last executing test programs: 3.606536443s ago: executing program 1 (id=2052): pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuacct.usage_percpu\x00', 0x275a, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0) r4 = socket$inet6(0xa, 0x80001, 0x0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r4, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000000a0000000000ff00ff010000000000000000000000000001000001000000000000000000e0ff00000000000000bd0000000000000000000000e4ec010000000040000000000000000000000000000000000000013da51fd47aa2e2f70000000000000000000000000000000000000000000000000000000000000067ff0000000000000005"], 0x310) setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f0000000500)={0x1, {{0xa, 0x0, 0x0, @mcast1}}, 0x1, 0x1, [{{0xa, 0x0, 0x0, @empty}}]}, 0x110) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001300)={0xffffffffffffffff, &(0x7f0000000240)="124c0e3711288192dd6079c9a23e3229835151ea92ac97d0565def817f6f1b6a55d1136cfca6e1502aefa9d016a7ae956e208b7d926b66822b4e2fd411dc54f439abf0ac1df68304583140a15cb2a39b92301efeccede56d7175a80dd647bdb2cc94fa2b7d02cd8ce2602a7bc40628f6780aa4c79ddfd43d51c73d6e6f0d32948b4b03f6fb3a92c998bbba5aaa840c0ff55bc563239097b3b878c9d9a52ec548bb92c3eeeb6dfcd2ec9f0a6450b71e085ae759911c8f279b91dd03c35885a8a76dd0582bf244febaa45c6cad74554475ffbbe4664dd0e36e1e25ef168764ad11ff9e91e0d1603f", 0x0}, 0x20) write$binfmt_script(r3, &(0x7f00000002c0), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010100000100000000000200fffc0900010073797a30000000000800024000000001cc000000030a01020000000000000000020000000900010073797a3000000000aa000300"], 0x1e4}}, 0x0) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x7fff, 0x0) 2.578321921s ago: executing program 1 (id=2067): r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) setsockopt$inet6_int(r0, 0x29, 0x1b, &(0x7f00000001c0), 0x4) connect$inet6(r0, &(0x7f0000000080)={0x1c, 0x1c}, 0x1c) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x105, 0x0, &(0x7f0000000480)) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x15, &(0x7f0000000200), 0x8) 2.228755745s ago: executing program 1 (id=2073): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000006d00000095"], 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r2, 0x20e, 0xe40, 0xfd000004, &(0x7f00000004c0)="b9180bb76003070c009e40f086dd1fff290000003b0020010010ac14142ee0080001c699da153f0ae0e6e380f60115f683317585d7472ce0ab4439f0f570ff155bc5f73ba3f8bb99a6e8ded1ce485cf058105cd981b42493481cd659416a2e10c9119664f36eb00b333c20c9ec0c222d644bdcb178c1cc53d6960fbb842d6a33dfcde3a1e1848135214baf139753866cadcbe3ce52505e992818cc452bee339d9ab076f484020eaa348a21d7911e4c44905256ec2cc54cca47a198b00c10aff62a4bed43a2ebcad92743fb22c593f28fd4bb7c703cde9cae0569d4c8d9a823f2c12863f7a6c0cf88ed22aae4f6f084508833b61429a25773eedf63dd9f33d430f2a0a30a7761db16fe0f743b95ded898c28aac1256ce2751b3d738899b8b19d9052b7f13ff94", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28) 2.030290287s ago: executing program 1 (id=2078): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, r1, 0x2}, 0x10) 1.888576527s ago: executing program 0 (id=2081): r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="4800000010000104000000000036cebe2e000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b00010065727370616e00001800028006000e000000000004001200050016"], 0x48}}, 0x0) 1.835150232s ago: executing program 1 (id=2083): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_DYNSET_SET_NAME={0x9, 0x1, 'syz2\x00'}]}}}]}]}], {0x14}}, 0x78}}, 0x0) 1.782819873s ago: executing program 0 (id=2084): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x38, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_SOCKETS={0xc, 0x7, 0x0, 0x1, [{0x8}]}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_SIZE_BYTES={0xc}]}, 0x38}}, 0x0) 1.708604274s ago: executing program 2 (id=2086): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x3, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc) 1.57963167s ago: executing program 2 (id=2088): r0 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$netlink(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000540)=ANY=[@ANYBLOB="e000000010000b0500000000000000006f6d8864d22a3f2ffaa46c88bca9000000f1acfac0ee50d2b184b27db1f302de337c0004060000000000bf852c89867f6691b01b2d44e4ff282d2d73882fbd9423"], 0xe0}], 0x1}, 0x0) 1.516950559s ago: executing program 0 (id=2089): r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f3, &(0x7f0000001040)={'gre0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x0, 0xab00, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @empty, @empty}}}}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) 1.511470698s ago: executing program 4 (id=2090): socket$netlink(0x10, 0x3, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140), 0x24}}, 0x0) getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000004600)=@newtfilter={0x10e0, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0xc}}, [@filter_kind_options=@f_basic={{0xa}, {0x10b0, 0x2, [@TCA_BASIC_EMATCHES={0x10ac, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x6c, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0xff}, {{0x3, 0x1}, {0x4}}}}, @TCF_EM_NBYTE={0x10, 0x0, 0x0, 0x0, {{0x0, 0x2, 0x80}}}, @TCF_EM_CMP={0x18, 0x3, 0x0, 0x0, {{}, {0x0, 0x8000, 0x0, 0x0, 0x0, 0x1, 0x2}}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x9}, {0x0, 0x3f, 0x7, 0x20}}}, @TCF_EM_IPSET={0x10, 0x0, 0x0, 0x0, {{0x4, 0x8, 0x6}, {0x4, 0x0, 0x4}}}]}, @TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_LIST={0x0, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x0, 0x2, 0x0, 0x0, {{0x1, 0x7, 0x6}, {{}, {0x0, 0x0, 0x1}}}}, @TCF_EM_NBYTE={0x0, 0x0, 0x0, 0x0, {{0x8d14, 0x2, 0x7}, {0x8, 0x0, 0x0, "e207493c"}}}, @TCF_EM_META={0x0, 0x3, 0x0, 0x0, {{0x6}, [@TCA_EM_META_RVALUE={0x0, 0x3, [@TCF_META_TYPE_INT=0x2, @TCF_META_TYPE_VAR="ced68d421fc2d85a", @TCF_META_TYPE_VAR="4501e26df76966d6", @TCF_META_TYPE_VAR="87c1020c3bbe99"]}, @TCA_EM_META_HDR={0x0, 0x1, {{}, {0x8000}}}, @TCA_EM_META_HDR={0x0, 0x1, {{0x5, 