last executing test programs: 1m21.650607376s ago: executing program 3 (id=1255): r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video17\x00', 0x80800, 0x0) read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f00000001c0)=""/191, 0x1f8) socket(0x3, 0x3, 0x7) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0) read$auto_v4l2_fops_v4l2_dev(r1, &(0x7f0000000000)=""/194, 0xc2) socket(0xa, 0x1, 0x84) setsockopt$auto(0x3, 0x0, 0x85, 0x0, 0x90) close_range$auto(0x2, 0x8000, 0x0) 1m21.288221311s ago: executing program 3 (id=1260): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/set_event\x00', 0x802, 0x0) r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon20\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000100)='/sys/kernel/debug/netdevsim/netdevsim3/take_snapshot\x00', 0x0) socket$nl_generic(0x10, 0x3, 0x10) bind$auto(0x3, &(0x7f0000000000)=@nl=@proc={0x10, 0x0, 0x25dfdbff, 0x40}, 0x68) r2 = openat$auto_nsim_dev_take_snapshot_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/take_snapshot\x00', 0x1, 0x0) write$auto_nsim_dev_take_snapshot_fops_dev(r2, 0x0, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) ppoll$auto(&(0x7f0000000000)={r0, 0x8, 0x6}, 0x7, 0x0, 0x0, 0x8) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x8000000000000006, 0x22, 0x0, 0x7ffffc) openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0) select$auto(0x7, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x4, 0x15, 0x1000, 0x47, 0xc, 0xf, 0x0, 0x0, 0xe, 0xd59, 0x101, 0xff, 0x2, 0x3]}, 0x0, 0x0) 1m20.246895679s ago: executing program 3 (id=1265): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) mmap$auto(0x0, 0x40009, 0x1ff, 0x9b72, 0x7, 0x28000) r0 = socket(0x2, 0x1, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) r1 = socket(0x1, 0x2, 0x3) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x9, 0x2, 0x8000000008011, 0x4, 0x0) close_range$auto(0x2, 0x8, 0x0) syz_open_procfs$namespace(0xffffffffffffffff, 0x0) (async) syz_open_procfs$namespace(0xffffffffffffffff, 0x0) r2 = socket(0x11, 0x80003, 0x300) open$dir(&(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x80, 0xa0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket(0x11, 0x3, 0x6) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x47, 0x4a}) (async) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x47, 0x4a}) sendmmsg$auto(r3, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x5ea}, 0x5, 0x0, 0x7, 0x1000}, 0x5}, 0x2, 0x100) memfd_create$auto(0x0, 0xe) (async) r4 = memfd_create$auto(0x0, 0xe) r5 = socket(0x2, 0x1, 0x106) bind$auto(r2, &(0x7f0000000040)=@qipcrtr={0x2a, 0xffffffffffffffff, 0x4001}, 0x4006a) (async) bind$auto(r2, &(0x7f0000000040)=@qipcrtr={0x2a, 0xffffffffffffffff, 0x4001}, 0x4006a) sendmmsg$auto(r0, &(0x7f0000000380)={{&(0x7f00000003c0)="9efa5b910912818f00fb4b55ce84e1d51408783fe443d57f364abf29e64f234490284b16c0bced8a71db1aa83698c6a21b561ec217f69e6a060d211da1797f521a02442ad7e034bed80b135ce7936140089f74a844a2b55be2290ccb94ff4fa25d4b6af85fc4b09ab57784aa7600118586e38cde60204eaa776e5fabb5daa959eb0947e5606331afa4b67d67eb535a3dabb2e8fca91dbee1185a856c92a3bfd33756b313f07d96c907f36876f7d8799f78148db5586bf026520d847d9128417b2cb3138dba8a34504f64aa58f8b4bf3ea67a5a4df863f27526c704de8704353e8bfedd5740c7", 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x4003}, 0x40, 0x1f8) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000340), r4) (async) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000340), r4) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r6 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000080), r5) sendmsg$auto_SMC_NETLINK_ADD_UEID(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000180)={0x188, r6, 0x60d, 0x70bd29, 0x25dfdbfd, {}, [@SMC_NLA_EID_TABLE_UNSPEC={0xcc, 0x0, "3d48f57f03b1ffbbdc7e23be3e81cf297dc335875424972e9fe914e6fb17021d4d8d9169ddded91814e4b0cd5b41196e936f5d56726a0aa3a65d3b62fa0c6ab04dbdc8fe6998bd115b3611e797cdfcf3eb5fbdf6c4d782a5ad4a3eb8054ce6746b7b076cb54e09b40c9e69551f30737a31f3194dc94e9db18190802f74c5716c0d5f12be309027a1b18cc051c79b968899c408b79d9743de0a13803d63fc7f887330fc198edb87a3e6285a6e2008286ee21519cd5d7b8427fc0cf3847225ccdd2003ab5150d74470"}, @SMC_NLA_EID_TABLE_ENTRY={0x5, 0x1, ']'}, @SMC_NLA_EID_TABLE_UNSPEC={0x95, 0x0, "6a3054f4e8677fae4f53b9dd31191fc67438cddd18dcaca3f614b7fe0b2b6276ebd3d4001b9f501a6eb6085d5f5238b690ad96914f775af8f578f5b3acddc5c018138fe7b01cfe0da71f82e1f3d58348694eb5bcd16252241b0bdc1aa9f8cd6128df0dd97590ed38f359f43ffd3871eaac6c64c9cbe1ae3016b636d6f75a2f2cc9c1a125afdf7b38ba3264fe36a57d13fe"}, @SMC_NLA_EID_TABLE_ENTRY={0x5, 0x1, '.'}]}, 0x188}, 0x1, 0x0, 0x0, 0x8000800}, 0x40080d1) (async) sendmsg$auto_SMC_NETLINK_ADD_UEID(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000180)={0x188, r6, 0x60d, 0x70bd29, 0x25dfdbfd, {}, [@SMC_NLA_EID_TABLE_UNSPEC={0xcc, 0x0, "3d48f57f03b1ffbbdc7e23be3e81cf297dc335875424972e9fe914e6fb17021d4d8d9169ddded91814e4b0cd5b41196e936f5d56726a0aa3a65d3b62fa0c6ab04dbdc8fe6998bd115b3611e797cdfcf3eb5fbdf6c4d782a5ad4a3eb8054ce6746b7b076cb54e09b40c9e69551f30737a31f3194dc94e9db18190802f74c5716c0d5f12be309027a1b18cc051c79b968899c408b79d9743de0a13803d63fc7f887330fc198edb87a3e6285a6e2008286ee21519cd5d7b8427fc0cf3847225ccdd2003ab5150d74470"}, @SMC_NLA_EID_TABLE_ENTRY={0x5, 0x1, ']'}, @SMC_NLA_EID_TABLE_UNSPEC={0x95, 0x0, "6a3054f4e8677fae4f53b9dd31191fc67438cddd18dcaca3f614b7fe0b2b6276ebd3d4001b9f501a6eb6085d5f5238b690ad96914f775af8f578f5b3acddc5c018138fe7b01cfe0da71f82e1f3d58348694eb5bcd16252241b0bdc1aa9f8cd6128df0dd97590ed38f359f43ffd3871eaac6c64c9cbe1ae3016b636d6f75a2f2cc9c1a125afdf7b38ba3264fe36a57d13fe"}, @SMC_NLA_EID_TABLE_ENTRY={0x5, 0x1, '.'}]}, 0x188}, 0x1, 0x0, 0x0, 0x8000800}, 0x40080d1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x400000000008000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x400000000008000) io_uring_setup$auto(0x8, 0x0) (async) io_uring_setup$auto(0x8, 0x0) r7 = open(0x0, 0x10677d, 0x37e5c9853cd1b999) finit_module$auto(r7, 0x0, 0x2) (async) finit_module$auto(r7, 0x0, 0x2) 1m19.956717126s ago: executing program 3 (id=1270): openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video17\x00', 0x80800, 0x0) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0) read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f0000000000)=""/194, 0xc2) r1 = socket(0xa, 0x1, 0x84) mmap$auto(0xd4, 0x7fffffff, 0x1, 0x5000000000010, r1, 0x8) poll$auto(&(0x7f0000000140)={r1, 0x8, 0x7}, 0x3, 0xc) setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) close_range$auto(0x2, 0x8000, 0x0) poll$auto(&(0x7f0000000180)={r0, 0x8000, 0x1}, 0x1, 0x3ff) 1m19.75973275s ago: executing program 3 (id=1272): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/raw6\x00', 0x0, 0x0) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001640), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_LEAVE_OCB(r1, &(0x7f0000001f00)={0x0, 0x0, &(0x7f0000001ec0)={&(0x7f0000001800)={0xa0, r0, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NL80211_ATTR_IE={0x8c, 0x2a, "3684a660bdccd1367bc48d95c45654a7d4ef122b5aaf580986f36c8305d02a0134617098711133f1352d29a8989d6853d2b62e6876842b9141c1f1baed01823c40a15b3a9b06aaa8c7fe2bcb43f0e02ab341b1480fd251e4695746cad00d4417d34c9d41ed33d62e634ac67f4a04ac804817cea529436086a5355b67030a24cc223223926569c0ee"}]}, 0xa0}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_RSS_GET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="01032bbd7000ffdbdf2724"], 0x14}, 0x1, 0x0, 0x0, 0x7}, 0x4010) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) socket(0x2a, 0x1, 0x0) gettid() close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) r4 = socket(0x28, 0x1, 0x0) shutdown$auto(0x200000003, 0x2) bind$auto(0x3, 0x0, 0x6b) connect$auto(0x3, 0x0, 0x55) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, 0x0, 0x40) unshare$auto(0x40000080) sysfs$auto(0x2, 0x10000000000002d, 0x0) madvise$auto(0x0, 0x20200, 0x15) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x80, 0x0) sendmsg$auto_WG_CMD_GET_DEVICE(r4, &(0x7f0000000680)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000640)={&(0x7f0000000080)={0x594, 0x0, 0x20, 0x70bd26, 0x25dfdbfb, {}, [@WGDEVICE_A_PEERS={0x3dc, 0x8, 0x0, 0x1, [@nested={0x3ba, 0xe6, 0x0, 0x1, [@typed={0xc, 0x101, 0x0, 0x0, @u64=0x658aadbe}, @typed={0xc, 0x5f, 0x0, 0x0, @u64=0x4}, @typed={0x4, 0x11f}, @generic="d2586457f91379435f4340c5a1db83753b79af675f0d2b6b01498b5cb7e0704099d8db828dc9f2f1cc5cacdcd793d912ee4dcfeee5932f17b7eaea9c2e9b85b1a04d78a78fb231de1642209e21c0b5", @generic="16f87c7572bab70cbba9dc8f237f6ff03f408a153fa804f9df2d5bee82282489107cee4baebfc39f195295ef1b6c2fa4892483855460df91490406bceec12b16090262cf52e2ee5c905dbbf9a20d9059e8076eea489e0ffc5d392b00a9152bca207e986b4552af69e0794cb8d7d68057005d684bf720f0b52d8d38d9bb0f890f758d1e012323cc78aef835c642735f5cc854f58c39935d3919b679fe7a3194ca41ebf1c6ac7df4ac66f69392520f2d8cf12c34ad0d449106ef5bcf497cbc5538a54b8f0c92e53d42", @nested={0x4, 0x9b}, @generic="447fdb9450aa29e90e7ba578ce512ce0a9cd0b3edf7b60a3104bcbd195719a005b1365a582a39a26486da2a601ac93ab95fea8a2b1fcbc7d8076eb360fc44bdf384ac1b372e40cb1df48dcaf61fd94a34abf7842de074323b85d931c9571e89aa96a87bdf8343f0b5aed2c6e7a4beea340ccc17e3f6ff0031f6328d0fd94e829516c3c39a7b9bf9ca372a56a268afa531c544bb658eaaa1ad4ce3aeafa1479dd9a65a2b236274cdcbc7be83f839923bcfb76b0f3c150a487123e2260f26fb34d3612fb5b6234bbf8bccad1469cf4b5807e580284525b4742779046f757506983f3da0e59cea51d79feca23372765", @typed={0xd5, 0x1, 0x0, 0x0, @binary="c762fe1976eca9682415eceb48d323d3a19b7c8884bdc14b6b76c1ec2926869ea4630193d7aee1ed75feb7e9990d38405848b7deaec877b477da08f11f5be6e50545ed584d71821ddd2bab24dc8da15638584fa79718bb014d4bc08e3ea83acd7cbdaa707bdd998a312cd631094b8caad47f5b84c945ef395d46ace79b0d1f0b84bd6b8cc50082e6290785e98095d6e3870a4f9205e18fbca997f9ff26b9b14d6e206a28ae0bd774dbe1fa27081f7cfaae992ecc7289810fe2dbb0716041d0481e15e327c3b764711ed85aa7eae290044f"}, @generic="09ebbb1dc266a7126f559952eeab7e0118af1c7cc6dae3d599a7c031e3cfacb2e4da25a57ae14ac14328dc9342c5ed7bff7b5930ebf88728789d4010f64e3d2f1dc880dd40e0d50db730dab533028238f3e036b7adddefd2039351c9f7266a00f01a01efe31e461b7cd15e3713adf844330aaf8053812ceecc23489d0f788c335ed37d11f578163f897ef447932772ad0bab7635cf0ae420081fa99e533d871c790591d0e67dd41d211c6e80b7982eea71ddf86cf4", @nested={0x4, 0xfb}]}, @nested={0x8, 0x10d, 0x0, 0x1, [@nested={0x4, 0x146}]}, @nested={0x14, 0xf5, 0x0, 0x1, [@typed={0x5, 0xda, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0xd, 0x0, 0x0, @u32}]}]}, @WGDEVICE_A_PRIVATE_KEY={0x9d, 0x3, "3777517d456a5cc2ab58c1340c1139f950ed6f43f73559025936509514cdcfae219ecb49725fe80b260262f5ca8945dd4b998eb876e13d4f20e043291be81ae8508d47084a98925283789a0bb11ba9abe55a348b04068a4f28782f3e24e72a54fcd4bdd234c3cf96377aeead417e42e186eb4cd29dea8eee688a0758d5fdb62e216114fc22f55773bf6859c89be9e025fb7dcb50e9be18816d"}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x8}, @WGDEVICE_A_PRIVATE_KEY={0xe9, 0x3, "e98c503a23b965a671b6720d8b805e8e0a629300c2043ff67b81a198c8e24d6045888182d0e5d0f5733e9281b280e2514f0eff10461091c71afd1d2634a4c0ef0982187d983409ff997e24766b5fab66f85c0fe2f63a98e9c97d330d0113f3bcaa7f7ae659805a63789c7a1a6b103bfd803f70110f7b69dcee1154cb8141c3bb9762a4c612a85ac0725d451de7ff16aac7cb25ba203868e8629677bd53844e6f45df411e217142fed406b28c1db6a6cbef531313be8fea85e0a46984189df53cb15c386f85a61f74c8b13a4e9c65e71f53838f814d9af63f17b0512c40bdd85100492ed553"}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x80}]}, 0x594}, 0x1, 0x0, 0x0, 0x24000000}, 0x81) tkill$auto(0x1, 0x7) socket$nl_generic(0x10, 0x3, 0x10) 1m18.534581182s ago: executing program 3 (id=1273): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto_def_blk_fops_fs(r0, 0x2284, &(0x7f0000000000)) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x8, 0x6, 0x9b72, 0x2, 0x8000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) fadvise64$auto(r1, 0x2, 0x7774, 0x5) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) acct$auto(&(0x7f00000001c0)='/sys/bus/hid/drivers/zydacron/bind\x00') r2 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) statmount$auto(&(0x7f0000000040)={0x16e52807, @inferred=r2, 0x93f9, 0xd, 0xff}, &(0x7f0000000280)={0x80000001, 0x120, 0x33, 0x1, 0xfffffff9, 0x5, 0xce60000, 0x1, 0x1, 0x0, 0x2, 0x7, 0x4eb7, 0xbb6b, 0x2e1, 0x7fffffffffffffff, 0xee7, 0x5d, 0x3, 0x38, 0x8000, 0x10001, 0x4, 0x8, 0x10, 0xffffff32, [0xffffffff, 0x2, 0x10001, 0x7f, 0x8, 0x8, 0xffffffffd23fe6d0, 0xffff, 0x100000000, 0x8, 0x81, 0xfffffffffffffff8, 0x8000, 0xeaf, 0x8, 0x4, 0x1f, 0xeeb, 0x800, 0x2b, 0xf, 0x0, 0x9, 0x1, 0x3d4, 0xf16, 0x3, 0x1000, 0x7, 0x8, 0x7, 0x5, 0x6, 0xf10, 0x4, 0x5, 0x8, 0x40, 0x8, 0x9, 0xa1, 0xfffffffffffeffff, 0x100, 0x1, 0x9]}, 0x3, 0xf) mmap$auto(0x40, 0x2, 0x9, 0x111, 0x9, 0x7) r3 = open(0x0, 0x22240, 0x16c) rseq$auto(&(0x7f0000000100)={0x1, 0x401, 0x0, 0xe747, 0x5, 0x2}, 0x5, 0x2, 0x6) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000480), r4) sendmsg$auto_GTP_CMD_DELPDP(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000004c0)={0x14, r5, 0x801, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x80) madvise$auto(0x400, 0x7fff, 0x2) close_range$auto(0x0, 0xfffffffffffff000, 0x4) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), r3) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) msync$auto(0x0, 0x2000000005, 0x6) sendmsg$auto_TIPC_NL_MON_SET(0xffffffffffffffff, 0x0, 0x20000000) process_madvise$auto(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x7}, 0x9, 0x977, 0x0) ioctl$auto(0xc8, 0x800454df, 0x5c8d) 1m18.330248605s ago: executing program 32 (id=1273): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto_def_blk_fops_fs(r0, 0x2284, &(0x7f0000000000)) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x8, 0x6, 0x9b72, 0x2, 0x8000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) fadvise64$auto(r1, 0x2, 0x7774, 0x5) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) acct$auto(&(0x7f00000001c0)='/sys/bus/hid/drivers/zydacron/bind\x00') r2 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) statmount$auto(&(0x7f0000000040)={0x16e52807, @inferred=r2, 0x93f9, 0xd, 0xff}, &(0x7f0000000280)={0x80000001, 0x120, 0x33, 0x1, 0xfffffff9, 0x5, 0xce60000, 0x1, 0x1, 0x0, 0x2, 0x7, 0x4eb7, 0xbb6b, 0x2e1, 0x7fffffffffffffff, 0xee7, 0x5d, 0x3, 0x38, 0x8000, 0x10001, 0x4, 0x8, 0x10, 0xffffff32, [0xffffffff, 0x2, 0x10001, 0x7f, 0x8, 0x8, 0xffffffffd23fe6d0, 0xffff, 0x100000000, 0x8, 0x81, 0xfffffffffffffff8, 0x8000, 0xeaf, 0x8, 0x4, 0x1f, 0xeeb, 0x800, 0x2b, 0xf, 0x0, 0x9, 0x1, 0x3d4, 0xf16, 0x3, 0x1000, 0x7, 0x8, 0x7, 0x5, 0x6, 0xf10, 0x4, 0x5, 0x8, 0x40, 0x8, 0x9, 0xa1, 0xfffffffffffeffff, 0x100, 0x1, 0x9]}, 0x3, 0xf) mmap$auto(0x40, 0x2, 0x9, 0x111, 0x9, 0x7) r3 = open(0x0, 0x22240, 0x16c) rseq$auto(&(0x7f0000000100)={0x1, 0x401, 0x0, 0xe747, 0x5, 0x2}, 0x5, 0x2, 0x6) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000480), r4) sendmsg$auto_GTP_CMD_DELPDP(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000004c0)={0x14, r5, 0x801, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x80) madvise$auto(0x400, 0x7fff, 0x2) close_range$auto(0x0, 0xfffffffffffff000, 0x4) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), r3) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) msync$auto(0x0, 0x2000000005, 0x6) sendmsg$auto_TIPC_NL_MON_SET(0xffffffffffffffff, 0x0, 0x20000000) process_madvise$auto(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x7}, 0x9, 0x977, 0x0) ioctl$auto(0xc8, 0x800454df, 0x5c8d) 7.394562991s ago: executing program 0 (id=1726): r0 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/etherd/interfaces\x00', 0x40200, 0x0) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r1, 0x4b33, 0x100000000000afcb) io_uring_setup$auto(0x6, 0x0) r2 = socket(0x2, 0x5, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) write$auto(r0, &(0x7f0000000080)='/dev/etherd/interfaces\x00', 0x8) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) mmap$auto(0x0, 0x400008, 0xdc, 0x9b72, r0, 0x20000000008000) r3 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000340)="d57b1496d5615eb90cfd560846286324bf2939000035c01768a4ced02e360b81038b39eb4bfb4b02f98adc04309f3e2de46391cd51ea8c0c79052c70d4a4b7c20cfdf262d3805b294d1021975b7c44a3126a2f1151a708791c5d5dec2b0000000000", 0x12, 0x0, 0x4, 0x0, 0xe, 0x8}, 0x800009}, 0x5, 0x20000000) r4 = openat$auto_bdi_debug_stats_fops_(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/bdi/1:11/stats\x00', 0x80, 0x0) connect$auto(r4, &(0x7f0000000180)=@isdn={0x22, 0x9, 0x9, 0xfc, 0xb}, 0x30) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/cgroup.kill\x00', 0xa001, 0x0) write$auto(r5, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_NLBL_CIPSOV4_C_ADD(r6, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, 0x0, 0x2, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44}, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r6, &(0x7f0000000000)={0x0, 0xfffffffffffffcfd, &(0x7f0000000080)={&(0x7f0000001980)={0xcc, r7, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x9c, 0x3, 0x0, 0x1, [@nested={0x96, 0x118, 0x0, 0x1, [@generic="84208d4c95904d397fe0c86a9afd393c906a4fc1a8b0f2526b2d62b4c4139f1ce38f5fbfc2a4d17f6798f4a479bd52c0099a269096f4c91769d3731ff543c77d02c214d14b35e70f79b506852acb600b38603904063e6064035d9ed2c21df8b0632214fa998275f062753b4051f4fd7dc7fb5cf66f1dc3be11c23170b0e5084ff855da7a1ae22934e14338d1a7bd0c3b5d6f"]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "b9542b2658f965b1324b1e7e9964"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0xcc}, 0x1, 0x0, 0x0, 0x4004040}, 0xc840) r8 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) personality$auto(0x40004010410ffc) mprotect$auto(0x1ffff000, 0xb, 0x1) poll$auto(&(0x7f0000000000)={r8, 0xe7f1, 0x1723}, 0x8, 0x2) setsockopt$auto(0x3, 0x8000000000000006, 0x22, 0x0, 0x7ffffc) 5.150046071s ago: executing program 0 (id=1736): syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) socket(0x10, 0x2, 0xf) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) getrandom$auto(0x0, 0x6000000, 0x3) ioctl$auto(0xc8, 0x400454d9, 0x5c8d) mlockall$auto(0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x7f, 0x8000) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) pselect6$auto(0x4, 0x0, &(0x7f0000000180)={[0x2, 0x9, 0x2da0000, 0xff, 0x101, 0x1c00000, 0xa1, 0x4, 0xfffffffffffffffe, 0x8, 0x4, 0x9, 0x1, 0x0, 0xe, 0x80000001]}, 0x0, 0x0, &(0x7f0000000340)) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) mmap$auto(0xbde, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) clone$auto(0x7, 0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) 3.882632895s ago: executing program 4 (id=1742): openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x1a9382, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) r0 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91) read$auto(r0, 0x0, 0x1) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) r1 = socket(0xa, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000300)={{&(0x7f0000000040), 0xb8, 0x0, 0x0, 0x0, 0x0, 0x2001000}, 0x9}, 0x1, 0x8008) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) openat$auto_fops_atomic_t_(0xffffffffffffff9c, 0x0, 0x240, 0x0) openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, 0x0, 0x22882, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f0000000240)={[0x36c, 0x8, 0x101, 0x9, 0x8, 0x9, 0x4, 0x0, 0x7f, 0x2, 0x14c7, 0xfffffffffffffffe, 0x2, 0x4, 0x3, 0x7]}, &(0x7f00000002c0)={0x0, 0x5}) 3.856037864s ago: executing program 0 (id=1743): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/set_event\x00', 0x802, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, 0x0, 0x5, 0x20000000) select$auto(0x7, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x4, 0x15, 0x1000, 0x47, 0xc, 0xf, 0x0, 0x0, 0xe, 0xd59, 0x101, 0xff, 0x2, 0x3]}, 0x0, 0x0) 3.637852586s ago: executing program 4 (id=1745): close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000000c0), r0) mmap$auto(0x2, 0x402000a, 0xdf, 0xeb1, 0x401, 0x1) get_robust_list$auto(0x0, 0x0, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x8001, 0x0, 0xb4, 0x0, 0x919f, 0x697c}, 0x6e}, 0xa, 0x3) 3.550959093s ago: executing program 1 (id=1746): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'veth1_to_bridge\x00', 0x0}) sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG(r0, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x540a3080}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x18, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_TDLS_EXTERNAL_SETUP={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x20000880}, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf250300000008000300000200000600070000000000080002008d98c8f1e52d86c0168b9820fb6fe6f3f5ce05bcb1ca587b3418383d0a156e59b1a5a748fc730271650260d10fb4f45fad8be928363419d5467dfc3a08fbcd7a84ad03db", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a000500000000000000000008000200", @ANYRES32=r1, @ANYBLOB], 0x58}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030009000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a000100aaaaaaaaaabb00000a000500aaaaaaaaaa370000080004001000000008", @ANYRES32=0x0, @ANYBLOB="08001b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4880}, 