RIP: 0033:0x7fc0ec780849 [ 133.136611][ T7178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.156772][ T7178] RSP: 002b:00007fc0ed4ca058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 133.165214][ T7178] RAX: ffffffffffffffda RBX: 00007fc0ec945fa0 RCX: 00007fc0ec780849 [ 133.173204][ T7178] RDX: 0000000000000000 RSI: 0000000020000540 RDI: 0000000000000003 [ 133.181189][ T7178] RBP: 00007fc0ed4ca0a0 R08: 0000000000000000 R09: 0000000000000000 [ 133.189173][ T7178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 133.197155][ T7178] R13: 0000000000000000 R14: 00007fc0ec945fa0 R15: 00007ffe8c720428 [ 133.205154][ T7178] [ 133.249741][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.256474][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.344699][ T7183] netlink: 4 bytes leftover after parsing attributes in process `syz.2.385'. [ 133.416921][ T7186] netlink: 'syz.3.384': attribute type 2 has an invalid length. [ 133.462029][ T7186] netlink: 'syz.3.384': attribute type 9 has an invalid length. [ 133.477686][ T7186] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.384'. [ 134.285755][ T7206] netlink: 40 bytes leftover after parsing attributes in process `syz.2.393'. [ 134.344755][ T7206] bridge0: port 1(bridge_slave_0) entered disabled state [ 134.819634][ T7206] bridge_slave_0 (unregistering): left allmulticast mode [ 134.845336][ T7206] bridge_slave_0 (unregistering): left promiscuous mode [ 134.863576][ T7206] bridge0: port 1(bridge_slave_0) entered disabled state [ 135.099384][ T7219] FAULT_INJECTION: forcing a failure. [ 135.099384][ T7219] name failslab, interval 1, probability 0, space 0, times 0 [ 135.142670][ T7219] CPU: 1 UID: 0 PID: 7219 Comm: syz.4.396 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 135.153056][ T7219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 135.163161][ T7219] Call Trace: [ 135.166480][ T7219] [ 135.169476][ T7219] dump_stack_lvl+0x241/0x360 [ 135.174288][ T7219] ? __pfx_dump_stack_lvl+0x10/0x10 [ 135.179567][ T7219] ? __pfx__printk+0x10/0x10 [ 135.184206][ T7219] ? kmem_cache_alloc_node_noprof+0x4f/0x380 [ 135.190244][ T7219] ? __pfx___might_resched+0x10/0x10 [ 135.195596][ T7219] should_fail_ex+0x3b0/0x4e0 [ 135.200328][ T7219] should_failslab+0xac/0x100 [ 135.205045][ T7219] kmem_cache_alloc_node_noprof+0x77/0x380 [ 135.210922][ T7219] ? __alloc_skb+0x1c3/0x440 [ 135.215537][ T7219] __alloc_skb+0x1c3/0x440 [ 135.219972][ T7219] ? __pfx___alloc_skb+0x10/0x10 [ 135.224947][ T7219] ? netlink_autobind+0xd6/0x2f0 [ 135.229906][ T7219] ? netlink_autobind+0x2b0/0x2f0 [ 135.234980][ T7219] netlink_sendmsg+0x638/0xcb0 [ 135.239770][ T7219] ? __pfx_netlink_sendmsg+0x10/0x10 [ 135.245070][ T7219] ? aa_sock_msg_perm+0x91/0x160 [ 135.250039][ T7219] ? __pfx_netlink_sendmsg+0x10/0x10 [ 135.255339][ T7219] __sock_sendmsg+0x221/0x270 [ 135.260049][ T7219] ____sys_sendmsg+0x52a/0x7e0 [ 135.264834][ T7219] ? __pfx_____sys_sendmsg+0x10/0x10 [ 135.270134][ T7219] ? __fget_files+0x2a/0x410 [ 135.274784][ T7219] ? __fget_files+0x2a/0x410 [ 135.279421][ T7219] __sys_sendmsg+0x269/0x350 [ 135.284047][ T7219] ? __pfx_lock_release+0x10/0x10 [ 135.289108][ T7219] ? __pfx___sys_sendmsg+0x10/0x10 [ 135.294253][ T7219] ? __pfx_vfs_write+0x10/0x10 [ 135.299082][ T7219] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 135.305428][ T7219] ? do_syscall_64+0x100/0x230 [ 135.310212][ T7219] ? do_syscall_64+0xb6/0x230 [ 135.314906][ T7219] do_syscall_64+0xf3/0x230 [ 135.319426][ T7219] ? clear_bhb_loop+0x35/0x90 [ 135.324121][ T7219] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 135.330036][ T7219] RIP: 0033:0x7f2373f80849 [ 135.334462][ T7219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 135.354082][ T7219] RSP: 002b:00007f2374cc4058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 135.362779][ T7219] RAX: ffffffffffffffda RBX: 00007f2374145fa0 RCX: 00007f2373f80849 [ 135.370765][ T7219] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 135.378769][ T7219] RBP: 00007f2374cc40a0 R08: 0000000000000000 R09: 0000000000000000 [ 135.386745][ T7219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 135.394918][ T7219] R13: 0000000000000000 R14: 00007f2374145fa0 R15: 00007fff93ad9748 [ 135.402964][ T7219] [ 135.567578][ T7214] netlink: 168 bytes leftover after parsing attributes in process `syz.0.395'. [ 136.624582][ T7251] __nla_validate_parse: 1 callbacks suppressed [ 136.624610][ T7251] netlink: 168 bytes leftover after parsing attributes in process `syz.0.408'. [ 136.681268][ T7255] netlink: 16 bytes leftover after parsing attributes in process `syz.2.409'. [ 136.693109][ T7251] netlink: 4 bytes leftover after parsing attributes in process `syz.0.408'. [ 136.703345][ T7255] netlink: 4 bytes leftover after parsing attributes in process `syz.2.409'. [ 136.724507][ T7255] netlink: 4 bytes leftover after parsing attributes in process `syz.2.409'. [ 136.727342][ T7251] netlink: 48 bytes leftover after parsing attributes in process `syz.0.408'. [ 136.908311][ T7255] netlink: 4 bytes leftover after parsing attributes in process `syz.2.409'. [ 136.960279][ T7255] netlink: 4 bytes leftover after parsing attributes in process `syz.2.409'. [ 137.276210][ T7267] netlink: 1624 bytes leftover after parsing attributes in process `syz.3.412'. [ 137.877968][ T7292] xt_hashlimit: overflow, rate too high: 0 [ 138.030751][ T7296] netlink: 168 bytes leftover after parsing attributes in process `syz.3.424'. [ 139.329907][ T7337] FAULT_INJECTION: forcing a failure. [ 139.329907][ T7337] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 139.393102][ T7337] CPU: 1 UID: 0 PID: 7337 Comm: syz.0.439 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 139.403432][ T7337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 139.413537][ T7337] Call Trace: [ 139.416858][ T7337] [ 139.419831][ T7337] dump_stack_lvl+0x241/0x360 [ 139.424567][ T7337] ? __pfx_dump_stack_lvl+0x10/0x10 [ 139.429822][ T7337] ? __pfx__printk+0x10/0x10 [ 139.434474][ T7337] ? __pfx_lock_release+0x10/0x10 [ 139.439555][ T7337] should_fail_ex+0x3b0/0x4e0 [ 139.444302][ T7337] _copy_from_user+0x2f/0xc0 [ 139.448949][ T7337] copy_msghdr_from_user+0xae/0x680 [ 139.454247][ T7337] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 139.460110][ T7337] ? __fget_files+0x2a/0x410 [ 139.464768][ T7337] ? __fget_files+0x2a/0x410 [ 139.469425][ T7337] __sys_sendmsg+0x209/0x350 [ 139.474073][ T7337] ? __pfx_lock_release+0x10/0x10 [ 139.479153][ T7337] ? __pfx___sys_sendmsg+0x10/0x10 [ 139.484326][ T7337] ? __pfx_vfs_write+0x10/0x10 [ 139.489164][ T7337] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 139.495548][ T7337] ? do_syscall_64+0x100/0x230 [ 139.500369][ T7337] ? do_syscall_64+0xb6/0x230 [ 139.505100][ T7337] do_syscall_64+0xf3/0x230 [ 139.509658][ T7337] ? clear_bhb_loop+0x35/0x90 [ 139.514388][ T7337] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.520329][ T7337] RIP: 0033:0x7fc0ec780849 [ 139.524786][ T7337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 139.544441][ T7337] RSP: 002b:00007fc0ed4ca058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 139.552913][ T7337] RAX: ffffffffffffffda RBX: 00007fc0ec945fa0 RCX: 00007fc0ec780849 [ 139.560933][ T7337] RDX: 0000000004000080 RSI: 00000000200002c0 RDI: 0000000000000003 [ 139.568952][ T7337] RBP: 00007fc0ed4ca0a0 R08: 0000000000000000 R09: 0000000000000000 [ 139.577057][ T7337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 139.585077][ T7337] R13: 0000000000000000 R14: 00007fc0ec945fa0 R15: 00007ffe8c720428 [ 139.593205][ T7337] [ 140.601721][ T7377] FAULT_INJECTION: forcing a failure. [ 140.601721][ T7377] name failslab, interval 1, probability 0, space 0, times 0 [ 140.614963][ T7377] CPU: 0 UID: 0 PID: 7377 Comm: syz.3.450 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 140.625290][ T7377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 140.635394][ T7377] Call Trace: [ 140.638715][ T7377] [ 140.641686][ T7377] dump_stack_lvl+0x241/0x360 [ 140.646439][ T7377] ? __pfx_dump_stack_lvl+0x10/0x10 [ 140.651699][ T7377] ? __pfx__printk+0x10/0x10 [ 140.656356][ T7377] ? __pfx_lock_acquire+0x10/0x10 [ 140.661436][ T7377] should_fail_ex+0x3b0/0x4e0 [ 140.666182][ T7377] should_failslab+0xac/0x100 [ 140.670920][ T7377] ? sctp_get_port_local+0x78e/0x1740 [ 140.676348][ T7377] kmem_cache_alloc_noprof+0x70/0x380 [ 140.681783][ T7377] sctp_get_port_local+0x78e/0x1740 [ 140.687045][ T7377] ? __pfx_lock_release+0x10/0x10 [ 140.692139][ T7377] ? __pfx_sctp_get_port_local+0x10/0x10 [ 140.697824][ T7377] ? sctp_bind_addr_match+0x295/0x2b0 [ 140.703259][ T7377] sctp_do_bind+0x513/0x950 [ 140.707819][ T7377] sctp_connect_new_asoc+0x277/0x6c0 [ 140.713149][ T7377] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 140.719044][ T7377] ? sctp_sendmsg+0xbb9/0x3520 [ 140.723861][ T7377] ? sctp_endpoint_lookup_assoc+0xc9/0x250 [ 140.729714][ T7377] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 140.735319][ T7377] sctp_sendmsg+0x219a/0x3520 [ 140.740059][ T7377] ? __pfx_sctp_sendmsg+0x10/0x10 [ 140.745134][ T7377] ? __pfx_aa_sk_perm+0x10/0x10 [ 140.750040][ T7377] ? inet_sendmsg+0x330/0x390 [ 140.754761][ T7377] __sock_sendmsg+0x1a6/0x270 [ 140.759492][ T7377] __sys_sendto+0x363/0x4c0 [ 140.764042][ T7377] ? __pfx___sys_sendto+0x10/0x10 [ 140.769118][ T7377] ? __mutex_unlock_slowpath+0x21e/0x790 [ 140.774942][ T7377] ? __fget_files+0x2a/0x410 [ 140.779596][ T7377] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 140.785625][ T7377] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 140.792003][ T7377] __x64_sys_sendto+0xde/0x100 [ 140.796823][ T7377] do_syscall_64+0xf3/0x230 [ 140.801464][ T7377] ? clear_bhb_loop+0x35/0x90 [ 140.806195][ T7377] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.812132][ T7377] RIP: 0033:0x7fc806180849 [ 140.816567][ T7377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 140.836211][ T7377] RSP: 002b:00007fc806f67058 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 140.844706][ T7377] RAX: ffffffffffffffda RBX: 00007fc806345fa0 RCX: 00007fc806180849 [ 140.852713][ T7377] RDX: 0000000000000001 RSI: 0000000020000040 RDI: 0000000000000003 [ 140.860711][ T7377] RBP: 00007fc806f670a0 R08: 0000000020000100 R09: 000000000000001c [ 140.868700][ T7377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 140.876687][ T7377] R13: 0000000000000000 R14: 00007fc806345fa0 R15: 00007ffce1e1f518 [ 140.884691][ T7377] [ 140.902447][ T5867] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 140.931322][ T5867] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 140.943617][ T5867] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 140.959180][ T5867] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 141.031965][ T5867] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 141.039419][ T5867] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 141.555575][ T7373] chnl_net:caif_netlink_parms(): no params data found [ 143.208877][ T5863] Bluetooth: hci1: command tx timeout [ 145.308618][ T5863] Bluetooth: hci1: command tx timeout [ 147.357682][ T5863] Bluetooth: hci1: command tx timeout [ 147.572622][ C0] hrtimer: interrupt took 5893888834 ns [ 252.617483][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 252.624591][ C1] rcu: 0-...!: (2 ticks this GP) idle=fe4c/0/0x3 softirq=18504/18504 fqs=0 [ 252.634251][ C1] rcu: (detected by 1, t=10506 jiffies, g=17101, q=1052 ncpus=2) [ 252.642106][ C1] Sending NMI from CPU 1 to CPUs 0: [ 252.642159][ C0] NMI backtrace for cpu 0 [ 252.642176][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-syzkaller-10681-g65ae975e97d5 #0 [ 252.642196][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 252.642209][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x18/0x70 [ 252.642235][ C0] Code: 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 04 24 65 48 8b 0c 25 c0 d4 03 00 65 8b 15 30 f0 6d 7e <81> e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 35 83 b9 1c 16 00 00 [ 252.642249][ C0] RSP: 0018:ffffc900000064c8 EFLAGS: 00000046 [ 252.642266][ C0] RAX: ffffffff89d5a238 RBX: 180c81183af257bd RCX: ffffffff8e6966c0 [ 252.642279][ C0] RDX: 0000000000010104 RSI: 00000000000000ff RDI: 0000000000000000 [ 252.642290][ C0] RBP: ffff88807f6b70c8 R08: ffffffff89d5a073 R09: fffff52000000c88 [ 252.642303][ C0] R10: dffffc0000000000 R11: fffff52000000c88 R12: dffffc0000000000 [ 252.642316][ C0] R13: ffff88807f6b7008 R14: ffff88807f6b7000 R15: 0000000000000001 [ 252.642329][ C0] FS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 252.642344][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 252.642357][ C0] CR2: 00007ffc7f9e1df8 CR3: 000000005fae0000 CR4: 00000000003526f0 [ 252.642373][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 252.642383][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 252.642394][ C0] Call Trace: [ 252.642401][ C0] [ 