0xff}, {0x0, 0x1}}}, @TCA_EM_META_RVALUE={0x0, 0x3, [@TCF_META_TYPE_INT=0x8, @TCF_META_TYPE_VAR="9e4c85372a76feef", @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_INT, @TCF_META_TYPE_VAR, @TCF_META_TYPE_VAR="acf1d5"]}, @TCA_EM_META_LVALUE={0x0, 0x2, [@TCF_META_TYPE_INT, @TCF_META_TYPE_VAR="89657f421af1", @TCF_META_TYPE_VAR="f76e3d846c", @TCF_META_TYPE_VAR='%%']}, @TCA_EM_META_RVALUE={0x0, 0x3, [@TCF_META_TYPE_VAR="37020654b3204ef837cf"]}, @TCA_EM_META_HDR={0x0, 0x1, {{0x0, 0x4}, {0x0, 0x10}}}]}}, @TCF_EM_CONTAINER={0x0, 0x1, 0x0, 0x0, {{0x2}, "02bc1214fad64a9f17b9c6fc27fba3638592c363502e08d7d2a9d76f0acffe1bbb1d3ede9afa865aac1f66812839088cba322374132f34b7c06be13118bf405ce754aa7a88ab00fa6832858c7919de87736522d667170aaacd5ecfdc47c1ad374f68226043041872d75726469ab4314058b99f90d4f7e05d3408329e8a1e1e810ff46e1de88101af91c2d2e7488de11348fccb1545f44de6362cbd818e1ae168221d2ec04e"}}]}, @TCA_EMATCH_TREE_LIST={0x102c, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x0, 0x0, 0x0, {{0x1}, {0x4, 0x7fffffff, 0x0, 0x2, 0x7, 0x0, 0x3}}}, @TCF_EM_IPT={0x16, 0x0, 0x0, 0x0, {{0x0, 0x9, 0x92}, [@TCA_EM_IPT_MATCH_DATA={0x1003, 0x5, "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"}]}}]}]}]}}, @TCA_CHAIN={0x0, 0xb, 0x8}]}, 0x10e0}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) 1.360961637s ago: executing program 1 (id=2092): r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25NOUID(r0, 0x89e3, &(0x7f0000000040)) 989.75449ms ago: executing program 2 (id=2094): bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x10, 0x4, 0x0, 0x7}, 0x48) 979.656984ms ago: executing program 3 (id=2095): close(0xffffffffffffffff) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0) close(r0) socket$netlink(0x10, 0x3, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b18, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x40, r3, 0xb7a006d1969b963b, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_FRAME={0x24, 0x33, @probe_request={{{}, {}, @broadcast, @device_b}, @void, @void, @void, @void, @val={0x72, 0x6}}}]}, 0x40}}, 0x0) 979.084142ms ago: executing program 4 (id=2096): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='contention_end\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c1000003e0007012ebd700004101c000100000004000002041001"], 0x101c}}, 0x0) 849.956179ms ago: executing program 2 (id=2097): r0 = socket$unix(0x1, 0x5, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003900000008000300", @ANYRES32=r2, @ANYBLOB="1c005a8018000380140005"], 0x38}}, 0x0) 740.782072ms ago: executing program 3 (id=2098): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f00000095c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000c80)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100fdffffffffffffff02"], 0x20}}, 0x0) 732.576989ms ago: executing program 2 (id=2099): r0 = socket(0x11, 0x2, 0x0) getsockopt$nfc_llcp(r0, 0x107, 0xc, 0x0, 0x20600000) 648.893347ms ago: executing program 4 (id=2100): bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018"], 0x0, 0x32}, 0x20) r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x1, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002140)=@ipv6_newaddr={0x40, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @mcast1={0xff, 0x2}}, @IFA_CACHEINFO={0x14, 0x6, {0xc, 0xff}}]}, 0x56}}, 0x0) 532.191863ms ago: executing program 2 (id=2101): pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) socket$nl_route(0x10, 0x3, 0x0) writev(0xffffffffffffffff, &(0x7f00000006c0)=[{&(0x7f0000000000)="3900000013000b", 0x7}], 0x1) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x33fe0, 0x0) 514.366081ms ago: executing program 3 (id=2102): bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="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"/1747], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48) 408.766976ms ago: executing program 0 (id=2103): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0) r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={r4, 0x58, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000840)={r4, 0xe0, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f00000005c0)=[0x0, 0x0, 0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x83, 0x8, 0x8, &(0x7f0000000700)}}, 0x10) bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000880)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0xa61, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x4}, 0x48) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000001680)={0xffffffffffffffff, 0x0, 0x0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000001880)={0x16, 0xd, &(0x7f0000001380)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, [@jmp={0x5, 0x0, 0x1, 0x5, 0x7, 0xfffffffffffffff4, 0xfffffffffffffff0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6a34}, @map_val={0x18, 0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2}, @tail_call={{0x18, 0x2, 0x1, 0x0, r2}}]}, &(0x7f0000001400)='syzkaller\x00', 0x81, 0x29, &(0x7f0000001440)=""/41, 0x40f00, 0x2b, '\x00', r5, 0xe, 0xffffffffffffffff, 0x8, &(0x7f0000001480)={0x3, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, r3, 0xa, &(0x7f00000016c0)=[0xffffffffffffffff], &(0x7f0000001700)=[{0x1, 0x4, 0xf, 0xa}, {0x3, 0x2, 0x7, 0x5}, {0x3, 0x5, 0xe, 0xa}, {0x4, 0x2, 0x6, 0x9}, {0x3, 0x1, 0x1, 0x7}, {0x3, 0x2, 0x4, 0xa}, {0x1, 0x1, 0x2, 0x1}, {0x3, 0x4, 0x1, 0x7}, {0x3, 0x2, 0x7, 0x6}, {0x5, 0x3, 0xa, 0xa}], 0x10, 0x50c9}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x34066543e44bbcbf, 0x10, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x5}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfff}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}]}, &(0x7f0000000000)='syzkaller\x00', 0x8, 0x57, &(0x7f00000003c0)=""/87, 0x40f00, 0x10, '\x00', r5, 0x1e, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x0, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x2, 0x6, 0x200, 0x5}, 0x10, 0x0, 0xffffffffffffffff, 0x3, &(0x7f0000000640)=[r1], &(0x7f0000000680)=[{0x0, 0x5, 0xd, 0xe}, {0x5, 0x4, 0xe, 0xa}, {0x1, 