0x4004) capset$auto(0x0, 0x0) syz_clone3(&(0x7f0000000400)={0x180102000, 0x0, 0x0, 0x0, {0x28}, 0x0, 0xf4, 0x0, &(0x7f0000000140)=[0x0], 0x1}, 0x58) r2 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) ioctl$auto_VHOST_SET_FEATURES2(r2, 0x4008af00, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x40090}, 0x8000) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x4001e}, 0x40000) 3.421333099s ago: executing program 4 (id=1748): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x18, 0x5, 0x6) recvmmsg$auto(r1, 0x0, 0xfffd, 0xf6e8, 0x0) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket(0xa, 0x3, 0x3a) getsockopt$auto(r3, 0x29, 0x6, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6erspan0\x00', 0x0}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), r5) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f00000000c0)={0x28, r6, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_COALESCE_RX_USECS_IRQ={0x8, 0x4, 0x3}]}, 0x28}, 0x1, 0x0, 0x0, 0x4089c}, 0x2400c810) mprotect$auto(0x80, 0x7, 0x7fffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'ipvlan1\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_CFG(r3, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="c0000000bb772af9ffffffffffffff3de80291fc584023fa0ee1d13961827ee9fde55d66da155a6b5a784a88f68beb10b89269db7e2b4b3621e4abaf2bb2e3ce0000ce1248ca5857877584d9e08fbc6ea8a39014fa", @ANYRES16=r2, @ANYBLOB="00022bbd7000ffdbdf25270000001400018008000100", @ANYRES32=r4, @ANYBLOB="08000400070000004c000180080004000200000008000100", @ANYRES32=r7, @ANYBLOB="1400020067656e657665310000000000000000000800040000002000140002007665746830000000000000000000000008000400070000003800018014000200766c616e300000000000000000000000080004000400000008000300f8ffffff08000100", @ANYRES32=r8, @ANYBLOB="08000400020000001400018008000300000000000800030001000000"], 0xc0}, 0x1, 0x0, 0x0, 0x80}, 0x8001) mlockall$auto(0x3) mmap$auto(0x0, 0x400008, 0x3, 0x19, 0x7, 0x800008004) madvise$auto(0x0, 0x3, 0x66) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', 0x0}) r10 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYRES32=r10, @ANYRES16=r10, @ANYBLOB="010025bd0001fbdbdf0002"], 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x4000000) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) r11 = socket(0x10, 0x2, 0x0) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r11, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x40000) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x40, r2, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x18}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x7ff}, @ETHTOOL_A_LINKMODES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x3}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000881}, 0x8000) 3.113060461s ago: executing program 1 (id=1750): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x125000, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) setsockopt$auto(0x3, 0x8000000000000006, 0x22, 0x0, 0x7ffffc) 3.059100478s ago: executing program 0 (id=1752): syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) socket(0x10, 0x2, 0xf) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) getrandom$auto(0x0, 0x6000000, 0x3) ioctl$auto(0xc8, 0x400454d9, 0x5c8d) mlockall$auto(0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x7f, 0x8000) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) pselect6$auto(0x4, 0x0, &(0x7f0000000180)={[0x2, 0x9, 0x2da0000, 0xff, 0x101, 0x1c00000, 0xa1, 0x4, 0xfffffffffffffffe, 0x8, 0x4, 0x9, 0x1, 0x0, 0xe, 0x80000001]}, 0x0, 0x0, &(0x7f0000000340)) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000) mmap$auto(0xbde, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) clone$auto(0x7, 0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) 2.674740702s ago: executing program 2 (id=1754): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) setsockopt$auto(0x3, 0x8000000000000006, 0x12, 0x0, 0x7ffffc) 2.016792093s ago: executing program 1 (id=1755): r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) setrlimit$auto(0xb, 0x0) r1 = getpid() mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) r2 = gettid() rt_tgsigqueueinfo$auto(r1, r2, 0x21, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x30, r0, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x18, 0x1, 0x0, 0x1, [@typed={0x14, 0x19, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0xf}}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x40010}, 0x800) 1.724838576s ago: executing program 1 (id=1756): openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x1a9382, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) r0 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91) read$auto(r0, 0x0, 0x1) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) sendmsg$auto_NL80211_CMD_SET_HW_TIMESTAMP(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x84000810}, 0xc, &(0x7f00000001c0)={&(0x7f00000004c0)={0xf0, r1, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_TDLS_ACTION={0x5, 0x88, 0x5}, @NL80211_ATTR_S1G_CAPABILITY={0xc5, 0x128, "9050eeeceb407285519a9d859631d17e0e4eaaeba289f616ad1d4d11bd78d5ffd52b061090a2cae12bf048229d61826f8a305585533a1a4d8bd7a4aa9470097404b62b92affcd122ffd35f3051a9a14ab8ac83e050a8a756d256249b64ddcd88b8cbb00000008eb89d04c9838538fc8aad35f20cad01cc444050b03e19ee0a50d99b1a933a09bc570ba00718566483fc05187a3b9cd6fab11a346d15062771dd5f8a6d8789c5f040ab75a776ea210272d6ffffffffffffffffd90d3ca7521b2bbe"}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_OPMODE_NOTIF={0x5}]}, 0xf0}, 0x1, 0x0, 0x0, 0x20000005}, 0x20000080) openat$auto_fops_atomic_t_(0xffffffffffffff9c, 0x0, 0x240, 0x0) openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, 0x0, 0x22882, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f0000000240)={[0x36c, 0x8, 0x101, 0x9, 0x8, 0x9, 0x4, 0x0, 0x7f, 0x2, 0x14c7, 0xfffffffffffffffe, 0x2, 0x4, 0x3, 0x7]}, &(0x7f00000002c0)={0x0, 0x5}) 1.692211693s ago: executing program 2 (id=1757): openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x1a9382, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) r0 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91) read$auto(r0, 0x0, 0x1) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) openat$auto_fops_atomic_t_(0xffffffffffffff9c, 0x0, 0x240, 0x0) openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, 0x0, 0x22882, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f0000000240)={[0x36c, 0x8, 0x101, 0x9, 0x8, 0x9, 0x4, 0x300000000000000, 0x7f, 0x2, 0x14c7, 0xfffffffffffffffe, 0x2, 0x4, 0x3, 0x7]}, &(0x7f00000002c0)={0x0, 0x5}) 1.611443072s ago: executing program 4 (id=1758): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_clock\x00', 0x8102, 0x0) close_range$auto(0x2, r0, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) r1 = socket(0x18, 0xa, 0x1) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000080), r1) (async) r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000080), r1) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/tty52\x00', 0xe540, 0x0) sendmsg$auto_L2TP_CMD_NOOP(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x54, r2, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0xf8}, @L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0x1}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x3}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x4de}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x7d4}, @L2TP_ATTR_FD={0x8, 0x17, r3}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x9}, @L2TP_ATTR_FD={0x8, 0x17, r0}]}, 0x54}, 0x1, 0x0, 0x0, 0x2800}, 0x4000) (async) sendmsg$auto_L2TP_CMD_NOOP(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x54, r2, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0xf8}, @L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0x1}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x3}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x4de}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x7d4}, @L2TP_ATTR_FD={0x8, 0x17, r3}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x9}, @L2TP_ATTR_FD={0x8, 0x17, r0}]}, 0x54}, 0x1, 0x0, 0x0, 0x2800}, 0x4000) socket(0xa, 0x3, 0x3a) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) write$auto(0x3, 0x0, 0xffd8) (async) write$auto(0x3, 0x0, 0xffd8) 1.508434618s ago: executing program 2 (id=1759): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'veth1_to_bridge\x00', 0x0}) sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG(r0, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x540a3080}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x18, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_TDLS_EXTERNAL_SETUP={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x20000880}, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf250300000008000300000200000600070000000000080002008d98c8f1e52d86c0168b9820fb6fe6f3f5ce05bcb1ca587b3418383d0a156e59b1a5a748fc730271650260d10fb4f45fad8be928363419d5467dfc3a08fbcd7a84ad03db", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a000500000000000000000008000200", @ANYRES32=r1, @ANYBLOB], 0x58}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030009000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a000100aaaaaaaaaabb00000a000500aaaaaaaaaa370000080004001000000008", @ANYRES32=0x0, @ANYBLOB="08001b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4880}, 0x4004) capset$auto(0x0, 0x0) syz_clone3(&(0x7f0000000400)={0x180102000, 0x0, 0x0, 0x0, {0x28}, 0x0, 0xf4, 0x0, &(0x7f0000000140)=[0x0], 0x1}, 0x58) r2 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) ioctl$auto_VHOST_SET_FEATURES2(r2, 0x4008af00, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x40090}, 0x8000) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x4001e}, 0x40000) 1.431128374s ago: executing program 1 (id=1760): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/set_event\x00', 0x802, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, 0x0, 0x5, 0x20000000) select$auto(0x7, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x4, 0x15, 0x1000, 0x47, 0xc, 0xf, 0x0, 0x0, 0xe, 0xd59, 0x101, 0xff, 0x2, 0x3]}, 0x0, 0x0) 1.402821283s ago: executing program 2 (id=1761): openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x4000, 0x0) mmap$auto(0x8000000000000, 0x8000, 0x1000000004, 0x8b72, 0x2, 0x8000) (async) socket(0x0, 0x800, 0x2) (async) connect$auto(0x3, &(0x7f00000000c0), 0x55) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf25"], 0x24}, 0x1, 0x0, 0x0, 0xc045}, 0x4) (async) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="7201", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) r1 = socket(0x6, 0x6, 0x9) (async) unshare$auto(0x40000080) (async) mmap$auto(0x7, 0x2, 0x4000000000e3, 0xebf, 0x0, 0x8000) (async, rerun: 64) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) (async, rerun: 64) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) setgroups$auto(0x3ff, &(0x7f0000000740)=0x7f) (async) mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000700)=ANY=[@ANYBLOB="5402000070b64f185dfd94d1e954214b55a03b85e317c0bf6ac6981b146d112508630fe473d4cdb6a71d04f1ef", @ANYRES32=r1, @ANYRESHEX=0x0, @ANYRES64, @ANYBLOB="34bdfb51415fa8529f7c3d8ca8b6be03b25c9530029e6b0f5550d5c014731b02b936c6707783f73d444d4cde2339c51bc96d7ba866dcc5dee9087a89b2089f19edea077fe3fbe0dcb21dcf28b57db8b223a25a51d362f667aff58916396ec05bd7e19d5982ad1a1d2eb0cf8a"], 0x254}, 0x1, 0x0, 0x0, 0x4000004}, 0xc4) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_MON_SET(r2, &(0x7f0000002780)={0x0, 0x8d, &(0x7f0000002740)={&(0x7f0000000300)=ANY=[@ANYBLOB="64160000", @ANYBLOB="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"], 0x1664}, 0x1, 0x0, 0x0, 0x2200c851}, 0x4) (async) io_uring_setup$auto(0x0, 0x0) (async) ioctl$auto(0x4000000000000c8, 0x400454e2, 0x3) (async) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32) openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/error_log\x00', 0x40, 0x0) (async, rerun: 32) mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb1, 0x10006, 0x300000000000) (async, rerun: 64) r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0) (rerun: 64) ioctl$auto(r3, 0x4018620d, 0x9) (async) r4 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0) ioctl$auto(r4, 0x4018620d, 0x9) statmount$auto(&(0x7f0000000000)={0x3, @inferred, 0xc616, 0x0, 0x120000}, 0x0, 0x3ff, 0x1) 1.222687779s ago: executing program 0 (id=1762): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x4000008000) (async, rerun: 64) r0 = socket(0x2, 0x1, 0x0) (async, rerun: 64) r1 = socket(0xa, 0x5, 0x84) sendto$auto(r1, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) close_range$auto(0x2, 0x8000, 0x0) (async) r2 = io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x1, 0x0, 0x0) (async, rerun: 64) r3 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) (rerun: 64) write$auto(r3, 0x0, 0x3) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001080), r4) read$auto(r4, 0x0, 0x1f36) (async) sendmsg$auto_NL80211_CMD_GET_WIPHY(r4, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r5, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) (async) sendmsg$auto_NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c00000070640416bb35569321b7459b3af0518421cc329e0c90fd230e57c24d454e1132e4f7c242d96d8619e22daac80653ec64", @ANYRES16=r5, @ANYBLOB="00032bbd7000fbdbdf25690000000800050005000000"], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x40000e4) r6 = syz_clone(0x800, &(0x7f0000000080)="d8895878dad1e1678f6e33a46f14b81b45216d5f4c9e37d134d4a35435c79974be8ed91acde5597a5c36090f8954b89c4d027a73ad046e201a27e7f644b9c4cb066dcce13bcdea93c8960bf2560c2ddf29ff75297022a2f31dabf97adbee66cd3c1a2ce021ddd84903fc49137e69b97cf1cfca084d16dde67c29e79e0ca17d6455bfcbc79e29d6d7d677c70a778785e0bca7bee4ead8fc4643881411c62b7c4e28685ca7e97cd22ad463e81e2be8ea7191194461b55f5cfd9fb5bf7d174b3d", 0xbf, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)="3ce8021b82e01fc0bc2472f992bf1913bb5d0f96b19cebd6929deea1c6000c7aa69d3b7462c301149283fcbdec017e9b5b507eb9bc12c93b2812463585546c31256378a8bc83639ba296c9398181f50a7197699fc94560426218dbf360d07284f9e764bc4d6acbde8d48692c2a73ec0fa4e71e9811511ddab2e3cddb7bdc62140660223328d8df97337a7c409ed7608a7c5cac65b2c7d75d3d72cf56ec77e484f2b8f1c36d2701f6c7c9e15ff4d5ad4219012d31edc5fe027a1fac1d68f7daa315c25551f96d223cbd030edaa9f9648d76828adaee4ac5b00eaa8fa47f8a198243f0c7e716c5f93a1ce7494f2d895c690aa3690c4f76b40303eb24fc76454a44b2ab0f30af6623cc0643bbb40dd233560ad7065bf8f5801bd197c9200343dafb10da78838409a62b8c1b245fa1ba0d5a22ee9e428c88f05df6c9df85e7b66f53c9aa750b7c717b489f2f32e1fc770011ead8f4ee00a4e1bb083d216b7703c7f0bff3f586876dc97d1f414e5b8980195edebe11a813ee254b72d0fb73f23c6a495823f73f6592bd7fb7ee13d4f15008e94c4c7174448d1562752d1686115db0e9e3f4367d4619564590e1e2e30f07bc05f2510490fa3f5cd5991bfea8f869943b1b34ce128a6722340c8aa801d50445dd1e886f5ac019884924b448c89f7500d25958bd57c582135cbb01009cd15eb419f86c61e98909e2a53397c338b5fac57696ebc546e5987ab14d17698db6f237190ebbf9260e95e24cb3a44f5d327127f222d1763032cfcbf8e3db0f50a5e30082baf5c4507fca4c2f3f9de24fdcf0e275b7cad71a14b75c544514f4c870584889982b60d4687a1131081c477e1f89ec3cf9edf476ce1f649de07a36b42a9116824dce89a72372435b1a0ee3145c95fabffc1a33746b1402b7cf6f8de77571d8c699d7ddb3522fcee592fd2399285e822d4dc4f52df7a829b7f93e679708076821804d9400c3a75bb95d6cd442b3818bb6ed560e52fbc61de91d0348291ce47839233accdf63a741d418da6623dd37194c3d41bc98339fb1bcc4a1f4e69fff007c2e05be6f1e9cdf50ce8b57ec13b5e3a6d1ea2fce108b00a96e15f7b70e633ddf77c31cb20ce39bf4d0f934d18590964ddc630df29430d1a050c27ff95797fe9e75acac647bf87fdaa373808edbbe66437381dcdb157905691789ed0fd8385aed1820d72691c9ba603f69116b0eba9cfb35a75b0f3a8b461775c3d1545052e0f6130049ed6b4f3a3635a99b3af7058c275dc6510eb0ca9dcf763e6e84ce69f01cae9b5cbffd5c71f881aff4749ee5c4a1700fe25a25cd786d15c4df1f11296f6c0641b2f5d1d86331f51aaadf9bd0f7271576d31c6d8c247bfaacc75ec2cddf6a74ffff2140201190b919763a65872ed05d1a7a32722027f9c32baf5774e5216698aeb50026480227eada2805444fe8e3716583048874e17031b16e66f3d0bbd5f7d67a2a0e6c6099c56dbeef20a39f581346d6a61a2f18a87e79fa0ad6ca6db5d64cbecd0c1c7af654988a1e6e576958f6320371e68e543bdba30f52ec8fd85fb0d46a66e5f81e3801dac2a3099eaff0d8de67bcbf0b7a0877a9f6c75e45d4abb62ece69a41dd8fabcc42103c6774502c889317bbc37481e1244fa401df888471c2216d1d9fdf9dd6d588e4a74b1dea8e785b571775ab0b60c757765cde66e5cccd0e44bd436ff808a5c43fea9fd65685afab88114367644ab2bcfd570b15244f59e1df78eb0e73f8adec124f4bc8ddc85a7736a3642d8e1ff4700ebab3d4dc8a73acecc614005b9f6e6c4d7b5f6136f2a8edcada94f00fc665172300cac716930056546ace42d3fdc06f322e77f86a92c062875f02b567e9c0d96dad399dcc293e026394e5b033082e49dd842f017abf692e4f16dbed83e97487e2a1e6ed3985eb4a2220ec6df23c732902308cf35a949e0a37bf1e5a18d4ef892d006467d27b4f49073a05a004b01ac7b7b58f493b00fc321629a76be28bc3cbe799ac515bbae74eeac743c11eb9192d3d5ff843bfbc8f8fd2c4ade6610665a686783cf9ff7c8beac473a31baf0201de086206ae1a30428e01fd61b4e74445bb1935189f47969a3e724d14f6caced4666c6dbfdd8b00a47adcec12c805e7df862908de5d93b77e16770c6a73b5990f4bc9fd070dfbdd78a94f39ad9ae1b7ed606d601256319b1dd83ad860d81f51710310d0004d386e00321d3d2d16028eca465b6f0c7eafba82b27689602bc10971347fc61016939dd0d12985a7654c75c313c11bd6456b059ab930b3a70e5c219bf4ec27a065145fee1b92a97f03610d4369984f3c3a52d80c40bb1e7527f67fa0ce8b373a59f916d8a9baaa3b9027fc4fcb65146c6a969fccd912e7e146c12c1475a2cd0041d0cedb2e6d53bc878ec8ea1e4c064d7e3ecd0325ee224681768eb28fe710533c077d52f7b6b52b53a319916e53fcbf41597d2d292853daf160a39655e780b978bbc039a1fa45b196d7ef0e78783be6344f5d2211886cbbb0aedb60c43d7426c8dc1c12d53deca775e48cf085a89853fccac8ebcd5692999593877c1d4b0d3668ebd13695e97e4fc512d21e6e6a1bf5349c925fefbb083ba10ea07adc859737ea36fa21b965dab6fe3bc5798fff339aeca1174abda74d9602f4bae2109f207d1d3803e36593c5b3b6d4b148bf05b6fec70824a6428660fc52f1217c85880047a6dd133a93afbdd3ed01c7491e7bc4c5068337194c4ea06a7e9856361d4f9425d71a0fbe1bfffec5753045a4072789ba49c7bc18fd5f49b1aeb3f1f1fc4ec8f9a812dcc74ad50c7c6f665617ef905b8825a746c66a31bc553003bdd14923d335fa4245bf4352cfbfbd8d246f7dff83d21523a31f14793e16c04fe11c4bd8707fa5f0cedcf4d626432cc70481e73c7a7e163557f6e748d1084677f66b08e7af467e3d1d56fdbac85770e9d9429542639c7dff760fb8d2fe651a83e7487acc19f97045410d2ccbcdd03188de36a3d563f4db91a510a8b5c05e6c873b11337d063196ca19c089e754d887bad22b5f70a176aea845ec1e4df49dc30845c4598f15f437250866c37fa3770ee1bb67d7e4947ee7515fc5b12d0fe9a4e682fbc8d49beb6894641832d1f605b6e46b7a072925d990dcb4c8eedfa70d21a6cc4a903ed7fede99a5d7aba6ce4d12bc075b8a3b7b035c702f1d72595a2472df07149316dab5813c8ff081146d4c8d2c5379466d903ddc8a1f2ed23b341680d991aa124affc5b2d3fed17c6825b5959939ff684215febe7303f4cb272cb7c9ab799469078fa67583985fbd9c7434ab600954bef5a6f09ffb6a467f4185b9b824703f2a15fbdc584e3927fa0e94954cf9926fb0b6b24e48dd67528599777e7f1cf9927417fc2cc0e7b48a4e856d3642f987c0c9dbd0f30c6fb5d7272c80fa7c1f36ef665cb71a627feeebc59c8dc9a09526a42e75745a80c974f811dbab4475af5c97fd6f2c7eb5e183092b9bd3fe156a5002fafc7f788c7fef11bf7077f8fa71c68c1927963311a4c01a5ca4835dd1e2ff7b40472d9f06f34ff85e1ca3114e44288ce39a8311d06fbab2bd303d47263a28158057dbd138b855cc4f217edbe4e36260c8da836757ec383b2ed100b946c68d98d1abf5499d6efcfc20c629c479978b264e214bce018b3a4ed9d7a38c1e1fc36934c49fb54dbc59f29179f1a43869414288923b9142e5aaad994ef14346ec83fe2ebdf810f00b5d4d91381564d53e15de383136684f17aa6c38bbdc944583aed0deee86025228ee9bc32f9db3be395480a869124f2019b6a391ef73f1d45551cc31d9f93519d88f97bec401984d97dd9170387ef49fc1d691c3dfabeccd53e5f07d5163f8106b022bcefbea4085508b938ff13e1642964079090458ffa3dc9d15fccaae44db5780de584142466617a758fa664b54b40f5a1367f183a20309bbf07188097a7330356bdfbd19d22da925f0fa1c333475acc088ae353735b0505d6999eeb424440ca5270ad5de226003011dc7b9aad3e34346a8a2ef134c7080f31561b934984e2098bca833fc166b252456700f7a10f1ddbcdb06fec68ed09bd287a018d0181b52148cd8dd55721cd886a6492e83aae4fedcd9b5c6fdbafe1f2d7e105e2fe4db530c75935563a64fbf2817e85e850b95fa789c3847544913b79e03765f69a23a8a6035e517a92c1654947be23db641734300799653594e91eff79e583286b7c1f7245c2b3b5e2af9b6f65a18697e24dfd4e540b12c323d4a0d21456f60e43a75f87d679589fec50eeacc0362a3d500b4ba33466ad60ae2db8ccbc5ce7eb0cc2e39076bef1345f9515f91a96fadf6cf5bf63960f7b3bb3f4c8dbc10fd6994cfb454ce7009162e31a786dc76913011c5c90416f1db8e33b0055f7e5164e548a1d7333b94b546005180a91de6aff4db14f7f8d355ecd57b2240934ab4be5bd0b2c947aa0c0c85dabb62330cab62338027f4539d435de9969c48aa6168424e781119d1fafdafef8b674289356baf5c1c21701591e64d36e181b603285cdc7813d2c7ffed0a1639eb9ca254fa16a5b1e0ac97e5380974e66ae008aa52b339da4eb65cd090a1b1bbb83e7ca7ce3fcf8e9ad5cf7c635d1807df93ae9897c548ae7bd05dce60a8705edfe0669e8dc9be71a014542cac0f57098bd32a60a6fddd5bd8fee94451f21a6c7e587ab92e4c0e4d73409df4cacb4b9af0135d37400f0ac396172a6e11f86ce204309fc8114c122b7fe755f4cdd7846215d20e34acd9314f74fd2d49e26f431dc499d7bca878b7a04a0cb12156939638e8035b4ca98f6eb96f4e453d54b31306b798db769434d0f180465f89d0483133bb9b0bcf9c968a1657d424997a98192c0bf6af59c83911fd126b64508a9decb32c0bf8459ea724d3f46a5208c24a1a495d4ca6da69985c469905b074daf408dcb8bc2874ecaa3f75ca0c0ebc6210e6ca5877c89f409be1bd8533a529ba5668af66a64daa15ee8def637628dbf1f6a27bae2f52c6b08023cdaa11cac65aa8efd497f3a7f49204191823eaaeb4628126f035a237beec992b83ad5c31e9cdf84573bb00487247767e94f53547c250f606a9b5f9da4391587878f875ec1faed3249f1f4e4dc11d70acf665f5efd36c5351832724bcda380f7d164039a750904d455e00a026938276f7787c6835b89d35a6dc323952fcf6092d5578cb348e9e5c76ce45f426879791ae65b144ab1e09e96e6f756311e8362dd6abdc10d83b9b56164cdc11462dab3d2e6a9ee9aeaff53fe3fd14bcb5062c4e9c0ff8ec53356ebf1f956badefe19f27e43cf9525d5a70d789e3882aff25204eddcf9dbe5f9bffcffa7d66a1223a0792da69deaf15a0275a35f406b93f8315b54aaa10d39bcab24f3d840d54327b238d0837a06201b7d070d2db613a48a21b37b609c4cbdfd6cdd77781e03e4c8a7216737a39fa2cd29b7fa3fda227b806a20705196ab4b1bb1f690de63d64927218d9f6f45946344cb82f22048f85dccb8acbf25d1aba228bd2b36ced56518563c8056b5605397e0952bab9b3b67b5954df80b46ab91a5d0083e8d0a6ff9f70a30bf0dcc36ca32956870b3e7b0ee5cc37c3a9bd2e4d174968e59e4b74318397beb1677d5b98f96acaaaee63eae6a3cdfe9662dd6877401af5338b78cbf07ff95e958af80b5e4e29b7e871c5c73e371474266019747358ec2da2b21b457e93ea8bcbaa553593b257da3408fbf67405fafa63199fecc532ff903e041d62000efede3a4a993f1462ec5e04dc889ad0a43eac137fc3914d50e6ecb") sendmsg$auto_NL80211_CMD_DEL_PMK(r2, &(0x7f0000001780)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001740)={&(0x7f0000001200)={0x540, r5, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x1}, @NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x7}, @NL80211_ATTR_QOS_MAP={0x67, 