252.642411][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 252.642432][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 252.642452][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 252.642472][ C0] ? nmi_handle+0x2a/0x5a0 [ 252.642499][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 252.642524][ C0] ? nmi_handle+0x14f/0x5a0 [ 252.642542][ C0] ? nmi_handle+0x2a/0x5a0 [ 252.642562][ C0] ? __sanitizer_cov_trace_pc+0x18/0x70 [ 252.642578][ C0] ? default_do_nmi+0x63/0x160 [ 252.642605][ C0] ? exc_nmi+0x123/0x1f0 [ 252.642625][ C0] ? end_repeat_nmi+0xf/0x53 [ 252.642649][ C0] ? advance_sched+0x583/0xca0 [ 252.642667][ C0] ? advance_sched+0x748/0xca0 [ 252.642687][ C0] ? __sanitizer_cov_trace_pc+0x18/0x70 [ 252.642704][ C0] ? __sanitizer_cov_trace_pc+0x18/0x70 [ 252.642721][ C0] ? __sanitizer_cov_trace_pc+0x18/0x70 [ 252.642738][ C0] [ 252.642743][ C0] [ 252.642749][ C0] advance_sched+0x748/0xca0 [ 252.642776][ C0] ? __pfx_advance_sched+0x10/0x10 [ 252.642795][ C0] __hrtimer_run_queues+0x59b/0xd50 [ 252.642818][ C0] ? ktime_get_update_offsets_now+0x2d/0x3b0 [ 252.642845][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 252.642873][ C0] hrtimer_interrupt+0x403/0xa40 [ 252.642907][ C0] __sysvec_apic_timer_interrupt+0x110/0x420 [ 252.642928][ C0] sysvec_apic_timer_interrupt+0x52/0xc0 [ 252.642953][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 252.642974][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xd8/0x140 [ 252.643002][ C0] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 ce e3 23 f6 f6 44 24 21 02 75 52 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 63 0b 87 f5 65 8b 05 e4 ec 26 74 85 c0 74 43 48 c7 04 24 0e 36 [ 252.643016][ C0] RSP: 0018:ffffc90000006900 EFLAGS: 00000206 [ 252.643030][ C0] RAX: 107c18906ae46200 RBX: 1ffff92000000d24 RCX: ffffffff8171932a [ 252.643043][ C0] RDX: dffffc0000000000 RSI: ffffffff8c0ad980 RDI: 0000000000000001 [ 252.643055][ C0] RBP: ffffc90000006990 R08: ffffffff9432395f R09: 1ffffffff286472b [ 252.643068][ C0] R10: dffffc0000000000 R11: fffffbfff286472c R12: dffffc0000000000 [ 252.643081][ C0] R13: 1ffff92000000d20 R14: ffffc90000006920 R15: 0000000000000246 [ 252.643098][ C0] ? mark_lock+0x9a/0x360 [ 252.643121][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 252.643154][ C0] __wake_up_common_lock+0x18c/0x1e0 [ 252.643177][ C0] sock_def_readable+0x20f/0x5b0 [ 252.643201][ C0] ? sock_def_readable+0xd7/0x5b0 [ 252.643225][ C0] tcp_data_queue+0x204e/0x7310 [ 252.643254][ C0] ? tcp_urg+0x100/0x450 [ 252.643272][ C0] ? __pfx_tcp_data_queue+0x10/0x10 [ 252.643290][ C0] ? __pfx_tcp_urg+0x10/0x10 [ 252.643308][ C0] ? read_tsc+0x9/0x20 [ 252.643335][ C0] tcp_rcv_established+0xed0/0x1f40 [ 252.643363][ C0] ? __pfx_tcp_rcv_established+0x10/0x10 [ 252.643380][ C0] ? do_raw_spin_lock+0x14f/0x370 [ 252.643411][ C0] tcp_v4_do_rcv+0x96d/0xc70 [ 252.643437][ C0] tcp_v4_rcv+0x2dc0/0x37f0 [ 252.643483][ C0] ? __pfx_tcp_v4_rcv+0x10/0x10 [ 252.643509][ C0] ? __pfx_tcp_v4_rcv+0x10/0x10 [ 252.643531][ C0] ? __pfx_tcp_v4_rcv+0x10/0x10 [ 252.643553][ C0] ip_protocol_deliver_rcu+0x22e/0x440 [ 252.643577][ C0] ? ip_local_deliver_finish+0x230/0x5f0 [ 252.643605][ C0] ip_local_deliver_finish+0x341/0x5f0 [ 252.643631][ C0] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 252.643653][ C0] NF_HOOK+0x3a4/0x450 [ 252.643676][ C0] ? NF_HOOK+0x9a/0x450 [ 252.643697][ C0] ? __pfx_NF_HOOK+0x10/0x10 [ 252.643717][ C0] ? skb_dst_set_noref+0x2a/0xf0 [ 252.643748][ C0] ip_sublist_rcv_finish+0x3be/0x4f0 [ 252.643775][ C0] ip_sublist_rcv+0x75d/0xab0 [ 252.643804][ C0] ? __pfx_ip_sublist_rcv+0x10/0x10 [ 252.643826][ C0] ? skb_orphan+0xae/0xd0 [ 252.643848][ C0] ? ip_rcv_core+0x801/0xd10 [ 252.643876][ C0] ip_list_rcv+0x42b/0x480 [ 252.643902][ C0] ? __pfx_ip_list_rcv+0x10/0x10 [ 252.643927][ C0] ? __pfx_ip_list_rcv+0x10/0x10 [ 252.643956][ C0] __netif_receive_skb_list_core+0x94e/0x980 [ 252.643990][ C0] ? __pfx_seqcount_lockdep_reader_access+0x10/0x10 [ 252.644022][ C0] ? __pfx___netif_receive_skb_list_core+0x10/0x10 [ 252.644050][ C0] ? read_tsc+0x9/0x20 [ 252.644074][ C0] ? netif_receive_skb_list_internal+0x4e8/0xe30 [ 252.644097][ C0] netif_receive_skb_list_internal+0xa51/0xe30 [ 252.644122][ C0] ? netif_receive_skb_list_internal+0x4e8/0xe30 [ 252.644145][ C0] ? __pfx_netif_receive_skb_list_internal+0x10/0x10 [ 252.644167][ C0] ? __asan_memcpy+0x40/0x70 [ 252.644185][ C0] ? __pfx_virtnet_receive_done+0x10/0x10 [ 252.644213][ C0] napi_complete_done+0x2b5/0x870 [ 252.644237][ C0] ? __pfx_napi_complete_done+0x10/0x10 [ 252.644259][ C0] ? __pfx_receive_buf+0x10/0x10 [ 252.644279][ C0] ? virtqueue_get_buf_ctx+0x48e/0xde0 [ 252.644306][ C0] ? virtqueue_enable_cb_prepare+0x283/0x540 [ 252.644333][ C0] virtnet_poll+0x2de9/0x39b0 [ 252.644366][ C0] ? __pfx_virtnet_poll+0x10/0x10 [ 252.644385][ C0] ? validate_chain+0x11e/0x5920 [ 252.644411][ C0] ? __pfx_validate_chain+0x10/0x10 [ 252.644441][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 252.644461][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 252.644482][ C0] __napi_poll+0xcb/0x490 [ 252.644506][ C0] net_rx_action+0x89b/0x1240 [ 252.644542][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 252.644568][ C0] ? sched_clock+0x4a/0x70 [ 252.644603][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 252.644628][ C0] handle_softirqs+0x2c5/0x980 [ 252.644659][ C0] ? __irq_exit_rcu+0xf7/0x220 [ 252.644685][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 252.644711][ C0] ? irqtime_account_irq+0xd4/0x1e0 [ 252.644733][ C0] __irq_exit_rcu+0xf7/0x220 [ 252.644756][ C0] ? __pfx___irq_exit_rcu+0x10/0x10 [ 252.644785][ C0] irq_exit_rcu+0x9/0x30 [ 252.644807][ C0] common_interrupt+0xb9/0xd0 [ 252.644826][ C0] [ 252.644832][ C0] [ 252.644839][ C0] asm_common_interrupt+0x26/0x40 [ 252.644858][ C0] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 252.644878][ C0] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 c0 d4 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 85 dd 97 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 252.644891][ C0] RSP: 0018:ffffffff8e607ca8 EFLAGS: 00000246 [ 252.644905][ C0] RAX: ffffffff8e6966c0 RBX: ffff888020acb064 RCX: 000000000001fe49 [ 252.644917][ C0] RDX: 0000000000000001 RSI: ffff888020acb000 RDI: ffff888020acb064 [ 252.644929][ C0] RBP: 000000000003a8b8 R08: ffff8880b8637cdb R09: 1ffff110170c6f9b [ 252.644941][ C0] R10: dffffc0000000000 R11: ffffffff8bd34f50 R12: ffff88801fb50800 [ 