last executing test programs: 1m43.804475805s ago: executing program 3 (id=349): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x20401, 0x0) fanotify_init$auto(0x200, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) socket(0xa, 0x2, 0x88) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) write$auto(0x3, 0x0, 0xfdf3) 1m43.265229592s ago: executing program 3 (id=351): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x1, 0x5, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r0, 0x5393, 0x5) pipe$auto(0x0) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) symlink$auto(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000010c0)='./file0\x00') bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x0, @remote}, 0x2006b) madvise$auto(0x0, 0xffffffffffff0001, 0x15) pkey_free$auto(0xfffffffd) 1m40.603470227s ago: executing program 3 (id=365): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, 0x0, 0x4) 1m40.004838243s ago: executing program 3 (id=369): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x20401, 0x0) fanotify_init$auto(0x200, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) socket(0xa, 0x2, 0x88) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) write$auto(0x3, 0x0, 0xfdf3) 1m39.515406771s ago: executing program 3 (id=372): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x30, 0x80000006, 0x4) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x42, 0x4909b6f8, 0x1ffdf, 0x7, 0x200003, 0x2, 0xa121, 0x3, 0x6, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x80, 0x100000000, 0x0, 0x7, 0x2100, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffbffd, 0xfffffffffffffffd, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x2000000000000000, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffffffffa, 0x8, 0x4000000000, 0x7]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x1000000, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) madvise$auto(0x0, 0xffffffffffff0005, 0x19) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4) mmap$auto(0x0, 0x200003, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) mmap$auto(0x200000, 0x200006, 0x1, 0x40eb1, 0x602, 0xb00000000000) 1m38.407390819s ago: executing program 3 (id=378): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) close_range$auto(0x0, 0xffffeffe, 0x2) r0 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/mountinfo\x00', 0x800, 0x0) read$auto_proc_mountinfo_operations_mnt_namespace(r0, &(0x7f0000001100)=""/4096, 0x1000) pipe$auto(0x0) r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) ioctl$auto_TUNSETQUEUE(r1, 0x400454d9, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x2, 0x0) ppoll$auto(&(0x7f0000000000)={r2, 0x2, 0xffff}, 0x5, 0x0, 0x0, 0x8) write$auto_seq_oss_f_ops_seq_oss(r2, &(0x7f0000000440)="1dca160c260271d69fe56a7e839d6ebf2a0572d9173d882674a5c0acdadb0ee83a0e2c2e06dbf46ff5efc3faebeb487f0415bbf9", 0x34) close_range$auto(r2, r1, 0x7ff) pipe$auto(0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) write$auto(0x3, 0x0, 0xfffffdef) sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000100)={0x14, 0x0, 0x20, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x8880) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) bpf$auto(0x5, 0x0, 0x7) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) 1m23.143069402s ago: executing program 32 (id=378): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) close_range$auto(0x0, 0xffffeffe, 0x2) r0 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/mountinfo\x00', 0x800, 0x0) read$auto_proc_mountinfo_operations_mnt_namespace(r0, &(0x7f0000001100)=""/4096, 0x1000) pipe$auto(0x0) r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) ioctl$auto_TUNSETQUEUE(r1, 0x400454d9, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x2, 0x0) ppoll$auto(&(0x7f0000000000)={r2, 0x2, 0xffff}, 0x5, 0x0, 0x0, 0x8) write$auto_seq_oss_f_ops_seq_oss(r2, &(0x7f0000000440)="1dca160c260271d69fe56a7e839d6ebf2a0572d9173d882674a5c0acdadb0ee83a0e2c2e06dbf46ff5efc3faebeb487f0415bbf9", 0x34) close_range$auto(r2, r1, 0x7ff) pipe$auto(0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) write$auto(0x3, 0x0, 0xfffffdef) sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000100)={0x14, 0x0, 0x20, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x8880) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) bpf$auto(0x5, 0x0, 0x7) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) 3.37864875s ago: executing program 1 (id=1006): r0 = socket(0x2b, 0x3, 0x10000) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/buddyinfo\x00', 0x60200, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) r1 = socket(0x1d, 0x2, 0x6) getsockopt$auto(r1, 0x6a, 0x3, 0x0, 0x0) dup2$auto(0x5, 0x4) sendmsg$auto_OVS_FLOW_CMD_NEW(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000080)={&(0x7f00000014c0)={0x1064, 0x0, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x1046, 0x1, 0x0, 0x1, [@typed={0x1004, 0xc8, 0x0, 0x0, @binary="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"}, @typed={0xf, 0xd0, 0x0, 0x0, @str='-\\^\x94[.}%:!\x00'}, @typed={0x14, 0xe2, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @generic="86277fdcb2738deaddee766a7ba1", @typed={0x8, 0x1c, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @typed={0x4, 0x129}]}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x1064}, 0x1, 0x0, 0x0, 0x2000c000}, 0x20004001) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) 3.292659253s ago: executing program 2 (id=1007): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x80800, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x100000000000, 0x9, 0x8, 0x18, 0x3, 0x8000) sendfile$auto(0x6, r0, 0x0, 0x8000000000000001) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) munmap$auto(0x20001000, 0x7) mmap$auto(0x0, 0x2020009, 0x5, 0x11, 0x0, 0x8000) r1 = socket(0x21, 0x2, 0x1) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) mmap$auto(0xfffffffffffffffe, 0x8, 0x8003, 0xeb3, 0xfffffffffffffff9, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x0, 0x800}}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x8c3a, 0x2, 0xf) socket(0x2, 0x3, 0xa) lsm_list_modules$auto(0x0, &(0x7f0000000100)=0xbefc, 0x0) ioctl$auto(0x1, 0x89a0, 0x8) read$auto(0x3, 0x0, 0x400000) close_range$auto(r1, r2, 0x1) openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f0000000000), 0x84000, 0x0) setsockopt$auto(r2, 0x6f, 0x4, &(0x7f0000000180)='$-}\\\x00\xfc\x02<\xe3M!\x87S\xb8\xe5\'*\xf7J\xd1-\xf7\xabR\xe7\xbd\t\xd7^VM\xf5;\xa5\x8d\xb8\x01n|r\xff\xd6Mk\xca\xdd\xfe\xdb!\xdf\xb5UJ{\x8a\xb4\x89\xc1\x1a\xb86_{\xd6\xf6?\xbcAu\xf27f\x15\x9f\xff;\x9d\xfe\xf5\xdf\xb7\xf8\xe7\x16\x87\xb6><\xf2\x10\x9a\xe1\x05\xa1v\x05\xfeU-\x82x\xce\xa4\xe8\xfe\xac\xa8\xabM\xf3a\"S.\xa8\x82qF\xf3F\xff\a\xa0\xa8?\'\a', 0x2) io_uring_setup$auto(0x208f, 0x0) 3.224646234s ago: executing program 1 (id=1008): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x801, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x10001) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000100)=0x20001003) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/midi2\x00', 0x103341, 0x0) poll$auto(&(0x7f0000000080)={r1, 0x0, 0x9}, 0x7, 0x20) mmap$auto(0x0, 0x8, 0x4000000007d, 0x90, 0xfffffffffffffffd, 0x40) ioctl$auto_SW_SYNC_GET_DEADLINE(r2, 0xc0105702, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x2a801, 0x0) mmap$auto(0x0, 0x0, 0x4000000000df, 0x40eb1, 0x401, 0x8) bpf$auto(0xf, &(0x7f00000001c0)=@raw_tracepoint={0x400000000005, 0xffff}, 0xc) openat$auto_deferred_devs_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x200000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r3) sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010025bd7000fedbdf2502000000040005013600fc0006d92ed5b7f5885776d141dfb9af8f5086884377f85834474a4e96d811cbd6ec97e3f6515ea9f569aa7943e75a17a43abae6000004004600f8b73923040000000c0058000400000000000000"], 0x68}, 0x1, 0x0, 0x0, 0x5}, 0x40080) socket(0x3, 0x1, 0x7f) writev$auto(0xca, 0x0, 0x7e) rseq$auto(&(0x7f0000000300)={0xe, 0xfffffffa, 0x0, 0x6, 0xffffffff, 0x2, "8f5c6deb4e3d8dff3b6529eee16bb5b21635b61b608273e9db68783e84"}, 0x8000, 0x0, 0x6) vmsplice$auto(0x2, &(0x7f00000000c0)={&(0x7f0000000000), 0x7ff}, 0x8000000000000001, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) pidfd_open$auto(0x1, 0x0) socket(0x10, 0x3, 0x6) eventfd$auto(0x5) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1d, 0x3, 0x1) bind$auto(0x7, &(0x7f0000000000)=@in={0x1d, 0x0, @rand_addr=0x64010102}, 0x3e) 2.737922932s ago: executing program 0 (id=1010): mmap$auto(0x0, 0x401, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x1, 0x106) io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x2, 0x6, 0x0) sysfs$auto(0x2, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/i8042/serio0/set\x00', 0x103a00, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x15, 0x5, 0x0) getsockopt$auto(r1, 0x114, 0x271f, 0xfffffffffffffffc, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/rdma_readwrite_threshold\x00', 0x48041, 0x0) write$auto(r2, 0x0, 0x6) fsopen$auto(0x0, 0x1) io_uring_register$auto(r0, 0x5, &(0x7f0000000000)="1d5210cdfbf5f64275d92176f618970abe17589f4ea13672f5ce0f3294587d234cb1d1438a8a3f8062621c61b7ab1195cdc6c82238d5ec5a55a29be5c4fd24075b9d26792e724d83cf7c866fdcaf0fb27f54f71ae32b704753d3e07755abda4387ceb2e344b73cb7ea2855f94192a1488b9f07ef625c766fe13658f9eef0bf474e6403170a7719e3b7dd8a09c309b7d0697673ce310202550ff1c22eb27c6458b327024c48ad7be1f262ae41a9f56e25d5604a53b98e955320a1d954c286280ec896128ea7327b237030e1f12aff9c4826ffa64388b45ddb5eb3a984cf8c0ca780b441261b54142c01", 0xe) epoll_create$auto(0x4) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) 2.446671251s ago: executing program 4 (id=1011): mmap$auto(0x0, 0x2000c, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22242, 0x155) socket(0x2, 0x1, 0x0) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) dup2$auto(0x5, 0x4) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) write$auto(0x6, 0x0, 0x100000001) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyw5\x00', 0x800, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ptype\x00', 0x8e40, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000080)=""/248, 0xf8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x80, 0x0) ioctl$auto_evdev_fops_evdev(r1, 0x40284504, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000000)=""/48, 0x30) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ptya7\x00', 0x20000, 0x0) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) prctl$auto(0x41555856, 0x4, 0x2008, 0x0, 0x0) socket(0xa, 0x3, 0x3a) ioctl$auto(0x1, 0x890b, 0x2) 2.056726771s ago: executing program 0 (id=1012): r0 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/filter\x00', 0x2, 0x0) write$auto(r0, 0x0, 0xfd) 2.055745376s ago: executing program 1 (id=1013): mmap$auto(0x0, 0x20009, 0xb, 0xeb3, 0x401, 0x8000) memfd_create$auto(&(0x7f0000000080)='].}@\x00', 0xffff) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x2, 0x0, 0x100000) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) write$auto(0x6, 0x0, 0x200000000000a75) close_range$auto(0x2, 0x8000, 0x0) bpf$auto(0x0, 0x0, 0x6f4) io_uring_register$auto(0x2, 0x1b, 0x0, 0x1) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x401, 0x0) ioctl$auto_SNDCTL_DSP_RESET(r1, 0x5000, 0x5) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000040)=0x1) sendfile$auto(0x1, r0, 0x0, 0xef75) 1.926518036s ago: executing program 0 (id=1014): socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/nfs4.idtoname/channel\x00', 0x0, 0x0) mmap$auto(0x1, 0x10001, 0x80, 0x19, 0x7, 0x10001) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004040) bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x8, 0x30017, 0x8020000000a, 0x2, 0x5f, 0x20000000000803, 0xffffffffffffffff}, 0x6f0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="720100007ef61f4d60d904171dc028c94403c3a780813cb62917fb7664805325cf8c843168eec8d734f816b0cb4ef175c7ca6d9e5b52a53db7deed8c000000000000003642f2366fb1fc4143ba1875f57f9b52901387395045a687d70b01f473108031ed04c0cb947b64bae20528656f774b4de0c47a4e0ef123bcd5753c6e1fc482b46031179af99c546a7ea6dca0fd96582723f9", @ANYBLOB="1200"], 0x1ac}, 0x1, 0x0, 0x0, 0x20008001}, 0x40000) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x1, 0x9) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x300, 0x70bd36, 0x25dfdbfe, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xd1a}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc005}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x1, 0x0) syz_genetlink_get_family_id$auto_ila(&(0x7f0000000000), r0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.788668798s ago: executing program 2 (id=1015): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_ftrace_event_format_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000640)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/format\x00', 0x40, 0x0) socket(0xa, 0x3, 0x6) socket(0x2a, 0x2, 0x0) socket(0x23, 0x80805, 0x0) memfd_secret$auto(0x0) r0 = getpgid(0x0) pidfd_open$auto(r0, 0x0) socket(0x2b, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="0000ed00", @ANYRES64=r1], 0x5f}, 0x1, 0x0, 0x0, 0x200408d5}, 0x5) r2 = socket(0x11, 0x2, 0x4) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) sendmsg$auto_NL802154_CMD_GET_INTERFACE(r2, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040}, 0x20004010) 1.600438359s ago: executing program 2 (id=1016): mmap$auto(0x0, 0x800, 0xdd, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x8000) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), 0xffffffffffffffff) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91\vI\x1eRN8\x99\x88ds\x1cJr\xde:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\v\xea\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd3\x81Y\xa3Fp\v\xdc\xe2\xc3\xc3\xdbS\xdc\xfd\xbf\xd1\x14^\xbe\xa2', 0xfdef, 0x0) socket(0x1f, 0x2, 0x3a) sendmsg$auto_BATADV_CMD_GET_HARDIF(0xffffffffffffffff, 0x0, 0x4008000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setresuid$auto(0x0, 0x8, 0x8000) socket(0x2, 0x801, 0x100) r0 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x11}, 0x40020) sendfile$auto(0x1, 0x3, 0x0, 0xc01) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000) ioctl$auto(0x20000000000003, 0x8946, 0x2) 1.5326632s ago: executing program 0 (id=1017): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x801, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x10001) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000100)=0x20001003) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/midi2\x00', 0x103341, 0x0) poll$auto(&(0x7f0000000080)={r1, 0x0, 0x9}, 0x7, 0x20) mmap$auto(0x0, 0x8, 0x4000000007d, 0x90, 0xfffffffffffffffd, 0x40) ioctl$auto_SW_SYNC_GET_DEADLINE(r2, 0xc0105702, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x2a801, 0x0) mmap$auto(0x0, 0x0, 0x4000000000df, 0x40eb1, 0x401, 0x8) bpf$auto(0xf, &(0x7f00000001c0)=@raw_tracepoint={0x400000000005, 0xffff}, 0xc) openat$auto_deferred_devs_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x200000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r3) sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010025bd7000fedbdf2502000000040005013600fc0006d92ed5b7f5885776d141dfb9af8f5086884377f85834474a4e96d811cbd6ec97e3f6515ea9f569aa7943e75a17a43abae6000004004600f8b73923040000000c0058000400000000000000"], 0x68}, 0x1, 0x0, 0x0, 0x5}, 0x40080) socket(0x3, 0x1, 0x7f) writev$auto(0xca, 0x0, 0x7e) rseq$auto(&(0x7f0000000300)={0xe, 0xfffffffa, 0x0, 0x6, 0xffffffff, 0x2, "8f5c6deb4e3d8dff3b6529eee16bb5b21635b61b608273e9db68783e84"}, 0x8000, 0x0, 0x6) vmsplice$auto(0x2, &(0x7f00000000c0)={&(0x7f0000000000), 0x7ff}, 0x8000000000000001, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) pidfd_open$auto(0x1, 0x0) socket(0x10, 0x3, 0x6) eventfd$auto(0x5) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1d, 0x3, 0x1) bind$auto(0x7, &(0x7f0000000000)=@in={0x1d, 0x0, @rand_addr=0x64010102}, 0x3e) 1.455982694s ago: executing program 2 (id=1018): mmap$auto(0x0, 0x800, 0xdd, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x8000) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), 0xffffffffffffffff) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91\vI\x1eRN8\x99\x88ds\x1cJr\xde:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\v\xea\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd3\x81Y\xa3Fp\v\xdc\xe2\xc3\xc3\xdbS\xdc\xfd\xbf\xd1\x14^\xbe\xa2', 0xfdef, 0x0) socket(0x1f, 0x2, 0x3a) sendmsg$auto_BATADV_CMD_GET_HARDIF(0xffffffffffffffff, 0x0, 0x4008000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setresuid$auto(0x0, 0x8, 0x8000) socket(0x2, 0x801, 0x100) r0 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x11}, 0x40020) sendfile$auto(0x1, 0x3, 0x0, 0xc01) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000) ioctl$auto(0x20000000000003, 0x8946, 0x2) 1.281626082s ago: executing program 2 (id=1019): openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x60000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x2, 0xe983, 0xdf, 0xeb3, 0x401, 0x9) r0 = socket(0xa, 0x6, 0x0) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) close_range$auto(0x2, r0, 0x0) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r1 = socket(0x23, 0x80805, 0x0) poll$auto(&(0x7f0000000040)={r1, 0x7, 0x8}, 0x80, 0x400400) setsockopt$auto(r2, 0x113, 0x1ff, 0x0, 0x81) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket(0xa, 0x2, 0x0) setsockopt$auto(0x3, 0x0, 0x3, 0xffffffffffffffff, 0x0) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x20000000003, 0x7ff, 0xffb, 0x8000000008011, 0x2, 0x0) ioctl$auto_SNDCTL_DSP_GETOPTR(r3, 0x800c5012, &(0x7f0000000000)={0xff9, 0x2, 0x5}) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000013c0)={&(0x7f0000001380)={0x18, r5, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) io_cancel$auto(0x64, &(0x7f0000000000)={0x6, 