0x4, 0x9, 0x5}], 0x10, 0x9}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x17, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x1b}, {{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x6}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xd00}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x6}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {0x7, 0x1, 0xb, 0x4, 0x2}, {0x7, 0x0, 0x0, 0x6}, {0x4, 0x0, 0x7}, {0x18, 0x6, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 408.612872ms ago: executing program 4 (id=2104): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2}, 0x80) 379.294551ms ago: executing program 3 (id=2105): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000004c0)={0xffffffffffffffff}) setsockopt$sock_attach_bpf(r0, 0x1, 0x23, &(0x7f0000000000), 0x4) 245.31672ms ago: executing program 4 (id=2106): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffffe8, 0x0, 0xffffffffffffffff, 0x39}, 0x48) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="8fedcb7924001175f37538e486dd63"], 0xfdef) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x18000000000002a0, 0xe80, 0x0, &(0x7f0000000140)="b9ff0300600d698cff9e14f086dd", 0x0, 0x63, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48) 203.14493ms ago: executing program 0 (id=2107): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'crc32-generic\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) sendto$inet6(r1, &(0x7f0000001700)="8127b1f404", 0x5, 0x0, 0x0, 0x0) 72.827877ms ago: executing program 3 (id=2108): r0 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r0, 0x10d, 0x83, &(0x7f0000000000), &(0x7f0000000240)=0x4) 43.034837ms ago: executing program 3 (id=2109): r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='scalable\x00', 0x9) bind$inet(r0, &(0x7f0000000140)={0x2, 0x4e22, @multicast2}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) sendto$inet(r0, &(0x7f0000000040)='u', 0xa792a, 0x801, 0x0, 0x0) recvfrom$inet(r0, &(0x7f0000000080)=""/128, 0xfffffce3, 0x0, 0x0, 0x0) 42.617424ms ago: executing program 4 (id=2110): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000090000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mmap_lock_acquire_returned\x00', r3}, 0x10) 0s ago: executing program 0 (id=2111): socket$netlink(0x10, 0x3, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140), 0x24}}, 0x0) getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000004600)=@newtfilter={0x10e0, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0xc}}, [@filter_kind_options=@f_basic={{0xa}, {0x10b0, 0x2, [@TCA_BASIC_EMATCHES={0x10ac, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x6c, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0xff}, {{0x3, 0x1}, {0x4}}}}, @TCF_EM_NBYTE={0x10, 0x0, 0x0, 0x0, {{0x0, 0x2, 0x80}}}, @TCF_EM_CMP={0x18, 0x3, 0x0, 0x0, {{}, {0x0, 0x8000, 0x0, 0x0, 0x0, 0x1, 0x2}}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x9}, {0x0, 0x3f, 0x7, 0x20}}}, @TCF_EM_IPSET={0x10, 0x0, 0x0, 0x0, {{0x4, 0x8, 0x6}, {0x4, 0x0, 0x4}}}]}, @TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_LIST={0x0, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x0, 0x2, 0x0, 0x0, {{0x1, 0x7, 0x6}, {{}, {0x0, 0x0, 0x1}}}}, @TCF_EM_NBYTE={0x0, 0x0, 0x0, 0x0, {{0x8d14, 0x2, 0x7}, {0x8, 0x0, 0x0, "e207493c"}}}, @TCF_EM_META={0x0, 0x3, 0x0, 0x0, {{0x6}, [@TCA_EM_META_RVALUE={0x0, 0x3, [@TCF_META_TYPE_INT=0x2, @TCF_META_TYPE_VAR="ced68d421fc2d85a", @TCF_META_TYPE_VAR="4501e26df76966d6", @TCF_META_TYPE_VAR="87c1020c3bbe99"]}, @TCA_EM_META_HDR={0x0, 0x1, {{}, {0x8000}}}, @TCA_EM_META_HDR={0x0, 0x1, {{0x5, 0xff}, {0x0, 0x1}}}, @TCA_EM_META_RVALUE={0x0, 0x3, [@TCF_META_TYPE_INT=0x8, @TCF_META_TYPE_VAR="9e4c85372a76feef", @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_INT, @TCF_META_TYPE_VAR, @TCF_META_TYPE_VAR="acf1d5"]}, @TCA_EM_META_LVALUE={0x0, 0x2, [@TCF_META_TYPE_INT, @TCF_META_TYPE_VAR="89657f421af1", @TCF_META_TYPE_VAR="f76e3d846c", @TCF_META_TYPE_VAR='%%']}, @TCA_EM_META_RVALUE={0x0, 0x3, [@TCF_META_TYPE_VAR="37020654b3204ef837cf"]}, @TCA_EM_META_HDR={0x0, 0x1, {{0x0, 0x4}, {0x0, 0x10}}}]}}, @TCF_EM_CONTAINER={0x0, 0x1, 0x0, 0x0, {{0x2}, "02bc1214fad64a9f17b9c6fc27fba3638592c363502e08d7d2a9d76f0acffe1bbb1d3ede9afa865aac1f66812839088cba322374132f34b7c06be13118bf405ce754aa7a88ab00fa6832858c7919de87736522d667170aaacd5ecfdc47c1ad374f68226043041872d75726469ab4314058b99f90d4f7e05d3408329e8a1e1e810ff46e1de88101af91c2d2e7488de11348fccb1545f44de6362cbd818e1ae168221d2ec04e"}}]}, @TCA_EMATCH_TREE_LIST={0x102c, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x0, 0x0, 0x0, {{0x1}, {0x4, 0x7fffffff, 0x0, 0x2, 0x7, 0x0, 0x3}}}, @TCF_EM_IPT={0x16, 0x0, 0x0, 0x0, {{0x0, 0x9, 0x92}, [@TCA_EM_IPT_MATCH_DATA={0x1003, 0x5, "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"}]}}]}]}]}}, @TCA_CHAIN={0x0, 0xb, 0x8}]}, 0x10e0}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) kernel console output (not intermixed with test programs): radix_tree_node_alloc+0x8b/0x3c0 [ 131.497638][ T7650] idr_get_free+0x296/0xab0 [ 131.502280][ T7650] idr_alloc_u32+0x195/0x330 [ 131.506906][ T7650] ? __pfx_idr_alloc_u32+0x10/0x10 [ 131.512059][ T7650] ? __pfx_lock_acquire+0x10/0x10 [ 131.517119][ T7650] idr_alloc_cyclic+0x106/0x300 [ 131.522018][ T7650] ? __pfx_idr_alloc_cyclic+0x10/0x10 [ 131.527420][ T7650] ? __radix_tree_preload+0x80/0x860 [ 131.532904][ T7650] ? __radix_tree_preload+0x80/0x860 [ 131.538196][ T7650] ? bpf_link_prime+0x4c/0x240 [ 131.542965][ T7650] bpf_link_prime+0x6b/0x240 [ 131.547551][ T7650] bpf_raw_tp_link_attach+0x3c4/0x6e0 [ 131.552935][ T7650] ? __pfx_bpf_raw_tp_link_attach+0x10/0x10 [ 131.558848][ T7650] bpf_raw_tracepoint_open+0x1c2/0x240 [ 131.564304][ T7650] __sys_bpf+0x3c0/0x810 [ 131.568543][ T7650] ? __pfx___sys_bpf+0x10/0x10 [ 131.573308][ T7650] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 131.579313][ T7650] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 131.585657][ T7650] ? do_syscall_64+0x100/0x230 [ 131.590427][ T7650] __x64_sys_bpf+0x7c/0x90 [ 131.594847][ T7650] do_syscall_64+0xf3/0x230 [ 131.599344][ T7650] ? clear_bhb_loop+0x35/0x90 [ 131.604023][ T7650] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.609911][ T7650] RIP: 0033:0x7f81d5b75f19 [ 131.614318][ T7650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.633931][ T7650] RSP: 002b:00007f81d6938048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 131.642432][ T7650] RAX: ffffffffffffffda RBX: 00007f81d5d05f60 RCX: 00007f81d5b75f19 [ 131.650570][ T7650] RDX: 0000000000000010 RSI: 0000000020000080 RDI: 0000000000000011 [ 131.658540][ T7650] RBP: 00007f81d69380a0 R08: 0000000000000000 R09: 0000000000000000 [ 131.666504][ T7650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 131.674466][ T7650] R13: 000000000000000b R14: 00007f81d5d05f60 R15: 00007ffe1f185628 [ 131.682547][ T7650] [ 131.703863][ T7652] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 131.711067][ T7652] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 131.731899][ T7652] hsr_slave_0: left promiscuous mode [ 131.750546][ T7652] hsr_slave_1: left promiscuous mode [ 131.818671][ T7655] netlink: 'syz.3.811': attribute type 10 has an invalid length. [ 131.841732][ T7655] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 131.872498][ T7655] netlink: 8 bytes leftover after parsing attributes in process `syz.3.811'. [ 131.957525][ T7660] netlink: 104 bytes leftover after parsing attributes in process `syz.3.811'. [ 131.979252][ T7659] sch_fq: defrate 0 ignored. [ 132.418016][ T7681] netlink: 104 bytes leftover after parsing attributes in process `syz.1.819'. [ 132.511799][ T7685] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 132.661455][ T7694] sch_fq: defrate 0 ignored. [ 132.811398][ T7700] sch_fq: defrate 0 ignored. [ 133.250653][ T1272] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.543509][ T7728] FAULT_INJECTION: forcing a failure. [ 133.543509][ T7728] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 133.564899][ T7728] CPU: 1 PID: 7728 Comm: syz.4.835 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 133.574581][ T7728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 133.584634][ T7728] Call Trace: [ 133.587908][ T7728] [ 133.590831][ T7728] dump_stack_lvl+0x241/0x360 [ 133.595509][ T7728] ? __pfx_dump_stack_lvl+0x10/0x10 [ 133.600700][ T7728] ? __pfx__printk+0x10/0x10 [ 133.605281][ T7728] ? __pfx_lock_release+0x10/0x10 [ 133.610305][ T7728] should_fail_ex+0x3b0/0x4e0 [ 133.615238][ T7728] _copy_from_user+0x2f/0xe0 [ 133.619829][ T7728] core_sys_select+0x508/0x910 [ 133.624608][ T7728] ? __pfx_core_sys_select+0x10/0x10 [ 133.629890][ T7728] ? rcu_read_lock_any_held+0xb7/0x160 [ 133.635347][ T7728] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 133.641001][ T7728] ? __pfx_set_user_sigmask+0x10/0x10 [ 133.646386][ T7728] ? __pfx_do_sys_openat2+0x10/0x10 [ 133.651613][ T7728] __se_sys_pselect6+0x319/0x3f0 [ 133.656551][ T7728] ? __pfx___se_sys_pselect6+0x10/0x10 [ 133.662011][ T7728] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 133.668354][ T7728] ? do_syscall_64+0x100/0x230 [ 133.673143][ T7728] ? __x64_sys_pselect6+0x21/0xf0 [ 133.678177][ T7728] do_syscall_64+0xf3/0x230 [ 133.682682][ T7728] ? clear_bhb_loop+0x35/0x90 [ 133.687357][ T7728] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.693277][ T7728] RIP: 0033:0x7f5682375f19 [ 133.697699][ T7728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.717304][ T7728] RSP: 002b:00007f56831f6048 EFLAGS: 00000246 ORIG_RAX: 000000000000010e [ 133.725717][ T7728] RAX: ffffffffffffffda RBX: 00007f5682506038 RCX: 00007f5682375f19 [ 133.733786][ T7728] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000040 [ 133.741793][ T7728] RBP: 00007f56831f60a0 R08: 0000000000000000 R09: 0000000000000000 [ 133.749767][ T7728] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000000001 [ 133.757734][ T7728] R13: 000000000000006e R14: 00007f5682506038 R15: 00007fff238ac888 [ 133.765969][ T7728] [ 133.948484][ T7733] sch_fq: defrate 0 ignored. [ 134.056949][ T7737] sch_fq: defrate 0 ignored. [ 134.188000][ T7744] netlink: 104 bytes leftover after parsing attributes in process `syz.0.843'. [ 134.558252][ T7763] netlink: 12 bytes leftover after parsing attributes in process `syz.0.847'. [ 134.852398][ T7772] netlink: 8 bytes leftover after parsing attributes in process `syz.2.850'. [ 135.398675][ T7785] vlan0: entered promiscuous mode [ 135.997166][ T7802] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 136.238185][ T7804] sch_fq: defrate 0 ignored. [ 136.527618][ T7816] sch_fq: defrate 0 ignored. [ 136.662815][ T7820] netlink: 12 bytes leftover after parsing attributes in process `syz.3.865'. [ 136.684076][ T7822] xt_recent: hitcount (184549376) is larger than allowed maximum (65535) [ 136.788433][ C1] eth0: bad gso: type: 1, size: 1408 [ 137.057401][ T7836] sch_fq: defrate 0 ignored. [ 137.475638][ T7854] netlink: 44 bytes leftover after parsing attributes in process `syz.3.881'. [ 137.649810][ T7866] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 137.652618][ T7864] netlink: 12 bytes leftover after parsing attributes in process `syz.0.882'. [ 137.901600][ T7872] sch_fq: defrate 0 ignored. [ 138.203636][ T7882] openvswitch: netlink: Missing key (keys=20040, expected=200000) [ 138.554404][ T7894] netlink: 44 bytes leftover after parsing attributes in process `syz.1.894'. [ 138.568393][ T7892] netlink: 12 bytes leftover after parsing attributes in process `syz.2.892'. [ 138.757408][ T7902] sch_fq: defrate 0 ignored. [ 139.357709][ T7932] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 139.451895][ T7936] netlink: 44 bytes leftover after parsing attributes in process `syz.2.907'. [ 139.473142][ T7938] FAULT_INJECTION: forcing a failure. [ 139.473142][ T7938] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 139.494846][ T7938] CPU: 0 PID: 7938 Comm: syz.0.908 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 139.504541][ T7938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 139.514628][ T7938] Call