0xc7, "8dd67b20046f7ce6f598d6c29fac12cfcf34b1b62ca6abbf88dcce94333f96353554907b0777b1e2d5bb71c5bc70f7e630f4eeaf3c34d39b30c5cf288f66dcf5a88cf1290375427dffe40eb802a82f2ad07ef19ed433b2d3e716df8ff8b4ca6d19e886"}, @NL80211_ATTR_MNTR_FLAGS={0xc0, 0x17, "12eb12d20a0c7a55fe82d6f786ff4cfcff855e9c039ce6dd217923028422ea3e273f1f5c6b63e4d85a2fc76da8f53729fd242cddcd9e3e0d12e1405d86bbb0e19b73338b95fbc6fa7c5470c25a4b02556e0393ef8b1391c7673dc4feeb1585cb3490a9722623cea44da8f7d5ebbe3b796fe3429c2e1f0efeadee52e517b1d56d07f224f36146f68f839461f00b3569c9770e041eb2a1b952f9bde14b1571ddd55bfda06c21bccb7abd2b1a6130749cede060e429b8d5cbaddffe65c4"}, @NL80211_ATTR_MBSSID_ELEMS={0x3f3, 0x133, 0x0, 0x1, [@generic="d0fe8b59e65b9b92ccf7937c40bd1de45a5303130bdb0e73813634377dd8a8aba8fe066ba9b819db05893c837a055f3c648cd84eea4e2567edadb06e5f5821b091751ba3ea325789087783a84a6f31ce9c5e4e5bb9b4", @typed={0x8, 0xae, 0x0, 0x0, @u32=0x9}, @generic="b50f9c020a8dd7462f8c33f011634cf89fefed87ea3f43ee1c4a0aaf99b5db4f3dff9d7de6834349e2a3ddbe8cb3aa51e9681266e149748765baed9802ecf05cf09581693093505585db6bc79693239dd42e76a1aa17deb45cd747633ce6e508af7411509866f1aeb2bee1534fb9792575c3e391b66a92872eae86a3bf780ed744a8a733b9234493d7256bd3a22719a0c62fae05a17cb92766df3911fee6d073e3091a70e4f62dda31946ff7e7bb4b0eec766219377ea5466fcec90132030b7dfa", @generic="f99be2d7d60c8cdce7cabc8857eb7ed45a3da50b4f345b0dffa17bcb13ad368c3cf48c6147c7ab6f33663acf3aea4c3f19102ba2c5828f434a68f169c7d85dcc055e071ddb9175625a13528003320e8111c38f80755a5db1e1af387fab73d703677a38f8b88964f2353aadf1fbbabcb069f8564d565df9db4062aa3151366512eb3fe578244b980e1126ee747fdad3a9a84ff0bcb969b3c6f75d01cb930c5873c5d7f5ac539ae559457d436cc45f55acc3ccf287a978b95da7c07bd3707719529449591d9bbf75eee08476", @generic="74dbc363956ab6a5c9b87b9afd055e02a91de8e418e74775dde70050cbe825b976226209ea8e212723f38b49ab57445640da273c9d57e72821c3bf134f20eed83832c89a070393a2864908022cedfcf4d95f353e665de01be13b0c6465fae2d82f873bde4b5d5fd22192cbcef906c6ce668dfc37f586f6c9959b1e58dc73a0fc10dba4ad09b01be1fd1f1b74ee58093fb6898670fff40c4ea847000617262d5be1365c892aca6dd42d4f258dc3b5687f63071f9ac7f2aca5b8b3907657e75e586c9b8aa23e8145fab4", @nested={0x13b, 0x45, 0x0, 0x1, [@typed={0x8, 0x146, 0x0, 0x0, @u32=0x28}, @typed={0x8, 0xdd, 0x0, 0x0, @pid=r6}, @typed={0x8, 0x2, 0x0, 0x0, @uid}, @nested={0x4, 0xe9}, @typed={0x4, 0x8f}, @nested={0x4, 0x10e}, @generic="3b9f8278a7edfa3e42637b97e851d09b3a28f8e00620cf39918b247233c01982e74c3fefd90db5e15a9a000dcae068a828690d9d3020b7479d54948b2d829ab9a5dc94ca6d9b870a023143ceaa5cc47116298fe5dcfce3e7dbd954059fb17f04c649b0d4740659ddb59d0bd08b83aea67ab05536cff67c2e070c692ccc8045", @typed={0x9, 0x11e, 0x0, 0x0, @str='\xac&{@\x00'}, @typed={0x85, 0xe1, 0x0, 0x0, @binary="7ba33a62781842ed663d2f4c011f1221eb5052b1cd64a922b67984b1d1461e438c095cdc3f7acccf3aaab57b445ccd5c686bedf742a1a4b3e656f7801e21208612be2d53fe0bda297b38f4b316ef825d3e382e7933fea074c2b5e42f2ef45e210480b4ec00a74480317dbfd0fd88354e440c995b685bdb8e207903c5c848ba3e0d"}]}]}]}, 0x540}, 0x1, 0x0, 0x0, 0x40}, 0x20000010) (async) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) (async) r7 = socket(0x2, 0x1, 0x106) setsockopt$auto(r7, 0x1, 0x21, 0x0, 0x9) (async, rerun: 64) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a) (async, rerun: 64) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) write$auto(0x3, 0x0, 0xfdf3) (rerun: 32) syz_genetlink_get_family_id$auto_nl80211(0x0, r0) (async) close_range$auto(0x2, 0x8, 0x0) 796.257649ms ago: executing program 1 (id=1763): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x4e23}, 0x67) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x2, 0xb}, 0x800009}, 0x5, 0x20000000) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) geteuid() open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) mmap$auto(0x0, 0x5, 0xfffffffffffffe01, 0x8011, 0x3, 0x8000) mremap$auto(0x0, 0x7, 0x3fd6, 0x0, 0x1ffffffe) mmap$auto(0xef, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x2001, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x20040000) recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) write$auto(0x3, 0x0, 0xfdef) select$auto(0x3, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x0, 0xc, 0x8, 0x3, 0x6, 0x2, 0x9, 0x5e582970, 0x4000000000000000, 0x2, 0x4, 0x4, 0x8, 0x6]}, 0x0, 0x0) write$auto(0x3, 0x0, 0xfdef) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc1b7573919a8c4e4}, 0x810) bpf$auto(0x0, 0x0, 0xfbf) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89b0, &(0x7f0000000140)={'vlan0\x00'}) shutdown$auto(0x200000003, 0x2) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x296) 660.598056ms ago: executing program 2 (id=1764): lsm_list_modules$auto(0x0, 0x0, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyr1\x00', 0x683800, 0x0) listen$auto(r0, 0x66c28b8) write$auto(0x3, 0x0, 0x81) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/net/bpq0/mtu\x00', 0x1a1842, 0x0) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000100), 0x780101, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000015c0), r2) sendmsg$auto_NL80211_CMD_GET_STATION(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000001880)={&(0x7f0000002440)=ANY=[@ANYBLOB="28001221", @ANYRES16=r3, @ANYBLOB="4d5f28bd7000fddbdf251100000013003880100000800b000600519c7b1e0c977a00"], 0x28}, 0x1, 0x0, 0x0, 0x40004001}, 0x800) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, 0x0, 0x80) madvise$auto(0x0, 0xffffffffffff0005, 0x19) sigaltstack$auto(0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, 0x0, 0x20000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) r4 = gettid() process_vm_writev$auto(r4, 0x0, 0x3, 0x0, 0x5, 0x0) mmap$auto(0xffffffffffffffff, 0x2, 0x51, 0x18, 0x401, 0x9) syz_clone(0x80081000, 0x0, 0x0, 0x0, 0x0, 0x0) r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) read$auto(r5, 0x0, 0x39b8) ioctl$auto_IOCTL_VMCI_GET_CONTEXT_ID(r1, 0x7b3, 0x0) ioperm$auto(0x3, 0x5, 0x149) r6 = openat$auto_tracing_thresh_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/tracing_thresh\x00', 0x0, 0x0) read$auto_tracing_thresh_fops_trace(r6, 0x0, 0x0) ioctl$auto(r1, 0x27, r6) getresuid$auto(&(0x7f0000000440)=0x8, &(0x7f0000000480)=0xd9, &(0x7f00000000c0)=0x7) openat$auto_clk_summary_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/clk/clk_orphan_summary\x00', 0x264c00, 0x0) 562.371312ms ago: executing program 0 (id=1765): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x800, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) r1 = socket(0x2, 0x801, 0x100) poll$auto(&(0x7f0000000180)={r1, 0x6, 0x6}, 0x6, 0x8) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000000), r1) setsockopt$auto(0x3, 0x8000000000000006, 0x1e, 0x0, 0x7ffffc) 542.046049ms ago: executing program 4 (id=1766): syz_open_procfs$namespace(0xffffffffffffffff, 0x0) mprotect$auto(0x110c230000, 0x3, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001680)='/proc/config.gz\x00', 0x60000, 0x0) read$auto(r1, &(0x7f0000000000)='\x00', 0x3) r2 = set_tid_address$auto(&(0x7f0000000200)=0x3) sendmsg$auto_NL80211_CMD_SET_PMKSA(r0, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)={0x1e8, 0x0, 0x8, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x1d, 0x13, "cc33a6a7dd1149ed99417dfd4e2607433d18c91cf8e82e6db9"}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x59, 0xcd, "6f675f56e96014ffea0fe0aa24b61b41344367f2a08637443b787d05376271fc0a480691773d14c59a701c62fac66e4cf17da9a261d8203a3b56cae1c5b536fccb37466b8fd2117ca3800d0cb2e0a5257858f607d8"}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x5}, @NL80211_ATTR_TX_RATES={0x14, 0x5a, 0x0, 0x1, [@typed={0x8, 0x108, 0x0, 0x0, @u32=0x30f48add}, @typed={0x8, 0xbc, 0x0, 0x0, @pid=r2}]}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0x4}, @NL80211_ATTR_WIPHY_TXQ_PARAMS={0x134, 0x25, 0x0, 0x1, [@generic="6502ba23192af84688169aa8cad27bb360f9aac6877ea08e893eb129500779d63335f804cc273472f43fef5c4a088c7c1f3499d811fb56623ebc3e5878d09d59cf7c8a8dadc008d9a559536d083b682ff344602df128e4a407f2df472efcc9f32c1bf50712c0e9d85c9bf3412e7ef3ed2d11fd848aa94beea5ad6e1246616963dbe0c8539cee872a0f8a6a0d6c8f9bf6ac879026a5b7a092166561cd20b8058611f1c8feab558b47119af229c85f95ed3f7e4a0499f0e4309a80da6279b459ef66dfb4ca3627641f01902096c1efcd902a8de25170240eb74e71", @generic="92c95bbff68dd135dac9a55eb6e8ea3ea79f91b19c585538fb6aefc58c91adbfc321f668c944b8802b32abc9d579b363f2006d844bbb2730257f9eaac82f113067985f0f44516d27aa51adfd01a4", @typed={0x8, 0x101, 0x0, 0x0, @u32=0x45}]}]}, 0x1e8}}, 0x40001) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_hsr(&(0x7f0000004400), r3) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) sysfs$auto(0x2, 0x14, 0x0) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) syz_clone(0x4000411, 0x0, 0x0, 0x0, 0x0, 0x0) r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/ext4/sda1/mb_groups\x00', 0x14b402, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x6, 0x3, 0x1, 0x0) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_TIOCSETD2(r6, 0x5423, 0x0) read$auto(r5, 0x0, 0xc9e3) ioperm$auto(0x3, 0xe, 0x2000000000000149) ppoll$auto(&(0x7f0000000000)={r4, 0x40}, 0x2, 0x0, 0x0, 0x8) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x1, 0x40009, 0xdf, 0x17, 0x7, 0x200000000028000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r7 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) move_pages$auto(r7, 0x1002, 0x0, 0x0, 0x0, 0x2) 48.11282ms ago: executing program 2 (id=1767): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) setsockopt$auto(0x3, 0x8000000000000006, 0x15, 0x0, 0x7ffffc) 0s ago: executing program 4 (id=1768): openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x1a9382, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) r0 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91) read$auto(r0, 0x0, 0x1) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) openat$auto_fops_atomic_t_(0xffffffffffffff9c, 0x0, 0x240, 0x0) openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, 0x0, 0x22882, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f0000000240)={[0x36c, 0x8, 0x101, 0x9, 0x8, 0x9, 0x4, 0x900000000000000, 0x7f, 0x2, 0x14c7, 0xfffffffffffffffe, 0x2, 0x4, 0x3, 0x7]}, &(0x7f00000002c0)={0x0, 0x5}) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.253' (ED25519) to the list of known hosts. [ 66.866980][ T5816] cgroup: Unknown subsys name 'net' [ 66.974157][ T5816] cgroup: Unknown subsys name 'cpuset' [ 66.982474][ T5816] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 68.370563][ T5816] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 70.089438][ T5830] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 70.101931][ T5830] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 70.109768][ T5830] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 70.118074][ T5830] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 70.127792][ T5830] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 70.135562][ T5830] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 70.150237][ T5830] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 70.151629][ T5838] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 70.166653][ T5838] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 70.170269][ T5830] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 70.174936][ T5838] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 70.190379][ T5839] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 70.197933][ T5830] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 70.199230][ T5838] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 70.206425][ T5830] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 70.214611][ T5838] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 70.221302][ T5830] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 70.229194][ T5838] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 70.235700][ T5830] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 70.243497][ T5838] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 70.250813][ T5830] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 70.265489][ T5839] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 70.274359][ T5839] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 70.283322][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 70.609977][ T5831] chnl_net:caif_netlink_parms(): no params data found [ 70.741913][ T5826] chnl_net:caif_netlink_parms(): no params data found [ 70.793680][ T5825] chnl_net:caif_netlink_parms(): no params data found [ 70.829825][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.839016][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.846648][ T5831] bridge_slave_0: entered allmulticast mode [ 70.854763][ T5831] bridge_slave_0: entered promiscuous mode [ 70.863492][ T5827] chnl_net:caif_netlink_parms(): no params data found [ 70.897085][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.904547][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.912822][ T5831] bridge_slave_1: entered allmulticast mode [ 70.919618][ T5831] bridge_slave_1: entered promiscuous mode [ 70.995443][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.008283][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.026785][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.035171][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 71.043557][ T5826] bridge_slave_0: entered allmulticast mode [ 71.050638][ T5826] bridge_slave_0: entered promiscuous mode [ 71.080531][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.087689][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.095295][ T5826] bridge_slave_1: entered allmulticast mode [ 71.102555][ T5826] bridge_slave_1: entered promiscuous mode [ 71.148717][ T5831] team0: Port device team_slave_0 added [ 71.157981][ T5831] team0: Port device team_slave_1 added [ 71.164288][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.171982][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state [ 71.179139][ T5825] bridge_slave_0: entered allmulticast mode [ 71.186295][ T5825] bridge_slave_0: entered promiscuous mode [ 71.193409][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.200764][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state [ 71.208079][ T5827] bridge_slave_0: entered allmulticast mode [ 71.215005][ T5827] bridge_slave_0: entered promiscuous mode [ 71.231343][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.249621][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.257273][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.265033][ T5825] bridge_slave_1: entered allmulticast mode [ 71.272292][ T5825] bridge_slave_1: entered promiscuous mode [ 71.278866][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.286200][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.293934][ T5827] bridge_slave_1: entered allmulticast mode [ 71.300636][ T5827] bridge_slave_1: entered promiscuous mode [ 71.310178][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.369389][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.376800][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.403586][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.418915][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.430400][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.442104][ T5826] team0: Port device team_slave_0 added [ 71.448460][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.456498][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.482727][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.499034][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.510714][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.531547][ T5826] team0: Port device team_slave_1 added [ 71.579005][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.586260][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.613046][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.643218][ T5827] team0: Port device team_slave_0 added [ 71.660577][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.667568][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.694045][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.711077][ T5825] team0: Port device team_slave_0 added [ 71.719290][ T5827] team0: Port device team_slave_1 added [ 71.736595][ T5825] team0: Port device team_slave_1 added [ 71.761104][ T5831] hsr_slave_0: entered promiscuous mode [ 71.767558][ T5831] hsr_slave_1: entered promiscuous mode [ 71.815870][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.823310][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.852483][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.878013][ T5826] hsr_slave_0: entered promiscuous mode [ 71.885755][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.886941][ T5826] hsr_slave_1: entered promiscuous mode [ 71.893054][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.904545][ T5826] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 71.913387][ T5826] Cannot create hsr debugfs directory [ 71.925359][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.935171][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.961640][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.973776][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.980793][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 72.007711][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 72.020126][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 72.027370][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 72.053347][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 72.141604][ T5827] hsr_slave_0: entered promiscuous mode [ 72.148794][ T5827] hsr_slave_1: entered promiscuous mode [ 72.155437][ T5827] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 72.163165][ T5827] Cannot create hsr debugfs directory [ 72.188961][ T5825] hsr_slave_0: entered promiscuous mode [ 72.195517][ T5825] hsr_slave_1: entered promiscuous mode [ 72.202527][ T5825] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 72.210578][ T5825] Cannot create hsr debugfs directory [ 72.270620][ T5834] Bluetooth: hci2: command tx timeout [ 72.350644][ T5839] Bluetooth: hci3: command tx timeout [ 72.356605][ T5834] Bluetooth: hci1: command tx timeout [ 72.362619][ T5839] Bluetooth: hci0: command tx timeout [ 72.433841][ T5831] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 72.447314][ T5831] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 72.469741][ T5831] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 72.483352][ T5831] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 72.564494][ T5826] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 72.574915][ T5826] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 72.587892][ T5826] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 72.597046][ T5826] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 72.661873][ T5825] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 72.696217][ T5825] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 72.716648][ T5825] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 72.727159][ T5825] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 72.776896][ T5827] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 72.795361][ T5827] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 72.815969][ T5827] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 72.825740][ T5827] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 72.934652][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.983548][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.996233][ T5826] 8021q: adding VLAN 0 to HW filter on device team0 [ 73.017947][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.025406][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.057156][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 73.068129][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.075353][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.088855][ T5831] 8021q: adding VLAN 0 to HW filter on device team0 [ 73.102261][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.109664][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.136359][ T3014] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.143691][ T3014] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.167693][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0 [ 73.185920][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 73.222792][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.230117][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.244874][ T5825] 8021q: adding VLAN 0 to HW filter on device team0 [ 73.259915][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.267033][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.291475][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.298598][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.328345][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.335564][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.678579][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.769683][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.786807][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.819328][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.856820][ T5826] veth0_vlan: entered promiscuous mode [ 73.895315][ T5826] veth1_vlan: entered promiscuous mode [ 73.916269][ T5827] veth0_vlan: entered promiscuous mode [ 73.940688][ T5831] veth0_vlan: entered promiscuous mode [ 73.954028][ T5827] veth1_vlan: entered promiscuous mode [ 73.979613][ T5831] veth1_vlan: entered promiscuous mode [ 73.999438][ T5826] veth0_macvtap: entered promiscuous mode [ 74.025540][ T5826] veth1_macvtap: entered promiscuous mode [ 74.035633][ T5825] veth0_vlan: entered promiscuous mode [ 74.050635][ T5825] veth1_vlan: entered promiscuous mode [ 74.064441][ T5827] veth0_macvtap: entered promiscuous mode [ 74.075309][ T5827] veth1_macvtap: entered promiscuous mode [ 74.113328][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.125310][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.137029][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.149256][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.172738][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.183585][ T5831] veth0_macvtap: entered promiscuous mode [ 74.195591][ T5831] veth1_macvtap: entered promiscuous mode [ 74.205077][ T5825] veth0_macvtap: entered promiscuous mode [ 74.212258][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.223049][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.234402][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.246258][ T5827] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.255813][ T5827] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.265238][ T5827] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.275815][ T5827] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.296454][ T5826] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.306100][ T5826] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.315159][ T5826] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.324139][ T5826] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.342227][ T5825] veth1_macvtap: entered promiscuous mode [ 74.368750][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.369912][ T5834] Bluetooth: hci2: command tx timeout [ 74.379448][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.395573][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.406696][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.418834][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.430680][ T5834] Bluetooth: hci1: command tx timeout [ 74.436386][ T5839] Bluetooth: hci0: command tx timeout [ 74.436404][ T5142] Bluetooth: hci3: command tx timeout [ 74.468394][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.485297][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.497653][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.508872][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.521411][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.572751][ T5831] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.584272][ T5831] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.593634][ T5831] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.602949][ T5831] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.623937][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.640875][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.651186][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.663144][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.673356][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.683960][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.695203][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.720633][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.731669][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.743642][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.755560][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.765540][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.776195][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.788003][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.803019][ T3510] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.812324][ T3510] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.836618][ T5825] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.846119][ T5825] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.856804][ T5825] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.866122][ T5825] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.889232][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.897576][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.964946][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.977273][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.001993][ T3510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.023685][ T3510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.073770][ T80] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.087813][ T80] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.130118][ T80] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.138175][ T80] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.188152][ T5826] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 75.196904][ T80] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.214815][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.229797][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.256610][ T80] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.499615][ T5892] Zero length message leads to an empty skb [ 75.543937][ T5892] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2'. [ 75.942205][ T5892] team0 (unregistering): Port device team_slave_0 removed [ 75.975294][ T5892] team0 (unregistering): Port device team_slave_1 removed [ 76.433068][ T5142] Bluetooth: hci2: command tx timeout [ 76.510626][ T5142] Bluetooth: hci0: command tx timeout [ 76.516561][ T5142] Bluetooth: hci1: command tx timeout [ 76.520335][ T5839] Bluetooth: hci3: command tx timeout [ 76.941593][ T5926] netlink: 20 bytes leftover after parsing attributes in process `syz.0.10'. [ 77.439633][ T5926] team0 (unregistering): Port device team_slave_0 removed [ 77.477301][ T5926] team0 (unregistering): Port device team_slave_1 removed [ 77.971443][ T5938] netlink: 20 bytes leftover after parsing attributes in process `syz.3.16'. [ 78.511931][ T5834] Bluetooth: hci2: command tx timeout [ 78.534334][ T5938] team0 (unregistering): Port device team_slave_0 removed [ 78.590922][ T5834] Bluetooth: hci1: command tx timeout [ 78.597096][ T5839] Bluetooth: hci3: command tx timeout [ 78.602511][ T5142] Bluetooth: hci0: command tx timeout [ 78.608888][ T5938] team0 (unregistering): Port device team_slave_1 removed [ 79.811005][ T5958] process 'syz.1.20' launched ':,' with NULL argv: empty string added [ 79.958094][ T5965] netlink: 20 bytes leftover after parsing attributes in process `syz.2.24'. [ 80.043158][ T5967] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 80.194497][ T5969] netlink: 20 bytes leftover after parsing attributes in process `syz.2.26'. [ 81.212316][ T5995] netlink: 20 bytes leftover after parsing attributes in process `syz.2.34'. [ 81.767659][ T6002] netlink: 20 bytes leftover after parsing attributes in process `syz.0.45'. [ 82.433495][ T6010] netlink: 342 bytes leftover after parsing attributes in process `syz.0.39'. [ 82.961151][ T6015] netlink: 8 bytes leftover after parsing attributes in process `syz.0.40'. [ 85.054567][ T6030] mmap: syz.0.44 (6030) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 85.411845][ T6038] netlink: 20 bytes leftover after parsing attributes in process `syz.1.48'. [ 85.759069][ T6038] team0 (unregistering): Port device team_slave_0 removed [ 85.785884][ T6038] team0 (unregistering): Port device team_slave_1 removed [ 88.755908][ T8] cfg80211: failed to load regulatory.db [ 91.593989][ T6047] netlink: 20 bytes leftover after parsing attributes in process `syz.0.58'. [ 91.863963][ T6050] netlink: 24 bytes leftover after parsing attributes in process `syz.3.50'. [ 91.909144][ T6054] netlink: 32 bytes leftover after parsing attributes in process `syz.0.52'. [ 92.474405][ T6062] netlink: 8 bytes leftover after parsing attributes in process `syz.2.53'. [ 94.947614][ T6087] netlink: 20 bytes leftover after parsing attributes in process `syz.0.60'. [ 95.121577][ T6094] netlink: 20 bytes leftover after parsing attributes in process `syz.0.62'. [ 97.528754][ T6154] netlink: 20 bytes leftover after parsing attributes in process `syz.2.72'. [ 97.540421][ T6155] netlink: 20 bytes leftover after parsing attributes in process `syz.1.73'. [ 97.971990][ T6166] netlink: 8 bytes leftover after parsing attributes in process `syz.1.75'. [ 98.760414][ T6194] syz.2.81 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 99.210581][ T6202] netlink: 20 bytes leftover after parsing attributes in process `syz.2.84'. [ 99.321183][ T6205] netlink: 20 bytes leftover after parsing attributes in process `syz.3.85'. [ 100.550612][ T6229] netlink: 330 bytes leftover after parsing attributes in process `syz.3.91'. [ 101.427571][ T6232] RDS: rds_bind could not find a transport for 86a4:131b:e300:1000::, load rds_tcp or rds_rdma? [ 101.614733][ T6250] netlink: 20 bytes leftover after parsing attributes in process `syz.1.94'. [ 101.953098][ T6260] netlink: 330 bytes leftover after parsing attributes in process `syz.2.100'. [ 102.980506][ T6277] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 103.050245][ T6277] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 103.087599][ T6276] netlink: 8 bytes leftover after parsing attributes in process `syz.3.103'. [ 103.931146][ T6305] netlink: 20 bytes leftover after parsing attributes in process `syz.0.111'. [ 103.961944][ T6306] netlink: 330 bytes leftover after parsing attributes in process `syz.1.113'. [ 106.351275][ T6340] netlink: 20 bytes leftover after parsing attributes in process `syz.0.123'. [ 106.529335][ T6330] syz.2.121 (6330) used greatest stack depth: 20192 bytes left [ 106.694294][ T6344] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 106.731821][ T6344] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 107.481812][ T6357] netlink: 330 bytes leftover after parsing attributes in process `syz.0.125'. [ 107.943645][ T6382] netlink: 20 bytes leftover after parsing attributes in process `syz.3.133'. [ 108.194328][ T6388] netlink: 20 bytes leftover after parsing attributes in process `syz.2.143'. [ 108.303775][ T6395] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 108.365830][ T6395] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 109.573103][ T6430] netlink: 20 bytes leftover after parsing attributes in process `syz.0.146'. [ 110.336226][ T6456] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 110.361339][ T6458] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 110.431147][ T6456] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 110.978447][ T6473] netlink: 20 bytes leftover after parsing attributes in process `syz.2.159'. [ 114.809169][ T6599] netlink: 'syz.2.188': attribute type 8 has an invalid length. [ 114.862456][ T6608] netlink: 146 bytes leftover after parsing attributes in process `syz.1.190'. [ 115.944951][ T6637] netlink: 20 bytes leftover after parsing attributes in process `syz.1.197'. [ 116.896331][ T6653] netlink: 20 bytes leftover after parsing attributes in process `syz.0.207'. [ 117.797854][ T6678] netlink: 28 bytes leftover after parsing attributes in process `syz.3.203'. [ 118.228541][ T6675] netlink: 'syz.0.201': attribute type 8 has an invalid length. [ 118.361008][ T6685] netlink: 11 bytes leftover after parsing attributes in process `syz.3.206'. [ 118.775458][ T6696] netlink: 20 bytes leftover after parsing attributes in process `syz.3.212'. [ 119.958231][ T6713] netlink: 'syz.3.219': attribute type 8 has an invalid length. [ 120.290852][ T6733] netlink: 20 bytes leftover after parsing attributes in process `syz.2.224'. [ 120.347604][ T6712] netlink: 28 bytes leftover after parsing attributes in process `syz.1.218'. [ 120.403635][ T6735] block nbd0: Unsupported socket: shutdown callout must be supported. [ 121.975213][ T6779] netlink: 20 bytes leftover after parsing attributes in process `syz.0.234'. [ 122.139998][ T6782] block nbd0: Unsupported socket: shutdown callout must be supported. [ 122.171530][ T6773] netlink: 'syz.1.233': attribute type 8 has an invalid length. [ 122.668601][ T6795] netlink: 28 bytes leftover after parsing attributes in process `syz.2.242'. [ 123.155074][ T6812] netlink: 20 bytes leftover after parsing attributes in process `syz.0.246'. [ 123.262222][ T6815] block nbd0: Unsupported socket: shutdown callout must be supported. [ 124.448986][ T6848] netlink: 28 bytes leftover after parsing attributes in process `syz.0.257'. [ 124.739185][ T6856] netlink: 20 bytes leftover after parsing attributes in process `syz.3.260'. [ 125.873198][ T6892] netlink: 20 bytes leftover after parsing attributes in process `syz.2.272'. [ 126.734640][ T6912] netlink: 28 bytes leftover after parsing attributes in process `syz.0.278'. [ 126.838716][ T6917] Process accounting resumed [ 126.848078][ T6912] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 126.862369][ T6912] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 126.915507][ T6912] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 126.966114][ T6912] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 126.986214][ T6921] netlink: 20 bytes leftover after parsing attributes in process `syz.2.282'. [ 127.182452][ T6924] netlink: 20 bytes leftover after parsing attributes in process `syz.2.291'. [ 127.265890][ T6926] netlink: 20 bytes leftover after parsing attributes in process `syz.1.283'. [ 127.443759][ T6932] netlink: 20 bytes leftover after parsing attributes in process `syz.1.293'. [ 127.729335][ T6942] Process accounting resumed [ 129.747553][ T6948] netlink: 28 bytes leftover after parsing attributes in process `syz.2.295'. [ 129.759259][ T6944] netlink: 20 bytes leftover after parsing attributes in process `syz.3.294'. [ 130.123767][ T6966] netlink: 20 bytes leftover after parsing attributes in process `syz.0.299'. [ 130.950081][ T6975] Process accounting resumed [ 130.979325][ T6981] FAULT_INJECTION: forcing a failure. [ 130.979325][ T6981] name failslab, interval 1, probability 0, space 0, times 1 [ 131.010177][ T6981] CPU: 1 UID: 0 PID: 6981 Comm: syz.2.304 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 131.020831][ T6981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 131.030899][ T6981] Call Trace: [ 131.034181][ T6981] [ 131.037115][ T6981] dump_stack_lvl+0x16c/0x1f0 [ 131.041813][ T6981] should_fail_ex+0x497/0x5b0 [ 131.046504][ T6981] ? fs_reclaim_acquire+0xae/0x150 [ 131.051628][ T6981] should_failslab+0xc2/0x120 [ 131.056317][ T6981] __kmalloc_node_noprof+0xd1/0x520 [ 131.061529][ T6981] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 131.067005][ T6981] __kvmalloc_node_noprof+0xad/0x1a0 [ 131.072308][ T6981] seq_read_iter+0x82a/0x12b0 [ 131.076998][ T6981] ? __mutex_trylock_common+0xea/0x250 [ 131.082474][ T6981] kernfs_fop_read_iter+0x414/0x580 [ 131.087688][ T6981] ? rw_verify_area+0xd0/0x700 [ 131.092469][ T6981] vfs_read+0x87f/0xbe0 [ 131.096644][ T6981] ? __pfx_vfs_read+0x10/0x10 [ 131.101348][ T6981] ksys_read+0x12b/0x250 [ 131.105599][ T6981] ? __pfx_ksys_read+0x10/0x10 [ 131.110378][ T6981] do_syscall_64+0xcd/0x250 [ 131.114897][ T6981] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.120803][ T6981] RIP: 0033:0x7faaf8985d29 [ 131.125222][ T6981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.144881][ T6981] RSP: 002b:00007faaf67f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 131.153304][ T6981] RAX: ffffffffffffffda RBX: 00007faaf8b75fa0 RCX: 00007faaf8985d29 [ 131.161286][ T6981] RDX: 00000000000000c3 RSI: 0000000020000040 RDI: 0000000000000003 [ 131.169268][ T6981] RBP: 00007faaf67f6090 R08: 0000000000000000 R09: 0000000000000000 [ 131.177250][ T6981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 131.185230][ T6981] R13: 0000000000000000 R14: 00007faaf8b75fa0 R15: 00007ffef722bc68 [ 131.193311][ T6981] [ 131.268956][ T6985] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 132.185234][ T6996] netlink: 20 bytes leftover after parsing attributes in process `syz.2.310'. [ 132.200997][ T7001] netlink: 20 bytes leftover after parsing attributes in process `syz.0.308'. [ 132.510123][ T7015] Process accounting resumed [ 133.320370][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.327244][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.554512][ T7041] netlink: 20 bytes leftover after parsing attributes in process `syz.1.323'. [ 133.968027][ T7055] netlink: 28 bytes leftover after parsing attributes in process `syz.3.331'. [ 134.268169][ T7055] bond0: (slave bond_slave_0): Releasing backup interface [ 135.159166][ T7102] netlink: 20 bytes leftover after parsing attributes in process `syz.1.338'. [ 135.217321][ T7106] netlink: 28 bytes leftover after parsing attributes in process `syz.2.345'. [ 135.571685][ T7106] bond0: (slave bond_slave_0): Releasing backup interface [ 135.731726][ T7115] netlink: 4 bytes leftover after parsing attributes in process `syz.0.346'. [ 135.743026][ T7119] netlink: 4 bytes leftover after parsing attributes in process `syz.0.346'. [ 136.187184][ T7133] netlink: 8 bytes leftover after parsing attributes in process `syz.2.353'. [ 136.290250][ T7137] netlink: 28 bytes leftover after parsing attributes in process `syz.0.354'. [ 136.312133][ T7137] ipvlan0: entered allmulticast mode [ 136.317700][ T7137] veth0_vlan: entered allmulticast mode [ 136.810831][ T7154] bond0: (slave bond_slave_0): Releasing backup interface [ 137.823001][ T7174] __nla_validate_parse: 2 callbacks suppressed [ 137.823032][ T7174] netlink: 28 bytes leftover after parsing attributes in process `syz.1.373'. [ 137.922848][ T7179] netlink: 20 bytes leftover after parsing attributes in process `syz.2.367'. [ 138.217558][ T7174] bond0: (slave bond_slave_0): Releasing backup interface [ 138.270425][ T7191] netlink: 28 bytes leftover after parsing attributes in process `syz.3.370'. [ 138.405015][ T7191] ipvlan0: entered allmulticast mode [ 138.410515][ T7191] veth0_vlan: entered allmulticast mode [ 138.687461][ T7200] netlink: 20 bytes leftover after parsing attributes in process `syz.3.381'. [ 139.859811][ T7225] netlink: 20 bytes leftover after parsing attributes in process `syz.0.383'. [ 139.880737][ T7226] FAULT_INJECTION: forcing a failure. [ 139.880737][ T7226] name failslab, interval 1, probability 0, space 0, times 0 [ 139.925950][ T7226] CPU: 0 UID: 0 PID: 7226 Comm: syz.3.380 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 139.936619][ T7226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 139.946704][ T7226] Call Trace: [ 139.949988][ T7226] [ 139.952922][ T7226] dump_stack_lvl+0x16c/0x1f0 [ 139.957617][ T7226] should_fail_ex+0x497/0x5b0 [ 139.962307][ T7226] ? fs_reclaim_acquire+0xae/0x150 [ 139.967444][ T7226] should_failslab+0xc2/0x120 [ 139.972139][ T7226] __kmalloc_noprof+0xce/0x4f0 [ 139.976921][ T7226] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 139.982570][ T7226] ? tomoyo_realpath_from_path+0xbf/0x710 [ 139.988330][ T7226] tomoyo_realpath_from_path+0xbf/0x710 [ 139.993900][ T7226] ? tomoyo_path_number_perm+0x235/0x5b0 [ 139.999557][ T7226] tomoyo_path_number_perm+0x248/0x5b0 [ 140.005041][ T7226] ? tomoyo_path_number_perm+0x235/0x5b0 [ 140.010697][ T7226] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 140.016730][ T7226] ? __pfx_lock_release+0x10/0x10 [ 140.021763][ T7226] ? trace_lock_acquire+0x14e/0x1f0 [ 140.026978][ T7226] ? lock_acquire+0x2f/0xb0 [ 140.031487][ T7226] ? __fget_files+0x40/0x3a0 [ 140.036110][ T7226] ? __fget_files+0x206/0x3a0 [ 140.040801][ T7226] security_file_ioctl+0x9b/0x240 [ 140.045839][ T7226] __x64_sys_ioctl+0xb7/0x200 [ 140.050524][ T7226] do_syscall_64+0xcd/0x250 [ 140.055199][ T7226] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.061105][ T7226] RIP: 0033:0x7feb3d785d29 [ 140.065528][ T7226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 140.085156][ T7226] RSP: 002b:00007feb3e541038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 140.093591][ T7226] RAX: ffffffffffffffda RBX: 00007feb3d975fa0 RCX: 00007feb3d785d29 [ 140.101571][ T7226] RDX: 0000000000000000 RSI: 0000000000007040 RDI: 0000000000000003 [ 140.109553][ T7226] RBP: 00007feb3e541090 R08: 0000000000000000 R09: 0000000000000000 [ 140.117536][ T7226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 140.125533][ T7226] R13: 0000000000000000 R14: 00007feb3d975fa0 R15: 00007ffef6b8e4a8 [ 140.133525][ T7226] [ 140.229032][ T7231] netlink: 28 bytes leftover after parsing attributes in process `syz.0.384'. [ 140.335561][ T7226] ERROR: Out of memory at tomoyo_realpath_from_path. [ 140.412961][ T7235] netlink: 28 bytes leftover after parsing attributes in process `syz.1.382'. [ 140.476263][ T7235] ipvlan0: entered allmulticast mode [ 140.481978][ T7235] veth0_vlan: entered allmulticast mode [ 141.979627][ T7257] FAULT_INJECTION: forcing a failure. [ 141.979627][ T7257] name failslab, interval 1, probability 0, space 0, times 0 [ 142.063772][ T7257] CPU: 1 UID: 0 PID: 7257 Comm: syz.1.397 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 142.063825][ T7257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 142.063840][ T7257] Call Trace: [ 142.063849][ T7257] [ 142.063859][ T7257] dump_stack_lvl+0x16c/0x1f0 [ 142.063896][ T7257] should_fail_ex+0x497/0x5b0 [ 142.063927][ T7257] ? fs_reclaim_acquire+0xae/0x150 [ 142.063959][ T7257] should_failslab+0xc2/0x120 [ 142.063993][ T7257] __kmalloc_noprof+0xce/0x4f0 [ 142.064024][ T7257] ? d_absolute_path+0x137/0x1b0 [ 142.064058][ T7257] ? tomoyo_encode2+0x100/0x3e0 [ 142.064091][ T7257] tomoyo_encode2+0x100/0x3e0 [ 142.064123][ T7257] tomoyo_realpath_from_path+0x1a7/0x710 [ 142.064161][ T7257] tomoyo_path_number_perm+0x248/0x5b0 [ 142.064196][ T7257] ? tomoyo_path_number_perm+0x235/0x5b0 [ 142.064236][ T7257] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 142.064295][ T7257] ? __pfx_lock_release+0x10/0x10 [ 142.064317][ T7257] ? trace_lock_acquire+0x14e/0x1f0 [ 142.064361][ T7257] ? lock_acquire+0x2f/0xb0 [ 142.064381][ T7257] ? __fget_files+0x40/0x3a0 [ 142.064412][ T7257] ? __fget_files+0x206/0x3a0 [ 142.064443][ T7257] security_file_ioctl+0x9b/0x240 [ 142.064468][ T7257] __x64_sys_ioctl+0xb7/0x200 [ 142.064495][ T7257] do_syscall_64+0xcd/0x250 [ 142.064528][ T7257] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.064554][ T7257] RIP: 0033:0x7f7fc7585d29 [ 142.064574][ T7257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 142.064597][ T7257] RSP: 002b:00007f7fc8430038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 142.064622][ T7257] RAX: ffffffffffffffda RBX: 00007f7fc7775fa0 RCX: 00007f7fc7585d29 [ 142.064638][ T7257] RDX: 0000000000000000 RSI: 0000000000007040 RDI: 0000000000000003 [ 142.064654][ T7257] RBP: 00007f7fc8430090 R08: 0000000000000000 R09: 0000000000000000 [ 142.064671][ T7257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 142.064687][ T7257] R13: 0000000000000000 R14: 00007f7fc7775fa0 R15: 00007fff9e791c88 [ 142.064719][ T7257] [ 142.064739][ T7257] ERROR: Out of memory at tomoyo_realpath_from_path. [ 142.148135][ T7260] netlink: 28 bytes leftover after parsing attributes in process `syz.2.396'. [ 142.148325][ T7260] ipvlan0: entered allmulticast mode [ 142.148383][ T7260] veth0_vlan: entered allmulticast mode [ 142.268178][ C1] vkms_vblank_simulate: vblank timer overrun [ 142.628270][ T7264] netlink: 8 bytes leftover after parsing attributes in process `syz.1.399'. [ 143.010652][ T7274] netlink: 20 bytes leftover after parsing attributes in process `syz.0.392'. [ 143.611779][ T7288] FAULT_INJECTION: forcing a failure. [ 143.611779][ T7288] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 143.653561][ T7288] CPU: 0 UID: 0 PID: 7288 Comm: syz.3.400 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 143.664225][ T7288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 143.674323][ T7288] Call Trace: [ 143.677643][ T7288] [ 143.680599][ T7288] dump_stack_lvl+0x16c/0x1f0 [ 143.685321][ T7288] should_fail_ex+0x497/0x5b0 [ 143.690053][ T7288] _copy_to_user+0x32/0xd0 [ 143.694520][ T7288] simple_read_from_buffer+0xd0/0x160 [ 143.699944][ T7288] proc_fail_nth_read+0x198/0x270 [ 143.705015][ T7288] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 143.710614][ T7288] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 143.716215][ T7288] vfs_read+0x1df/0xbe0 [ 143.720411][ T7288] ? __fget_files+0x1fc/0x3a0 [ 143.725127][ T7288] ? __pfx___mutex_lock+0x10/0x10 [ 143.730204][ T7288] ? __pfx_vfs_read+0x10/0x10 [ 143.734927][ T7288] ? __fget_files+0x206/0x3a0 [ 143.739651][ T7288] ksys_read+0x12b/0x250 [ 143.743932][ T7288] ? __pfx_ksys_read+0x10/0x10 [ 143.748745][ T7288] do_syscall_64+0xcd/0x250 [ 143.753295][ T7288] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.759238][ T7288] RIP: 0033:0x7feb3d78473c [ 143.763689][ T7288] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 143.783334][ T7288] RSP: 002b:00007feb3e541030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 143.791794][ T7288] RAX: ffffffffffffffda RBX: 00007feb3d975fa0 RCX: 00007feb3d78473c [ 143.799795][ T7288] RDX: 000000000000000f RSI: 00007feb3e5410a0 RDI: 0000000000000004 [ 143.807785][ T7288] RBP: 00007feb3e541090 R08: 0000000000000000 R09: 0000000000000000 [ 143.815864][ T7288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 143.823855][ T7288] R13: 0000000000000000 R14: 00007feb3d975fa0 R15: 00007ffef6b8e4a8 [ 143.831875][ T7288] [ 145.935489][ T7309] netlink: 20 bytes leftover after parsing attributes in process `syz.3.407'. [ 149.451193][ T7349] netlink: 20 bytes leftover after parsing attributes in process `syz.1.418'. [ 149.813384][ T7356] netlink: 20 bytes leftover after parsing attributes in process `syz.0.419'. [ 152.624087][ T7401] netlink: 20 bytes leftover after parsing attributes in process `syz.3.431'. [ 152.825548][ T7404] netlink: 20 bytes leftover after parsing attributes in process `syz.1.432'. [ 154.391727][ T7432] netlink: 20 bytes leftover after parsing attributes in process `syz.3.442'. [ 156.678555][ T7456] netlink: 20 bytes leftover after parsing attributes in process `syz.2.445'. [ 156.688880][ T7454] netlink: 20 bytes leftover after parsing attributes in process `syz.1.453'. [ 158.760527][ T7504] netlink: 20 bytes leftover after parsing attributes in process `syz.0.458'. [ 161.523537][ T7547] netlink: 20 bytes leftover after parsing attributes in process `syz.1.469'. [ 163.856442][ T7597] netlink: 20 bytes leftover after parsing attributes in process `syz.2.482'. [ 163.980889][ T7591] netlink: 8 bytes leftover after parsing attributes in process `syz.1.479'. [ 164.563477][ T7605] netlink: 4 bytes leftover after parsing attributes in process `syz.1.484'. [ 164.975700][ T7622] netlink: 20 bytes leftover after parsing attributes in process `syz.3.491'. [ 165.342195][ T7637] netlink: 'syz.0.495': attribute type 33 has an invalid length. [ 165.360065][ T7637] netlink: 322 bytes leftover after parsing attributes in process `syz.0.495'. [ 166.298866][ T7674] netlink: 20 bytes leftover after parsing attributes in process `syz.2.501'. [ 167.487558][ T7712] netlink: 20 bytes leftover after parsing attributes in process `syz.0.513'. [ 167.573928][ T7716] netlink: 8 bytes leftover after parsing attributes in process `syz.2.515'. [ 167.974205][ T7731] CIFS: VFS: Invalid SecurityFlags: [ 167.974265][ T7731] CIFS: VFS: Invalid SecurityFlags: [ 167.974287][ T7731] CIFS: VFS: Invalid SecurityFlags: [ 167.974308][ T7731] CIFS: VFS: Invalid SecurityFlags: [ 167.974329][ T7731] CIFS: VFS: Invalid SecurityFlags: [ 167.974350][ T7731] CIFS: VFS: Invalid SecurityFlags: [ 167.974371][ T7731] CIFS: VFS: Invalid SecurityFlags: [ 167.974392][ T7731] CIFS: VFS: Invalid SecurityFlags: [ 167.974413][ T7731] CIFS: VFS: Invalid SecurityFlags: [ 167.974434][ T7731] CIFS: VFS: Invalid SecurityFlags: [ 168.625039][ T7753] netlink: 20 bytes leftover after parsing attributes in process `syz.2.525'. [ 168.951465][ T7759] netlink: 8 bytes leftover after parsing attributes in process `syz.0.527'. [ 170.720578][ T7806] netlink: 20 bytes leftover after parsing attributes in process `syz.1.537'. [ 171.691461][ T7840] Process accounting resumed [ 172.574685][ T7857] HfR: entered promiscuous mode [ 172.935984][ T7862] netlink: 20 bytes leftover after parsing attributes in process `syz.1.550'. [ 173.992287][ T7892] netlink: 20 bytes leftover after parsing attributes in process `syz.1.560'. [ 174.533742][ T7914] Format for deleting device is "id" (uint). [ 174.883816][ T7936] netlink: 20 bytes leftover after parsing attributes in process `syz.2.570'. [ 175.229694][ T7915] cgroup: fork rejected by pids controller in /syz3 [ 175.966448][ T29] audit: type=1800 audit(1734770839.483:2): pid=7994 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.578" name="lu_gp_id" dev="configfs" ino=17463 res=0 errno=0 [ 176.123963][ T7997] netlink: 20 bytes leftover after parsing attributes in process `syz.2.580'. [ 177.555444][ T8027] Dead loop on virtual device ip6_vti0, fix it urgently! [ 177.588992][ T8027] Dead loop on virtual device ip6_vti0, fix it urgently! [ 177.742124][ T8037] netlink: 20 bytes leftover after parsing attributes in process `syz.1.591'. [ 180.889638][ T8085] netlink: 20 bytes leftover after parsing attributes in process `syz.3.600'. [ 181.152476][ T8093] netlink: 'syz.2.603': attribute type 4 has an invalid length. [ 182.600647][ T8132] netlink: 20 bytes leftover after parsing attributes in process `syz.1.614'. [ 184.746744][ T8181] netlink: 20 bytes leftover after parsing attributes in process `syz.0.626'. [ 185.879626][ T8192] netlink: 20 bytes leftover after parsing attributes in process `syz.0.637'. [ 186.661203][ T8208] netlink: 20 bytes leftover after parsing attributes in process `syz.1.642'. [ 189.143526][ T8221] bridge0: port 3(syz_tun) entered blocking state [ 189.256063][ T8221] bridge0: port 3(syz_tun) entered disabled state [ 189.316995][ T8221] syz_tun: entered allmulticast mode [ 189.373288][ T8221] syz_tun: entered promiscuous mode [ 189.410033][ T8221] bridge0: port 3(syz_tun) entered blocking state [ 189.416925][ T8221] bridge0: port 3(syz_tun) entered forwarding state [ 189.685474][ T8258] netlink: 20 bytes leftover after parsing attributes in process `syz.2.648'. [ 190.161870][ T8264] netlink: 20 bytes leftover after parsing attributes in process `syz.0.658'. [ 190.761302][ T8271] netlink: 20 bytes leftover after parsing attributes in process `syz.0.661'. [ 192.385474][ T8294] bridge0: port 3(syz_tun) entered blocking state [ 192.395870][ T8294] bridge0: port 3(syz_tun) entered disabled state [ 192.406115][ T8294] syz_tun: entered allmulticast mode [ 192.441071][ T8294] syz_tun: entered promiscuous mode [ 192.451445][ T8294] bridge0: port 3(syz_tun) entered blocking state [ 192.458028][ T8294] bridge0: port 3(syz_tun) entered forwarding state [ 192.492746][ T8313] netlink: 20 bytes leftover after parsing attributes in process `syz.3.666'. [ 192.521550][ T8305] netlink: 28 bytes leftover after parsing attributes in process `syz.1.664'. [ 192.540395][ T8305] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 192.550078][ T8305] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 192.611102][ T8305] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 192.626775][ T8305] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 193.746363][ T8342] netlink: 20 bytes leftover after parsing attributes in process `syz.2.676'. [ 193.920876][ T8352] netlink: 330 bytes leftover after parsing attributes in process `syz.0.675'. [ 194.780381][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.786857][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.090192][ T8378] netlink: 20 bytes leftover after parsing attributes in process `syz.2.687'. [ 196.013297][ T8356] bridge0: port 3(syz_tun) entered blocking state [ 196.040172][ T8356] bridge0: port 3(syz_tun) entered disabled state [ 196.060991][ T8356] syz_tun: entered allmulticast mode [ 196.108578][ T8356] syz_tun: entered promiscuous mode [ 196.851928][ T5838] Bluetooth: hci0: command 0x0406 tx timeout [ 196.858117][ T5838] Bluetooth: hci2: command 0x0406 tx timeout [ 196.864363][ T5835] Bluetooth: hci3: command 0x0406 tx timeout [ 196.864389][ T54] Bluetooth: hci1: command 0x0406 tx timeout [ 197.075090][ T8414] netlink: 28 bytes leftover after parsing attributes in process `syz.0.696'. [ 197.142898][ T8416] netlink: 20 bytes leftover after parsing attributes in process `syz.3.697'. [ 197.395647][ T8424] netlink: 4 bytes leftover after parsing attributes in process `syz.1.700'. [ 197.706491][ T8433] syz.0.701 uses obsolete (PF_INET,SOCK_PACKET) [ 198.180449][ T8441] netlink: 28 bytes leftover after parsing attributes in process `syz.1.703'. [ 199.854567][ T8466] netlink: 20 bytes leftover after parsing attributes in process `syz.2.711'. [ 200.166231][ T8471] netlink: 28 bytes leftover after parsing attributes in process `syz.2.713'. [ 200.823131][ T8481] Process accounting resumed [ 200.828028][ T8481] kernel write not supported for file /mtrr (pid: 8481 comm: syz.1.714) [ 201.183752][ T8474] bridge0: port 3(syz_tun) entered blocking state [ 201.193153][ T8474] bridge0: port 3(syz_tun) entered disabled state [ 201.199797][ T8474] syz_tun: entered allmulticast mode [ 201.260307][ T8474] syz_tun: entered promiscuous mode [ 201.273007][ T8474] bridge0: port 3(syz_tun) entered blocking state [ 201.279623][ T8474] bridge0: port 3(syz_tun) entered forwarding state [ 201.520791][ T8498] netlink: 20 bytes leftover after parsing attributes in process `syz.2.722'. [ 202.020050][ T8512] netlink: 28 bytes leftover after parsing attributes in process `syz.0.725'. [ 203.245319][ T8536] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000010006 [ 203.500891][ T8539] netlink: 20 bytes leftover after parsing attributes in process `syz.2.733'. [ 203.716105][ T8544] FAULT_INJECTION: forcing a failure. [ 203.716105][ T8544] name failslab, interval 1, probability 0, space 0, times 0 [ 203.750012][ T8544] CPU: 1 UID: 0 PID: 8544 Comm: syz.2.735 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 203.760850][ T8544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 203.770932][ T8544] Call Trace: [ 203.774221][ T8544] [ 203.777159][ T8544] dump_stack_lvl+0x16c/0x1f0 [ 203.781862][ T8544] should_fail_ex+0x497/0x5b0 [ 203.786731][ T8544] ? fs_reclaim_acquire+0xae/0x150 [ 203.791860][ T8544] should_failslab+0xc2/0x120 [ 203.796562][ T8544] __kmalloc_node_noprof+0xd1/0x520 [ 203.801852][ T8544] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 203.807432][ T8544] ? __pfx_lock_release+0x10/0x10 [ 203.812500][ T8544] __kvmalloc_node_noprof+0xad/0x1a0 [ 203.817807][ T8544] seq_read_iter+0x82a/0x12b0 [ 203.822502][ T8544] seq_read+0x39f/0x4e0 [ 203.826662][ T8544] ? __pfx_seq_read+0x10/0x10 [ 203.831450][ T8544] ? __pfx_seq_read+0x10/0x10 [ 203.836151][ T8544] proc_reg_read+0x23d/0x330 [ 203.840783][ T8544] ? __pfx_proc_reg_read+0x10/0x10 [ 203.845917][ T8544] vfs_read+0x1df/0xbe0 [ 203.850087][ T8544] ? __fget_files+0x1fc/0x3a0 [ 203.854776][ T8544] ? __pfx___mutex_lock+0x10/0x10 [ 203.859819][ T8544] ? __pfx_vfs_read+0x10/0x10 [ 203.864518][ T8544] ? __fget_files+0x206/0x3a0 [ 203.869214][ T8544] ksys_read+0x12b/0x250 [ 203.873465][ T8544] ? __pfx_ksys_read+0x10/0x10 [ 203.878342][ T8544] do_syscall_64+0xcd/0x250 [ 203.882868][ T8544] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.888780][ T8544] RIP: 0033:0x7faaf8985d29 [ 203.893289][ T8544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.912925][ T8544] RSP: 002b:00007faaf67f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 203.921350][ T8544] RAX: ffffffffffffffda RBX: 00007faaf8b75fa0 RCX: 00007faaf8985d29 [ 203.929329][ T8544] RDX: 00000000000000d7 RSI: 0000000020000e80 RDI: 0000000000000003 [ 203.937308][ T8544] RBP: 00007faaf67f6090 R08: 0000000000000000 R09: 0000000000000000 [ 203.945285][ T8544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 203.953260][ T8544] R13: 0000000000000000 R14: 00007faaf8b75fa0 R15: 00007ffef722bc68 [ 203.961254][ T8544] [ 204.337149][ T8548] lo: entered allmulticast mode [ 204.365401][ T8548] netlink: 28 bytes leftover after parsing attributes in process `syz.1.736'. [ 204.752822][ T8557] netlink: 28 bytes leftover after parsing attributes in process `syz.3.737'. [ 204.818773][ T8547] lo: left allmulticast mode [ 205.245859][ T8570] netlink: 20 bytes leftover after parsing attributes in process `syz.0.744'. [ 205.255972][ T8572] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000010006 [ 205.631518][ T8581] FAULT_INJECTION: forcing a failure. [ 205.631518][ T8581] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 205.659972][ T8581] CPU: 1 UID: 0 PID: 8581 Comm: syz.2.748 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 205.670638][ T8581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 205.680733][ T8581] Call Trace: [ 205.684048][ T8581] [ 205.687012][ T8581] dump_stack_lvl+0x16c/0x1f0 [ 205.691740][ T8581] should_fail_ex+0x497/0x5b0 [ 205.696483][ T8581] _copy_to_iter+0x4a5/0x1400 [ 205.701224][ T8581] ? __pfx__copy_to_iter+0x10/0x10 [ 205.706384][ T8581] ? __virt_addr_valid+0x1a4/0x590 [ 205.711547][ T8581] ? __virt_addr_valid+0x5e/0x590 [ 205.716621][ T8581] ? __phys_addr_symbol+0x30/0x80 [ 205.721693][ T8581] ? __check_object_size+0x488/0x710 [ 205.727033][ T8581] seq_read_iter+0xd00/0x12b0 [ 205.731809][ T8581] seq_read+0x39f/0x4e0 [ 205.736005][ T8581] ? __pfx_seq_read+0x10/0x10 [ 205.740747][ T8581] ? __pfx_seq_read+0x10/0x10 [ 205.745470][ T8581] proc_reg_read+0x23d/0x330 [ 205.750102][ T8581] ? __pfx_proc_reg_read+0x10/0x10 [ 205.755261][ T8581] vfs_read+0x1df/0xbe0 [ 205.759468][ T8581] ? __fget_files+0x1fc/0x3a0 [ 205.764183][ T8581] ? __pfx___mutex_lock+0x10/0x10 [ 205.769228][ T8581] ? __pfx_vfs_read+0x10/0x10 [ 205.773924][ T8581] ? __fget_files+0x206/0x3a0 [ 205.778620][ T8581] ksys_read+0x12b/0x250 [ 205.782874][ T8581] ? __pfx_ksys_read+0x10/0x10 [ 205.787655][ T8581] do_syscall_64+0xcd/0x250 [ 205.792178][ T8581] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.798085][ T8581] RIP: 0033:0x7faaf8985d29 [ 205.802504][ T8581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.822296][ T8581] RSP: 002b:00007faaf67f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 205.830728][ T8581] RAX: ffffffffffffffda RBX: 00007faaf8b75fa0 RCX: 00007faaf8985d29 [ 205.838715][ T8581] RDX: 00000000000000d7 RSI: 0000000020000e80 RDI: 0000000000000003 [ 205.846708][ T8581] RBP: 00007faaf67f6090 R08: 0000000000000000 R09: 0000000000000000 [ 205.854703][ T8581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 205.862687][ T8581] R13: 0000000000000000 R14: 00007faaf8b75fa0 R15: 00007ffef722bc68 [ 205.870682][ T8581] [ 206.395087][ T8595] lo: entered allmulticast mode [ 206.410585][ T8595] netlink: 28 bytes leftover after parsing attributes in process `syz.2.753'. [ 207.015615][ T8594] lo: left allmulticast mode [ 207.208197][ T8609] netlink: 20 bytes leftover after parsing attributes in process `syz.1.755'. [ 207.250821][ T8606] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 209.161250][ T8641] lo: entered allmulticast mode [ 209.187759][ T8641] netlink: 28 bytes leftover after parsing attributes in process `syz.0.766'. [ 209.315027][ T8643] netlink: 330 bytes leftover after parsing attributes in process `syz.1.767'. [ 209.952963][ T8640] lo: left allmulticast mode [ 210.138227][ T8649] netlink: 20 bytes leftover after parsing attributes in process `syz.1.768'. [ 210.329263][ T8656] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000010006 [ 210.646532][ T8669] raw_sendmsg: syz.3.771 forgot to set AF_INET. Fix it! [ 211.381979][ T8683] netlink: 20 bytes leftover after parsing attributes in process `syz.2.778'. [ 211.651566][ T8686] netlink: 20 bytes leftover after parsing attributes in process `syz.2.788'. [ 211.668521][ T8688] lo: entered allmulticast mode [ 211.684580][ T8688] netlink: 28 bytes leftover after parsing attributes in process `syz.3.779'. [ 212.264069][ T8687] lo: left allmulticast mode [ 214.694590][ T8718] netlink: 20 bytes