0x9, 0x7, 0x4, 0x1, 0x409691, 0x5a43, 0x0, 0x5, 0x10, 0x7f, 0x4}, 0x0) close_range$auto(0x2, 0x8000, 0x0) r6 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) ioctl$auto_VHOST_SET_FEATURES2(r6, 0x4008af00, 0x0) 1.20154986s ago: executing program 4 (id=1020): sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, 0x0, 0x8000) openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range$auto(0x2, 0x1d, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000b00), 0xffffffffffffffff) r2 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000380), 0x82002, 0x0) ioctl$auto_RTC_UIE_ON(r2, 0x7003, 0x0) ioctl$auto_RTC_AIE_ON(r2, 0x7001, 0x0) ioctl$auto(0xc8, 0x800454df, 0x2000000000000acd) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000b40)={0x20, r1, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@HWSIM_ATTR_PMSR_SUPPORT={0xc, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x9}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000800) fcntl$auto(r0, 0x1, 0xab28) r3 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000080), r0) sendmsg$auto_SMC_NETLINK_DISABLE_HS_LIMITATION(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0xa4, r3, 0x2, 0x70bd2c, 0x25dfdbfb, {}, "cc542610e198fd157666ad980ab41f1624334336c43d56c2ac515e63401b56d5b9065e2a80de159d0fe4021793592c2f2051b92bcee9db3bf7e5b86c61bdf6fe01d1dd196a8a051b76a6c265014f0621eff43043129e729ed6230ef4a9fe13ebf5f496cd3604e23f7490f5c0b0781532b6ff05f67862c04020d0ef91f9978ddcaffa6e5c3ee9c96f1a66b57536b8"}, 0xa4}, 0x1, 0x0, 0x0, 0x24000045}, 0x4000000) 1.036695139s ago: executing program 1 (id=1021): mmap$auto(0x0, 0x401, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x1, 0x106) io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x2, 0x6, 0x0) sysfs$auto(0x2, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/i8042/serio0/set\x00', 0x103a00, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x15, 0x5, 0x0) getsockopt$auto(r1, 0x114, 0x271f, 0xfffffffffffffffc, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/rdma_readwrite_threshold\x00', 0x48041, 0x0) write$auto(r2, 0x0, 0x6) fsopen$auto(0x0, 0x1) io_uring_register$auto(r0, 0x5, &(0x7f0000000000)="1d5210cdfbf5f64275d92176f618970abe17589f4ea13672f5ce0f3294587d234cb1d1438a8a3f8062621c61b7ab1195cdc6c82238d5ec5a55a29be5c4fd24075b9d26792e724d83cf7c866fdcaf0fb27f54f71ae32b704753d3e07755abda4387ceb2e344b73cb7ea2855f94192a1488b9f07ef625c766fe13658f9eef0bf474e6403170a7719e3b7dd8a09c309b7d0697673ce310202550ff1c22eb27c6458b327024c48ad7be1f262ae41a9f56e25d5604a53b98e955320a1d954c286280ec896128ea7327b237030e1f12aff9c4826ffa64388b45ddb5eb3a984cf8c0ca780b441261b54142c01", 0xe) epoll_create$auto(0x4) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) 902.99433ms ago: executing program 4 (id=1022): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty47\x00', 0x14d200, 0x0) sysfs$auto(0x2, 0xd, 0x0) ioctl$auto_TIOCSWINSZ2(r0, 0x5414, 0x0) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0) r2 = socket(0x10, 0x2, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x401, 0x1) socket(0x2, 0x1, 0x0) socket(0x1e, 0x1, 0x0) socket(0x25, 0x3, 0xfffffffe) memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4) fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r2, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x480c0}, 0x8c4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) acct$auto(&(0x7f00000001c0)='/dev/snd/controlC1\x00') ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f0000000000)=0x81) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000080)={{0x0, 0x110d, 0x10000, 0x6, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa00000000e10000000000000000000400", 0x8}, 0x6, 0x5, 0x6, 0x8, @enumerated={0x7, 0xbf1c, "02e77dfb6cc96eda972d2238c0b2f33fb396ee46df2bcee4e4d9caff3824d944224d4f988cc365d866890577dd8481d064265becc2418357f63beeec804a7b9a", 0xb8b5, 0x2}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"}) socket(0xa, 0x3, 0x3a) read$auto(0x3, 0x0, 0x80) r3 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000040), 0x2981, 0x0) write$auto_ecryptfs_miscdev_fops_miscdev(r3, &(0x7f0000001640)="00000000ee", 0x5) r4 = socket$nl_generic(0x10, 0x3, 0x10) dup2$auto(r4, r4) 719.826517ms ago: executing program 4 (id=1023): r0 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/filter\x00', 0x2, 0x0) write$auto(r0, 0x0, 0xfd) 608.831762ms ago: executing program 1 (id=1024): socket(0x2, 0x2, 0x106) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0xfffffffe, 0x50000000, 0x8000000000000000, 0x0) pipe$auto(0x0) pipe$auto(0x0) read$auto(0x3, 0x0, 0x80) writev$auto(0xca, &(0x7f0000000080)={0x0, 0xa}, 0x7e) r0 = socket(0x2, 0x801, 0x106) connect$auto(0x3, &(0x7f00000001c0), 0x55) umount2$auto(&(0x7f0000000000)='[$\\!\x00', 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) r1 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd5/queue/optimal_io_size\x00', 0x800, 0x0) fchdir$auto(r0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000040)=""/42, 0x2a) fchdir$auto(r1) close_range$auto(0x0, 0xfffffffffffff000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) futex$auto(0x0, 0x85, 0x5, 0x0, 0x0, 0x10000007) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x2000, 0x0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f0000000000)=0x10000) 605.581578ms ago: executing program 2 (id=1025): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x47352, 0x32, 0x65f, 0x1ffde, 0x7, 0x3, 0x20000002, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, [0x0, 0x0, 0x0, 0x8050100000000000, 0x0, 0x100100001, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0, 0x1, 0x3, 0x0, 0xfffffffffffffffd, 0x2, 0x200000000004, 0x8, 0xffffffffeffffffe, 0x200000000000004, 0x0, 0x0, 0x0, 0x0, 0x400000000005b8, 0x8, 0x0, 0x0, 0x4, 0x6, 0xffffffffffffffff, 0x890, 0x8000000000008, 0xfffffffffffffffc, 0x1000, 0xa38, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x4000000000, 0x10006, 0x7fffffffffffffff]}, 0x1fe, 0x100000d) syz_clone(0xa10000, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r0 = openat$auto_generic(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto_snd_ctl_f_ops_control(r0, 0x0, 0x0) mknod$auto(0x0, 0x1, 0x4) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x1, 0x0) r1 = socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents$auto(r2, 0x0, 0x40) close_range$auto(0x2, 0x8000, 0x0) socket(0xa, 0x3, 0x3a) r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r3, 0xaf01, 0x5) ioctl$auto(0x3, 0x4008af03, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000140), 0x10000, 0x0) openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000640), 0x201, 0x0) write$auto(r0, 0x0, 0xfffffdef) setsockopt$auto(r1, 0x107, 0x1, 0x0, 0x8004) bpf$auto(0x6, &(0x7f0000000040)=@token_create={0x400, r0}, 0x7) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) ioctl$auto_TIOCGDEV2(r4, 0x80285442, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r5 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 574.686071ms ago: executing program 0 (id=1026): socket(0x2, 0x2, 0x106) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) pipe$auto(0x0) pipe$auto(0x0) read$auto(0x3, 0x0, 0x80) writev$auto(0xca, &(0x7f0000000080)={0x0, 0xa}, 0x7e) r0 = socket(0x2, 0x801, 0x106) connect$auto(0x3, &(0x7f00000001c0), 0x55) umount2$auto(&(0x7f0000000000)='[$\\!\x00', 0x0) bind$auto(0x3, &(0x7f0000000080), 0x6b) r1 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd5/queue/optimal_io_size\x00', 0x800, 0x0) fchdir$auto(r0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000040)=""/42, 0x2a) fchdir$auto(r1) close_range$auto(0x0, 0xfffffffffffff000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) futex$auto(0x0, 0x85, 0x5, 0x0, 0x0, 0x10000007) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x2000, 0x0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f0000000000)=0x10000) 556.756654ms ago: executing program 4 (id=1027): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop9\x00', 0x14de82, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x8, 0xdc, 0x9b72, 0x400000000006, 0x8000) mprotect$auto(0x0, 0x8000000000000001, 0x6) getrandom$auto(0x0, 0x6000000, 0x3) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000) fstatfs$auto(0x0, 0x0) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x21, &(0x7f0000000240), 0x1) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/nfsfs/servers\x00', 0x400, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000040)=""/248, 0xf8) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000180)=""/210, 0xd2) mmap$auto(0x0, 0x200004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket(0xa, 0x5, 0x0) getsockopt$auto(r1, 0x84, 0x24, 0x0, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) write$auto(0x3, 0x0, 0xfffffdef) 310.917681ms ago: executing program 4 (id=1028): mmap$auto(0x0, 0x2000c, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22242, 0x155) socket(0x2, 0x1, 0x0) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) dup2$auto(0x5, 0x4) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) write$auto(0x6, 0x0, 0x100000001) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyw5\x00', 0x800, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ptype\x00', 0x8e40, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000080)=""/248, 0xf8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x80, 0x0) ioctl$auto_evdev_fops_evdev(r1, 0x40284504, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000000)=""/48, 0x30) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ptya7\x00', 0x20000, 0x0) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) prctl$auto(0x41555856, 0x4, 0x2008, 0x0, 0x0) socket(0xa, 0x3, 0x3a) ioctl$auto_TIOCSTI2(r2, 0x5412, 0x0) 105.265903ms ago: executing program 0 (id=1029): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) bind$auto(0xffffffffffffffff, 0x0, 0x5) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x9, 0x13, 0xf, 0x20005, 0x3, 0x2000000000000006, 0x1, 0x0, 0x5, 0x2, 0x7, 0xaf, 0x9, 0x6d, 0x3, 0x5, 0x7, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, [0x0, 0x5, 0x3, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x800, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x9, 0x0, 0x2, 0x400, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x100000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x201, 0x81) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000180)=ANY=[@ANYBLOB='*', @ANYRES16, @ANYBLOB="010029bd"], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1300"], 0x1ac}}, 0x4004) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) socket(0x10, 0x3, 0x6) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x10, 0x2, 0x4) r1 = socket(0x10, 0x3, 0x6) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r2, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100005800c00c50003000000000000000c02368008027a8087010c800800e800", @ANYRES32=r0, @ANYBLOB="0800fb00", @ANYRES32=r1], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) connect$auto(0x3, 0x0, 0x52) munmap$auto(0x1b39fb08, 0x7f) 0s ago: executing program 1 (id=1030): r0 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim1/health/break_health\x00', 0x101, 0x0) write$auto(r0, &(0x7f0000000000)='hgtH\x13\xea\x18K.\xce\x11V\xfd\x93\ri\x1e\x88\x00\x00\x00\x00\x00\x00\x00\x00\x14\x87(\v\x11\xffH\xf0\xb5v\xa4\"\xa8\xd7\x87\xfd\xa1n1\xbb\xce!f\xe3\xec(k\x84\xf9\xfe\fF{\xecX\xbch\xae\xbd^woe\xf0\xacE\xee\x1e\x16a\xab\x99\x11\x8ai&OE:$~\xe1\xedY\xe3\x10tC]:e\x99)\ri\x9d\xe7\xb7\xba(\xf9/\xbe\xd1N\x9e\xad\x874\"(\x981\xc5L\x1b\a\xce\xc3\x19.\xe8:\x00\x00\x00\x00\x00\x00\x00SI.^', 0x7ffffffd) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.66' (ED25519) to the list of known hosts. [ 66.780944][ T5817] cgroup: Unknown subsys name 'net' [ 66.920538][ T5817] cgroup: Unknown subsys name 'cpuset' [ 66.929082][ T5817] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 68.272456][ T5817] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 70.035917][ T5839] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 70.044693][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 70.050756][ T5835] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 70.053628][ T5839] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 70.059479][ T5834] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 70.068897][ T5839] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 70.086262][ T5838] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 70.086754][ T5840] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 70.095481][ T5838] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 70.102350][ T5840] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 70.108618][ T5838] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 70.116045][ T5840] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 70.122552][ T5838] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 70.131230][ T5840] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 70.137632][ T5838] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 70.143350][ T5840] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 70.151784][ T5838] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 70.157949][ T5840] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 70.171322][ T5836] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 70.203254][ T5834] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 70.210763][ T5834] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 70.219491][ T5834] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 70.229207][ T5831] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 70.237279][ T5831] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 70.447450][ T5832] chnl_net:caif_netlink_parms(): no params data found [ 70.669040][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.677081][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.684666][ T5832] bridge_slave_0: entered allmulticast mode [ 70.694571][ T5832] bridge_slave_0: entered promiscuous mode [ 70.709989][ T5827] chnl_net:caif_netlink_parms(): no params data found [ 70.723239][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.731189][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.738508][ T5832] bridge_slave_1: entered allmulticast mode [ 70.745182][ T5832] bridge_slave_1: entered promiscuous mode [ 70.777500][ T5828] chnl_net:caif_netlink_parms(): no params data found [ 70.805592][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.817680][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.829423][ T5826] chnl_net:caif_netlink_parms(): no params data found [ 70.936269][ T5832] team0: Port device team_slave_0 added [ 70.944922][ T5832] team0: Port device team_slave_1 added [ 70.987995][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.995149][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state [ 71.004679][ T5828] bridge_slave_0: entered allmulticast mode [ 71.012133][ T5828] bridge_slave_0: entered promiscuous mode [ 71.020442][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.027936][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.035092][ T5828] bridge_slave_1: entered allmulticast mode [ 71.042240][ T5828] bridge_slave_1: entered promiscuous mode [ 71.062980][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.071244][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.098020][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.120258][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.127482][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 71.134804][ T5826] bridge_slave_0: entered allmulticast mode [ 71.141678][ T5826] bridge_slave_0: entered promiscuous mode [ 71.158810][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.166001][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state [ 71.176197][ T5827] bridge_slave_0: entered allmulticast mode [ 71.183554][ T5827] bridge_slave_0: entered promiscuous mode [ 71.192099][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.199444][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.226055][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.237773][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.245400][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.253452][ T5826] bridge_slave_1: entered allmulticast mode [ 71.260144][ T5826] bridge_slave_1: entered promiscuous mode [ 71.283209][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.295474][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.305488][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.313238][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.320532][ T5827] bridge_slave_1: entered allmulticast mode [ 71.327156][ T5827] bridge_slave_1: entered promiscuous mode [ 71.373809][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.398107][ T5828] team0: Port device team_slave_0 added [ 71.406012][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.418205][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.429908][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.441899][ T5828] team0: Port device team_slave_1 added [ 71.513499][ T5832] hsr_slave_0: entered promiscuous mode [ 71.522257][ T5832] hsr_slave_1: entered promiscuous mode [ 71.536857][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.543837][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.573170][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.588248][ T5827] team0: Port device team_slave_0 added [ 71.597606][ T5827] team0: Port device team_slave_1 added [ 71.606156][ T5826] team0: Port device team_slave_0 added [ 71.613073][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.620254][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.647162][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.677000][ T5826] team0: Port device team_slave_1 added [ 