252.644954][ C0] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff8f13dd60 [ 252.644968][ C0] ? __pfx_acpi_idle_enter+0x10/0x10 [ 252.644992][ C0] acpi_idle_enter+0xe4/0x140 [ 252.645012][ C0] cpuidle_enter_state+0x109/0x470 [ 252.645029][ C0] ? __pfx_menu_select+0x10/0x10 [ 252.645052][ C0] cpuidle_enter+0x5d/0xa0 [ 252.645080][ C0] do_idle+0x372/0x5c0 [ 252.645104][ C0] ? __pfx___schedule+0x10/0x10 [ 252.645124][ C0] ? __pfx_do_idle+0x10/0x10 [ 252.645150][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 252.645176][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 252.645206][ C0] ? rest_init+0x31/0x300 [ 252.645225][ C0] ? rest_init+0x31/0x300 [ 252.645243][ C0] cpu_startup_entry+0x42/0x60 [ 252.645267][ C0] rest_init+0x2dc/0x300 [ 252.645285][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 252.645309][ C0] start_kernel+0x47f/0x500 [ 252.645339][ C0] x86_64_start_reservations+0x2a/0x30 [ 252.645364][ C0] x86_64_start_kernel+0x9f/0xa0 [ 252.645384][ C0] common_startup_64+0x13e/0x147 [ 252.645415][ C0] [ 252.646143][ C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 10505 jiffies! g17101 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 [ 253.540003][ C1] rcu: Possible timer handling issue on cpu=0 timer-softirq=9121 [ 253.547914][ C1] rcu: rcu_preempt kthread starved for 10506 jiffies! g17101 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0 [ 253.559335][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 253.569407][ C1] rcu: RCU grace-period kthread stack dump: [ 253.575330][ C1] task:rcu_preempt state:I stack:25976 pid:17 tgid:17 ppid:2 flags:0x00004000 [ 253.585552][ C1] Call Trace: [ 253.588852][ C1] [ 253.591813][ C1] __schedule+0x1850/0x4c30 [ 253.596377][ C1] ? __pfx___schedule+0x10/0x10 [ 253.601283][ C1] ? __pfx_lock_release+0x10/0x10 [ 253.606346][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 253.612705][ C1] ? schedule+0x90/0x320 [ 253.616996][ C1] schedule+0x14b/0x320 [ 253.621188][ C1] schedule_timeout+0x15a/0x290 [ 253.626077][ C1] ? __pfx_schedule_timeout+0x10/0x10 [ 253.631493][ C1] ? __pfx_process_timeout+0x10/0x10 [ 253.636833][ C1] ? prepare_to_swait_event+0x330/0x350 [ 253.642422][ C1] rcu_gp_fqs_loop+0x2df/0x1330 [ 253.647335][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 253.652574][ C1] ? rcu_gp_init+0x1256/0x1630 [ 253.657375][ C1] ? __pfx_rcu_gp_init+0x10/0x10 [ 253.662340][ C1] ? __pfx_rcu_watching_snap_save+0x10/0x10 [ 253.668265][ C1] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 253.673580][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 253.679517][ C1] ? finish_swait+0xd4/0x1e0 [ 253.684142][ C1] rcu_gp_kthread+0xa7/0x3b0 [ 253.688768][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 253.693995][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 253.699933][ C1] ? __kthread_parkme+0x169/0x1d0 [ 253.705076][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 253.710309][ C1] kthread+0x2f0/0x390 [ 253.714436][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 253.719674][ C1] ? __pfx_kthread+0x10/0x10 [ 253.724300][ C1] ret_from_fork+0x4b/0x80 [ 253.728741][ C1] ? __pfx_kthread+0x10/0x10 [ 253.733363][ C1] ret_from_fork_asm+0x1a/0x30 [ 253.738277][ C1]