Trace: [ 139.517925][ T7938] [ 139.520948][ T7938] dump_stack_lvl+0x241/0x360 [ 139.525654][ T7938] ? __pfx_dump_stack_lvl+0x10/0x10 [ 139.530957][ T7938] ? __pfx__printk+0x10/0x10 [ 139.535567][ T7938] ? __pfx_lock_release+0x10/0x10 [ 139.540713][ T7938] should_fail_ex+0x3b0/0x4e0 [ 139.545419][ T7938] _copy_from_user+0x2f/0xe0 [ 139.550032][ T7938] core_sys_select+0x639/0x910 [ 139.554820][ T7938] ? __pfx_core_sys_select+0x10/0x10 [ 139.560119][ T7938] ? rcu_read_lock_any_held+0xb7/0x160 [ 139.565607][ T7938] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 139.571303][ T7938] ? __pfx_set_user_sigmask+0x10/0x10 [ 139.576785][ T7938] ? __pfx_do_sys_openat2+0x10/0x10 [ 139.582003][ T7938] __se_sys_pselect6+0x319/0x3f0 [ 139.586947][ T7938] ? __pfx___se_sys_pselect6+0x10/0x10 [ 139.592406][ T7938] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 139.598781][ T7938] ? do_syscall_64+0x100/0x230 [ 139.603627][ T7938] ? __x64_sys_pselect6+0x21/0xf0 [ 139.608654][ T7938] do_syscall_64+0xf3/0x230 [ 139.613151][ T7938] ? clear_bhb_loop+0x35/0x90 [ 139.617838][ T7938] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.623820][ T7938] RIP: 0033:0x7ff86a175f19 [ 139.628317][ T7938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 139.647916][ T7938] RSP: 002b:00007ff86af56048 EFLAGS: 00000246 ORIG_RAX: 000000000000010e [ 139.656768][ T7938] RAX: ffffffffffffffda RBX: 00007ff86a305f60 RCX: 00007ff86a175f19 [ 139.664730][ T7938] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000040 [ 139.672777][ T7938] RBP: 00007ff86af560a0 R08: 0000000000000000 R09: 0000000000000000 [ 139.680740][ T7938] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001 [ 139.688701][ T7938] R13: 000000000000000b R14: 00007ff86a305f60 R15: 00007ffeb249e3f8 [ 139.696675][ T7938] [ 139.842064][ T7940] sch_fq: defrate 0 ignored. [ 139.914354][ C1] eth0: bad gso: type: 1, size: 1408 [ 140.041469][ T7949] netlink: 'syz.0.913': attribute type 1 has an invalid length. [ 140.049702][ T7949] netlink: 56 bytes leftover after parsing attributes in process `syz.0.913'. [ 140.356371][ T7963] netlink: 16 bytes leftover after parsing attributes in process `syz.2.919'. [ 140.471238][ T7964] netlink: 12 bytes leftover after parsing attributes in process `syz.1.918'. [ 140.667632][ T7975] netlink: 134308 bytes leftover after parsing attributes in process `syz.2.921'. [ 140.686677][ T7975] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 140.709125][ T7975] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 140.850170][ T7984] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.921'. [ 140.879410][ T7970] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.921'. [ 140.961337][ T7990] SET target dimension over the limit! [ 141.154259][ T8000] sch_fq: defrate 0 ignored. [ 141.262957][ T8008] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 141.367386][ T8013] netlink: 16 bytes leftover after parsing attributes in process `syz.0.935'. [ 141.921469][ T8034] netlink: 564 bytes leftover after parsing attributes in process `syz.2.942'. [ 142.089060][ T8036] FAULT_INJECTION: forcing a failure. [ 142.089060][ T8036] name failslab, interval 1, probability 0, space 0, times 0 [ 142.126354][ T8036] CPU: 0 PID: 8036 Comm: syz.2.943 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 142.136053][ T8036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 142.146135][ T8036] Call Trace: [ 142.149438][ T8036] [ 142.152384][ T8036] dump_stack_lvl+0x241/0x360 [ 142.157177][ T8036] ? __pfx_dump_stack_lvl+0x10/0x10 [ 142.162406][ T8036] ? __pfx__printk+0x10/0x10 [ 142.167031][ T8036] ? __pfx___might_resched+0x10/0x10 [ 142.172442][ T8036] should_fail_ex+0x3b0/0x4e0 [ 142.177150][ T8036] ? genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 142.183421][ T8036] should_failslab+0x9/0x20 [ 142.188045][ T8036] __kmalloc_noprof+0xd8/0x400 [ 142.192845][ T8036] genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 142.193808][ T8039] sch_fq: defrate 0 ignored. [ 142.199107][ T8036] genl_rcv_msg+0x802/0xec0 [ 142.199167][ T8036] ? mark_lock+0x9a/0x350 [ 142.199198][ T8036] ? __pfx_genl_rcv_msg+0x10/0x10 [ 142.217814][ T8036] ? __pfx_lock_acquire+0x10/0x10 [ 142.222843][ T8036] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 142.228212][ T8036] ? __pfx_nl80211_join_mesh+0x10/0x10 [ 142.233659][ T8036] ? __pfx_nl80211_post_doit+0x10/0x10 [ 142.239117][ T8036] ? __pfx___might_resched+0x10/0x10 [ 142.244455][ T8036] netlink_rcv_skb+0x1e3/0x430 [ 142.249300][ T8036] ? __pfx_genl_rcv_msg+0x10/0x10 [ 142.254321][ T8036] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 142.259607][ T8036] ? __netlink_deliver_tap+0x77e/0x7c0 [ 142.265065][ T8036] genl_rcv+0x28/0x40 [ 142.269132][ T8036] netlink_unicast+0x7f0/0x990 [ 142.273901][ T8036] ? __pfx_netlink_unicast+0x10/0x10 [ 142.279181][ T8036] ? __virt_addr_valid+0x183/0x530 [ 142.284320][ T8036] ? __check_object_size+0x49c/0x900 [ 142.289601][ T8036] ? bpf_lsm_netlink_send+0x9/0x10 [ 142.294709][ T8036] netlink_sendmsg+0x8e4/0xcb0 [ 142.299480][ T8036] ? __pfx_netlink_sendmsg+0x10/0x10 [ 142.304757][ T8036] ? __import_iovec+0x536/0x820 [ 142.309603][ T8036] ? aa_sock_msg_perm+0x91/0x160 [ 142.314623][ T8036] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 142.319987][ T8036] ? security_socket_sendmsg+0x87/0xb0 [ 142.325443][ T8036] ? __pfx_netlink_sendmsg+0x10/0x10 [ 142.330840][ T8036] __sock_sendmsg+0x221/0x270 [ 142.335511][ T8036] ____sys_sendmsg+0x525/0x7d0 [ 142.340276][ T8036] ? __pfx_____sys_sendmsg+0x10/0x10 [ 142.345621][ T8036] __sys_sendmsg+0x2b0/0x3a0 [ 142.350210][ T8036] ? __pfx___sys_sendmsg+0x10/0x10 [ 142.355315][ T8036] ? vfs_write+0x7c4/0xc90 [ 142.359928][ T8036] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 142.366428][ T8036] ? do_syscall_64+0x100/0x230 [ 142.371193][ T8036] ? do_syscall_64+0xb6/0x230 [ 142.375873][ T8036] do_syscall_64+0xf3/0x230 [ 142.380366][ T8036] ? clear_bhb_loop+0x35/0x90 [ 142.385039][ T8036] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.390925][ T8036] RIP: 0033:0x7f5484775f19 [ 142.395333][ T8036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 142.415102][ T8036] RSP: 002b:00007f5485601048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 142.423946][ T8036] RAX: ffffffffffffffda RBX: 00007f5484905f60 RCX: 00007f5484775f19 [ 142.431913][ T8036] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 142.440239][ T8036] RBP: 00007f54856010a0 R08: 0000000000000000 R09: 0000000000000000 [ 142.448382][ T8036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 142.456364][ T8036] R13: 000000000000004d R14: 00007f5484905f60 R15: 00007ffcacb93e68 [ 142.464350][ T8036] [ 142.638418][ T8043] netlink: 12 bytes leftover after parsing attributes in process `syz.4.944'. [ 143.057029][ T8056] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 143.067905][ T8056] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 143.090488][ T8069] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 143.766548][ C1] eth0: bad gso: type: 1, size: 1408 [ 144.379321][ T8111] FAULT_INJECTION: forcing a failure. [ 144.379321][ T8111] name failslab, interval 1, probability 0, space 0, times 0 [ 144.406845][ T8111] CPU: 1 PID: 8111 Comm: syz.1.969 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 144.416548][ T8111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 144.426812][ T8111] Call Trace: [ 144.430120][ T8111] [ 144.433076][ T8111] dump_stack_lvl+0x241/0x360 [ 144.437757][ T8111] ? __pfx_dump_stack_lvl+0x10/0x10 [ 144.443037][ T8111] ? __pfx__printk+0x10/0x10 [ 144.447712][ T8111] ? do_raw_spin_lock+0x14f/0x370 [ 144.452747][ T8111] should_fail_ex+0x3b0/0x4e0 [ 144.457417][ T8111] ? alloc_empty_file+0x9e/0x1d0 [ 144.462349][ T8111] should_failslab+0x9/0x20 [ 144.466850][ T8111] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 144.472219][ T8111] alloc_empty_file+0x9e/0x1d0 [ 144.477064][ T8111] alloc_file_pseudo+0x1da/0x290 [ 144.482000][ T8111] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 144.487455][ T8111] ? __local_bh_enable_ip+0x168/0x200 [ 144.492819][ T8111] ? bpf_link_prime+0x7a/0x240 [ 144.497577][ T8111] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 144.503290][ T8111] anon_inode_getfile+0xc8/0x180 [ 144.508232][ T8111] bpf_link_prime+0xff/0x240 [ 144.512816][ T8111] bpf_raw_tp_link_attach+0x3c4/0x6e0 [ 144.518185][ T8111] ? __pfx_bpf_raw_tp_link_attach+0x10/0x10 [ 144.524094][ T8111] bpf_raw_tracepoint_open+0x1c2/0x240 [ 144.529638][ T8111] __sys_bpf+0x3c0/0x810 [ 144.533883][ T8111] ? __pfx___sys_bpf+0x10/0x10 [ 144.538653][ T8111] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 144.544722][ T8111] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 144.551135][ T8111] ? do_syscall_64+0x100/0x230 [ 144.555913][ T8111] __x64_sys_bpf+0x7c/0x90 [ 144.560325][ T8111] do_syscall_64+0xf3/0x230 [ 144.564822][ T8111] ? clear_bhb_loop+0x35/0x90 [ 144.569495][ T8111] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 144.575378][ T8111] RIP: 0033:0x7f48d9f75f19 [ 144.579790][ T8111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 144.599386][ T8111] RSP: 002b:00007f48dad2f048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 144.607796][ T8111] RAX: ffffffffffffffda RBX: 00007f48da105f60 RCX: 00007f48d9f75f19 [ 144.615764][ T8111] RDX: 0000000000000010 RSI: 0000000020000080 RDI: 0000000000000011 [ 144.623727][ T8111] RBP: 00007f48dad2f0a0 R08: 0000000000000000 R09: 0000000000000000 [ 144.631780][ T8111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 144.639742][ T8111] R13: 000000000000000b R14: 00007f48da105f60 R15: 00007ffe58dc1318 [ 144.647718][ T8111] [ 144.947512][ T8121] __nla_validate_parse: 7 callbacks suppressed [ 144.947535][ T8121] netlink: 134308 bytes leftover after parsing attributes in process `syz.0.971'. [ 144.955930][ T8120] netlink: 134308 bytes leftover after parsing attributes in process `syz.4.972'. [ 144.991902][ T8121] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 145.007602][ T8121] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 145.186558][ T8115] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.971'. [ 145.216303][ T8135] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.971'. [ 145.241631][ T8136] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.972'. [ 145.258637][ T8124] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.972'. [ 145.311215][ T8143] netlink: 16 bytes leftover after parsing attributes in process `syz.2.978'. [ 145.400685][ T8147] netlink: 22 bytes leftover after parsing attributes in process `syz.3.980'. [ 145.629969][ T8150] netlink: 4 bytes leftover after parsing attributes in process `syz.2.981'. [ 145.783157][ C1] eth0: bad gso: type: 1, size: 1408 [ 145.885970][ T8163] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 145.935209][ T8162] netlink: 'syz.2.986': attribute type 10 has an invalid length. [ 145.965923][ T8165] netlink: 8 bytes leftover after parsing attributes in process `syz.2.986'. [ 146.344738][ T8180] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 146.399028][ T8179] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 146.449747][ T8182] sch_fq: defrate 0 ignored. [ 146.586708][ T8186] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 146.609936][ T8186] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 146.871448][ T8204] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 147.279398][ T8223] sch_fq: defrate 0 ignored. [ 147.914485][ C1] eth0: bad gso: type: 1, size: 1408 [ 148.067315][ T8242] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 148.428108][ T8256] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 148.441621][ T8255] sch_fq: defrate 0 ignored. [ 148.510025][ T8254] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 148.584090][ T8264] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 148.612011][ T8264] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 149.215643][ T8286] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 149.609540][ T8302] sch_fq: defrate 0 ignored. [ 