71.693878][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.703640][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.730153][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.743440][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.751375][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.751392][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.782841][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.784418][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.817240][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.824317][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.850913][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.868498][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.875708][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.902323][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.957645][ T5828] hsr_slave_0: entered promiscuous mode [ 71.963936][ T5828] hsr_slave_1: entered promiscuous mode [ 71.970651][ T5828] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 71.978830][ T5828] Cannot create hsr debugfs directory [ 72.029506][ T5826] hsr_slave_0: entered promiscuous mode [ 72.036400][ T5826] hsr_slave_1: entered promiscuous mode [ 72.042603][ T5826] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 72.051048][ T5826] Cannot create hsr debugfs directory [ 72.074909][ T5827] hsr_slave_0: entered promiscuous mode [ 72.081441][ T5827] hsr_slave_1: entered promiscuous mode [ 72.087783][ T5827] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 72.095337][ T5827] Cannot create hsr debugfs directory [ 72.227243][ T5834] Bluetooth: hci3: command tx timeout [ 72.306691][ T5834] Bluetooth: hci2: command tx timeout [ 72.312425][ T5834] Bluetooth: hci1: command tx timeout [ 72.319849][ T54] Bluetooth: hci0: command tx timeout [ 72.335514][ T5832] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 72.347202][ T5832] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 72.368536][ T5832] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 72.390340][ T5832] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 72.427035][ T5828] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 72.454551][ T5828] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 72.490349][ T5828] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 72.504036][ T5828] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 72.515461][ T5827] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 72.533939][ T5827] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 72.558485][ T5827] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 72.568131][ T5827] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 72.616015][ T5826] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 72.630332][ T5826] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 72.648799][ T5826] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 72.664679][ T5826] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 72.752994][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.810655][ T5832] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.844230][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.851664][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.865438][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.881760][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.888903][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.903558][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.941425][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.967417][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.984870][ T3559] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.992047][ T3559] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.001911][ T3559] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.009138][ T3559] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.018862][ T3559] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.026429][ T3559] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.055002][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0 [ 73.069835][ T3559] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.077163][ T3559] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.120251][ T5826] 8021q: adding VLAN 0 to HW filter on device team0 [ 73.151829][ T3559] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.159047][ T3559] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.210513][ T3559] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.217791][ T3559] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.504795][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.561719][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.639515][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.655322][ T5832] veth0_vlan: entered promiscuous mode [ 73.682672][ T5828] veth0_vlan: entered promiscuous mode [ 73.702373][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.711728][ T5832] veth1_vlan: entered promiscuous mode [ 73.722289][ T5828] veth1_vlan: entered promiscuous mode [ 73.772982][ T5827] veth0_vlan: entered promiscuous mode [ 73.808907][ T5828] veth0_macvtap: entered promiscuous mode [ 73.815761][ T5832] veth0_macvtap: entered promiscuous mode [ 73.827360][ T5832] veth1_macvtap: entered promiscuous mode [ 73.841271][ T5827] veth1_vlan: entered promiscuous mode [ 73.853044][ T5826] veth0_vlan: entered promiscuous mode [ 73.860560][ T5828] veth1_macvtap: entered promiscuous mode [ 73.882693][ T5826] veth1_vlan: entered promiscuous mode [ 73.904342][ T5827] veth0_macvtap: entered promiscuous mode [ 73.918407][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.938932][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.947907][ T5827] veth1_macvtap: entered promiscuous mode [ 73.961347][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.975193][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.987023][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.006020][ T5828] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.015457][ T5828] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.024812][ T5828] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.033789][ T5828] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.059367][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.070512][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.085209][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.103492][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.115318][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.125463][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.136284][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.149338][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.165019][ T5832] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.174082][ T5832] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.183403][ T5832] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.192463][ T5832] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.208694][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.219643][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.231807][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.242446][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.253645][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.282999][ T5826] veth0_macvtap: entered promiscuous mode [ 74.306261][ T5826] veth1_macvtap: entered promiscuous mode [ 74.318830][ T5834] Bluetooth: hci3: command tx timeout [ 74.320399][ T5827] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.334526][ T5827] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.343458][ T5827] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.352731][ T5827] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.379291][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.392412][ T5834] Bluetooth: hci1: command tx timeout [ 74.392512][ T5831] Bluetooth: hci0: command tx timeout [ 74.398090][ T54] Bluetooth: hci2: command tx timeout [ 74.410109][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.420087][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.430710][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.440646][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.451194][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.462315][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.496778][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.507404][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.518869][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.530053][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.540525][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.551911][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.563124][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.599072][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.600382][ T5826] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.611861][ T5826] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.621347][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.627146][ T5826] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.643156][ T5826] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.705485][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.725148][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.766488][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.775328][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.848936][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.857021][ T3559] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.864858][ T3559] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.887932][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.916210][ T5828] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 75.011971][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.022736][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.060184][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.073370][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.127262][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.138371][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.952096][ T5909] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 76.018058][ T5910] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list syzkaller syzkaller login: [ 76.387066][ T54] Bluetooth: hci3: command tx timeout [ 76.467322][ T54] Bluetooth: hci2: command tx timeout [ 76.472794][ T54] Bluetooth: hci1: command tx timeout [ 76.478759][ T5834] Bluetooth: hci0: command tx timeout [ 77.189290][ T5936] netlink: 76 bytes leftover after parsing attributes in process `syz.0.15'. [ 77.661220][ T5949] binder: 5948:5949 ioctl 40046210 800000000000003 returned -14 [ 77.703456][ T5949] : entered promiscuous mode [ 78.467760][ T54] Bluetooth: hci3: command tx timeout [ 78.547147][ T54] Bluetooth: hci2: command tx timeout [ 78.553225][ T5834] Bluetooth: hci1: command tx timeout [ 78.558931][ T5834] Bluetooth: hci0: command tx timeout [ 78.929742][ T5964] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 79.001125][ T5980] binder: 5979:5980 ioctl c018620c 800000000000003 returned -14 [ 79.909430][ T5985] netlink: 28 bytes leftover after parsing attributes in process `syz.3.29'. [ 80.217488][ T5985] bond0: (slave bond_slave_0): Releasing backup interface [ 80.717880][ T6003] syz.3.34 uses obsolete (PF_INET,SOCK_PACKET) [ 80.939614][ T5831] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 81.060705][ T6003] ======================================================= [ 81.060705][ T6003] WARNING: The mand mount option has been deprecated and [ 81.060705][ T6003] and is ignored by this kernel. Remove the mand [ 81.060705][ T6003] option from the mount to silence this warning. [ 81.060705][ T6003] ======================================================= [ 82.672666][ T6027] netlink: 16 bytes leftover after parsing attributes in process `syz.0.39'. [ 84.218764][ T6061] netlink: 172 bytes leftover after parsing attributes in process `syz.0.47'. syzkaller syzkaller login: [ 85.346617][ T6076] netlink: 342 bytes leftover after parsing attributes in process `syz.0.51'. [ 86.578899][ T6093] device-mapper: ioctl: only supply one of name or uuid, cmd(17) [ 86.626759][ T6093] netlink: 16 bytes leftover after parsing attributes in process `syz.3.55'. [ 87.124344][ T1204] cfg80211: failed to load regulatory.db [ 87.763655][ T6119] capability: warning: `syz.0.60' uses 32-bit capabilities (legacy support in use) [ 87.834822][ T6119] 0}^: entered promiscuous mode syzkaller syzkaller login: [ 89.185817][ T6127] Zero length message leads to an empty skb syzkaller syzkaller login: [ 91.178514][ T6149] Process accounting resumed [ 91.384959][ T6152] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 91.456184][ T6157] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 92.046067][ T6164] openvswitch: netlink: Flow key attribute not present in set flow. [ 92.504668][ T5831] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 93.910161][ T6193] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 93.930180][ T6193] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 94.281624][ T6200] openvswitch: netlink: Flow key attribute not present in set flow. [ 95.046692][ T6220] netlink: 28 bytes leftover after parsing attributes in process `syz.1.92'. syzkaller syzkaller login: [ 97.101896][ T6257] FAULT_INJECTION: forcing a failure. [ 97.101896][ T6257] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 97.123248][ T6257] CPU: 0 UID: 0 PID: 6257 Comm: syz.2.102 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 97.133895][ T6257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 97.144163][ T6257] Call Trace: [ 97.147893][ T6257] [ 97.150935][ T6257] dump_stack_lvl+0x16c/0x1f0 [ 97.155644][ T6257] should_fail_ex+0x497/0x5b0 [ 97.160617][ T6257] _copy_from_iter+0x4a5/0x1400 [ 97.165523][ T6257] ? __pfx__copy_from_iter+0x10/0x10 [ 97.170854][ T6257] ? __virt_addr_valid+0x1a4/0x590 [ 97.176011][ T6257] ? __virt_addr_valid+0x5e/0x590 [ 97.181077][ T6257] ? __phys_addr_symbol+0x30/0x80 [ 97.186137][ T6257] ? __check_object_size+0x488/0x710 [ 97.191446][ T6257] netlink_sendmsg+0x813/0xd70 [ 97.196231][ T6257] ? __pfx_netlink_sendmsg+0x10/0x10 [ 97.201606][ T6257] ? __might_fault+0xe3/0x190 [ 97.206404][ T6257] ____sys_sendmsg+0x9ae/0xb40 [ 97.211187][ T6257] ? __pfx_____sys_sendmsg+0x10/0x10 [ 97.216582][ T6257] ___sys_sendmsg+0x135/0x1e0 [ 97.221273][ T6257] ? __pfx____sys_sendmsg+0x10/0x10 [ 97.226764][ T6257] ? trace_lock_acquire+0x14e/0x1f0 [ 97.231990][ T6257] ? __pfx_lock_release+0x10/0x10 [ 97.237034][ T6257] ? proc_fail_nth_write+0xa0/0x250 [ 97.242241][ T6257] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 97.247888][ T6257] __sys_sendmmsg+0x201/0x420 [ 97.252582][ T6257] ? __pfx___sys_sendmmsg+0x10/0x10 [ 97.257793][ T6257] ? do_sys_openat2+0xb1/0x1e0 [ 97.262566][ T6257] ? __pfx_do_sys_openat2+0x10/0x10 [ 97.267788][ T6257] ? ksys_write+0x1ba/0x250 [ 97.272298][ T6257] ? __pfx_ksys_write+0x10/0x10 [ 97.277157][ T6257] __x64_sys_sendmmsg+0x9c/0x100 [ 97.282104][ T6257] ? lockdep_hardirqs_on+0x7c/0x110 [ 97.287307][ T6257] do_syscall_64+0xcd/0x250 [ 97.291911][ T6257] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 97.297812][ T6257] RIP: 0033:0x7f5e50785d19 [ 97.302234][ T6257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 97.321905][ T6257] RSP: 002b:00007f5e51534038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 97.330338][ T6257] RAX: ffffffffffffffda RBX: 00007f5e50975fa0 RCX: 00007f5e50785d19 [ 97.338583][ T6257] RDX: 0000000000000007 RSI: 0000000020000200 RDI: 0000000000000005 [ 97.346710][ T6257] RBP: 00007f5e51534090 R08: 0000000000000000 R09: 0000000000000000 [ 97.354713][ T6257] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 97.362687][ T6257] R13: 0000000000000000 R14: 00007f5e50975fa0 R15: 00007ffda3d4c5f8 [ 97.370718][ T6257] [ 97.374545][ C0] vkms_vblank_simulate: vblank timer overrun [ 97.808380][ T6272] netlink: 28 bytes leftover after parsing attributes in process `syz.2.105'. [ 97.830701][ T6268] netlink: 28 bytes leftover after parsing attributes in process `syz.3.104'. [ 97.898342][ T6274] FAULT_INJECTION: forcing a failure. [ 97.898342][ T6274] name failslab, interval 1, probability 0, space 0, times 1 [ 97.946528][ T6274] CPU: 0 UID: 0 PID: 6274 Comm: syz.3.104 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 97.957292][ T6274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 97.967475][ T6274] Call Trace: [ 97.970795][ T6274] [ 97.973753][ T6274] dump_stack_lvl+0x16c/0x1f0 [ 97.978563][ T6274] should_fail_ex+0x497/0x5b0 [ 97.983477][ T6274] ? fs_reclaim_acquire+0xae/0x150 [ 97.988643][ T6274] should_failslab+0xc2/0x120 [ 97.993378][ T6274] __kmalloc_node_noprof+0xd1/0x520 [ 97.998907][ T6274] ? alloc_slab_obj_exts+0x41/0xa0 [ 98.004065][ T6274] alloc_slab_obj_exts+0x41/0xa0 [ 98.009048][ T6274] __memcg_slab_post_alloc_hook+0x2a7/0x9b0 [ 98.015008][ T6274] __kmalloc_node_noprof+0x409/0x520 [ 98.020538][ T6274] ? ww_mutex_lock+0x131/0x160 [ 98.025528][ T6274] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 98.031138][ T6274] __kvmalloc_node_noprof+0xad/0x1a0 [ 98.036739][ T6274] traverse.part.0.constprop.0+0x392/0x640 [ 98.042602][ T6274] ? __pfx_lock_release+0x10/0x10 [ 98.047685][ T6274] seq_read_iter+0x934/0x12b0 [ 98.052395][ T6274] seq_read+0x39f/0x4e0 [ 98.056592][ T6274] ? __pfx_seq_read+0x10/0x10 [ 98.061380][ T6274] ? __pfx_seq_read+0x10/0x10 [ 98.066095][ T6274] proc_reg_read+0x23d/0x330 [ 98.070798][ T6274] ? __pfx_proc_reg_read+0x10/0x10 [ 98.076161][ T6274] vfs_read+0x1df/0xbe0 [ 98.080416][ T6274] ? __fget_files+0x1fc/0x3a0 [ 98.085108][ T6274] ? __pfx_lock_release+0x10/0x10 [ 98.090149][ T6274] ? __pfx_vfs_read+0x10/0x10 [ 98.094923][ T6274] ? lock_acquire+0x2f/0xb0 [ 98.099449][ T6274] ? __fget_files+0x40/0x3a0 [ 98.104053][ T6274] ? __fget_files+0x206/0x3a0 [ 98.108752][ T6274] __x64_sys_pread64+0x1f6/0x250 [ 98.113707][ T6274] ? __pfx___x64_sys_pread64+0x10/0x10 [ 98.119275][ T6274] do_syscall_64+0xcd/0x250 [ 98.123811][ T6274] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 98.129721][ T6274] RIP: 0033:0x7fa53a185d19 [ 98.134139][ T6274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 98.153774][ T6274] RSP: 002b:00007fa537ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 98.162295][ T6274] RAX: ffffffffffffffda RBX: 00007fa53a376080 RCX: 00007fa53a185d19 [ 98.170275][ T6274] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000009 [ 98.178508][ T6274] RBP: 00007fa537ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 98.186590][ T6274] R10: 0000000000001000 R11: 0000000000000246 R12: 0000000000000001 [ 98.194564][ T6274] R13: 0000000000000000 R14: 00007fa53a376080 R15: 00007ffcc04d6778 [ 98.203076][ T6274] [ 98.206219][ C0] vkms_vblank_simulate: vblank timer overrun [ 98.666679][ T6264] mmap: syz.1.103 (6264) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 98.937359][ T6284] netlink: 'syz.0.109': attribute type 11 has an invalid length. [ 98.998182][ T6284] netlink: 8 bytes leftover after parsing attributes in process `syz.0.109'. [ 99.097890][ T6268] bond0: (slave bond_slave_1): Releasing backup interface [ 99.996649][ T5831] Bluetooth: hci0: SCO packet for unknown connection handle 0 [ 101.769722][ T6323] netlink: 138 bytes leftover after parsing attributes in process `syz.3.117'. [ 102.097787][ T6328] netlink: 4 bytes leftover after parsing attributes in process `syz.1.120'. [ 102.120242][ T6328] netlink: 4 bytes leftover after parsing attributes in process `syz.1.120'. [ 102.130673][ T6330] FAULT_INJECTION: forcing a failure. [ 102.130673][ T6330] name failslab, interval 1, probability 0, space 0, times 0 [ 102.171167][ T6330] CPU: 1 UID: 0 PID: 6330 Comm: syz.3.121 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 102.182001][ T6330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 102.192267][ T6330] Call Trace: [ 102.195569][ T6330] [ 102.198529][ T6330] dump_stack_lvl+0x16c/0x1f0 [ 102.203254][ T6330] should_fail_ex+0x497/0x5b0 [ 102.207976][ T6330] ? fs_reclaim_acquire+0xae/0x150 [ 102.213215][ T6330] should_failslab+0xc2/0x120 [ 102.218026][ T6330] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 102.223718][ T6330] ? getname_flags.part.0+0x4c/0x550 [ 102.229076][ T6330] ? vfs_write+0x306/0x1150 [ 102.233627][ T6330] getname_flags.part.0+0x4c/0x550 [ 102.238806][ T6330] getname+0x8d/0xe0 [ 102.242739][ T6330] do_sys_openat2+0x104/0x1e0 [ 102.247462][ T6330] ? __pfx_do_sys_openat2+0x10/0x10 [ 102.252802][ T6330] ? __fget_files+0x206/0x3a0 [ 102.257520][ T6330] __x64_sys_openat+0x175/0x210 [ 102.262424][ T6330] ? __pfx___x64_sys_openat+0x10/0x10 [ 102.267841][ T6330] ? ksys_write+0x1ba/0x250 [ 102.272392][ T6330] do_syscall_64+0xcd/0x250 [ 102.276942][ T6330] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.282874][ T6330] RIP: 0033:0x7fa53a185d19 [ 102.287325][ T6330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 102.306980][ T6330] RSP: 002b:00007fa53aeec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 102.315450][ T6330] RAX: ffffffffffffffda RBX: 00007fa53a375fa0 RCX: 00007fa53a185d19 [ 102.323465][ T6330] RDX: 000000000014b000 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 102.331494][ T6330] RBP: 00007fa53aeec090 R08: 0000000000000000 R09: 0000000000000000 [ 102.339506][ T6330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 102.347508][ T6330] R13: 0000000000000001 R14: 00007fa53a375fa0 R15: 00007ffcc04d6778 [ 102.355620][ T6330] [ 102.923510][ T6341] cgroup: fork rejected by pids controller in /syz3 [ 104.438311][ T6423] kexec: Could not allocate control_code_buffer [ 104.655395][ T6531] netlink: 346 bytes leftover after parsing attributes in process `syz.1.130'. [ 104.696471][ T29] audit: type=1800 audit(1734177997.209:2): pid=6531 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.130" name="dbroot" dev="configfs" ino=10330 res=0 errno=0 [ 105.440917][ T6547] FAULT_INJECTION: forcing a failure. [ 105.440917][ T6547] name failslab, interval 1, probability 0, space 0, times 0 [ 105.476421][ T6547] CPU: 0 UID: 0 PID: 6547 Comm: syz.0.137 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 105.487184][ T6547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 105.497280][ T6547] Call Trace: [ 105.500612][ T6547] [ 105.503569][ T6547] dump_stack_lvl+0x16c/0x1f0 [ 105.508379][ T6547] should_fail_ex+0x497/0x5b0 [ 105.513192][ T6547] ? fs_reclaim_acquire+0xae/0x150 [ 105.518346][ T6547] should_failslab+0xc2/0x120 [ 105.523069][ T6547] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 105.528498][ T6547] ? getname_flags.part.0+0x4c/0x550 [ 105.533838][ T6547] getname_flags.part.0+0x4c/0x550 [ 105.539089][ T6547] getname_flags+0x93/0xf0 [ 105.543540][ T6547] user_path_at+0x24/0x60 [ 105.547912][ T6547] __x64_sys_chroot+0xbf/0x340 [ 105.552725][ T6547] ? ksys_write+0x1ba/0x250 [ 105.557272][ T6547] ? __pfx___x64_sys_chroot+0x10/0x10 [ 105.562723][ T6547] do_syscall_64+0xcd/0x250 [ 105.567362][ T6547] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 105.573297][ T6547] RIP: 0033:0x7f2f51b85d19 [ 105.577748][ T6547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 105.597496][ T6547] RSP: 002b:00007f2f4f9f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a1 [ 105.605955][ T6547] RAX: ffffffffffffffda RBX: 00007f2f51d75fa0 RCX: 00007f2f51b85d19 [ 105.613977][ T6547] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 105.621986][ T6547] RBP: 00007f2f4f9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 105.630066][ T6547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 105.638078][ T6547] R13: 0000000000000000 R14: 00007f2f51d75fa0 R15: 00007ffca9d6fa88 [ 105.646104][ T6547] [ 105.846991][ T6551] FAULT_INJECTION: forcing a failure. [ 105.846991][ T6551] name failslab, interval 1, probability 0, space 0, times 0 [ 105.905664][ T6551] CPU: 0 UID: 0 PID: 6551 Comm: syz.1.139 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 105.916326][ T6551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 105.926422][ T6551] Call Trace: [ 105.929725][ T6551] [ 105.932682][ T6551] dump_stack_lvl+0x16c/0x1f0 [ 105.937403][ T6551] should_fail_ex+0x497/0x5b0 [ 105.942124][ T6551] ? fs_reclaim_acquire+0xae/0x150 [ 105.947283][ T6551] should_failslab+0xc2/0x120 [ 105.952006][ T6551] __kmalloc_noprof+0xce/0x4f0 [ 105.957090][ T6551] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 105.964415][ T6551] ? lockdep_hardirqs_on+0x7c/0x110 [ 105.969656][ T6551] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 105.976913][ T6551] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 105.982436][ T6551] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 105.988547][ T6551] ? __dev_queue_xmit+0x89b/0x43e0 [ 105.993769][ T6551] ? genl_get_cmd+0x195/0x580 [ 105.998475][ T6551] ? bpf_lsm_capable+0x9/0x10 [ 106.003166][ T6551] ? security_capable+0x7e/0x260 [ 106.008130][ T6551] genl_rcv_msg+0x565/0x800 [ 106.012650][ T6551] ? __pfx_genl_rcv_msg+0x10/0x10 [ 106.017688][ T6551] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 106.023783][ T6551] netlink_rcv_skb+0x165/0x410 [ 106.028646][ T6551] ? __pfx_genl_rcv_msg+0x10/0x10 [ 106.033685][ T6551] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 106.039080][ T6551] ? down_read+0xc9/0x330 [ 106.043515][ T6551] ? __pfx_down_read+0x10/0x10 [ 106.048288][ T6551] ? netlink_deliver_tap+0x1ae/0xca0 [ 106.053684][ T6551] genl_rcv+0x28/0x40 [ 106.057673][ T6551] netlink_unicast+0x53c/0x7f0 [ 106.062448][ T6551] ? __pfx_netlink_unicast+0x10/0x10 [ 106.067795][ T6551] ? __phys_addr_symbol+0x30/0x80 [ 106.072842][ T6551] ? __check_object_size+0x488/0x710 [ 106.078151][ T6551] netlink_sendmsg+0x8b8/0xd70 [ 106.083016][ T6551] ? __pfx_netlink_sendmsg+0x10/0x10 [ 106.088411][ T6551] ____sys_sendmsg+0x9ae/0xb40 [ 106.093180][ T6551] ? copy_msghdr_from_user+0x10b/0x160 [ 106.098670][ T6551] ? __pfx_____sys_sendmsg+0x10/0x10 [ 106.103987][ T6551] ___sys_sendmsg+0x135/0x1e0 [ 106.108772][ T6551] ? __pfx____sys_sendmsg+0x10/0x10 [ 106.113994][ T6551] ? __pfx_lock_release+0x10/0x10 [ 106.119059][ T6551] ? trace_lock_acquire+0x14e/0x1f0 [ 106.124317][ T6551] ? __fget_files+0x206/0x3a0 [ 106.129020][ T6551] __sys_sendmsg+0x16e/0x220 [ 106.133643][ T6551] ? __pfx___sys_sendmsg+0x10/0x10 [ 106.138783][ T6551] do_syscall_64+0xcd/0x250 [ 106.143299][ T6551] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.149297][ T6551] RIP: 0033:0x7f7dd7785d19 [ 106.153722][ T6551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 106.173605][ T6551] RSP: 002b:00007f7dd85f8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 106.182115][ T6551] RAX: ffffffffffffffda RBX: 00007f7dd7975fa0 RCX: 00007f7dd7785d19 [ 106.190175][ T6551] RDX: 0000000000000004 RSI: 0000000020000100 RDI: 0000000000000002 [ 106.198153][ T6551] RBP: 00007f7dd85f8090 R08: 0000000000000000 R09: 0000000000000000 [ 106.206128][ T6551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 106.214102][ T6551] R13: 0000000000000000 R14: 00007f7dd7975fa0 R15: 00007ffd5bde5498 [ 106.222104][ T6551] [ 107.897065][ T6571] netlink: 146 bytes leftover after parsing attributes in process `syz.2.146'. [ 108.132613][ T6580] FAULT_INJECTION: forcing a failure. [ 108.132613][ T6580] name failslab, interval 1, probability 0, space 0, times 0 [ 108.165922][ T6580] CPU: 1 UID: 0 PID: 6580 Comm: syz.2.148 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 108.176584][ T6580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 108.186676][ T6580] Call Trace: [ 108.189985][ T6580] [ 108.192936][ T6580] dump_stack_lvl+0x16c/0x1f0 [ 108.197654][ T6580] should_fail_ex+0x497/0x5b0 [ 108.202374][ T6580] ? fs_reclaim_acquire+0xae/0x150 [ 108.207552][ T6580] should_failslab+0xc2/0x120 [ 108.212364][ T6580] __kmalloc_noprof+0xce/0x4f0 [ 108.217168][ T6580] ? d_absolute_path+0x137/0x1b0 [ 108.222156][ T6580] ? tomoyo_encode2+0x100/0x3e0 [ 108.227486][ T6580] tomoyo_encode2+0x100/0x3e0 [ 108.232212][ T6580] tomoyo_realpath_from_path+0x1a7/0x710 [ 108.237895][ T6580] tomoyo_path_number_perm+0x248/0x5b0 [ 108.243400][ T6580] ? tomoyo_path_number_perm+0x235/0x5b0 [ 108.249087][ T6580] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 108.255225][ T6580] ? __pfx_lock_release+0x10/0x10 [ 108.260287][ T6580] ? trace_lock_acquire+0x14e/0x1f0 [ 108.265532][ T6580] ? lock_acquire+0x2f/0xb0 [ 108.270065][ T6580] ? __fget_files+0x40/0x3a0 [ 108.274782][ T6580] ? __fget_files+0x206/0x3a0 [ 108.279469][ T6580] security_file_ioctl+0x9b/0x240 [ 108.284502][ T6580] __x64_sys_ioctl+0xb7/0x200 [ 108.289201][ T6580] do_syscall_64+0xcd/0x250 [ 108.293716][ T6580] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 108.299622][ T6580] RIP: 0033:0x7f5e50785d19 [ 108.304040][ T6580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 108.323754][ T6580] RSP: 002b:00007f5e51534038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 108.332201][ T6580] RAX: ffffffffffffffda RBX: 00007f5e50975fa0 RCX: 00007f5e50785d19 [ 108.340182][ T6580] RDX: 0000000000000000 RSI: 0000000000005412 RDI: 0000000000000005 [ 108.348160][ T6580] RBP: 00007f5e51534090 R08: 0000000000000000 R09: 0000000000000000 [ 108.356133][ T6580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 108.364114][ T6580] R13: 0000000000000000 R14: 00007f5e50975fa0 R15: 00007ffda3d4c5f8 [ 108.372137][ T6580] [ 108.451767][ T6580] ERROR: Out of memory at tomoyo_realpath_from_path. [ 108.846466][ T6586] svc: failed to register nfsdv3 RPC service (errno 111). [ 108.896560][ T6586] svc: failed to register nfsaclv3 RPC service (errno 111). [ 110.286287][ T6617] HSR: entered promiscuous mode [ 110.446093][ T5831] Bluetooth: hci0: SCO packet for unknown connection handle 0 [ 111.148677][ T6638] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 111.511419][ T6645] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 111.529086][ T6643] FAULT_INJECTION: forcing a failure. [ 111.529086][ T6643] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 111.540998][ T6645] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 111.637696][ T6645] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 111.659050][ T6643] CPU: 0 UID: 0 PID: 6643 Comm: syz.0.168 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 111.669789][ T6643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 111.680053][ T6643] Call Trace: [ 111.683429][ T6643] [ 111.686369][ T6643] dump_stack_lvl+0x16c/0x1f0 [ 111.691072][ T6643] should_fail_ex+0x497/0x5b0 [ 111.695760][ T6643] _copy_from_user+0x2e/0xd0 [ 111.700364][ T6643] ____sys_sendmsg+0x56e/0xb40 [ 111.705338][ T6643] ? __pfx_____sys_sendmsg+0x10/0x10 [ 111.710633][ T6643] ? __lock_acquire+0xcc5/0x3c40 [ 111.715606][ T6643] ___sys_sendmsg+0x135/0x1e0 [ 111.720301][ T6643] ? __pfx____sys_sendmsg+0x10/0x10 [ 111.725519][ T6643] ? trace_lock_acquire+0x14e/0x1f0 [ 111.730745][ T6643] __sys_sendmmsg+0x201/0x420 [ 111.735463][ T6643] ? __pfx___sys_sendmmsg+0x10/0x10 [ 111.740687][ T6643] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 111.746691][ T6643] ? fput+0x67/0x440 [ 111.750612][ T6643] ? ksys_write+0x1ba/0x250 [ 111.755128][ T6643] ? __pfx_ksys_write+0x10/0x10 [ 111.760089][ T6643] __x64_sys_sendmmsg+0x9c/0x100 [ 111.765489][ T6643] ? lockdep_hardirqs_on+0x7c/0x110 [ 111.770801][ T6643] do_syscall_64+0xcd/0x250 [ 111.775324][ T6643] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.781314][ T6643] RIP: 0033:0x7f2f51b85d19 [ 111.785747][ T6643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 111.805364][ T6643] RSP: 002b:00007f2f4f9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 111.813810][ T6643] RAX: ffffffffffffffda RBX: 00007f2f51d75fa0 RCX: 00007f2f51b85d19 [ 111.821789][ T6643] RDX: 0000000000000007 RSI: 0000000020000200 RDI: 0000000000000003 [ 111.829767][ T6643] RBP: 00007f2f4f9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 111.837743][ T6643] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 111.845720][ T6643] R13: 0000000000000000 R14: 00007f2f51d75fa0 R15: 00007ffca9d6fa88 [ 111.853706][ T6643] [ 111.894994][ T6645] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 111.931817][ T6645] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 112.046160][ T6645] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 112.137490][ T6645] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 112.160808][ T6645] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 112.236657][ T6645] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 112.342645][ T6645] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 112.349667][ T6645] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 112.355451][ T6637] kexec: Could not allocate control_code_buffer [ 112.415385][ T6645] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 112.716856][ T6663] netlink: 338 bytes leftover after parsing attributes in process `syz.0.175'. [ 112.838479][ T6670] netlink: 342 bytes leftover after parsing attributes in process `syz.2.176'. [ 112.887159][ T5831] Bluetooth: hci3: SCO packet for unknown connection handle 0 [ 113.053056][ T6671] netlink: 330 bytes leftover after parsing attributes in process `syz.3.177'. [ 113.062661][ T6676] netlink: 28 bytes leftover after parsing attributes in process `syz.2.178'. [ 113.191460][ T6678] svc: failed to register nfsdv3 RPC service (errno 111). [ 113.219316][ T6678] svc: failed to register nfsaclv3 RPC service (errno 111). [ 113.272633][ T6681] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 113.596915][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 113.639337][ T6687] netlink: 28 bytes leftover after parsing attributes in process `syz.1.189'. [ 113.796760][ T6687] hsr_slave_0: left promiscuous mode [ 113.803104][ T6687] hsr_slave_1: left promiscuous mode [ 113.916587][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout [ 114.156546][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 114.386479][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout [ 114.411625][ T6683] delete_channel: no stack [ 114.734860][ T5831] Bluetooth: hci3: SCO packet for unknown connection handle 0 [ 114.872810][ T6690] kexec: Could not allocate control_code_buffer [ 115.085361][ T6727] FAULT_INJECTION: forcing a failure. [ 115.085361][ T6727] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 115.099277][ T6728] netlink: 28 bytes leftover after parsing attributes in process `syz.2.192'. [ 115.110750][ T6727] CPU: 0 UID: 0 PID: 6727 Comm: syz.1.193 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 115.121752][ T6727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 115.131838][ T6727] Call Trace: [ 115.135149][ T6727] [ 115.138114][ T6727] dump_stack_lvl+0x16c/0x1f0 [ 115.142844][ T6727] should_fail_ex+0x497/0x5b0 [ 115.147609][ T6727] _copy_to_user+0x32/0xd0 [ 115.152075][ T6727] simple_read_from_buffer+0xd0/0x160 [ 115.157602][ T6727] proc_fail_nth_read+0x198/0x270 [ 115.162680][ T6727] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 115.168295][ T6727] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 115.173894][ T6727] vfs_read+0x1df/0xbe0 [ 115.178270][ T6727] ? __fget_files+0x1fc/0x3a0 [ 115.183250][ T6727] ? __pfx___mutex_lock+0x10/0x10 [ 115.188408][ T6727] ? __pfx_vfs_read+0x10/0x10 [ 115.193319][ T6727] ? __fget_files+0x206/0x3a0 [ 115.198051][ T6727] ksys_read+0x12b/0x250 [ 115.202345][ T6727] ? __pfx_ksys_read+0x10/0x10 [ 115.207156][ T6727] do_syscall_64+0xcd/0x250 [ 115.211706][ T6727] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.217637][ T6727] RIP: 0033:0x7f7dd778472c [ 115.222081][ T6727] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 115.241741][ T6727] RSP: 