leftover after parsing attributes in process `syz.3.790'. [ 215.131597][ T8736] netlink: 8 bytes leftover after parsing attributes in process `syz.0.792'. [ 215.872113][ T8745] lo: entered allmulticast mode [ 215.878616][ T8745] netlink: 28 bytes leftover after parsing attributes in process `syz.2.793'. [ 216.110332][ T8746] lo: left allmulticast mode [ 216.392328][ T8759] netlink: 20 bytes leftover after parsing attributes in process `syz.2.800'. [ 216.621025][ T8766] netlink: 20 bytes leftover after parsing attributes in process `syz.2.810'. [ 216.846026][ T8772] netlink: 20 bytes leftover after parsing attributes in process `syz.1.812'. [ 217.166929][ T8780] netlink: 20 bytes leftover after parsing attributes in process `syz.1.815'. [ 217.522220][ T8785] netlink: 20 bytes leftover after parsing attributes in process `syz.1.817'. [ 219.634013][ T8825] netlink: 20 bytes leftover after parsing attributes in process `syz.2.820'. [ 220.181129][ T8828] netlink: 20 bytes leftover after parsing attributes in process `syz.1.829'. [ 221.081539][ T8843] netlink: 20 bytes leftover after parsing attributes in process `syz.1.832'. [ 223.602725][ T8887] netlink: 20 bytes leftover after parsing attributes in process `syz.0.836'. [ 224.155204][ T8900] netlink: 28 bytes leftover after parsing attributes in process `syz.3.843'. [ 224.165667][ T8900] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 224.175018][ T8900] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 224.405066][ T8900] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 224.413552][ T8900] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 225.029335][ T8920] netlink: 20 bytes leftover after parsing attributes in process `syz.3.849'. [ 225.789221][ T8936] netlink: 28 bytes leftover after parsing attributes in process `syz.3.854'. [ 225.801835][ T8934] netlink: 326 bytes leftover after parsing attributes in process `syz.2.853'. [ 225.866873][ T8936] bridge0: port 2(bridge_slave_1) entered disabled state [ 226.023127][ T8936] bridge_slave_1 (unregistering): left allmulticast mode [ 226.039995][ T8936] bridge_slave_1 (unregistering): left promiscuous mode [ 226.048813][ T8936] bridge0: port 2(bridge_slave_1) entered disabled state [ 226.426080][ T8953] netlink: 28 bytes leftover after parsing attributes in process `syz.2.858'. [ 226.441258][ T8953] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 226.454216][ T8953] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 226.517682][ T8953] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 226.527429][ T8953] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 226.662901][ T8963] netlink: 20 bytes leftover after parsing attributes in process `syz.3.860'. [ 227.113706][ T8971] netlink: 20 bytes leftover after parsing attributes in process `syz.2.871'. [ 227.495964][ T8978] netlink: 326 bytes leftover after parsing attributes in process `syz.1.865'. [ 228.667139][ T8997] netlink: 28 bytes leftover after parsing attributes in process `syz.1.873'. [ 228.668808][ T9001] netlink: 20 bytes leftover after parsing attributes in process `syz.2.874'. [ 228.881144][ T9012] openvswitch: netlink: IP tunnel dst address not specified [ 229.059654][ T9017] Process accounting resumed [ 229.251353][ T9026] netlink: 326 bytes leftover after parsing attributes in process `syz.3.878'. [ 230.077744][ T9048] netlink: 20 bytes leftover after parsing attributes in process `syz.3.884'. [ 231.335403][ T9079] __nla_validate_parse: 1 callbacks suppressed [ 231.335425][ T9079] netlink: 326 bytes leftover after parsing attributes in process `syz.0.892'. [ 231.413821][ T9079] netlink: 4 bytes leftover after parsing attributes in process `syz.0.892'. [ 231.455441][ T9083] netlink: 20 bytes leftover after parsing attributes in process `syz.2.895'. [ 232.613982][ T9133] netlink: 20 bytes leftover after parsing attributes in process `syz.3.907'. [ 233.504479][ T9159] netlink: 20 bytes leftover after parsing attributes in process `syz.1.918'. [ 233.600093][ T9164] netlink: 'syz.0.917': attribute type 8 has an invalid length. [ 233.622763][ T9164] netlink: 'syz.0.917': attribute type 9 has an invalid length. [ 233.672151][ T9164] netlink: 162 bytes leftover after parsing attributes in process `syz.0.917'. [ 233.701106][ T9145] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 234.370865][ T9183] openvswitch: netlink: IP tunnel dst address not specified [ 234.400107][ T9183] openvswitch: netlink: IP tunnel dst address not specified [ 234.893387][ T9204] netlink: 20 bytes leftover after parsing attributes in process `syz.1.928'. [ 238.823085][ T9259] netlink: 20 bytes leftover after parsing attributes in process `syz.2.939'. [ 239.362767][ T9275] netlink: 334 bytes leftover after parsing attributes in process `syz.3.943'. [ 240.746933][ T9303] netlink: 20 bytes leftover after parsing attributes in process `syz.3.950'. [ 244.180265][ T9349] netlink: 20 bytes leftover after parsing attributes in process `syz.1.960'. [ 245.992377][ T9380] netlink: 4 bytes leftover after parsing attributes in process `syz.2.968'. [ 246.511244][ T9397] netlink: 20 bytes leftover after parsing attributes in process `syz.3.971'. [ 249.625517][ T9434] netlink: 20 bytes leftover after parsing attributes in process `syz.1.980'. [ 251.212879][ T9473] : Can't lookup blockdev [ 251.323032][ T9478] netlink: 20 bytes leftover after parsing attributes in process `syz.0.992'. [ 252.761461][ T9493] openvswitch: netlink: Port -2134900732 exceeds max allowable 65535 [ 253.183959][ T9506] : Can't lookup blockdev [ 253.249176][ T9510] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1003'. [ 254.669897][ T9541] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1013'. [ 255.018732][ T9546] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1022'. [ 255.526823][ T9555] : Can't lookup blockdev [ 256.198210][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.209566][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.656727][ T9592] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1027'. [ 258.657515][ T9613] : Can't lookup blockdev [ 259.411334][ T9634] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1037'. [ 261.878796][ T9685] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1051'. [ 265.497607][ T9721] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1063'. [ 267.971254][ T9762] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1074'. [ 268.980365][ T9775] netlink: 306 bytes leftover after parsing attributes in process `syz.2.1080'. [ 269.643904][ T9794] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1084'. [ 270.996339][ T29] audit: type=1800 audit(4294967302.370:3): pid=9816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1090" name="members" dev="configfs" ino=23870 res=0 errno=0 [ 271.047654][ T29] audit: type=1800 audit(4294967302.370:4): pid=9816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1090" name="dbroot" dev="configfs" ino=23871 res=0 errno=0 [ 271.160070][ T9817] db_root: cannot open:  [ 271.480055][ T9823] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1094'. [ 272.962217][ T9856] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1104'. [ 274.121952][ T9891] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1114'. [ 274.372256][ T9899] bond0: option packets_per_slave: invalid value () [ 274.379345][ T9899] bond0: option packets_per_slave: allowed values 0 - 65535 [ 274.818738][ T9908] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1116'. [ 275.431918][ T9920] ptrace attach of "./syz-executor exec"[5827] was attempted by "./syz-executor exec"[9920] [ 275.921816][ T9927] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1124'. [ 276.090802][ T9910] syz.2.1119: vmalloc error: size 3411968, failed to allocated page array size 6664, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 276.113977][ T9910] CPU: 1 UID: 0 PID: 9910 Comm: syz.2.1119 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 276.124720][ T9910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 276.134818][ T9910] Call Trace: [ 276.138145][ T9910] [ 276.141117][ T9910] dump_stack_lvl+0x16c/0x1f0 [ 276.145850][ T9910] warn_alloc+0x24d/0x3a0 [ 276.150246][ T9910] ? __pfx_warn_alloc+0x10/0x10 [ 276.155166][ T9910] ? __get_vm_area_node+0x1b0/0x2f0 [ 276.160419][ T9910] ? __get_vm_area_node+0x1dc/0x2f0 [ 276.165681][ T9910] __vmalloc_node_range_noprof+0x1105/0x1530 [ 276.171723][ T9910] ? ip_set_sockfn_get+0x185/0xc50 [ 276.176892][ T9910] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 276.183281][ T9910] ? __get_vm_area_node+0x1b0/0x2f0 [ 276.188531][ T9910] ? __get_vm_area_node+0x1dc/0x2f0 [ 276.193779][ T9910] __vmalloc_node_range_noprof+0xd85/0x1530 [ 276.199696][ T9910] ? ip_set_sockfn_get+0x185/0xc50 [ 276.204821][ T9910] ? __pfx___lock_acquire+0x10/0x10 [ 276.210050][ T9910] ? ip_set_sockfn_get+0x185/0xc50 [ 276.215186][ T9910] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 276.221535][ T9910] ? apparmor_capable+0x114/0x1d0 [ 276.226580][ T9910] ? ip_set_sockfn_get+0x185/0xc50 [ 276.231707][ T9910] vmalloc_noprof+0x6b/0x90 [ 276.236226][ T9910] ? ip_set_sockfn_get+0x185/0xc50 [ 276.241356][ T9910] ip_set_sockfn_get+0x185/0xc50 [ 276.246312][ T9910] ? __pfx_lock_release+0x10/0x10 [ 276.251348][ T9910] ? __pfx_ip_set_sockfn_get+0x10/0x10 [ 276.256829][ T9910] ? nf_sockopt_find.constprop.0+0x221/0x290 [ 276.262848][ T9910] nf_getsockopt+0x79/0xe0 [ 276.267313][ T9910] ip_getsockopt+0x18e/0x1e0 [ 276.271928][ T9910] ? __pfx_ip_getsockopt+0x10/0x10 [ 276.277079][ T9910] ? __schedule+0xe60/0x5ad0 [ 276.281699][ T9910] ? __pfx___lock_acquire+0x10/0x10 [ 276.286929][ T9910] ipv6_getsockopt+0x230/0x280 [ 276.291714][ T9910] ? __pfx_ipv6_getsockopt+0x10/0x10 [ 276.297046][ T9910] ? __pfx_mark_lock+0x10/0x10 [ 276.301838][ T9910] sctp_getsockopt+0x1d2/0x7ae0 [ 276.306711][ T9910] ? hlock_class+0x4e/0x130 [ 276.311227][ T9910] ? mark_lock+0xb5/0xc60 [ 276.315577][ T9910] ? aa_label_sk_perm+0x19d/0x5a0 [ 276.320624][ T9910] ? __pfx_sctp_getsockopt+0x10/0x10 [ 276.325924][ T9910] ? __lock_acquire+0x15a9/0x3c40 [ 276.330980][ T9910] ? __pfx___lock_acquire+0x10/0x10 [ 276.336235][ T9910] ? find_held_lock+0x2d/0x110 [ 276.341053][ T9910] ? __might_fault+0x13b/0x190 [ 276.345848][ T9910] ? __pfx_lock_release+0x10/0x10 [ 276.350899][ T9910] ? trace_lock_acquire+0x14e/0x1f0 [ 276.356136][ T9910] ? lock_acquire+0x2f/0xb0 [ 276.360650][ T9910] ? __might_fault+0xe3/0x190 [ 276.365351][ T9910] ? __might_fault+0xe3/0x190 [ 276.370048][ T9910] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 276.375955][ T9910] ? do_sock_getsockopt+0x3fe/0x870 [ 276.381306][ T9910] do_sock_getsockopt+0x3fe/0x870 [ 276.386349][ T9910] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 276.391902][ T9910] ? lock_acquire+0x2f/0xb0 [ 276.396608][ T9910] ? __fget_files+0x40/0x3a0 [ 276.401228][ T9910] ? __fget_files+0x206/0x3a0 [ 276.405929][ T9910] __sys_getsockopt+0x12f/0x260 [ 276.410811][ T9910] __x64_sys_getsockopt+0xbd/0x160 [ 276.415935][ T9910] ? do_syscall_64+0x91/0x250 [ 276.420625][ T9910] ? lockdep_hardirqs_on+0x7c/0x110 [ 276.425834][ T9910] do_syscall_64+0xcd/0x250 [ 276.430354][ T9910] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.436359][ T9910] RIP: 0033:0x7faaf8985d29 [ 276.440780][ T9910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 276.460424][ T9910] RSP: 002b:00007faaf67f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 276.468850][ T9910] RAX: ffffffffffffffda RBX: 00007faaf8b75fa0 RCX: 00007faaf8985d29 [ 276.476826][ T9910] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 000000000000000b [ 276.484809][ T9910] RBP: 00007faaf8a01aa8 R08: 0000000020000040 R09: 0000000000000000 [ 276.492792][ T9910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.500769][ T9910] R13: 0000000000000000 R14: 00007faaf8b75fa0 R15: 00007ffef722bc68 [ 276.508760][ T9910] [ 276.668069][ T9910] Mem-Info: [ 276.674605][ T9910] active_anon:79234 inactive_anon:0 isolated_anon:0 [ 276.674605][ T9910] active_file:5360 inactive_file:51553 isolated_file:0 [ 276.674605][ T9910] unevictable:768 dirty:661 writeback:0 [ 276.674605][ T9910] slab_reclaimable:10872 slab_unreclaimable:93951 [ 276.674605][ T9910] mapped:36604 shmem:68470 pagetables:869 [ 276.674605][ T9910] sec_pagetables:0 bounce:0 [ 276.674605][ T9910] kernel_misc_reclaimable:0 [ 276.674605][ T9910] free:1211603 free_pcp:1997 free_cma:0 [ 276.786074][ T9910] Node 0 active_anon:321236kB inactive_anon:0kB active_file:21440kB inactive_file:206140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:147516kB dirty:2640kB writeback:0kB shmem:276944kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11000kB pagetables:3576kB sec_pagetables:0kB all_unreclaimable? no [ 276.840906][ T9910] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 276.929992][ T9910] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 276.977946][ T9910] lowmem_reserve[]: 0 2465 2466 0 0 [ 276.988075][ T9910] Node 0 DMA32 free:911716kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:324000kB inactive_anon:0kB active_file:21440kB inactive_file:203100kB unevictable:8736kB writepending:2640kB present:3129332kB managed:2551336kB mlocked:7200kB bounce:0kB free_pcp:11344kB local_pcp:10476kB free_cma:0kB [ 277.080891][ T9910] lowmem_reserve[]: 0 0 0 0 0 [ 277.090584][ T9910] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:840kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 277.150106][ T9910] lowmem_reserve[]: 0 0 0 0 0 [ 277.154904][ T9910] Node 1 Normal free:3902364kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:1792kB local_pcp:356kB free_cma:0kB [ 277.209966][ T9910] lowmem_reserve[]: 0 0 0 0 0 [ 277.227165][ T9910] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 277.264957][ T9910] Node 0 DMA32: 2*4kB (UE) 3*8kB (E) 3*16kB (UE) 21*32kB (UME) 15*64kB (UME) 368*128kB (UME) 260*256kB (UME) 59*512kB (UM) 18*1024kB (UME) 5*2048kB (UME) 181*4096kB (M) = 915632kB [ 277.316295][ T9910] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 277.340979][ T9910] Node 1 Normal: 79*4kB (UE) 18*8kB (UE) 35*16kB (UE) 207*32kB (UE) 107*64kB (UME) 32*128kB (UE) 15*256kB (UME) 10*512kB (UM) 4*1024kB (UME) 2*2048kB (ME) 944*4096kB (M) = 3902364kB [ 277.390025][ T9910] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 277.399665][ T9910] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 277.430009][ T9910] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 277.450611][ T9910] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 277.470042][ T9910] 131501 total pagecache pages [ 277.474932][ T9910] 0 pages in swap cache [ 277.479116][ T9910] Free swap = 124192kB [ 277.487367][ T9910] Total swap = 124996kB [ 277.497494][ T9910] 2097051 pages RAM [ 277.502860][ T9910] 0 pages HighMem/MovableOnly [ 277.518436][ T9910] 427367 pages reserved [ 277.528826][ T9910] 0 pages cma reserved [ 278.933666][ T29] audit: type=1800 audit(4294967310.310:5): pid=9965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1138" name="discovery_nqn" dev="configfs" ino=23345 res=0 errno=0 [ 279.067574][ T9970] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1135'. [ 281.267036][T10018] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1151'. [ 282.176073][ T29] audit: type=1800 audit(4294967313.550:6): pid=10048 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1160" name="discovery_nqn" dev="configfs" ino=24394 res=0 errno=0 [ 282.340589][T10057] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1163'. [ 282.947350][ T29] audit: type=1800 audit(4294967314.320:7): pid=10077 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1172" name="discovery_nqn" dev="configfs" ino=23456 res=0 errno=0 [ 283.295315][T10098] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1174'. [ 283.919740][T10107] FAULT_INJECTION: forcing a failure. [ 283.919740][T10107] name failslab, interval 1, probability 0, space 0, times 0 [ 283.968866][T10107] CPU: 1 UID: 0 PID: 10107 Comm: syz.3.1179 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 283.979787][T10107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 283.989875][T10107] Call Trace: [ 283.993184][T10107] [ 283.996150][T10107] dump_stack_lvl+0x16c/0x1f0 [ 284.000880][T10107] should_fail_ex+0x497/0x5b0 [ 284.005604][T10107] ? fs_reclaim_acquire+0xae/0x150 [ 284.010768][T10107] should_failslab+0xc2/0x120 [ 284.015516][T10107] __kmalloc_node_noprof+0xd1/0x520 [ 284.020775][T10107] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 284.026303][T10107] ? __pfx_lock_release+0x10/0x10 [ 284.031373][T10107] __kvmalloc_node_noprof+0xad/0x1a0 [ 284.036711][T10107] seq_read_iter+0x82a/0x12b0 [ 284.041453][T10107] seq_read+0x39f/0x4e0 [ 284.045656][T10107] ? __pfx_seq_read+0x10/0x10 [ 284.050402][T10107] ? __pfx_seq_read+0x10/0x10 [ 284.055129][T10107] proc_reg_read+0x23d/0x330 [ 284.059767][T10107] ? __pfx_proc_reg_read+0x10/0x10 [ 284.064933][T10107] vfs_read+0x1df/0xbe0 [ 284.069141][T10107] ? __fget_files+0x1fc/0x3a0 [ 284.073863][T10107] ? __pfx___mutex_lock+0x10/0x10 [ 284.078931][T10107] ? __pfx_vfs_read+0x10/0x10 [ 284.083669][T10107] ? __fget_files+0x206/0x3a0 [ 284.088410][T10107] ksys_read+0x12b/0x250 [ 284.092701][T10107] ? __pfx_ksys_read+0x10/0x10 [ 284.097537][T10107] do_syscall_64+0xcd/0x250 [ 284.102096][T10107] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.108038][T10107] RIP: 0033:0x7feb3d785d29 [ 284.112489][T10107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 284.132144][T10107] RSP: 002b:00007feb3e541038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 284.140607][T10107] RAX: ffffffffffffffda RBX: 00007feb3d975fa0 RCX: 00007feb3d785d29 [ 284.148616][T10107] RDX: 00000000000000d7 RSI: 0000000020000e80 RDI: 0000000000000003 [ 284.156625][T10107] RBP: 00007feb3e541090 R08: 0000000000000000 R09: 0000000000000000 [ 284.164633][T10107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 284.172642][T10107] R13: 0000000000000000 R14: 00007feb3d975fa0 R15: 00007ffef6b8e4a8 [ 284.180673][T10107] [ 284.443346][T10120] [U] [ 284.446358][T10120] [U] [ 284.449084][T10120] [U] [ 284.451813][T10120] [U] [ 284.480237][T10120] [U] [ 284.483011][T10120] [U] [ 284.485741][T10120] [U] [ 284.488468][T10120] [U] [ 284.501741][T10120] [U] [ 284.504492][T10120] [U] [ 284.507223][T10120] [U] [ 284.509943][T10120] [U] [ 284.530696][T10120] [U] [ 284.533463][T10120] [U] [ 284.536206][T10120] [U] [ 284.538937][T10120] [U] [ 284.566769][T10120] [U] [ 284.569539][T10120] [U] [ 284.572282][T10120] [U] [ 284.575006][T10120] [U] [ 284.596331][T10120] [U] [ 284.599087][T10120] [U] [ 284.601826][T10120] [U] [ 284.604646][T10120] [U] [ 284.618045][T10120] [U] [ 284.620821][T10120] [U] [ 284.623539][T10120] [U] [ 284.626243][T10120] [U] [ 284.652124][T10120] [U] [ 284.654892][T10120] [U] [ 284.657599][T10120] [U] [ 284.660309][T10120] [U] [ 284.680608][T10120] [U] [ 284.683376][T10120] [U] [ 284.686107][T10120] [U] [ 284.688826][T10120] [U] [ 284.711481][T10130] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1185'. [ 284.736991][T10120] [U] [ 284.739749][T10120] [U] [ 284.742467][T10120] [U] [ 284.745198][T10120] [U] [ 284.810457][T10120] [U] [ 284.813226][T10120] [U] [ 284.815947][T10120] [U] [ 284.818652][T10120] [U] [ 284.836675][T10120] [U] [ 284.839462][T10120] [U] [ 284.842201][T10120] [U] [ 284.844927][T10120] [U] [ 284.928554][T10120] [U] [ 284.931353][T10120] [U] [ 284.934089][T10120] [U] [ 284.936818][T10120] [U] [ 284.998845][T10120] [U] [ 285.001643][T10120] [U] [ 285.004377][T10120] [U] [ 285.007121][T10120] [U] [ 285.050101][T10120] [U] [ 285.052896][T10120] [U] [ 285.055623][T10120] [U] [ 285.058344][T10120] [U] [ 285.090603][T10120] [U] [ 285.093363][T10120] [U] [ 285.096064][T10120] [U] [ 285.098760][T10120] [U] [ 285.120832][T10120] [U] [ 285.123610][T10120] [U] [ 285.126356][T10120] [U] [ 285.129059][T10120] [U] [ 285.140672][T10120] [U] [ 285.143482][T10120] [U] [ 285.146212][T10120] [U] [ 285.148939][T10120] [U] [ 285.174232][T10120] [U] [ 285.177004][T10120] [U] [ 285.179728][T10120] [U] [ 285.182455][T10120] [U] [ 285.216424][T10120] [U] [ 285.219198][T10120] [U] [ 285.221935][T10120] [U] [ 285.224666][T10120] [U] [ 285.251604][T10120] [U] [ 285.254359][T10120] [U] [ 285.257062][T10120] [U] [ 285.259758][T10120] [U] [ 285.280239][T10120] [U] [ 285.283011][T10120] [U] [ 285.285744][T10120] [U] [ 285.288469][T10120] [U] [ 285.323059][T10120] [U] [ 285.325837][T10120] [U] [ 285.328566][T10120] [U] [ 285.331292][T10120] [U] [ 285.343688][T10120] [U] [ 285.346451][T10120] [U] [ 285.349176][T10120] [U] [ 285.351901][T10120] [U] [ 285.372059][T10120] [U] [ 285.374839][T10120] [U] [ 285.377561][T10120] [U] [ 285.380286][T10120] [U] [ 285.410254][T10120] [U] [ 285.413015][T10120] [U] [ 285.415744][T10120] [U] [ 285.418470][T10120] [U] [ 285.422173][T10120] [U] [ 285.424921][T10120] [U] [ 285.427657][T10120] [U] [ 285.430391][T10120] [U] [ 285.433388][T10120] [U] [ 285.436125][T10120] [U] [ 285.438850][T10120] [U] [ 285.441599][T10120] [U] [ 