149.983989][ T8317] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 150.270085][ T8324] __nla_validate_parse: 27 callbacks suppressed [ 150.270105][ T8324] netlink: 134308 bytes leftover after parsing attributes in process `syz.4.1040'. [ 150.303021][ T8321] netlink: 134308 bytes leftover after parsing attributes in process `syz.3.1039'. [ 150.318880][ T8324] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 150.342410][ T8324] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 150.419519][ T8330] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1040'. [ 150.429901][ T8327] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1040'. [ 150.582871][ T8334] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1039'. [ 150.622845][ T8332] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1039'. [ 150.784039][ T8342] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 150.864990][ T8340] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 150.918402][ T8348] sch_fq: defrate 0 ignored. [ 150.970499][ T8351] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1047'. [ 151.087959][ T8355] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1048'. [ 151.219422][ T8361] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 151.270892][ T8363] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1051'. [ 152.102769][ T8380] sch_fq: defrate 0 ignored. [ 152.432968][ T8388] netlink: 134308 bytes leftover after parsing attributes in process `syz.0.1060'. [ 152.451577][ T8388] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 152.501453][ T8398] syzkaller1: entered promiscuous mode [ 152.507099][ T8388] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 152.532169][ T8398] syzkaller1: entered allmulticast mode [ 152.801507][ T8411] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 152.855750][ T8410] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 153.289688][ T8422] sch_fq: defrate 0 ignored. [ 153.580510][ T8433] ipt_rpfilter: unknown options [ 153.893082][ T8444] syzkaller1: entered promiscuous mode [ 153.906357][ T8444] syzkaller1: entered allmulticast mode [ 153.924303][ T8446] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 153.954434][ T8446] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 154.602243][ T8466] sch_fq: defrate 0 ignored. [ 154.714970][ C1] eth0: bad gso: type: 1, size: 1408 [ 154.941099][ T8470] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 154.974911][ T8470] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 155.080985][ T8489] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 155.359320][ T8499] sch_fq: defrate 0 ignored. [ 155.927285][ T8509] __nla_validate_parse: 12 callbacks suppressed [ 155.927308][ T8509] netlink: 134308 bytes leftover after parsing attributes in process `syz.4.1097'. [ 155.994039][ T8521] netlink: 134308 bytes leftover after parsing attributes in process `syz.3.1098'. [ 156.012968][ T8509] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 156.028512][ T8509] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 156.106594][ T8520] syzkaller1: entered promiscuous mode [ 156.136306][ T8520] syzkaller1: entered allmulticast mode [ 156.221083][ T8525] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1099'. [ 156.250665][ T8520] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1099'. [ 156.343952][ T8506] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1096'. [ 156.393511][ T8506] IPv6: sit1: Disabled Multicast RS [ 156.636914][ C1] eth0: bad gso: type: 1, size: 1408 [ 156.719648][ C1] eth0: bad gso: type: 1, size: 1408 [ 156.821733][ T8546] sch_fq: defrate 0 ignored. [ 157.146427][ T8561] netlink: 134308 bytes leftover after parsing attributes in process `syz.2.1110'. [ 157.214803][ T8561] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 157.239158][ T8561] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 157.253362][ T8566] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1110'. [ 157.275787][ T8555] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1110'. [ 157.779840][ T8573] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 157.864113][ T8571] syzkaller1: entered promiscuous mode [ 157.871229][ T8571] syzkaller1: entered allmulticast mode [ 157.981017][ T8575] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1114'. [ 158.019625][ T8571] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1114'. [ 158.241066][ T8589] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 158.258667][ C1] eth0: bad gso: type: 1, size: 1408 [ 158.271651][ T8589] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 158.627328][ T8601] sch_fq: defrate 0 ignored. [ 159.271971][ C1] eth0: bad gso: type: 1, size: 1408 [ 159.553551][ T8626] syzkaller1: entered promiscuous mode [ 159.559519][ T8626] syzkaller1: entered allmulticast mode [ 160.001519][ T8636] sch_fq: defrate 0 ignored. [ 160.388762][ T8646] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 160.423128][ T8646] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 161.093550][ T8653] __nla_validate_parse: 7 callbacks suppressed [ 161.093571][ T8653] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1139'. [ 161.135292][ T8653] IPv6: sit2: Disabled Multicast RS [ 161.536374][ C1] eth0: bad gso: type: 1, size: 1408 [ 161.696665][ T8679] sch_fq: defrate 0 ignored. [ 161.917700][ T8690] syzkaller1: entered promiscuous mode [ 161.933490][ T8690] syzkaller1: entered allmulticast mode [ 162.011007][ T8699] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1152'. [ 162.026222][ T8690] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1152'. [ 162.199972][ T8707] netlink: 134308 bytes leftover after parsing attributes in process `syz.3.1155'. [ 162.262703][ T8707] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 162.296079][ T8707] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 163.050327][ T8726] sch_fq: defrate 0 ignored. [ 163.089210][ T8713] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1158'. [ 163.833404][ T8743] syzkaller1: entered promiscuous