002b:00007f7dd85f8030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 115.250370][ T6727] RAX: ffffffffffffffda RBX: 00007f7dd7975fa0 RCX: 00007f7dd778472c [ 115.258373][ T6727] RDX: 000000000000000f RSI: 00007f7dd85f80a0 RDI: 0000000000000004 [ 115.264637][ T6734] FAULT_INJECTION: forcing a failure. [ 115.264637][ T6734] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 115.266349][ T6727] RBP: 00007f7dd85f8090 R08: 0000000000000000 R09: 0000000000000000 [ 115.266386][ T6727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 115.266402][ T6727] R13: 0000000000000000 R14: 00007f7dd7975fa0 R15: 00007ffd5bde5498 [ 115.266435][ T6727] [ 115.348165][ T6734] CPU: 0 UID: 0 PID: 6734 Comm: syz.3.195 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 115.359060][ T6734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 115.369160][ T6734] Call Trace: [ 115.372468][ T6734] [ 115.375433][ T6734] dump_stack_lvl+0x16c/0x1f0 [ 115.380162][ T6734] should_fail_ex+0x497/0x5b0 [ 115.384975][ T6734] _copy_from_user+0x2e/0xd0 [ 115.389609][ T6734] copy_msghdr_from_user+0x99/0x160 [ 115.394852][ T6734] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 115.400693][ T6734] ? __lock_acquire+0xcc5/0x3c40 [ 115.405688][ T6734] ? hlock_class+0x4e/0x130 [ 115.410254][ T6734] ? __lock_acquire+0x15a9/0x3c40 [ 115.415345][ T6734] ___sys_sendmsg+0xff/0x1e0 [ 115.419984][ T6734] ? __pfx____sys_sendmsg+0x10/0x10 [ 115.425231][ T6734] ? __pfx___lock_acquire+0x10/0x10 [ 115.430509][ T6734] ? __pfx___might_resched+0x10/0x10 [ 115.435837][ T6734] ? __might_fault+0xe3/0x190 [ 115.440570][ T6734] __sys_sendmmsg+0x201/0x420 [ 115.445301][ T6734] ? __pfx___sys_sendmmsg+0x10/0x10 [ 115.450709][ T6734] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 115.456939][ T6734] ? fput+0x67/0x440 [ 115.460898][ T6734] ? ksys_write+0x1ba/0x250 [ 115.465462][ T6734] ? __pfx_ksys_write+0x10/0x10 [ 115.470542][ T6734] __x64_sys_sendmmsg+0x9c/0x100 [ 115.475543][ T6734] ? lockdep_hardirqs_on+0x7c/0x110 [ 115.479562][ T6733] Process accounting resumed [ 115.480763][ T6734] do_syscall_64+0xcd/0x250 [ 115.480805][ T6734] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.495823][ T6734] RIP: 0033:0x7fa53a185d19 [ 115.500274][ T6734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.519920][ T6734] RSP: 002b:00007fa53aeec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 115.528376][ T6734] RAX: ffffffffffffffda RBX: 00007fa53a375fa0 RCX: 00007fa53a185d19 [ 115.536395][ T6734] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000004 [ 115.544403][ T6734] RBP: 00007fa53aeec090 R08: 0000000000000000 R09: 0000000000000000 [ 115.552496][ T6734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 115.560504][ T6734] R13: 0000000000000000 R14: 00007fa53a375fa0 R15: 00007ffcc04d6778 [ 115.568542][ T6734] [ 115.648667][ T6740] FAULT_INJECTION: forcing a failure. [ 115.648667][ T6740] name failslab, interval 1, probability 0, space 0, times 0 [ 115.666633][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 115.708518][ T6740] CPU: 1 UID: 7 PID: 6740 Comm: syz.3.198 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 115.708599][ T6728] team0: Port device team_slave_0 removed [ 115.719452][ T6740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 115.719487][ T6740] Call Trace: [ 115.719498][ T6740] [ 115.719509][ T6740] dump_stack_lvl+0x16c/0x1f0 [ 115.719541][ T6740] should_fail_ex+0x497/0x5b0 [ 115.719569][ T6740] ? fs_reclaim_acquire+0xae/0x150 [ 115.719596][ T6740] should_failslab+0xc2/0x120 [ 115.719626][ T6740] __kmalloc_noprof+0xce/0x4f0 [ 115.719652][ T6740] ? d_absolute_path+0x137/0x1b0 [ 115.719682][ T6740] ? tomoyo_encode2+0x100/0x3e0 [ 115.719715][ T6740] tomoyo_encode2+0x100/0x3e0 [ 115.719754][ T6740] tomoyo_realpath_from_path+0x1a7/0x710 [ 115.719798][ T6740] tomoyo_path_number_perm+0x248/0x5b0 [ 115.719833][ T6740] ? tomoyo_path_number_perm+0x235/0x5b0 [ 115.719871][ T6740] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 115.803677][ T6740] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 115.809401][ T6740] ? lockdep_hardirqs_on+0x7c/0x110 [ 115.814851][ T6740] security_file_ioctl+0x9b/0x240 [ 115.819925][ T6740] __x64_sys_ioctl+0xb7/0x200 [ 115.824673][ T6740] do_syscall_64+0xcd/0x250 [ 115.829230][ T6740] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.835177][ T6740] RIP: 0033:0x7fa53a185d19 [ 115.839645][ T6740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.859291][ T6740] RSP: 002b:00007fa53aeec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 115.867831][ T6740] RAX: ffffffffffffffda RBX: 00007fa53a375fa0 RCX: 00007fa53a185d19 [ 115.875848][ T6740] RDX: 0000000000000001 RSI: 0000000000004b47 RDI: 0000000000000000 [ 115.883858][ T6740] RBP: 00007fa53aeec090 R08: 0000000000000000 R09: 0000000000000000 [ 115.891862][ T6740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 115.899866][ T6740] R13: 0000000000000000 R14: 00007fa53a375fa0 R15: 00007ffcc04d6778 [ 115.907904][ T6740] [ 115.940448][ T6740] ERROR: Out of memory at tomoyo_realpath_from_path. [ 115.996606][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout [ 116.066949][ T6741] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 116.073177][ T6741] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 116.089818][ T6741] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 116.107034][ T6741] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 116.177655][ T6753] openvswitch: netlink: nsh attribute has 14 unknown bytes. [ 116.195063][ T5834] Bluetooth: hci0: SCO packet for unknown connection handle 0 [ 117.201829][ T6780] process 'syz.2.211' launched '' with NULL argv: empty string added [ 117.707815][ T6798] could not allocate digest TFM handle [ 117.975528][ T6806] svc: failed to register nfsdv3 RPC service (errno 101). [ 118.007413][ T6806] svc: failed to register nfsaclv3 RPC service (errno 101). [ 118.153430][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout [ 118.164361][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 118.173573][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout [ 118.210924][ T54] Bluetooth: hci0: SCO packet for unknown connection handle 0 [ 118.354771][ T6792] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 118.401192][ T6792] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 118.426787][ T6792] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 118.433028][ T6792] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 118.848585][ T6828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.220'. [ 118.881567][ T6828] tc_dump_action: action bad kind [ 118.898740][ T6828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.220'. [ 118.916525][ T6828] tc_dump_action: action bad kind [ 118.921789][ T6828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.220'. [ 118.956007][ T6828] tc_dump_action: action bad kind [ 118.976809][ T6828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.220'. [ 119.001596][ T6828] tc_dump_action: action bad kind [ 119.029648][ T6828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.220'. [ 119.066522][ T6828] tc_dump_action: action bad kind [ 119.077033][ T6828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.220'. [ 119.126893][ T6828] tc_dump_action: action bad kind [ 119.140319][ T6828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.220'. [ 119.196459][ T6828] tc_dump_action: action bad kind [ 119.201725][ T6828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.220'. [ 119.311930][ T6828] tc_dump_action: action bad kind [ 119.337983][ T6828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.220'. [ 119.396736][ T6828] tc_dump_action: action bad kind [ 119.416942][ T6828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.220'. [ 119.454226][ T6828] tc_dump_action: action bad kind [ 119.479004][ T6828] tc_dump_action: action bad kind [ 119.495703][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 119.535777][ T6828] tc_dump_action: action bad kind [ 119.587885][ T6828] tc_dump_action: action bad kind [ 119.593191][ T6828] tc_dump_action: action bad kind [ 119.598716][ T6828] tc_dump_action: action bad kind [ 119.603963][ T6828] tc_dump_action: action bad kind [ 119.639914][ T6828] tc_dump_action: action bad kind [ 119.645671][ T6828] tc_dump_action: action bad kind [ 119.651500][ T6828] tc_dump_action: action bad kind [ 119.656896][ T6828] tc_dump_action: action bad kind [ 119.746876][ T54] Bluetooth: hci0: command 0x0c1a tx timeout [ 120.078842][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 120.377024][ T6862] netlink: 'syz.1.230': attribute type 11 has an invalid length. [ 120.466811][ T54] Bluetooth: hci3: command 0x0c1a tx timeout [ 120.470337][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout [ 120.476642][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout [ 120.572545][ T6862] bond0: (slave bond_slave_1): Releasing backup interface [ 120.717489][ T6868] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 120.723730][ T6868] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 120.744659][ T6868] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 120.786889][ T6868] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 120.899752][ T6866] mac80211_hwsim hwsim5 wlan0: entered promiscuous mode [ 120.916458][ T6866] mac80211_hwsim hwsim5 wlan0: entered allmulticast mode [ 121.540304][ T5831] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 122.806490][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 122.820318][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout [ 122.826485][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 122.877198][ T54] Bluetooth: hci3: command 0x0c1a tx timeout [ 122.907420][ T6928] FAULT_INJECTION: forcing a failure. [ 122.907420][ T6928] name failslab, interval 1, probability 0, space 0, times 0 [ 123.001770][ T6928] CPU: 1 UID: 0 PID: 6928 Comm: syz.1.248 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 123.012525][ T6928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 123.022638][ T6928] Call Trace: [ 123.025945][ T6928] [ 123.028906][ T6928] dump_stack_lvl+0x16c/0x1f0 [ 123.033712][ T6928] should_fail_ex+0x497/0x5b0 [ 123.038452][ T6928] ? fs_reclaim_acquire+0xae/0x150 [ 123.044135][ T6928] should_failslab+0xc2/0x120 [ 123.048954][ T6928] __kmalloc_noprof+0xce/0x4f0 [ 123.053792][ T6928] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 123.059598][ T6928] ? tomoyo_realpath_from_path+0xbf/0x710 [ 123.065375][ T6928] tomoyo_realpath_from_path+0xbf/0x710 [ 123.071002][ T6928] ? tomoyo_path_number_perm+0x235/0x5b0 [ 123.076700][ T6928] tomoyo_path_number_perm+0x248/0x5b0 [ 123.082251][ T6928] ? tomoyo_path_number_perm+0x235/0x5b0 [ 123.087944][ T6928] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 123.094071][ T6928] ? __pfx_lock_release+0x10/0x10 [ 123.099170][ T6928] ? trace_lock_acquire+0x14e/0x1f0 [ 123.104438][ T6928] ? lock_acquire+0x2f/0xb0 [ 123.108981][ T6928] ? __fget_files+0x40/0x3a0 [ 123.113620][ T6928] ? __fget_files+0x206/0x3a0 [ 123.118340][ T6928] security_file_ioctl+0x9b/0x240 [ 123.123408][ T6928] __x64_sys_ioctl+0xb7/0x200 [ 123.128133][ T6928] do_syscall_64+0xcd/0x250 [ 123.132698][ T6928] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.138643][ T6928] RIP: 0033:0x7f7dd7785d19 [ 123.143269][ T6928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 123.162922][ T6928] RSP: 002b:00007f7dd85d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 123.171383][ T6928] RAX: ffffffffffffffda RBX: 00007f7dd7976080 RCX: 00007f7dd7785d19 [ 123.179398][ T6928] RDX: 0000000000000007 RSI: 0000000040104d05 RDI: 0000000000000006 [ 123.187416][ T6928] RBP: 00007f7dd85d7090 R08: 0000000000000000 R09: 0000000000000000 [ 123.195427][ T6928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 123.203523][ T6928] R13: 0000000000000000 R14: 00007f7dd7976080 R15: 00007ffd5bde5498 [ 123.211571][ T6928] [ 123.245364][ T6928] ERROR: Out of memory at tomoyo_realpath_from_path. [ 123.949449][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 125.340814][ T6981] FAULT_INJECTION: forcing a failure. [ 125.340814][ T6981] name failslab, interval 1, probability 0, space 0, times 0 [ 125.396421][ T6981] CPU: 1 UID: 0 PID: 6981 Comm: syz.1.262 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 125.407073][ T6981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 125.417245][ T6981] Call Trace: [ 125.420633][ T6981] [ 125.423609][ T6981] dump_stack_lvl+0x16c/0x1f0 [ 125.428325][ T6981] should_fail_ex+0x497/0x5b0 [ 125.433043][ T6981] ? fs_reclaim_acquire+0xae/0x150 [ 125.438200][ T6981] should_failslab+0xc2/0x120 [ 125.442931][ T6981] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 125.448353][ T6981] ? getname_flags.part.0+0x4c/0x550 [ 125.453684][ T6981] ? vfs_write+0x306/0x1150 [ 125.458233][ T6981] getname_flags.part.0+0x4c/0x550 [ 125.463393][ T6981] getname+0x8d/0xe0 [ 125.467307][ T6981] do_sys_openat2+0x104/0x1e0 [ 125.472007][ T6981] ? __pfx_do_sys_openat2+0x10/0x10 [ 125.477263][ T6981] ? __fget_files+0x206/0x3a0 [ 125.481953][ T6981] __x64_sys_openat+0x175/0x210 [ 125.486817][ T6981] ? __pfx___x64_sys_openat+0x10/0x10 [ 125.492335][ T6981] ? ksys_write+0x1ba/0x250 [ 125.496886][ T6981] do_syscall_64+0xcd/0x250 [ 125.501486][ T6981] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.507388][ T6981] RIP: 0033:0x7f7dd7785d19 [ 125.511812][ T6981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.531537][ T6981] RSP: 002b:00007f7dd85f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 125.539967][ T6981] RAX: ffffffffffffffda RBX: 00007f7dd7975fa0 RCX: 00007f7dd7785d19 [ 125.547946][ T6981] RDX: 0000000000000002 RSI: 0000000020000100 RDI: ffffffffffffff9c [ 125.555919][ T6981] RBP: 00007f7dd85f8090 R08: 0000000000000000 R09: 0000000000000000 [ 125.563894][ T6981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 125.571879][ T6981] R13: 0000000000000001 R14: 00007f7dd7975fa0 R15: 00007ffd5bde5498 [ 125.580043][ T6981] [ 125.917045][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 128.474883][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 128.546995][ T7046] ubi0: attaching mtd0 [ 128.598448][ T7046] ubi0: scanning is finished [ 128.603154][ T7046] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 128.863194][ T7046] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 129.211988][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 130.337310][ T7078] syz.0.290 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 130.516889][ T7079] __nla_validate_parse: 12 callbacks suppressed [ 130.516914][ T7079] netlink: 28 bytes leftover after parsing attributes in process `syz.1.292'. [ 130.551194][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 130.598975][ T7086] Process accounting resumed [ 131.060761][ T7079] team0: Port device team_slave_0 removed [ 133.202751][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.209415][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 136.104184][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 138.025953][ T7207] ubi0: attaching mtd0 [ 138.081177][ T7207] ubi0: scanning is finished [ 138.081238][ T7207] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 138.483203][ T7207] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 139.316425][ T54] Bluetooth: hci3: SCO packet for unknown connection handle 0 [ 141.707132][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 142.147344][ T7281] netlink: 8 bytes leftover after parsing attributes in process `syz.2.348'. [ 143.020016][ T6883] syz.3.236 (6883) used greatest stack depth: 17184 bytes left [ 143.527278][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 145.209069][ T5821] udevd[5821]: inotify_add_watch(7, /dev/sda1, 10) failed: No such file or directory [ 145.652958][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 146.852962][ T29] audit: type=1800 audit(1734178039.359:3): pid=7385 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.375" name="version" dev="configfs" ino=12902 res=0 errno=0 [ 146.866886][ T7376] netlink: 28 bytes leftover after parsing attributes in process `syz.3.372'. [ 147.102651][ T7376] geneve1: entered allmulticast mode [ 148.085926][ T7402] netlink: 'syz.1.380': attribute type 29 has an invalid length. [ 148.116517][ T7402] netlink: 334 bytes leftover after parsing attributes in process `syz.1.380'. [ 148.286667][ T7402] netlink: 8 bytes leftover after parsing attributes in process `syz.1.380'. [ 149.093242][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 151.388337][ T7454] netlink: 20 bytes leftover after parsing attributes in process `syz.1.394'. [ 151.684582][ T7459] netlink: 20 bytes leftover after parsing attributes in process `syz.1.404'. [ 151.753373][ T7462] netlink: 'syz.2.396': attribute type 29 has an invalid length. [ 151.816538][ T7462] netlink: 334 bytes leftover after parsing attributes in process `syz.2.396'. [ 151.865905][ T7463] netlink: 8 bytes leftover after parsing attributes in process `syz.2.396'. [ 152.028654][ T54] Bluetooth: hci3: SCO packet for unknown connection handle 0 [ 154.708388][ T7498] netlink: 20 bytes leftover after parsing attributes in process `syz.2.407'. [ 156.625812][ T7531] netlink: 20 bytes leftover after parsing attributes in process `syz.0.416'. [ 157.825212][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 158.959944][ T7563] netlink: 20 bytes leftover after parsing attributes in process `syz.0.427'. [ 161.808945][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 163.026948][ T5831] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 163.109286][ T5831] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 163.169280][ T5831] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 163.192299][ T5831] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 163.212196][ T5831] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 