285.444616][T10120] [U] [ 285.447357][T10120] [U] [ 285.450086][T10120] [U] [ 285.452793][T10120] [U] [ 285.455721][T10120] [U] [ 285.458446][T10120] [U] [ 285.461150][T10120] [U] [ 285.463854][T10120] [U] [ 285.470248][T10123] [U] [ 285.487218][T10119] [U] [ 285.681582][T10144] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1195'. [ 286.244900][T10162] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1201'. [ 286.746780][T10180] FAULT_INJECTION: forcing a failure. [ 286.746780][T10180] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 286.760178][T10180] CPU: 1 UID: 0 PID: 10180 Comm: syz.2.1200 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 286.771078][T10180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 286.781146][T10180] Call Trace: [ 286.784430][T10180] [ 286.787365][T10180] dump_stack_lvl+0x16c/0x1f0 [ 286.792068][T10180] should_fail_ex+0x497/0x5b0 [ 286.796763][T10180] _copy_to_iter+0x4a5/0x1400 [ 286.801465][T10180] ? __pfx__copy_to_iter+0x10/0x10 [ 286.806592][T10180] ? __virt_addr_valid+0x1a4/0x590 [ 286.811721][T10180] ? __virt_addr_valid+0x5e/0x590 [ 286.816771][T10180] ? __phys_addr_symbol+0x30/0x80 [ 286.821821][T10180] ? __check_object_size+0x488/0x710 [ 286.827140][T10180] seq_read_iter+0xd00/0x12b0 [ 286.831878][T10180] seq_read+0x39f/0x4e0 [ 286.836051][T10180] ? __pfx_seq_read+0x10/0x10 [ 286.840763][T10180] ? __pfx_seq_read+0x10/0x10 [ 286.845451][T10180] proc_reg_read+0x23d/0x330 [ 286.850060][T10180] ? __pfx_proc_reg_read+0x10/0x10 [ 286.855274][T10180] vfs_read+0x1df/0xbe0 [ 286.859444][T10180] ? __fget_files+0x1fc/0x3a0 [ 286.864135][T10180] ? __pfx___mutex_lock+0x10/0x10 [ 286.869259][T10180] ? __pfx_vfs_read+0x10/0x10 [ 286.873962][T10180] ? __fget_files+0x206/0x3a0 [ 286.878669][T10180] ksys_read+0x12b/0x250 [ 286.882936][T10180] ? __pfx_ksys_read+0x10/0x10 [ 286.887757][T10180] do_syscall_64+0xcd/0x250 [ 286.892277][T10180] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.898182][T10180] RIP: 0033:0x7faaf8985d29 [ 286.902599][T10180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 286.922220][T10180] RSP: 002b:00007faaf67f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 286.930665][T10180] RAX: ffffffffffffffda RBX: 00007faaf8b75fa0 RCX: 00007faaf8985d29 [ 286.938642][T10180] RDX: 00000000000000d7 RSI: 0000000020000e80 RDI: 0000000000000003 [ 286.946625][T10180] RBP: 00007faaf67f6090 R08: 0000000000000000 R09: 0000000000000000 [ 286.954606][T10180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 286.962582][T10180] R13: 0000000000000000 R14: 00007faaf8b75fa0 R15: 00007ffef722bc68 [ 286.970577][T10180] [ 287.584697][T10202] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1208'. [ 288.241468][T10223] ip_vti0: entered allmulticast mode [ 288.797625][T10246] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1221'. [ 290.878918][T10280] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1231'. [ 292.406909][T10316] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1245'. [ 293.134891][T10300] Process accounting resumed [ 293.971475][T10341] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1258'. [ 294.680106][T10351] netlink: 'syz.3.1253': attribute type 10 has an invalid length. [ 296.047401][T10370] Process accounting resumed [ 296.170517][T10382] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1263'. [ 296.387874][T10393] netlink: 'syz.0.1267': attribute type 10 has an invalid length. [ 297.791822][T10408] bridge0: port 3(syz_tun) entered disabled state [ 297.825154][T10408] syz_tun (unregistering): left allmulticast mode [ 297.833386][T10408] syz_tun (unregistering): left promiscuous mode [ 297.839903][T10408] bridge0: port 3(syz_tun) entered disabled state [ 297.859630][T10408] smc: removing net device syz_tun with user defined pnetid ETHTOOL [ 298.021240][T10414] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1275'. [ 298.466309][T10423] netlink: 'syz.2.1277': attribute type 10 has an invalid length. [ 298.504908][ T5142] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 298.516755][ T5142] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 298.525613][ T5142] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 298.535191][ T5142] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 298.543812][ T5142] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 298.551612][ T5142] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 298.777967][T10425] chnl_net:caif_netlink_parms(): no params data found [ 298.927168][T10425] bridge0: port 1(bridge_slave_0) entered blocking state [ 298.944750][T10425] bridge0: port 1(bridge_slave_0) entered disabled state [ 298.980104][T10425] bridge_slave_0: entered allmulticast mode [ 299.001132][T10425] bridge_slave_0: entered promiscuous mode [ 299.028669][T10425] bridge0: port 2(bridge_slave_1) entered blocking state [ 299.050793][T10425] bridge0: port 2(bridge_slave_1) entered disabled state [ 299.058071][T10425] bridge_slave_1: entered allmulticast mode [ 299.081148][T10425] bridge_slave_1: entered promiscuous mode [ 299.167202][T10425] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 299.180787][T10425] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 299.318928][T10425] team0: Port device team_slave_0 added [ 299.346755][T10425] team0: Port device team_slave_1 added [ 299.460268][T10425] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 299.474963][T10425] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 299.525812][T10425] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 299.577561][T10425] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 299.589695][T10425] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 299.633780][T10425] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 299.741991][T10425] hsr_slave_0: entered promiscuous mode [ 299.764915][T10425] hsr_slave_1: entered promiscuous mode [ 299.789207][T10425] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 299.804552][T10425] Cannot create hsr debugfs directory [ 299.872233][T10456] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1285'. [ 300.019502][T10458] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1286'. [ 300.101792][T10460] netlink: 'syz.1.1287': attribute type 10 has an invalid length. [ 300.306436][T10425] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 300.373465][T10425] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 300.410174][T10425] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 300.438502][T10425] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 300.601826][T10425] 8021q: adding VLAN 0 to HW filter on device bond0 [ 300.646749][T10425] 8021q: adding VLAN 0 to HW filter on device team0 [ 300.670117][ T5830] Bluetooth: hci3: command tx timeout [ 300.680469][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 300.687616][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 300.737060][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 300.744309][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 301.193070][T10475] FAULT_INJECTION: forcing a failure. [ 301.193070][T10475] name failslab, interval 1, probability 0, space 0, times 0 [ 301.221094][T10475] CPU: 1 UID: 0 PID: 10475 Comm: syz.1.1292 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 301.231928][T10475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 301.242016][T10475] Call Trace: [ 301.245325][T10475] [ 301.248283][T10475] dump_stack_lvl+0x16c/0x1f0 [ 301.253015][T10475] should_fail_ex+0x497/0x5b0 [ 301.257738][T10475] ? fs_reclaim_acquire+0xae/0x150 [ 301.262899][T10475] should_failslab+0xc2/0x120 [ 301.267640][T10475] __kmalloc_node_noprof+0xd1/0x520 [ 301.272889][T10475] ? down_write+0x14e/0x200 [ 301.277480][T10475] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 301.282992][T10475] __kvmalloc_node_noprof+0xad/0x1a0 [ 301.288325][T10475] ? __pfx_cache_write_procfs+0x10/0x10 [ 301.293939][T10475] cache_write_procfs+0xd2/0x160 [ 301.298935][T10475] ? __pfx_cache_write_procfs+0x10/0x10 [ 301.304536][T10475] proc_reg_write+0x23d/0x330 [ 301.309261][T10475] ? __pfx_proc_reg_write+0x10/0x10 [ 301.314506][T10475] vfs_write+0x24c/0x1150 [ 301.319052][T10475] ? __fget_files+0x1fc/0x3a0 [ 301.323774][T10475] ? __pfx___mutex_lock+0x10/0x10 [ 301.328852][T10475] ? __pfx_vfs_write+0x10/0x10 [ 301.333695][T10475] ? __fget_files+0x206/0x3a0 [ 301.338431][T10475] ksys_write+0x12b/0x250 [ 301.342811][T10475] ? __pfx_ksys_write+0x10/0x10 [ 301.347725][T10475] do_syscall_64+0xcd/0x250 [ 301.352285][T10475] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.358240][T10475] RIP: 0033:0x7f7fc7585d29 [ 301.362700][T10475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 301.382359][T10475] RSP: 002b:00007f7fc8430038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 301.390998][T10475] RAX: ffffffffffffffda RBX: 00007f7fc7775fa0 RCX: 00007f7fc7585d29 [ 301.399011][T10475] RDX: 0000000000000098 RSI: 0000000000000000 RDI: 0000000000000003 [ 301.407023][T10475] RBP: 00007f7fc8430090 R08: 0000000000000000 R09: 0000000000000000 [ 301.415032][T10475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 301.417245][T10425] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 301.423023][T10475] R13: 0000000000000000 R14: 00007f7fc7775fa0 R15: 00007fff9e791c88 [ 301.423092][T10475] [ 301.499938][ T29] audit: type=1800 audit(4294967332.850:8): pid=10483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1293" name="dbroot" dev="configfs" ino=26693 res=0 errno=0 [ 301.719106][T10490] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1293'. [ 301.780080][T10490] hsr_slave_0: left promiscuous mode [ 301.821976][T10490] hsr_slave_1: left promiscuous mode [ 302.044406][T10425] veth0_vlan: entered promiscuous mode [ 302.076927][T10425] veth1_vlan: entered promiscuous mode [ 302.134141][T10425] veth0_macvtap: entered promiscuous mode [ 302.155710][T10425] veth1_macvtap: entered promiscuous mode [ 302.196636][T10425] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 302.232837][T10425] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 302.254373][T10425] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 302.272616][T10425] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 302.284954][T10499] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1296'. [ 302.294279][T10425] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 302.310042][T10425] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 302.462835][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 302.479624][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 302.526075][ T3014] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 302.550548][ T3014] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 302.786579][ T5830] Bluetooth: hci3: command tx timeout [ 303.657543][T10532] FAULT_INJECTION: forcing a failure. [ 303.657543][T10532] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 303.707206][T10532] CPU: 1 UID: 0 PID: 10532 Comm: syz.2.1305 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 303.718049][T10532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 303.728142][T10532] Call Trace: [ 303.731451][T10532] [ 303.734412][T10532] dump_stack_lvl+0x16c/0x1f0 [ 303.739148][T10532] should_fail_ex+0x497/0x5b0 [ 303.743882][T10532] _copy_from_user+0x2e/0xd0 [ 303.748529][T10532] cache_do_downcall+0x69/0x140 [ 303.753440][T10532] cache_write_procfs+0xf0/0x160 [ 303.758439][T10532] ? __pfx_cache_write_procfs+0x10/0x10 [ 303.764043][T10532] proc_reg_write+0x23d/0x330 [ 303.768770][T10532] ? __pfx_proc_reg_write+0x10/0x10 [ 303.774021][T10532] vfs_write+0x24c/0x1150 [ 303.778408][T10532] ? __fget_files+0x1fc/0x3a0 [ 303.783134][T10532] ? __pfx___mutex_lock+0x10/0x10 [ 303.788217][T10532] ? __pfx_vfs_write+0x10/0x10 [ 303.793027][T10532] ? __fget_files+0x206/0x3a0 [ 303.797812][T10532] ksys_write+0x12b/0x250 [ 303.802249][T10532] ? __pfx_ksys_write+0x10/0x10 [ 303.807116][T10532] do_syscall_64+0xcd/0x250 [ 303.811640][T10532] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 303.817546][T10532] RIP: 0033:0x7faaf8985d29 [ 303.821973][T10532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 303.841598][T10532] RSP: 002b:00007faaf67d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 303.850019][T10532] RAX: ffffffffffffffda RBX: 00007faaf8b76080 RCX: 00007faaf8985d29 [ 303.858030][T10532] RDX: 0000000000000098 RSI: 0000000000000000 RDI: 0000000000000003 [ 303.866028][T10532] RBP: 00007faaf67d5090 R08: 0000000000000000 R09: 0000000000000000 [ 303.874011][T10532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 303.881989][T10532] R13: 0000000000000000 R14: 00007faaf8b76080 R15: 00007ffef722bc68 [ 303.889980][T10532] [ 304.347767][T10537] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1306'. [ 304.746737][T10547] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1312'. [ 304.821810][T10550] netlink: zone id is out of range [ 304.827001][T10550] netlink: zone id is out of range [ 304.834668][ T5830] Bluetooth: hci3: command tx timeout [ 304.855317][T10550] netlink: zone id is out of range [ 304.870037][T10550] netlink: del zone limit has 8 unknown bytes [ 306.358011][T10571] FAULT_INJECTION: forcing a failure. [ 306.358011][T10571] name failslab, interval 1, probability 0, space 0, times 0 [ 306.371442][T10571] CPU: 1 UID: 0 PID: 10571 Comm: syz.2.1318 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 306.382259][T10571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 306.392520][T10571] Call Trace: [ 306.395834][T10571] [ 306.398797][T10571] dump_stack_lvl+0x16c/0x1f0 [ 306.403531][T10571] should_fail_ex+0x497/0x5b0 [ 306.408255][T10571] ? fs_reclaim_acquire+0xae/0x150 [ 306.413416][T10571] should_failslab+0xc2/0x120 [ 306.418147][T10571] __kmalloc_node_track_caller_noprof+0xcf/0x520 [ 306.424620][T10571] ? rsi_parse+0x43b/0x7c0 [ 306.429096][T10571] kmemdup_noprof+0x29/0x60 [ 306.433652][T10571] rsi_parse+0x43b/0x7c0 [ 306.437954][T10571] ? __pfx_rsi_parse+0x10/0x10 [ 306.442786][T10571] ? find_held_lock+0x2d/0x110 [ 306.447624][T10571] ? __might_fault+0xe3/0x190 [ 306.452354][T10571] ? __might_fault+0xe3/0x190 [ 306.457070][T10571] cache_do_downcall+0xdc/0x140 [ 306.461940][T10571] cache_write_procfs+0xf0/0x160 [ 306.466901][T10571] ? __pfx_cache_write_procfs+0x10/0x10 [ 306.472465][T10571] proc_reg_write+0x23d/0x330 [ 306.477185][T10571] ? __pfx_proc_reg_write+0x10/0x10 [ 306.482414][T10571] vfs_write+0x24c/0x1150 [ 306.486770][T10571] ? __fget_files+0x1fc/0x3a0 [ 306.491477][T10571] ? __pfx___mutex_lock+0x10/0x10 [ 306.496520][T10571] ? __pfx_vfs_write+0x10/0x10 [ 306.501307][T10571] ? __fget_files+0x206/0x3a0 [ 306.506012][T10571] ksys_write+0x12b/0x250 [ 306.510357][T10571] ? __pfx_ksys_write+0x10/0x10 [ 306.515234][T10571] do_syscall_64+0xcd/0x250 [ 306.519765][T10571] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 306.525679][T10571] RIP: 0033:0x7faaf8985d29 [ 306.530105][T10571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 306.549731][T10571] RSP: 002b:00007faaf67f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 306.558157][T10571] RAX: ffffffffffffffda RBX: 00007faaf8b75fa0 RCX: 00007faaf8985d29 [ 306.566137][T10571] RDX: 0000000000000098 RSI: 0000000000000000 RDI: 0000000000000003 [ 306.574123][T10571] RBP: 00007faaf67f6090 R08: 0000000000000000 R09: 0000000000000000 [ 306.582103][T10571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 306.590092][T10571] R13: 0000000000000000 R14: 00007faaf8b75fa0 R15: 00007ffef722bc68 [ 306.598109][T10571] [ 306.888671][T10576] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1320'. [ 306.910646][ T5830] Bluetooth: hci3: command tx timeout [ 307.648185][T10576] team0 (unregistering): Port device team_slave_0 removed [ 307.687950][T10576] team0 (unregistering): Port device team_slave_1 removed [ 308.076236][T10598] Failed to create region snapshot [ 309.144405][T10613] Failed to create region snapshot [ 309.341589][T10618] FAULT_INJECTION: forcing a failure. [ 309.341589][T10618] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 309.380590][T10618] CPU: 1 UID: 0 PID: 10618 Comm: syz.2.1334 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 309.391444][T10618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 309.401542][T10618] Call Trace: [ 309.404842][T10618] [ 309.407799][T10618] dump_stack_lvl+0x16c/0x1f0 [ 309.412521][T10618] should_fail_ex+0x497/0x5b0 [ 309.417242][T10618] _copy_to_user+0x32/0xd0 [ 309.421706][T10618] simple_read_from_buffer+0xd0/0x160 [ 309.427146][T10618] proc_fail_nth_read+0x198/0x270 [ 309.432228][T10618] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 309.437835][T10618] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 309.443436][T10618] vfs_read+0x1df/0xbe0 [ 309.447632][T10618] ? __fget_files+0x1fc/0x3a0 [ 309.452353][T10618] ? __pfx___mutex_lock+0x10/0x10 [ 309.457420][T10618] ? __pfx_vfs_read+0x10/0x10 [ 309.462148][T10618] ? __fget_files+0x206/0x3a0 [ 309.466885][T10618] ksys_read+0x12b/0x250 [ 309.471176][T10618] ? __pfx_ksys_read+0x10/0x10 [ 309.475992][T10618] do_syscall_64+0xcd/0x250 [ 309.480546][T10618] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 309.486494][T10618] RIP: 0033:0x7faaf898473c [ 309.490950][T10618] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 309.510595][T10618] RSP: 002b:00007faaf67f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 309.519054][T10618] RAX: ffffffffffffffda RBX: 00007faaf8b75fa0 RCX: 00007faaf898473c [ 309.527066][T10618] RDX: 000000000000000f RSI: 00007faaf67f60a0 RDI: 000000000000000b [ 309.535087][T10618] RBP: 00007faaf67f6090 R08: 0000000000000000 R09: 0000000000000000 [ 309.543096][T10618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 309.551106][T10618] R13: 0000000000000000 R14: 00007faaf8b75fa0 R15: 00007ffef722bc68 [ 309.559133][T10618] [ 309.791121][T10626] Failed to create region snapshot [ 310.712194][T10649] Failed to create region snapshot [ 310.881034][T10651] Failed to create region snapshot [ 310.979634][T10656] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1345'. [ 311.225748][T10658] Failed to create region snapshot [ 311.502757][T10661] Failed to create region snapshot [ 311.969164][T10679] Failed to create region snapshot [ 312.114967][T10689] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1357'. [ 312.818686][T10696] Failed to create region snapshot [ 313.018607][T10708] Failed to create region snapshot [ 313.232329][T10719] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1367'. [ 313.411087][T10724] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1370'. [ 313.674211][T10731] Failed to create region snapshot [ 314.412080][T10750] Failed to create region snapshot [ 314.576278][T10757] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1381'. [ 314.859278][T10760] Failed to create region snapshot [ 315.809046][T10784] Failed to create region snapshot [ 315.887227][T10782] Failed to create region snapshot [ 316.723979][T10808] program syz.2.1400 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 317.634351][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.640962][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 319.234750][T10851] sg_read: process 1368 (syz.2.1416) changed security contexts after opening file descriptor, this is not allowed. [ 319.687723][T10859] Failed to create region snapshot [ 320.446315][T10884] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1425'. [ 321.381500][T10888] FAULT_INJECTION: forcing a failure. [ 321.381500][T10888] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 321.415689][T10888] CPU: 1 UID: 0 PID: 10888 Comm: syz.2.1427 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 321.426695][T10888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 321.436800][T10888] Call Trace: [ 321.440108][T10888] [ 321.443069][T10888] dump_stack_lvl+0x16c/0x1f0 [ 321.447792][T10888] should_fail_ex+0x497/0x5b0 [ 321.452536][T10888] _copy_from_user+0x2e/0xd0 [ 321.457224][T10888] kern_select+0xc1/0x1e0 [ 321.461603][T10888] ? __pfx_kern_select+0x10/0x10 [ 321.466589][T10888] ? __pfx_ksys_write+0x10/0x10 [ 321.471482][T10888] __x64_sys_select+0xbd/0x160 [ 321.476288][T10888] ? do_syscall_64+0x91/0x250 [ 321.481013][T10888] ? lockdep_hardirqs_on+0x7c/0x110 [ 321.486258][T10888] do_syscall_64+0xcd/0x250 [ 321.490809][T10888] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.496748][T10888] RIP: 0033:0x7faaf8985d29 [ 321.501199][T10888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 321.521753][T10888] RSP: 002b:00007faaf67f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 321.530459][T10888] RAX: ffffffffffffffda RBX: 00007faaf8b75fa0 RCX: 00007faaf8985d29 [ 321.538446][T10888] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009 [ 321.546457][T10888] RBP: 00007faaf67f6090 R08: 00000000200002c0 R09: 0000000000000000 [ 321.554661][T10888] R10: 0000000020000240 R11: 0000000000000246 R12: 0000000000000001 [ 321.562653][T10888] R13: 0000000000000000 R14: 00007faaf8b75fa0 