163.221116][ T5831] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 163.713072][ T3559] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 163.986780][ T3559] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.234464][ T3559] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.290009][ T7598] chnl_net:caif_netlink_parms(): no params data found [ 164.459009][ T3559] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.715106][ T7598] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.715175][ T7598] bridge0: port 1(bridge_slave_0) entered disabled state [ 164.715314][ T7598] bridge_slave_0: entered allmulticast mode [ 164.717254][ T7598] bridge_slave_0: entered promiscuous mode [ 164.755917][ T7598] bridge0: port 2(bridge_slave_1) entered blocking state [ 164.756004][ T7598] bridge0: port 2(bridge_slave_1) entered disabled state [ 164.756183][ T7598] bridge_slave_1: entered allmulticast mode [ 164.758378][ T7598] bridge_slave_1: entered promiscuous mode [ 164.952003][ T7632] netlink: 4 bytes leftover after parsing attributes in process `syz.0.447'. [ 164.953940][ T7598] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 164.961417][ T7598] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 165.173523][ T3559] bridge_slave_1: left allmulticast mode [ 165.173640][ T3559] bridge_slave_1: left promiscuous mode [ 165.175362][ T3559] bridge0: port 2(bridge_slave_1) entered disabled state [ 165.242053][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 165.269240][ T3559] bridge_slave_0: left allmulticast mode [ 165.286441][ T54] Bluetooth: hci4: command tx timeout [ 165.295785][ T3559] bridge_slave_0: left promiscuous mode [ 165.307552][ T3559] bridge0: port 1(bridge_slave_0) entered disabled state [ 166.005721][ T7652] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 166.452424][ T3559] bond0 (unregistering): Released all slaves [ 166.550231][ T7598] team0: Port device team_slave_0 added [ 166.568628][ T7598] team0: Port device team_slave_1 added [ 166.794377][ T7658] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 166.805745][ T7598] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 166.821341][ T7598] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 166.851838][ T7658] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 166.894172][ T7598] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 166.955398][ T7598] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 166.977044][ T7598] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 167.038628][ T7598] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 167.049448][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 167.348433][ T54] Bluetooth: hci4: command tx timeout [ 167.496631][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 167.505183][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 167.514064][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 167.536085][ T7669] netlink: 28 bytes leftover after parsing attributes in process `syz.2.457'. [ 167.578873][ T7598] hsr_slave_0: entered promiscuous mode [ 167.585284][ T7598] hsr_slave_1: entered promiscuous mode [ 167.604602][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 167.677003][ T3559] hsr_slave_0: left promiscuous mode [ 167.714007][ T3559] hsr_slave_1: left promiscuous mode [ 167.731509][ T3559] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 167.744137][ T3559] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 167.775014][ T3559] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 167.786687][ T3559] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 167.846416][ T3559] veth1_macvtap: left promiscuous mode [ 167.852508][ T3559] veth0_macvtap: left promiscuous mode [ 167.859576][ T3559] veth1_vlan: left promiscuous mode [ 167.865974][ T3559] veth0_vlan: left promiscuous mode [ 167.940849][ T29] audit: type=1800 audit(1734178060.459:4): pid=7701 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.462" name="discovery_nqn" dev="configfs" ino=13173 res=0 errno=0 [ 168.474665][ T3559] team0 (unregistering): Port device team_slave_1 removed [ 168.523291][ T3559] team0 (unregistering): Port device team_slave_0 removed [ 169.357298][ T7598] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 169.396716][ T7598] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 169.426820][ T54] Bluetooth: hci4: command tx timeout [ 169.447133][ T7598] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 169.482626][ T7598] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 169.728572][ T7598] 8021q: adding VLAN 0 to HW filter on device bond0 [ 169.783365][ T7598] 8021q: adding VLAN 0 to HW filter on device team0 [ 169.795399][ T3500] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.802607][ T3500] bridge0: port 1(bridge_slave_0) entered forwarding state [ 169.822532][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 169.903539][ T3500] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.918610][ T3500] bridge0: port 2(bridge_slave_1) entered forwarding state [ 169.973710][ T7598] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 170.024638][ T7598] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 170.488078][ T7598] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 170.721550][ T7763] netlink: 'syz.1.474': attribute type 1 has an invalid length. [ 170.774173][ T7774] netlink: 'syz.0.476': attribute type 29 has an invalid length. [ 170.800443][ T7774] netlink: 334 bytes leftover after parsing attributes in process `syz.0.476'. [ 170.961321][ T7653] udevd[7653]: inotify_add_watch(7, /dev/sda1, 10) failed: No such file or directory [ 171.072066][ T7598] veth0_vlan: entered promiscuous mode [ 171.101091][ T7598] veth1_vlan: entered promiscuous mode [ 171.181482][ T7598] veth0_macvtap: entered promiscuous mode [ 171.220716][ T7598] veth1_macvtap: entered promiscuous mode [ 171.255029][ T7598] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 171.287152][ T7598] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.321852][ T7598] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 171.356388][ T7598] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.372121][ T7598] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 171.411885][ T7598] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.437853][ T7598] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 171.485537][ T7598] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 171.506898][ T54] Bluetooth: hci4: command tx timeout [ 171.516894][ T7598] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.555787][ T7598] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 171.575331][ T7598] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.585908][ T7598] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 171.596583][ T7598] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.607406][ T7598] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 171.692186][ T7598] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.702420][ T7598] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.713746][ T7598] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.721999][ T7805] netlink: 334 bytes leftover after parsing attributes in process `syz.1.483'. [ 171.733999][ T7598] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.747584][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 172.108079][ T1101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 172.156566][ T1101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 172.255978][ T1074] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 172.263946][ T1074] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 173.305956][ T54] Bluetooth: hci3: SCO packet for unknown connection handle 0 [ 173.612835][ T7858] netlink: 28 bytes leftover after parsing attributes in process `syz.4.494'. [ 173.652123][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 173.656694][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 173.669243][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 173.678047][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 173.747606][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 174.067313][ T7884] netlink: 28 bytes leftover after parsing attributes in process `syz.4.497'. [ 174.101787][ T7884] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 174.132361][ T7884] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 174.148790][ T7884] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 174.176538][ T7884] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 174.338925][ T7899] netlink: 342 bytes leftover after parsing attributes in process `syz.0.501'. [ 174.607983][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 175.042929][ T7932] netlink: 'syz.1.506': attribute type 29 has an invalid length. [ 175.079172][ T7932] netlink: 334 bytes leftover after parsing attributes in process `syz.1.506'. [ 175.500896][ T7951] svc: failed to register nfsdv3 RPC service (errno 111). [ 175.509125][ T7951] svc: failed to register nfsaclv3 RPC service (errno 111). [ 175.732513][ T7960] netlink: 8 bytes leftover after parsing attributes in process `syz.0.512'. [ 175.967642][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 176.155632][ T29] audit: type=1800 audit(1734178068.669:5): pid=7977 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.524" name="dbroot" dev="configfs" ino=15826 res=0 errno=0 [ 176.316560][ T7986] netlink: 28 bytes leftover after parsing attributes in process `syz.2.518'. [ 176.349977][ T7986] ip_vti0: entered promiscuous mode [ 177.122005][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 177.847962][ T8063] netlink: 'syz.2.536': attribute type 29 has an invalid length. [ 177.883205][ T8063] netlink: 334 bytes leftover after parsing attributes in process `syz.2.536'. [ 178.096471][ T54] Bluetooth: hci4: SCO packet for unknown connection handle 0 [ 178.743143][ T8106] Process accounting resumed [ 178.777395][ T8106] netlink: 28 bytes leftover after parsing attributes in process `syz.2.549'. [ 178.791668][ T8106] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode [ 178.799834][ T8106] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode [ 178.818016][ T8108] netlink: 'syz.4.550': attribute type 29 has an invalid length. [ 178.833059][ T8108] netlink: 334 bytes leftover after parsing attributes in process `syz.4.550'. [ 179.313136][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 179.345401][ T8126] FAULT_INJECTION: forcing a failure. [ 179.345401][ T8126] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 179.395159][ T8126] CPU: 0 UID: 0 PID: 8126 Comm: syz.0.554 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 179.405836][ T8126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 179.415909][ T8126] Call Trace: [ 179.419190][ T8126] [ 179.422124][ T8126] dump_stack_lvl+0x16c/0x1f0 [ 179.426811][ T8126] should_fail_ex+0x497/0x5b0 [ 179.431499][ T8126] _copy_from_user+0x2e/0xd0 [ 179.436105][ T8126] copy_msghdr_from_user+0x99/0x160 [ 179.441327][ T8126] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 179.447143][ T8126] ? __lock_acquire+0xcc5/0x3c40 [ 179.452116][ T8126] ___sys_sendmsg+0xff/0x1e0 [ 179.456719][ T8126] ? __pfx____sys_sendmsg+0x10/0x10 [ 179.461935][ T8126] ? trace_lock_acquire+0x14e/0x1f0 [ 179.467156][ T8126] __sys_sendmmsg+0x201/0x420 [ 179.471843][ T8126] ? __pfx___sys_sendmmsg+0x10/0x10 [ 179.477086][ T8126] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 179.483104][ T8126] ? fput+0x67/0x440 [ 179.487021][ T8126] ? ksys_write+0x1ba/0x250 [ 179.491531][ T8126] ? __pfx_ksys_write+0x10/0x10 [ 179.496394][ T8126] __x64_sys_sendmmsg+0x9c/0x100 [ 179.501352][ T8126] ? lockdep_hardirqs_on+0x7c/0x110 [ 179.506645][ T8126] do_syscall_64+0xcd/0x250 [ 179.511157][ T8126] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.517054][ T8126] RIP: 0033:0x7f2f51b85d19 [ 179.521475][ T8126] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.541099][ T8126] RSP: 002b:00007f2f4f9d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 179.549523][ T8126] RAX: ffffffffffffffda RBX: 00007f2f51d76080 RCX: 00007f2f51b85d19 [ 179.557503][ T8126] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003 [ 179.565478][ T8126] RBP: 00007f2f4f9d5090 R08: 0000000000000000 R09: 0000000000000000 [ 179.573540][ T8126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 179.581525][ T8126] R13: 0000000000000000 R14: 00007f2f51d76080 R15: 00007ffca9d6fa88 [ 179.589515][ T8126] [ 179.712281][ T8137] netlink: 8 bytes leftover after parsing attributes in process `syz.1.556'. [ 180.078607][ T8141] netlink: 330 bytes leftover after parsing attributes in process `syz.1.557'. [ 180.088918][ T8149] netlink: 'syz.0.560': attribute type 29 has an invalid length. [ 180.100391][ T8141] : renamed from wg0 (while UP) [ 180.107668][ T8149] netlink: 334 bytes leftover after parsing attributes in process `syz.0.560'. [ 180.886951][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 181.683060][ T8184] netlink: 16 bytes leftover after parsing attributes in process `syz.4.571'. [ 181.942726][ T29] audit: type=1800 audit(1734178074.459:6): pid=8188 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.572" name="features" dev="configfs" ino=15314 res=0 errno=0 [ 182.114551][ T8171] kexec: Could not allocate control_code_buffer [ 182.191663][ T8188] netlink: 8 bytes leftover after parsing attributes in process `syz.2.572'. [ 182.417941][ T54] Bluetooth: hci4: SCO packet for unknown connection handle 0 [ 182.483548][ T8210] netlink: 'syz.2.578': attribute type 29 has an invalid length. [ 182.543380][ T8210] netlink: 334 bytes leftover after parsing attributes in process `syz.2.578'. [ 182.586637][ T8213] netlink: 'syz.4.579': attribute type 29 has an invalid length. [ 182.604770][ T8213] netlink: 334 bytes leftover after parsing attributes in process `syz.4.579'. [ 182.741569][ T8215] netlink: 'syz.2.588': attribute type 29 has an invalid length. [ 182.760824][ T8215] netlink: 334 bytes leftover after parsing attributes in process `syz.2.588'. [ 183.330726][ T8230] netlink: 8 bytes leftover after parsing attributes in process `syz.0.584'. [ 183.757000][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 184.347594][ T8261] netlink: 'syz.2.591': attribute type 29 has an invalid length. [ 184.411925][ T8261] netlink: 334 bytes leftover after parsing attributes in process `syz.2.591'. [ 186.980145][ T8328] netlink: 330 bytes leftover after parsing attributes in process `syz.4.612'. [ 187.008855][ T8328] : renamed from wg0 (while UP) [ 187.386623][ T8335] FAULT_INJECTION: forcing a failure. [ 187.386623][ T8335] name failslab, interval 1, probability 0, space 0, times 0 [ 187.586711][ T8335] CPU: 0 UID: 0 PID: 8335 Comm: syz.0.615 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 187.597547][ T8335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 187.607643][ T8335] Call Trace: [ 187.610952][ T8335] [ 187.613901][ T8335] dump_stack_lvl+0x16c/0x1f0 [ 187.618623][ T8335] should_fail_ex+0x497/0x5b0 [ 187.623337][ T8335] ? fs_reclaim_acquire+0xae/0x150 [ 187.628481][ T8335] should_failslab+0xc2/0x120 [ 187.633186][ T8335] __kmalloc_cache_noprof+0x68/0x420 [ 187.638746][ T8335] allocate_file_region_entries+0x1a3/0x620 [ 187.644654][ T8335] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 187.651090][ T8335] region_chg+0x85/0x140 [ 187.655345][ T8335] __vma_reservation_common+0x43d/0x740 [ 187.660907][ T8335] ? __pfx___vma_reservation_common+0x10/0x10 [ 187.666998][ T8335] ? huge_pte_alloc+0x22e/0x3a0 [ 187.671957][ T8335] hugetlb_fault+0x15fb/0x2fb0 [ 187.676735][ T8335] ? __pfx_hugetlb_fault+0x10/0x10 [ 187.681869][ T8335] ? find_vma+0xc0/0x140 [ 187.686118][ T8335] ? __pfx_find_vma+0x10/0x10 [ 187.690805][ T8335] handle_mm_fault+0x930/0xaa0 [ 187.695587][ T8335] do_user_addr_fault+0x7a3/0x13f0 [ 187.700713][ T8335] exc_page_fault+0x5c/0xc0 [ 187.705348][ T8335] asm_exc_page_fault+0x26/0x30 [ 187.710205][ T8335] RIP: 0010:__put_user_nocheck_4+0x7/0x20 [ 187.715938][ T8335] Code: d9 0f 01 cb 89 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 [ 187.735556][ T8335] RSP: 0018:ffffc900031279f8 EFLAGS: 00050293 [ 187.741728][ T8335] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000030 [ 187.749704][ T8335] RDX: ffff88802ff83c00 RSI: ffffffff88f34bb4 RDI: 0000000000000005 [ 187.757687][ T8335] RBP: ffffc90003127d98 R08: 0000000000000005 R09: 0000000000000000 [ 187.765660][ T8335] R10: 0000000000000006 R11: 0000000000000000 R12: 0000000000000000 [ 187.773634][ T8335] R13: 0000000000000000 R14: ffffc90003127ddc R15: 0000000000000006 [ 187.781628][ T8335] ? ____sys_recvmsg+0x2e4/0x6b0 [ 187.786584][ T8335] ____sys_recvmsg+0x2ef/0x6b0 [ 187.791373][ T8335] ? __pfx_____sys_recvmsg+0x10/0x10 [ 187.796771][ T8335] ___sys_recvmsg+0x115/0x1a0 [ 187.801457][ T8335] ? __pfx____sys_recvmsg+0x10/0x10 [ 187.806673][ T8335] ? __pfx_lock_release+0x10/0x10 [ 187.811802][ T8335] ? trace_lock_acquire+0x14e/0x1f0 [ 187.817040][ T8335] do_recvmmsg+0x2f8/0x740 [ 187.821475][ T8335] ? __pfx_do_recvmmsg+0x10/0x10 [ 187.826419][ T8335] ? vfs_write+0x306/0x1150 [ 187.830935][ T8335] ? __mutex_unlock_slowpath+0x164/0x690 [ 187.836603][ T8335] ? __fget_files+0x206/0x3a0 [ 187.841310][ T8335] __x64_sys_recvmmsg+0x239/0x290 [ 187.846627][ T8335] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 187.852181][ T8335] ? syscall_user_dispatch+0x77/0x140 [ 187.857569][ T8335] do_syscall_64+0xcd/0x250 [ 187.862090][ T8335] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.867992][ T8335] RIP: 0033:0x7f2f51b85d19 [ 187.872436][ T8335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.892054][ T8335] RSP: 002b:00007f2f4f9f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 187.900488][ T8335] RAX: ffffffffffffffda RBX: 00007f2f51d75fa0 RCX: 00007f2f51b85d19 [ 187.908474][ T8335] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 187.916532][ T8335] RBP: 00007f2f4f9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 187.924506][ T8335] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 187.932565][ T8335] R13: 0000000000000000 R14: 00007f2f51d75fa0 R15: 00007ffca9d6fa88 [ 187.940566][ T8335] [ 188.038661][ T8336] netlink: 4 bytes leftover after parsing attributes in process `syz.0.615'. [ 188.406002][ T8346] netlink: 4 bytes leftover after parsing attributes in process `syz.2.617'. [ 189.465802][ T8376] netlink: 'syz.2.623': attribute type 11 has an invalid length. [ 190.080209][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 190.559000][ T8411] netlink: 28 bytes leftover after parsing attributes in process `syz.2.627'. [ 190.596443][ T8411] bridge_slave_1: left allmulticast mode [ 190.602243][ T8411] bridge_slave_1: left promiscuous mode [ 190.627393][ T8411] bridge0: port 2(bridge_slave_1) entered disabled state [ 190.685217][ T8411] bridge_slave_0: left allmulticast mode [ 190.692577][ T8411] bridge_slave_0: left promiscuous mode [ 190.712354][ T8411] bridge0: port 1(bridge_slave_0) entered disabled state [ 191.231230][ T8429] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 192.084409][ T8467] nvme_fabrics: unknown parameter or missing value '7' in ctrl creation request [ 192.218983][ T8482] nvme_fabrics: unknown parameter or missing value 'cover enable write trace failed' in ctrl creation request [ 192.256580][ T8482] nvme_fabrics: unknown parameter or missing value ' (errno 9)' in ctrl creation request [ 192.272888][ T8483] netlink: 4 bytes leftover after parsing attributes in process `syz.0.640'. [ 192.308663][ T8480] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 192.318842][ T8483] netlink: 4 bytes leftover after parsing attributes in process `syz.0.640'. [ 193.559916][ T8539] netlink: zone id is out of range [ 193.580214][ T8539] netlink: set zone limit has 8 unknown bytes [ 194.381072][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 194.635762][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.649811][ T29] audit: type=1800 audit(1734178087.159:7): pid=8603 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.661" name="features" dev="configfs" ino=17895 res=0 errno=0 [ 194.666584][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.041165][ T8616] netlink: 16 bytes leftover after parsing attributes in process `syz.0.665'. [ 195.244411][ T8619] netlink: 8 bytes leftover after parsing attributes in process `syz.0.666'. [ 195.924222][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 196.842057][ T8659] cifs: Unknown parameter 'à' [ 197.827154][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 198.096412][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 198.393644][ T8707] FAULT_INJECTION: forcing a failure. [ 198.393644][ T8707] name failslab, interval 1, probability 0, space 0, times 0 [ 198.414609][ T8707] CPU: 0 UID: 0 PID: 8707 Comm: syz.4.685 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 198.425248][ T8707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 198.435332][ T8707] Call Trace: [ 198.438634][ T8707] [ 198.441622][ T8707] dump_stack_lvl+0x16c/0x1f0 [ 198.446328][ T8707] should_fail_ex+0x497/0x5b0 [ 198.451084][ T8707] ? fs_reclaim_acquire+0xae/0x150 [ 198.456245][ T8707] should_failslab+0xc2/0x120 [ 198.460964][ T8707] __kmalloc_node_track_caller_noprof+0xcf/0x520 [ 198.467338][ T8707] ? rsi_parse+0x43b/0x7c0 [ 198.471797][ T8707] kmemdup_noprof+0x29/0x60 [ 198.476317][ T8707] rsi_parse+0x43b/0x7c0 [ 198.480729][ T8707] ? __pfx_rsi_parse+0x10/0x10 [ 198.485540][ T8707] ? find_held_lock+0x2d/0x110 [ 198.490344][ T8707] ? __might_fault+0xe3/0x190 [ 198.495040][ T8707] ? __might_fault+0xe3/0x190 [ 198.499760][ T8707] cache_do_downcall+0xdc/0x140 [ 198.504639][ T8707] cache_write_procfs+0xf0/0x160 [ 198.509862][ T8707] ? __pfx_cache_write_procfs+0x10/0x10 [ 198.515430][ T8707] proc_reg_write+0x23d/0x330 [ 198.520124][ T8707] ? __pfx_proc_reg_write+0x10/0x10 [ 198.525337][ T8707] vfs_write+0x24c/0x1150 [ 198.529770][ T8707] ? __fget_files+0x1fc/0x3a0 [ 198.534461][ T8707] ? __pfx___mutex_lock+0x10/0x10 [ 198.539537][ T8707] ? __pfx_vfs_write+0x10/0x10 [ 198.544316][ T8707] ? __fget_files+0x206/0x3a0 [ 198.549024][ T8707] ksys_write+0x12b/0x250 [ 198.553370][ T8707] ? __pfx_ksys_write+0x10/0x10 [ 198.558243][ T8707] do_syscall_64+0xcd/0x250 [ 198.562768][ T8707] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.568760][ T8707] RIP: 0033:0x7f2a76585d19 [ 198.573180][ T8707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.592807][ T8707] RSP: 002b:00007f2a743f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 198.601233][ T8707] RAX: ffffffffffffffda RBX: 00007f2a76775fa0 RCX: 00007f2a76585d19 [ 198.609213][ T8707] RDX: 0000000000000009 RSI: 0000000020000080 RDI: 0000000000000003 [ 198.617455][ T8707] RBP: 00007f2a743f6090 R08: 0000000000000000 R09: 0000000000000000 [ 198.625464][ T8707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 198.633675][ T8707] R13: 0000000000000000 R14: 00007f2a76775fa0 R15: 00007ffe606133b8 [ 198.641671][ T8707] [ 199.144161][ T8722] netlink: zone id is out of range [ 199.180218][ T8722] netlink: set zone limit has 8 unknown bytes [ 199.230640][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 200.876197][ T54] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 201.002133][ T54] Bluetooth: hci3: ACL packet too small [ 202.540578][ T54] Bluetooth: hci4: SCO packet for unknown connection handle 0 [ 204.513799][ T8866] FAULT_INJECTION: forcing a failure. [ 204.513799][ T8866] name failslab, interval 1, probability 0, space 0, times 0 [ 204.572922][ T8866] CPU: 1 UID: 0 PID: 8866 Comm: syz.0.732 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 204.583582][ T8866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 204.593640][ T8866] Call Trace: [ 204.596992][ T8866] [ 204.599923][ T8866] dump_stack_lvl+0x16c/0x1f0 [ 204.604608][ T8866] should_fail_ex+0x497/0x5b0 [ 204.609290][ T8866] ? fs_reclaim_acquire+0xae/0x150 [ 204.614409][ T8866] should_failslab+0xc2/0x120 [ 204.619184][ T8866] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 204.625000][ T8866] ? __alloc_skb+0x2b3/0x380 [ 204.629611][ T8866] __alloc_skb+0x2b3/0x380 [ 204.634042][ T8866] ? __pfx___alloc_skb+0x10/0x10 [ 204.638986][ T8866] ? __lock_acquire+0xcc5/0x3c40 [ 204.643946][ T8866] alloc_skb_with_frags+0xe4/0x850 [ 204.649083][ T8866] ? __pfx___lock_acquire+0x10/0x10 [ 204.654385][ T8866] ? __pfx_mark_lock+0x10/0x10 [ 204.659167][ T8866] ? mark_lock+0xb5/0xc60 [ 204.663511][ T8866] sock_alloc_send_pskb+0x7f1/0x980 [ 204.668732][ T8866] ? find_held_lock+0x2d/0x110 [ 204.673505][ T8866] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 204.679320][ T8866] ? lock_acquire+0x2f/0xb0 [ 204.683824][ T8866] ? dev_get_by_index+0x37/0x380 [ 204.688775][ T8866] packet_sendmsg+0x1f70/0x5660 [ 204.693647][ T8866] ? __pfx___might_resched+0x10/0x10 [ 204.698950][ T8866] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 204.704855][ T8866] ? __pfx_packet_sendmsg+0x10/0x10 [ 204.710057][ T8866] ? lock_acquire+0x2f/0xb0 [ 204.714737][ T8866] ? __might_fault+0xe3/0x190 [ 204.719447][ T8866] ? aa_pivotroot+0x740/0x10a0 [ 204.724252][ T8866] ____sys_sendmsg+0x9ae/0xb40 [ 204.729044][ T8866] ? copy_msghdr_from_user+0x10b/0x160 [ 204.734703][ T8866] ? __pfx_____sys_sendmsg+0x10/0x10 [ 204.740096][ T8866] ___sys_sendmsg+0x135/0x1e0 [ 204.744795][ T8866] ? __pfx____sys_sendmsg+0x10/0x10 [ 204.750022][ T8866] ? __pfx_lock_release+0x10/0x10 [ 204.755061][ T8866] ? trace_lock_acquire+0x14e/0x1f0 [ 204.760274][ T8866] ? __fget_files+0x206/0x3a0 [ 204.764968][ T8866] __sys_sendmsg+0x16e/0x220 [ 204.769569][ T8866] ? __pfx___sys_sendmsg+0x10/0x10 [ 204.774705][ T8866] do_syscall_64+0xcd/0x250 [ 204.779319][ T8866] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.785219][ T8866] RIP: 0033:0x7f2f51b85d19 [ 204.789639][ T8866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 204.809260][ T8866] RSP: 002b:00007f2f4f9f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 204.817695][ T8866] RAX: ffffffffffffffda RBX: 00007f2f51d75fa0 RCX: 00007f2f51b85d19 [ 204.825688][ T8866] RDX: 0000000020004010 RSI: 00000000200003c0 RDI: 0000000000000011 [ 204.833757][ T8866] RBP: 00007f2f4f9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 204.841737][ T8866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 204.849894][ T8866] R13: 0000000000000000 R14: 00007f2f51d75fa0 R15: 00007ffca9d6fa88 [ 204.857909][ T8866] [ 205.402288][ T8873] netlink: 8 bytes leftover after parsing attributes in process `syz.2.733'. [ 206.355738][ T8900] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 206.366045][ T8900] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 207.246820][ T8923] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 207.554684][ T8934] netlink: 326 bytes leftover after parsing attributes in process `syz.1.748'. [ 208.054345][ T8955] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 208.212665][ T8962] netlink: 'syz.2.761': attribute type 11 has an invalid length. [ 208.293612][ T8962] netlink: 'syz.2.761': attribute type 11 has an invalid length. [ 208.567164][ T8977] netlink: 342 bytes leftover after parsing attributes in process `syz.2.765'. [ 208.942311][ T7653] udevd[7653]: inotify_add_watch(7, /dev/sda1, 10) failed: No such file or directory [ 209.014357][ T8998] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 209.275086][ T9012] Process accounting resumed [ 210.013305][ T9039] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 210.334427][ T9028] FAULT_INJECTION: forcing a failure. [ 210.334427][ T9028] name fail_futex, interval 1, probability 0, space 0, times 1 [ 210.363193][ T9028] CPU: 1 UID: 0 PID: 9028 Comm: syz.0.778 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 210.374025][ T9028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 210.384120][ T9028] Call Trace: [ 210.387422][ T9028] [ 210.390382][ T9028] dump_stack_lvl+0x16c/0x1f0 [ 210.395099][ T9028] should_fail_ex+0x497/0x5b0 [ 210.399822][ T9028] ? __lock_acquire+0x15a9/0x3c40 [ 210.404898][ T9028] get_futex_key+0xac1/0x1000 [ 210.409629][ T9028] ? __pfx_get_futex_key+0x10/0x10 [ 210.414800][ T9028] futex_wake+0xe8/0x4e0 [ 210.419081][ T9028] ? __pfx_futex_wake+0x10/0x10 [ 210.423941][ T9028] ? find_held_lock+0x2d/0x110 [ 210.428717][ T9028] do_futex+0x1e5/0x350 [ 210.432881][ T9028] ? __pfx_do_futex+0x10/0x10 [ 210.437568][ T9028] ? __might_fault+0xe3/0x190 [ 210.442256][ T9028] ? __might_fault+0xe3/0x190 [ 210.446951][ T9028] mm_release+0x24e/0x300 [ 210.451288][ T9028] do_exit+0x88b/0x2d70 [ 210.455496][ T9028] ? get_signal+0x8f7/0x2610 [ 210.460098][ T9028] ? __pfx_do_exit+0x10/0x10 [ 210.464704][ T9028] ? do_raw_spin_lock+0x12d/0x2c0 [ 210.469737][ T9028] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 210.475131][ T9028] do_group_exit+0xd3/0x2a0 [ 210.479648][ T9028] get_signal+0x2576/0x2610 [ 210.484168][ T9028] ? __sys_sendto+0x2a1/0x4f0 [ 210.488853][ T9028] ? __pfx___sys_sendto+0x10/0x10 [ 210.493882][ T9028] ? reacquire_held_locks+0x20b/0x4c0 [ 210.499360][ T9028] ? __pfx_get_signal+0x10/0x10 [ 210.504234][ T9028] arch_do_signal_or_restart+0x90/0x7e0 [ 210.510139][ T9028] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 210.516341][ T9028] syscall_exit_to_user_mode+0x150/0x2a0 [ 210.522011][ T9028] do_syscall_64+0xda/0x250 [ 210.526539][ T9028] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.532534][ T9028] RIP: 0033:0x7f2f51b87bac [ 210.536970][ T9028] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b [ 210.556692][ T9028] RSP: 002b:00007f2f4f9d3ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 210.565118][ T9028] RAX: fffffffffffffe00 RBX: 00007f2f4f9d3fc0 RCX: 00007f2f51b87bac [ 210.573119][ T9028] RDX: 0000000000000020 RSI: 00007f2f4f9d4010 RDI: 0000000000000003 [ 210.581116][ T9028] RBP: 0000000000000000 R08: 00007f2f4f9d3f14 R09: 000000000000000c [ 210.589096][ T9028] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 210.597162][ T9028] R13: 00007f2f4f9d3f68 R14: 00007f2f4f9d4010 R15: 0000000000000000 [ 210.605156][ T9028] [ 210.643777][ T9050] syz.1.786(9050): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 211.243658][ T9073] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 212.604516][ T9108] Process accounting resumed [ 212.651371][ T9111] Process accounting resumed [ 216.311016][ T9175] netlink: 342 bytes leftover after parsing attributes in process `syz.0.822'. [ 216.625297][ T9185] ptrace attach of "./syz-executor exec"[7598] was attempted by "./syz-executor exec"[9185] [ 217.500976][ T9202] netlink: 'syz.2.828': attribute type 1 has an invalid length. [ 218.349763][ T9216] tipc: Can't bind to reserved service type 2 [ 218.828434][ T9231] FAULT_INJECTION: forcing a failure. [ 218.828434][ T9231] name failslab, interval 1, probability 0, space 0, times 0 [ 218.882550][ T9231] CPU: 1 UID: 0 PID: 9231 Comm: syz.0.839 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 218.893210][ T9231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 218.903299][ T9231] Call Trace: [ 218.906614][ T9231] [ 218.909570][ T9231] dump_stack_lvl+0x16c/0x1f0 [ 218.914286][ T9231] should_fail_ex+0x497/0x5b0 [ 218.918998][ T9231] ? fs_reclaim_acquire+0xae/0x150 [ 218.924145][ T9231] should_failslab+0xc2/0x120 [ 218.928861][ T9231] __kmalloc_cache_noprof+0x68/0x420 [ 218.934537][ T9231] proc_cpuset_show+0x50/0x510 [ 218.939377][ T9231] proc_single_show+0x121/0x220 [ 218.944283][ T9231] seq_read_iter+0x4f4/0x12b0 [ 218.949103][ T9231] seq_read+0x39f/0x4e0 [ 218.953329][ T9231] ? __pfx_seq_read+0x10/0x10 [ 218.958069][ T9231] ? __pfx_seq_read+0x10/0x10 [ 218.962819][ T9231] vfs_read+0x1df/0xbe0 [ 218.967015][ T9231] ? __fget_files+0x1fc/0x3a0 [ 218.971737][ T9231] ? __pfx___mutex_lock+0x10/0x10 [ 218.976978][ T9231] ? __pfx_vfs_read+0x10/0x10 [ 218.981787][ T9231] ? __fget_files+0x206/0x3a0 [ 218.986529][ T9231] ksys_read+0x12b/0x250 [ 218.990810][ T9231] ? __pfx_ksys_read+0x10/0x10 [ 218.995619][ T9231] do_syscall_64+0xcd/0x250 [ 219.000168][ T9231] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.006188][ T9231] RIP: 0033:0x7f2f51b85d19 [ 219.010636][ T9231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 219.030379][ T9231] RSP: 002b:00007f2f4f9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 219.038831][ T9231] RAX: ffffffffffffffda RBX: 00007f2f51d75fa0 RCX: 00007f2f51b85d19 [ 219.046896][ T9231] RDX: 0000000000000089 RSI: 0000000020000040 RDI: 0000000000000003 [ 219.054884][ T9231] RBP: 00007f2f4f9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 219.062858][ T9231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 219.070849][ T9231] R13: 0000000000000000 R14: 00007f2f51d75fa0 R15: 00007ffca9d6fa88 [ 219.078846][ T9231] [ 219.388656][ T9244] bridge0: port 3(veth1_virt_wifi) entered blocking state [ 219.395966][ T9244] bridge0: port 3(veth1_virt_wifi) entered disabled state [ 219.436634][ T9244] veth1_virt_wifi: entered allmulticast mode [ 219.444012][ T9244] veth1_virt_wifi: left allmulticast mode [ 220.610213][ T9274] FAULT_INJECTION: forcing a failure. [ 220.610213][ T9274] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 220.633573][ T9274] CPU: 0 UID: 0 PID: 9274 Comm: syz.1.850 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 220.644239][ T9274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 220.654420][ T9274] Call Trace: [ 220.657725][ T9274] [ 220.660684][ T9274] dump_stack_lvl+0x16c/0x1f0 [ 220.665404][ T9274] should_fail_ex+0x497/0x5b0 [ 220.670158][ T9274] _copy_to_iter+0x29b/0x1400 [ 220.674884][ T9274] ? trace_lock_acquire+0x14e/0x1f0 [ 220.680169][ T9274] ? __pfx_lock_release+0x10/0x10 [ 220.685248][ T9274] ? __pfx__copy_to_iter+0x10/0x10 [ 220.690379][ T9274] ? __virt_addr_valid+0x1a4/0x590 [ 220.695506][ T9274] ? __virt_addr_valid+0x5e/0x590 [ 220.700542][ T9274] ? __phys_addr_symbol+0x30/0x80 [ 220.705579][ T9274] ? __check_object_size+0x488/0x710 [ 220.710902][ T9274] seq_read_iter+0xd00/0x12b0 [ 220.715618][ T9274] kernfs_fop_read_iter+0x414/0x580 [ 220.720845][ T9274] ? rw_verify_area+0xd0/0x700 [ 220.725623][ T9274] vfs_read+0x87f/0xbe0 [ 220.729793][ T9274] ? __pfx_vfs_read+0x10/0x10 [ 220.734499][ T9274] ksys_read+0x12b/0x250 [ 220.738751][ T9274] ? __pfx_ksys_read+0x10/0x10 [ 220.743533][ T9274] do_syscall_64+0xcd/0x250 [ 220.748058][ T9274] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.753962][ T9274] RIP: 0033:0x7f7dd7785d19 [ 220.758392][ T9274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.778104][ T9274] RSP: 002b:00007f7dd85f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 220.786526][ T9274] RAX: ffffffffffffffda RBX: 00007f7dd7975fa0 RCX: 00007f7dd7785d19 [ 220.794502][ T9274] RDX: 0000000000000009 RSI: 0000000020000040 RDI: 0000000000000003 [ 220.802483][ T9274] RBP: 00007f7dd85f8090 R08: 0000000000000000 R09: 0000000000000000 [ 220.810479][ T9274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 220.818457][ T9274] R13: 0000000000000000 R14: 00007f7dd7975fa0 R15: 00007ffd5bde5498 [ 220.826620][ T9274] [ 221.476604][ T9247] sctp: failed to load transform for md5: -4 [ 221.536459][ T9292] netlink: 28 bytes leftover after parsing attributes in process `syz.0.855'. [ 221.577066][ T9292] ipvlan0: entered allmulticast mode [ 221.582433][ T9292] veth0_vlan: entered allmulticast mode [ 222.433969][ T9312] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 223.077317][ T9320] netlink: 8 bytes leftover after parsing attributes in process `syz.1.864'. [ 224.286674][ T9338] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 224.831250][ T7653] udevd[7653]: inotify_add_watch(7, /dev/sda1, 10) failed: No such file or directory [ 225.060399][ T9354] netlink: 342 bytes leftover after parsing attributes in process `syz.4.872'. [ 225.887538][ T9369] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 227.512517][ T9404] FAULT_INJECTION: forcing a failure. [ 227.512517][ T9404] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 227.525861][ T9404] CPU: 1 UID: 0 PID: 9404 Comm: syz.0.888 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 227.536488][ T9404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 227.546579][ T9404] Call Trace: [ 227.549881][ T9404] [ 227.552835][ T9404] dump_stack_lvl+0x16c/0x1f0 [ 227.557558][ T9404] should_fail_ex+0x497/0x5b0 [ 227.562288][ T9404] _copy_to_user+0x32/0xd0 [ 227.566794][ T9404] simple_read_from_buffer+0xd0/0x160 [ 227.572220][ T9404] proc_fail_nth_read+0x198/0x270 [ 227.577291][ T9404] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 227.582890][ T9404] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 227.588482][ T9404] vfs_read+0x1df/0xbe0 [ 227.592680][ T9404] ? __fget_files+0x1fc/0x3a0 [ 227.597393][ T9404] ? __pfx___mutex_lock+0x10/0x10 [ 227.602570][ T9404] ? __pfx_vfs_read+0x10/0x10 [ 227.607298][ T9404] ? __fget_files+0x206/0x3a0 [ 227.612018][ T9404] ksys_read+0x12b/0x250 [ 227.616289][ T9404] ? __pfx_ksys_read+0x10/0x10 [ 227.621087][ T9404] do_syscall_64+0xcd/0x250 [ 227.625632][ T9404] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.631564][ T9404] RIP: 0033:0x7f2f51b8472c [ 227.636018][ T9404] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 227.655666][ T9404] RSP: 002b:00007f2f4f9f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 227.664124][ T9404] RAX: ffffffffffffffda RBX: 00007f2f51d75fa0 RCX: 00007f2f51b8472c [ 227.672316][ T9404] RDX: 000000000000000f RSI: 00007f2f4f9f60a0 RDI: 0000000000000004 [ 227.680364][ T9404] RBP: 00007f2f4f9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 227.688381][ T9404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 227.696480][ T9404] R13: 0000000000000000 R14: 00007f2f51d75fa0 R15: 00007ffca9d6fa88 [ 227.704505][ T9404] [ 227.812505][ T9410] FAULT_INJECTION: forcing a failure. [ 227.812505][ T9410] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 227.825826][ T9410] CPU: 1 UID: 0 PID: 9410 Comm: syz.0.890 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 227.836629][ T9410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 227.846809][ T9410] Call Trace: [ 227.850118][ T9410] [ 227.853078][ T9410] dump_stack_lvl+0x16c/0x1f0 [ 227.857798][ T9410] should_fail_ex+0x497/0x5b0 [ 227.862530][ T9410] _copy_from_user+0x2e/0xd0 [ 227.867183][ T9410] vcs_write+0x2f2/0xdb0 [ 227.871480][ T9410] ? __pfx_vcs_write+0x10/0x10 [ 227.876288][ T9410] ? apparmor_file_permission+0x241/0x400 [ 227.882054][ T9410] ? bpf_lsm_file_permission+0x9/0x10 [ 227.887462][ T9410] ? security_file_permission+0x71/0x210 [ 227.893108][ T9410] ? __pfx_vcs_write+0x10/0x10 [ 227.897884][ T9410] vfs_write+0x24c/0x1150 [ 227.902394][ T9410] ? __fget_files+0x1fc/0x3a0 [ 227.907078][ T9410] ? __pfx_lock_release+0x10/0x10 [ 227.912119][ T9410] ? __pfx_vfs_write+0x10/0x10 [ 227.916907][ T9410] ? lock_acquire+0x2f/0xb0 [ 227.921499][ T9410] ? __fget_files+0x40/0x3a0 [ 227.926099][ T9410] ? __fget_files+0x206/0x3a0 [ 227.930788][ T9410] ksys_write+0x12b/0x250 [ 227.935123][ T9410] ? __pfx_ksys_write+0x10/0x10 [ 227.939985][ T9410] do_syscall_64+0xcd/0x250 [ 227.944499][ T9410] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.950414][ T9410] RIP: 0033:0x7f2f51b85d19 [ 227.954879][ T9410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 227.974509][ T9410] RSP: 002b:00007f2f4f9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 227.982938][ T9410] RAX: ffffffffffffffda RBX: 00007f2f51d75fa0 RCX: 00007f2f51b85d19 [ 227.991010][ T9410] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 227.998986][ T9410] RBP: 00007f2f4f9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 228.006964][ T9410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 228.014933][ T9410] R13: 0000000000000000 R14: 00007f2f51d75fa0 R15: 00007ffca9d6fa88 [ 228.023006][ T9410] [ 228.516943][ T9420] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 229.198901][ T9440] bridge0: port 3(batadv0) entered blocking state [ 229.215214][ T9440] bridge0: port 3(batadv0) entered disabled state [ 229.239871][ T9440] batadv0: entered allmulticast mode [ 229.270478][ T9440] batadv0: entered promiscuous mode [ 229.303607][ T9440] bridge0: port 3(batadv0) entered blocking state [ 229.310187][ T9440] bridge0: port 3(batadv0) entered forwarding state [ 229.428843][ T1101] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 229.438595][ T1101] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 229.791360][ T9457] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 230.085157][ T9462] FAULT_INJECTION: forcing a failure. [ 230.085157][ T9462] name failslab, interval 1, probability 0, space 0, times 0 [ 230.115016][ T9462] CPU: 0 UID: 0 PID: 9462 Comm: syz.1.905 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 230.125673][ T9462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 230.135848][ T9462] Call Trace: [ 230.139148][ T9462] [ 230.142096][ T9462] dump_stack_lvl+0x16c/0x1f0 [ 230.146816][ T9462] should_fail_ex+0x497/0x5b0 [ 230.151545][ T9462] ? fs_reclaim_acquire+0xae/0x150 [ 230.156702][ T9462] should_failslab+0xc2/0x120 [ 230.161425][ T9462] __kmalloc_noprof+0xce/0x4f0 [ 230.166247][ T9462] ? d_absolute_path+0x137/0x1b0 [ 230.171226][ T9462] ? tomoyo_encode2+0x100/0x3e0 [ 230.176117][ T9462] tomoyo_encode2+0x100/0x3e0 [ 230.180832][ T9462] tomoyo_realpath_from_path+0x1a7/0x710 [ 230.186622][ T9462] tomoyo_path_number_perm+0x248/0x5b0 [ 230.192130][ T9462] ? tomoyo_path_number_perm+0x235/0x5b0 [ 230.197822][ T9462] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 230.203882][ T9462] ? __pfx_lock_release+0x10/0x10 [ 230.209038][ T9462] ? trace_lock_acquire+0x14e/0x1f0 [ 230.214276][ T9462] ? lock_acquire+0x2f/0xb0 [ 230.218819][ T9462] ? __fget_files+0x40/0x3a0 [ 230.223449][ T9462] ? __fget_files+0x206/0x3a0 [ 230.228177][ T9462] security_file_ioctl+0x9b/0x240 [ 230.233241][ T9462] __x64_sys_ioctl+0xb7/0x200 [ 230.237966][ T9462] do_syscall_64+0xcd/0x250 [ 230.242512][ T9462] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.248449][ T9462] RIP: 0033:0x7f7dd7785d19 [ 230.252902][ T9462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.272549][ T9462] RSP: 002b:00007f7dd85f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 230.281169][ T9462] RAX: ffffffffffffffda RBX: 00007f7dd7975fa0 RCX: 00007f7dd7785d19 [ 230.289177][ T9462] RDX: 0000000000000038 RSI: 00000000c0481273 RDI: 0000000000000003 [ 230.297267][ T9462] RBP: 00007f7dd85f8090 R08: 0000000000000000 R09: 0000000000000000 [ 230.305272][ T9462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 230.313280][ T9462] R13: 0000000000000000 R14: 00007f7dd7975fa0 R15: 00007ffd5bde5498 [ 230.321308][ T9462] [ 230.324556][ C0] vkms_vblank_simulate: vblank timer overrun [ 230.344672][ T9462] ERROR: Out of memory at tomoyo_realpath_from_path. [ 231.256046][ T9509] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 231.615911][ T9513] netlink: 'syz.2.915': attribute type 13 has an invalid length. [ 233.118360][ T9548] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 234.619441][ T9594] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 235.186753][ T9608] netlink: 342 bytes leftover after parsing attributes in process `syz.4.941'. [ 235.490018][ T9621] netlink: 18 bytes leftover after parsing attributes in process `syz.2.946'. [ 235.776754][ T9630] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 236.502886][ T9653] netlink: 342 bytes leftover after parsing attributes in process `syz.0.953'. [ 237.332723][ T9668] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 237.898210][ T9689] netlink: 342 bytes leftover after parsing attributes in process `syz.2.964'. [ 238.302498][ T9701] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 238.956989][ T9724] netlink: 342 bytes leftover after parsing attributes in process `syz.4.976'. [ 239.033023][ T9730] netlink: 28 bytes leftover after parsing attributes in process `syz.2.979'. [ 239.112726][ T7653] udevd[7653]: inotify_add_watch(7, /dev/sda1, 10) failed: No such file or directory [ 239.440756][ T9737] netlink: 'syz.4.981': attribute type 13 has an invalid length. [ 239.570557][ T9742] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 240.489793][ T9770] netlink: 342 bytes leftover after parsing attributes in process `syz.1.990'. [ 240.892529][ T9776] netlink: 4 bytes leftover after parsing attributes in process `syz.0.991'. [ 241.372759][ T7653] udevd[7653]: inotify_add_watch(7, /dev/sda1, 10) failed: No such file or directory [ 241.700704][ T9784] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 241.940115][ T9807] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1001'. [ 242.202567][ T9802] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1000'. [ 242.239397][ T9802] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1000'. [ 242.269662][ T9802] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1000'. [ 242.368432][ T9811] openvswitch: netlink: Key type 29 is not supported [ 242.401502][ T9811] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 242.821248][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 244.116687][ T9850] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1014'. [ 245.010970][ T9877] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 245.487254][ T54] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 245.675126][ T9885] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1025'. [ 245.878415][ T9907] ------------[ cut here ]------------ [ 245.884261][ T9907] WARNING: CPU: 0 PID: 9907 at mm/page_alloc.c:4727 __alloc_pages_noprof+0xeff/0x25b0 [ 245.894250][ T9907] Modules linked in: [ 245.898536][ T9907] CPU: 0 UID: 0 PID: 9907 Comm: syz.1.1030 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 245.909596][ T9907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 245.919752][ T9907] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 245.925873][ T9907] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 0e b3 fe ff e9 69 f9 ff ff c6 05 61 49 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 9f a3 0c 00 8b 14 24 e9 [ 245.945796][ T9907] RSP: 0018:ffffc90005e1f938 EFLAGS: 00010246 [ 245.952115][ T9907] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 245.960297][ T9907] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 245.968389][ T9907] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000 [ 245.976495][ T9907] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000013 [ 245.984678][ T9907] R13: 0000000000040cc0 R14: 1ffff92000bc3f3b R15: 00000000ffffffff [ 245.992827][ T9907] FS: 00007f7dd85f86c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 246.002186][ T9907] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 246.009399][ T9907] CR2: 00007f7dd85f7f98 CR3: 0000000041e3a000 CR4: 00000000003526f0 [ 246.017538][ T9907] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 246.025547][ T9907] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 246.033709][ T9907] Call Trace: [ 246.037093][ T9907] [ 246.040043][ T9907] ? __warn+0xea/0x3c0 [ 246.044135][ T9907] ? __alloc_pages_noprof+0xeff/0x25b0 [ 246.049670][ T9907] ? report_bug+0x3c0/0x580 [ 246.054259][ T9907] ? handle_bug+0x54/0xa0 [ 246.058737][ T9907] ? exc_invalid_op+0x17/0x50 [ 246.063477][ T9907] ? asm_exc_invalid_op+0x1a/0x20 [ 246.068710][ T9907] ? __alloc_pages_noprof+0xeff/0x25b0 [ 246.074252][ T9907] ? hlock_class+0x4e/0x130 [ 246.078888][ T9907] ? mark_lock+0xb5/0xc60 [ 246.083267][ T9907] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 246.089096][ T9907] ? find_held_lock+0x2d/0x110 [ 246.093929][ T9907] ? aa_file_perm+0x4c6/0xfe0 [ 246.099104][ T9907] ? __pfx_lock_release+0x10/0x10 [ 246.104291][ T9907] ? trace_lock_acquire+0x14e/0x1f0 [ 246.109881][ T9907] ? hlock_class+0x4e/0x130 [ 246.114429][ T9907] ? __lock_acquire+0x15a9/0x3c40 [ 246.119692][ T9907] ___kmalloc_large_node+0x84/0x1b0 [ 246.125006][ T9907] __kmalloc_large_node_noprof+0x1c/0x70 [ 246.130757][ T9907] ? __pfx___lock_acquire+0x10/0x10 [ 246.136016][ T9907] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 246.142723][ T9907] ? nsim_dev_health_break_write+0x9a/0x1e0 [ 246.148796][ T9907] memdup_user_nul+0x2b/0x110 [ 246.153528][ T9907] nsim_dev_health_break_write+0x9a/0x1e0 [ 246.159363][ T9907] ? __pfx_nsim_dev_health_break_write+0x10/0x10 [ 246.165841][ T9907] ? rcu_is_watching+0x12/0xc0 [ 246.170753][ T9907] ? trace_lock_acquire+0x14e/0x1f0 [ 246.176011][ T9907] full_proxy_write+0xfb/0x1b0 [ 246.180891][ T9907] ? __pfx_full_proxy_write+0x10/0x10 [ 246.186367][ T9907] vfs_write+0x24c/0x1150 [ 246.190755][ T9907] ? __fget_files+0x1fc/0x3a0 [ 246.195477][ T9907] ? __pfx___mutex_lock+0x10/0x10 [ 246.200847][ T9907] ? __pfx_vfs_write+0x10/0x10 [ 246.205677][ T9907] ? __fget_files+0x206/0x3a0 [ 246.210756][ T9907] ksys_write+0x12b/0x250 [ 246.215224][ T9907] ? __pfx_ksys_write+0x10/0x10 [ 246.220217][ T9907] do_syscall_64+0xcd/0x250 [ 246.224777][ T9907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.230923][ T9907] RIP: 0033:0x7f7dd7785d19 [ 246.235381][ T9907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.255126][ T9907] RSP: 002b:00007f7dd85f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 246.263692][ T9907] RAX: ffffffffffffffda RBX: 00007f7dd7975fa0 RCX: 00007f7dd7785d19 [ 246.271771][ T9907] RDX: 000000007ffffffd RSI: 0000000020000000 RDI: 0000000000000003 [ 246.279821][ T9907] RBP: 00007f7dd7801a20 R08: 0000000000000000 R09: 0000000000000000 [ 246.287948][ T9907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.296131][ T9907] R13: 0000000000000000 R14: 00007f7dd7975fa0 R15: 00007ffd5bde5498 [ 246.304538][ T9907] [ 246.308174][ T9907] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 246.315478][ T9907] CPU: 0 UID: 0 PID: 9907 Comm: syz.1.1030 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 [ 246.326186][ T9907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 246.336248][ T9907] Call Trace: [ 246.339525][ T9907] [ 246.342455][ T9907] dump_stack_lvl+0x3d/0x1f0 [ 246.347145][ T9907] panic+0x71d/0x800 [ 246.351055][ T9907] ? __pfx_panic+0x10/0x10 [ 246.355482][ T9907] ? show_trace_log_lvl+0x29d/0x3d0 [ 246.360700][ T9907] ? __alloc_pages_noprof+0xeff/0x25b0 [ 246.366170][ T9907] check_panic_on_warn+0xab/0xb0 [ 246.371122][ T9907] __warn+0xf6/0x3c0 [ 246.375032][ T9907] ? __alloc_pages_noprof+0xeff/0x25b0 [ 246.380505][ T9907] report_bug+0x3c0/0x580 [ 246.384846][ T9907] handle_bug+0x54/0xa0 [ 246.389044][ T9907] exc_invalid_op+0x17/0x50 [ 246.393573][ T9907] asm_exc_invalid_op+0x1a/0x20 [ 246.398432][ T9907] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 246.404514][ T9907] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 0e b3 fe ff e9 69 f9 ff ff c6 05 61 49 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 9f a3 0c 00 8b 14 24 e9 [ 246.424145][ T9907] RSP: 0018:ffffc90005e1f938 EFLAGS: 00010246 [ 246.430223][ T9907] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 246.438194][ T9907] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 246.446168][ T9907] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000 [ 246.454139][ T9907] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000013 [ 246.462110][ T9907] R13: 0000000000040cc0 R14: 1ffff92000bc3f3b R15: 00000000ffffffff [ 246.470105][ T9907] ? hlock_class+0x4e/0x130 [ 246.474620][ T9907] ? mark_lock+0xb5/0xc60 [ 246.479247][ T9907] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 246.485007][ T9907] ? find_held_lock+0x2d/0x110 [ 246.489795][ T9907] ? aa_file_perm+0x4c6/0xfe0 [ 246.494483][ T9907] ? __pfx_lock_release+0x10/0x10 [ 246.499531][ T9907] ? trace_lock_acquire+0x14e/0x1f0 [ 246.504747][ T9907] ? hlock_class+0x4e/0x130 [ 246.509271][ T9907] ? __lock_acquire+0x15a9/0x3c40 [ 246.514329][ T9907] ___kmalloc_large_node+0x84/0x1b0 [ 246.519539][ T9907] __kmalloc_large_node_noprof+0x1c/0x70 [ 246.525181][ T9907] ? __pfx___lock_acquire+0x10/0x10 [ 246.530396][ T9907] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 246.537003][ T9907] ? nsim_dev_health_break_write+0x9a/0x1e0 [ 246.543020][ T9907] memdup_user_nul+0x2b/0x110 [ 246.547809][ T9907] nsim_dev_health_break_write+0x9a/0x1e0 [ 246.553558][ T9907] ? __pfx_nsim_dev_health_break_write+0x10/0x10 [ 246.559905][ T9907] ? rcu_is_watching+0x12/0xc0 [ 246.564683][ T9907] ? trace_lock_acquire+0x14e/0x1f0 [ 246.569903][ T9907] full_proxy_write+0xfb/0x1b0 [ 246.574680][ T9907] ? __pfx_full_proxy_write+0x10/0x10 [ 246.580064][ T9907] vfs_write+0x24c/0x1150 [ 246.584402][ T9907] ? __fget_files+0x1fc/0x3a0 [ 246.589088][ T9907] ? __pfx___mutex_lock+0x10/0x10 [ 246.594121][ T9907] ? __pfx_vfs_write+0x10/0x10 [ 246.598905][ T9907] ? __fget_files+0x206/0x3a0 [ 246.603603][ T9907] ksys_write+0x12b/0x250 [ 246.607952][ T9907] ? __pfx_ksys_write+0x10/0x10 [ 246.612826][ T9907] do_syscall_64+0xcd/0x250 [ 246.617354][ T9907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.623260][ T9907] RIP: 0033:0x7f7dd7785d19 [ 246.627679][ T9907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.647565][ T9907] RSP: 002b:00007f7dd85f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 246.655990][ T9907] RAX: ffffffffffffffda RBX: 00007f7dd7975fa0 RCX: 00007f7dd7785d19 [ 246.663973][ T9907] RDX: 000000007ffffffd RSI: 0000000020000000 RDI: 0000000000000003 [ 246.671956][ T9907] RBP: 00007f7dd7801a20 R08: 0000000000000000 R09: 0000000000000000 [ 246.679966][ T9907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.687950][ T9907] R13: 0000000000000000 R14: 00007f7dd7975fa0 R15: 00007ffd5bde5498 [ 246.695943][ T9907] [ 246.699216][ T9907] Kernel Offset: disabled [ 246.703658][ T9907] Rebooting in 86400 seconds..