R15: 00007ffef722bc68 [ 321.570645][T10888] [ 322.200053][T10905] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1440'. [ 322.311122][T10908] program syz.4.1431 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 323.792588][T10933] Process accounting paused [ 323.792714][T10943] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1444'. [ 323.936686][T10946] program syz.1.1446 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 325.663856][T10971] delete_channel: no stack [ 326.264974][T10935] Process accounting paused [ 326.335851][T10986] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1456'. [ 328.505453][T11014] FAULT_INJECTION: forcing a failure. [ 328.505453][T11014] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 328.550016][T11014] CPU: 1 UID: 0 PID: 11014 Comm: syz.2.1467 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 328.560848][T11014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 328.570946][T11014] Call Trace: [ 328.574246][T11014] [ 328.577179][T11014] dump_stack_lvl+0x16c/0x1f0 [ 328.581877][T11014] should_fail_ex+0x497/0x5b0 [ 328.586571][T11014] _copy_from_user+0x2e/0xd0 [ 328.591176][T11014] core_sys_select+0x34f/0xa10 [ 328.595955][T11014] ? __pfx_core_sys_select+0x10/0x10 [ 328.601282][T11014] ? read_tsc+0x9/0x20 [ 328.605360][T11014] ? ktime_get_ts64+0x256/0x400 [ 328.610243][T11014] kern_select+0x15e/0x1e0 [ 328.614685][T11014] ? __pfx_kern_select+0x10/0x10 [ 328.619661][T11014] ? __pfx_ksys_write+0x10/0x10 [ 328.624540][T11014] __x64_sys_select+0xbd/0x160 [ 328.629334][T11014] ? do_syscall_64+0x91/0x250 [ 328.634027][T11014] ? lockdep_hardirqs_on+0x7c/0x110 [ 328.639239][T11014] do_syscall_64+0xcd/0x250 [ 328.643758][T11014] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 328.649667][T11014] RIP: 0033:0x7faaf8985d29 [ 328.654086][T11014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 328.673704][T11014] RSP: 002b:00007faaf67f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 328.682128][T11014] RAX: ffffffffffffffda RBX: 00007faaf8b75fa0 RCX: 00007faaf8985d29 [ 328.690101][T11014] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009 [ 328.698071][T11014] RBP: 00007faaf67f6090 R08: 00000000200002c0 R09: 0000000000000000 [ 328.706052][T11014] R10: 0000000020000240 R11: 0000000000000246 R12: 0000000000000001 [ 328.714035][T11014] R13: 0000000000000000 R14: 00007faaf8b75fa0 R15: 00007ffef722bc68 [ 328.722029][T11014] [ 328.972010][T11019] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1468'. [ 329.961210][T11038] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1477'. [ 330.132809][T11048] Failed to create region snapshot [ 330.143124][T11045] Invalid ELF header magic: != ELF [ 330.257235][T11050] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1480'. [ 330.551093][T11057] FAULT_INJECTION: forcing a failure. [ 330.551093][T11057] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 330.576559][T11057] CPU: 1 UID: 0 PID: 11057 Comm: syz.2.1483 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 330.587395][T11057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 330.597747][T11057] Call Trace: [ 330.601054][T11057] [ 330.604023][T11057] dump_stack_lvl+0x16c/0x1f0 [ 330.608757][T11057] should_fail_ex+0x497/0x5b0 [ 330.613488][T11057] ? fs_reclaim_acquire+0xae/0x150 [ 330.618652][T11057] should_fail_alloc_page+0xe7/0x130 [ 330.623991][T11057] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 330.630245][T11057] __alloc_pages_noprof+0x190/0x25b0 [ 330.635581][T11057] ? __pfx_mark_lock+0x10/0x10 [ 330.640398][T11057] ? find_held_lock+0x2d/0x110 [ 330.645218][T11057] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 330.651024][T11057] ? __pfx___lock_acquire+0x10/0x10 [ 330.656280][T11057] ? __pfx___lock_acquire+0x10/0x10 [ 330.661539][T11057] ___kmalloc_large_node+0x84/0x1b0 [ 330.666792][T11057] __kmalloc_large_noprof+0x1c/0x70 [ 330.672044][T11057] nsim_dev_take_snapshot_write+0xa7/0x1f0 [ 330.677905][T11057] ? __pfx_nsim_dev_take_snapshot_write+0x10/0x10 [ 330.684463][T11057] ? rcu_is_watching+0x12/0xc0 [ 330.689275][T11057] ? trace_lock_acquire+0x14e/0x1f0 [ 330.694526][T11057] full_proxy_write+0xfb/0x1b0 [ 330.699357][T11057] ? __pfx_full_proxy_write+0x10/0x10 [ 330.704782][T11057] vfs_write+0x24c/0x1150 [ 330.709167][T11057] ? __fget_files+0x1fc/0x3a0 [ 330.713897][T11057] ? __pfx___mutex_lock+0x10/0x10 [ 330.718975][T11057] ? __pfx_vfs_write+0x10/0x10 [ 330.723799][T11057] ? __fget_files+0x206/0x3a0 [ 330.728531][T11057] ksys_write+0x12b/0x250 [ 330.732901][T11057] ? __pfx_ksys_write+0x10/0x10 [ 330.737804][T11057] do_syscall_64+0xcd/0x250 [ 330.742358][T11057] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 330.748315][T11057] RIP: 0033:0x7faaf8985d29 [ 330.752768][T11057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 330.772418][T11057] RSP: 002b:00007faaf67f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 330.780876][T11057] RAX: ffffffffffffffda RBX: 00007faaf8b75fa0 RCX: 00007faaf8985d29 [ 330.788887][T11057] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 330.796896][T11057] RBP: 00007faaf67f6090 R08: 0000000000000000 R09: 0000000000000000 [ 330.804909][T11057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 330.812919][T11057] R13: 0000000000000000 R14: 00007faaf8b75fa0 R15: 00007ffef722bc68 [ 330.820947][T11057] [ 331.626973][T11072] FAULT_INJECTION: forcing a failure. [ 331.626973][T11072] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 331.689995][T11072] CPU: 1 UID: 0 PID: 11072 Comm: syz.2.1488 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 331.700841][T11072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 331.710938][T11072] Call Trace: [ 331.714256][T11072] [ 331.717226][T11072] dump_stack_lvl+0x16c/0x1f0 [ 331.721955][T11072] should_fail_ex+0x497/0x5b0 [ 331.726673][T11072] _copy_to_user+0x32/0xd0 [ 331.731121][T11072] poll_select_finish+0x33b/0x6b0 [ 331.736175][T11072] ? __pfx_poll_select_finish+0x10/0x10 [ 331.741744][T11072] ? read_tsc+0x9/0x20 [ 331.745832][T11072] ? ktime_get_ts64+0x256/0x400 [ 331.750703][T11072] kern_select+0x16f/0x1e0 [ 331.755133][T11072] ? __pfx_kern_select+0x10/0x10 [ 331.760089][T11072] ? __pfx_ksys_write+0x10/0x10 [ 331.764956][T11072] __x64_sys_select+0xbd/0x160 [ 331.769728][T11072] ? do_syscall_64+0x91/0x250 [ 331.774427][T11072] ? lockdep_hardirqs_on+0x7c/0x110 [ 331.779651][T11072] do_syscall_64+0xcd/0x250 [ 331.784183][T11072] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 331.790106][T11072] RIP: 0033:0x7faaf8985d29 [ 331.794570][T11072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 331.814201][T11072] RSP: 002b:00007faaf67f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 331.822661][T11072] RAX: ffffffffffffffda RBX: 00007faaf8b75fa0 RCX: 00007faaf8985d29 [ 331.830637][T11072] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009 [ 331.838614][T11072] RBP: 00007faaf67f6090 R08: 00000000200002c0 R09: 0000000000000000 [ 331.846592][T11072] R10: 0000000020000240 R11: 0000000000000246 R12: 0000000000000001 [ 331.854580][T11072] R13: 0000000000000000 R14: 00007faaf8b75fa0 R15: 00007ffef722bc68 [ 331.862570][T11072] [ 332.298858][T11082] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1491'. [ 332.634723][T11089] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1500'. [ 332.942487][T11097] Invalid ELF header magic: != ELF [ 334.168410][T11107] Failed to create region snapshot [ 334.756141][T11116] qrtr: Invalid version 47 [ 334.903476][T11123] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1507'. [ 335.676848][T11141] FAULT_INJECTION: forcing a failure. [ 335.676848][T11141] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 335.711750][T11141] CPU: 0 UID: 0 PID: 11141 Comm: syz.1.1513 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 335.722581][T11141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 335.732671][T11141] Call Trace: [ 335.735997][T11141] [ 335.738963][T11141] dump_stack_lvl+0x16c/0x1f0 [ 335.743706][T11141] should_fail_ex+0x497/0x5b0 [ 335.748437][T11141] _copy_to_user+0x32/0xd0 [ 335.752987][T11141] poll_select_finish+0x33b/0x6b0 [ 335.758059][T11141] ? __pfx_poll_select_finish+0x10/0x10 [ 335.763668][T11141] ? read_tsc+0x9/0x20 [ 335.767781][T11141] ? ktime_get_ts64+0x256/0x400 [ 335.772722][T11141] kern_select+0x16f/0x1e0 [ 335.777181][T11141] ? __pfx_kern_select+0x10/0x10 [ 335.782186][T11141] ? __pfx_ksys_write+0x10/0x10 [ 335.787088][T11141] __x64_sys_select+0xbd/0x160 [ 335.791895][T11141] ? do_syscall_64+0x91/0x250 [ 335.796626][T11141] ? lockdep_hardirqs_on+0x7c/0x110 [ 335.801872][T11141] do_syscall_64+0xcd/0x250 [ 335.806428][T11141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 335.812377][T11141] RIP: 0033:0x7f7fc7585d29 [ 335.816827][T11141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 335.836476][T11141] RSP: 002b:00007f7fc8430038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 335.844935][T11141] RAX: ffffffffffffffda RBX: 00007f7fc7775fa0 RCX: 00007f7fc7585d29 [ 335.852942][T11141] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009 [ 335.860950][T11141] RBP: 00007f7fc8430090 R08: 00000000200002c0 R09: 0000000000000000 [ 335.868962][T11141] R10: 0000000020000240 R11: 0000000000000246 R12: 0000000000000001 [ 335.876980][T11141] R13: 0000000000000000 R14: 00007f7fc7775fa0 R15: 00007fff9e791c88 [ 335.885019][T11141] [ 335.888085][ C0] vkms_vblank_simulate: vblank timer overrun [ 337.244107][T11153] Invalid ELF header magic: != ELF [ 337.361179][T11165] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1517'. [ 338.860507][T11182] Failed to create region snapshot [ 339.353530][T11185] binder: 11184:11185 ioctl 8906 3 returned -22 [ 339.653217][T11193] Failed to create region snapshot [ 339.671095][T11193] Failed to create region snapshot [ 339.681464][T11193] Failed to create region snapshot [ 339.741260][T11196] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1528'. [ 339.844203][T11198] FAULT_INJECTION: forcing a failure. [ 339.844203][T11198] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 339.890318][T11198] CPU: 1 UID: 0 PID: 11198 Comm: syz.2.1529 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 339.901147][T11198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 339.911216][T11198] Call Trace: [ 339.914508][T11198] [ 339.917442][T11198] dump_stack_lvl+0x16c/0x1f0 [ 339.922137][T11198] should_fail_ex+0x497/0x5b0 [ 339.926831][T11198] _copy_to_user+0x32/0xd0 [ 339.931271][T11198] simple_read_from_buffer+0xd0/0x160 [ 339.936663][T11198] proc_fail_nth_read+0x198/0x270 [ 339.941708][T11198] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 339.947286][T11198] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 339.952848][T11198] vfs_read+0x1df/0xbe0 [ 339.957017][T11198] ? __fget_files+0x1fc/0x3a0 [ 339.961708][T11198] ? __pfx___mutex_lock+0x10/0x10 [ 339.966752][T11198] ? __pfx_vfs_read+0x10/0x10 [ 339.971461][T11198] ? __fget_files+0x206/0x3a0 [ 339.976159][T11198] ksys_read+0x12b/0x250 [ 339.980411][T11198] ? __pfx_ksys_read+0x10/0x10 [ 339.985193][T11198] do_syscall_64+0xcd/0x250 [ 339.989717][T11198] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.995626][T11198] RIP: 0033:0x7faaf898473c [ 340.000047][T11198] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 340.019666][T11198] RSP: 002b:00007faaf67f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 340.028104][T11198] RAX: ffffffffffffffda RBX: 00007faaf8b75fa0 RCX: 00007faaf898473c [ 340.036084][T11198] RDX: 000000000000000f RSI: 00007faaf67f60a0 RDI: 0000000000000009 [ 340.044060][T11198] RBP: 00007faaf67f6090 R08: 0000000000000000 R09: 0000000000000000 [ 340.052038][T11198] R10: 0000000020000240 R11: 0000000000000246 R12: 0000000000000001 [ 340.060021][T11198] R13: 0000000000000000 R14: 00007faaf8b75fa0 R15: 00007ffef722bc68 [ 340.068012][T11198] [ 341.003270][T11219] Invalid ELF header magic: != ELF [ 341.305516][T11230] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1540'. [ 341.453229][T11237] Failed to create region snapshot [ 341.689443][T11244] Failed to create region snapshot [ 342.730295][T11268] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1551'. [ 345.046604][T11295] Invalid ELF header magic: != ELF [ 346.731832][T11332] Failed to create region snapshot [ 347.543098][T11351] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1577'. [ 351.430833][T11449] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1607'. [ 354.384105][T11514] nbd: couldn't find a device at index 0 [ 354.692375][T11516] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1626'. [ 357.540074][T11586] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1647'. [ 357.663171][T11593] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1649'. [ 357.691250][T11593] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1649'. [ 357.721934][T11593] netlink: 130 bytes leftover after parsing attributes in process `syz.2.1649'. [ 359.544302][T11637] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1664'. [ 361.051568][T11677] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1676'. [ 361.250700][T11680] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1678'. [ 362.459748][T11717] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1689'. [ 363.903587][T11754] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1700'. [ 364.090061][T11757] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1701'. [ 365.057504][T11772] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1710'. [ 366.956299][T11822] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1718'. [ 371.884553][T11888] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1729'. [ 371.910175][T11890] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1735'. [ 373.132535][T11926] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1746'. [ 373.722961][T11945] Invalid ELF header magic: != ELF [ 374.631911][T11955] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 375.018691][T11963] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1759'. [ 376.472952][T11993] [ 376.475339][T11993] ====================================================== [ 376.482376][T11993] WARNING: possible circular locking dependency detected [ 376.489860][T11993] 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 Not tainted [ 376.496996][T11993] ------------------------------------------------------ [ 376.504034][T11993] syz.0.1765/11993 is trying to acquire lock: [ 376.510111][T11993] ffff888030252d28 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_switch_to_fallback+0x2d/0xa00 [ 376.520873][T11993] [ 376.520873][T11993] but task is already holding lock: [ 376.528261][T11993] ffff8880302524d8 (sk_lock-AF_INET){+.+.}-{0:0}, at: smc_setsockopt+0x32c/0xc00 [ 376.537471][T11993] [ 376.537471][T11993] which lock already depends on the new lock. [ 376.537471][T11993] [ 376.547898][T11993] [ 376.547898][T11993] the existing dependency chain (in reverse order) is: [ 376.556933][T11993] [ 376.556933][T11993] -> #2 (sk_lock-AF_INET){+.+.}-{0:0}: [ 376.564626][T11993] lock_sock_nested+0x3a/0xf0 [ 376.569878][T11993] sockopt_lock_sock+0x54/0x70 [ 376.575211][T11993] do_ip_getsockopt+0x115c/0x2bf0 [ 376.580806][T11993] ip_getsockopt+0x9c/0x1e0 [ 376.585871][T11993] raw_getsockopt+0x4d/0x1e0 [ 376.591021][T11993] do_sock_getsockopt+0x3fe/0x870 [ 376.596602][T11993] __sys_getsockopt+0x12f/0x260 [ 376.602028][T11993] __x64_sys_getsockopt+0xbd/0x160 [ 376.607714][T11993] do_syscall_64+0xcd/0x250 [ 376.612786][T11993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.619247][T11993] [ 376.619247][T11993] -> #1 (rtnl_mutex){+.+.}-{4:4}: [ 376.626505][T11993] __mutex_lock+0x19b/0xa60 [ 376.631572][T11993] do_ip_setsockopt+0xf9/0x38c0 [ 376.636982][T11993] ip_setsockopt+0x59/0xf0 [ 376.641957][T11993] ipv6_setsockopt+0x155/0x170 [ 376.647285][T11993] tcp_setsockopt+0xa4/0x100 [ 376.652436][T11993] smc_setsockopt+0x1b4/0xc00 [ 376.657692][T11993] do_sock_setsockopt+0x222/0x480 [ 376.663272][T11993] __sys_setsockopt+0x1a0/0x230 [ 376.668701][T11993] __x64_sys_setsockopt+0xbd/0x160 [ 376.674377][T11993] do_syscall_64+0xcd/0x250 [ 376.679442][T11993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.685900][T11993] [ 376.685900][T11993] -> #0 (&smc->clcsock_release_lock){+.+.}-{4:4}: [ 376.694545][T11993] __lock_acquire+0x249e/0x3c40 [ 376.699966][T11993] lock_acquire.part.0+0x11b/0x380 [ 376.705634][T11993] __mutex_lock+0x19b/0xa60 [ 376.710704][T11993] smc_switch_to_fallback+0x2d/0xa00 [ 376.716558][T11993] smc_setsockopt+0xa7b/0xc00 [ 376.721799][T11993] do_sock_setsockopt+0x222/0x480 [ 376.727373][T11993] __sys_setsockopt+0x1a0/0x230 [ 376.732782][T11993] __x64_sys_setsockopt+0xbd/0x160 [ 376.738451][T11993] do_syscall_64+0xcd/0x250 [ 376.743508][T11993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.749956][T11993] [ 376.749956][T11993] other info that might help us debug this: [ 376.749956][T11993] [ 376.761069][T11993] Chain exists of: [ 376.761069][T11993] &smc->clcsock_release_lock --> rtnl_mutex --> sk_lock-AF_INET [ 376.761069][T11993] [ 376.774672][T11993] Possible unsafe locking scenario: [ 376.774672][T11993] [ 376.782137][T11993] CPU0 CPU1 [ 376.787524][T11993] ---- ---- [ 376.792913][T11993] lock(sk_lock-AF_INET); [ 376.797358][T11993] lock(rtnl_mutex); [ 376.803892][T11993] lock(sk_lock-AF_INET); [ 376.810860][T11993] lock(&smc->clcsock_release_lock); [ 376.816264][T11993] [ 376.816264][T11993] *** DEADLOCK *** [ 376.816264][T11993] [ 376.824418][T11993] 1 lock held by syz.0.1765/11993: [ 376.829546][T11993] #0: ffff8880302524d8 (sk_lock-AF_INET){+.+.}-{0:0}, at: smc_setsockopt+0x32c/0xc00 [ 376.839202][T11993] [ 376.839202][T11993] stack backtrace: [ 376.845117][T11993] CPU: 1 UID: 0 PID: 11993 Comm: syz.0.1765 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 376.855909][T11993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 376.865999][T11993] Call Trace: [ 376.869309][T11993] [ 376.872256][T11993] dump_stack_lvl+0x116/0x1f0 [ 376.876984][T11993] print_circular_bug+0x41c/0x610 [ 376.882056][T11993] check_noncircular+0x31a/0x400 [ 376.887035][T11993] ? __pfx_check_noncircular+0x10/0x10 [ 376.892538][T11993] ? lockdep_lock+0xc6/0x200 [ 376.897166][T11993] ? __pfx_lockdep_lock+0x10/0x10 [ 376.902229][T11993] __lock_acquire+0x249e/0x3c40 [ 376.907126][T11993] ? __pfx___lock_acquire+0x10/0x10 [ 376.912366][T11993] ? find_held_lock+0x2d/0x110 [ 376.917168][T11993] lock_acquire.part.0+0x11b/0x380 [ 376.922316][T11993] ? smc_switch_to_fallback+0x2d/0xa00 [ 376.927821][T11993] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 376.933484][T11993] ? rcu_is_watching+0x12/0xc0 [ 376.938281][T11993] ? trace_lock_acquire+0x14e/0x1f0 [ 376.943514][T11993] ? smc_switch_to_fallback+0x2d/0xa00 [ 376.949017][T11993] ? lock_acquire+0x2f/0xb0 [ 376.953551][T11993] ? smc_switch_to_fallback+0x2d/0xa00 [ 376.959056][T11993] __mutex_lock+0x19b/0xa60 [ 376.963596][T11993] ? smc_switch_to_fallback+0x2d/0xa00 [ 376.969105][T11993] ? __pfx_mark_lock+0x10/0x10 [ 376.973932][T11993] ? smc_switch_to_fallback+0x2d/0xa00 [ 376.979436][T11993] ? lock_acquire.part.0+0x11b/0x380 [ 376.984758][T11993] ? __pfx___mutex_lock+0x10/0x10 [ 376.989820][T11993] ? smc_setsockopt+0x32c/0xc00 [ 376.994714][T11993] ? __pfx_lock_release+0x10/0x10 [ 376.999772][T11993] ? smc_switch_to_fallback+0x2d/0xa00 [ 377.005276][T11993] ? __local_bh_enable_ip+0xa4/0x120 [ 377.010595][T11993] smc_switch_to_fallback+0x2d/0xa00 [ 377.015928][T11993] smc_setsockopt+0xa7b/0xc00 [ 377.020653][T11993] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 377.026584][T11993] ? __pfx_smc_setsockopt+0x10/0x10 [ 377.031832][T11993] ? __pfx_smc_setsockopt+0x10/0x10 [ 377.037076][T11993] do_sock_setsockopt+0x222/0x480 [ 377.042129][T11993] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 377.047705][T11993] ? lock_acquire+0x2f/0xb0 [ 377.052252][T11993] __sys_setsockopt+0x1a0/0x230 [ 377.057145][T11993] __x64_sys_setsockopt+0xbd/0x160 [ 377.062293][T11993] ? do_syscall_64+0x91/0x250 [ 377.067007][T11993] ? lockdep_hardirqs_on+0x7c/0x110 [ 377.072241][T11993] do_syscall_64+0xcd/0x250 [ 377.076781][T11993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.082714][T11993] RIP: 0033:0x7fce42385d29 [ 377.087154][T11993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 377.106803][T11993] RSP: 002b:00007fce421f9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 377.115254][T11993] RAX: ffffffffffffffda RBX: 00007fce42575fa0 RCX: 00007fce42385d29 [ 377.123252][T11993] RDX: 000000000000001e RSI: 8000000000000006 RDI: 0000000000000003 [ 377.131251][T11993] RBP: 00007fce42401aa8 R08: 00000000007ffffc R09: 0000000000000000 [ 377.139250][T11993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 377.147253][T11993] R13: 0000000000000000 R14: 00007fce42575fa0 R15: 00007ffd408e9178 [ 377.155268][T11993] [ 379.071680][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.078021][ T1296] ieee802154 phy1 wpan1: encryption failed: -22