mode [ 163.845094][ T8743] syzkaller1: entered allmulticast mode [ 163.870316][ T8743] netlink: 134308 bytes leftover after parsing attributes in process `syz.0.1168'. [ 163.881880][ T8743] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 163.903600][ T8743] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 163.984667][ T8748] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1168'. [ 164.002812][ T8745] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1168'. [ 164.056527][ T8752] netlink: 104 bytes leftover after parsing attributes in process `syz.4.1171'. [ 164.160870][ T8759] sch_fq: defrate 0 ignored. [ 164.334992][ T8767] netlink: 134308 bytes leftover after parsing attributes in process `syz.3.1174'. [ 164.922417][ T8782] FAULT_INJECTION: forcing a failure. [ 164.922417][ T8782] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 164.964466][ T8782] CPU: 0 PID: 8782 Comm: syz.1.1178 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 164.974698][ T8782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 164.984784][ T8782] Call Trace: [ 164.988085][ T8782] [ 164.991025][ T8782] dump_stack_lvl+0x241/0x360 [ 164.995727][ T8782] ? __pfx_dump_stack_lvl+0x10/0x10 [ 165.000951][ T8782] ? __pfx__printk+0x10/0x10 [ 165.005578][ T8782] ? __pfx_lock_release+0x10/0x10 [ 165.010649][ T8782] should_fail_ex+0x3b0/0x4e0 [ 165.015361][ T8782] _copy_from_user+0x2f/0xe0 [ 165.019987][ T8782] core_sys_select+0x639/0x910 [ 165.024757][ T8782] ? __pfx_core_sys_select+0x10/0x10 [ 165.030033][ T8782] ? rcu_read_lock_any_held+0xb7/0x160 [ 165.035494][ T8782] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 165.041157][ T8782] ? __pfx_set_user_sigmask+0x10/0x10 [ 165.046531][ T8782] ? __pfx_do_sys_openat2+0x10/0x10 [ 165.051733][ T8782] __se_sys_pselect6+0x319/0x3f0 [ 165.056670][ T8782] ? __pfx___se_sys_pselect6+0x10/0x10 [ 165.062217][ T8782] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 165.068718][ T8782] ? do_syscall_64+0x100/0x230 [ 165.073476][ T8782] ? __x64_sys_pselect6+0x21/0xf0 [ 165.078520][ T8782] do_syscall_64+0xf3/0x230 [ 165.083050][ T8782] ? clear_bhb_loop+0x35/0x90 [ 165.087736][ T8782] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.093715][ T8782] RIP: 0033:0x7f48d9f75f19 [ 165.098214][ T8782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.117821][ T8782] RSP: 002b:00007f48dad0e048 EFLAGS: 00000246 ORIG_RAX: 000000000000010e [ 165.126230][ T8782] RAX: ffffffffffffffda RBX: 00007f48da106038 RCX: 00007f48d9f75f19 [ 165.134191][ T8782] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000040 [ 165.142154][ T8782] RBP: 00007f48dad0e0a0 R08: 0000000000000000 R09: 0000000000000000 [ 165.150117][ T8782] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000000001 [ 165.158078][ T8782] R13: 000000000000006e R14: 00007f48da106038 R15: 00007ffe58dc1318 [ 165.166146][ T8782] [ 165.376926][ T8794] sch_fq: defrate 0 ignored. [ 165.924223][ T8810] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 165.955900][ T8812] syzkaller1: entered promiscuous mode [ 165.968434][ T8812] syzkaller1: entered allmulticast mode [ 165.978965][ T8810] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 166.564662][ T8832] sch_fq: defrate 0 ignored. [ 166.790042][ T8840] xt_cgroup: xt_cgroup: no path or classid specified [ 166.994317][ T8848] __nla_validate_parse: 6 callbacks suppressed [ 166.994403][ T8848] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1203'. [ 167.268093][ T8862] sch_fq: defrate 0 ignored. [ 167.389725][ T8864] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1207'. [ 167.535746][ T8866] netlink: 134308 bytes leftover after parsing attributes in process `syz.3.1211'. [ 167.557659][ T8866] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 167.583798][ T8876] syzkaller1: entered promiscuous mode [ 167.600210][ T8866] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 167.604620][ T8876] syzkaller1: entered allmulticast mode [ 167.641096][ T8873] netlink: 134308 bytes leftover after parsing attributes in process `syz.0.1213'. [ 167.741258][ T8878] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1213'. [ 167.751525][ T8876] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1213'. [ 168.053352][ T8884] openvswitch: netlink: Missing key (keys=20040, expected=10000000) [ 168.520857][ T8899] sch_fq: defrate 0 ignored. [ 168.821537][ T8914] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1228'. [ 169.854164][ T8932] netlink: 134308 bytes leftover after parsing attributes in process `syz.3.1232'. [ 169.883385][ T8937] netlink: 134308 bytes leftover after parsing attributes in process `syz.2.1233'. [ 170.095588][ T8958] netlink: 134308 bytes leftover after parsing attributes in process `syz.4.1235'. [ 170.151137][ T8932] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 170.174496][ T8948] syzkaller1: entered promiscuous mode [ 170.184629][ T8932] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 170.223859][ T8948] syzkaller1: entered allmulticast mode [ 170.254529][ T8963] sch_fq: defrate 0 ignored. [ 171.378953][ T8995] sch_fq: defrate 0 ignored. [ 171.419237][ T8996] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 171.824362][ T9001] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 171.838156][ T9001] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 171.867739][ T9011] syzkaller1: entered promiscuous mode [ 171.894170][ T9011] syzkaller1: entered allmulticast mode [ 172.077497][ T9014] __nla_validate_parse: 4 callbacks suppressed [ 172.077514][ T9014] netlink: 134308 bytes leftover after parsing attributes in process `syz.3.1255'. [ 172.118218][ T9017] syzkaller1: entered promiscuous mode [ 172.126895][ T9017] syzkaller1: entered allmulticast mode [ 172.189199][ T9017] netlink: 134308 bytes leftover after parsing attributes in process `syz.4.1256'. [ 172.873563][ T9037] sch_fq: defrate 0 ignored. [ 172.931873][ T9039] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 173.400501][ T9052] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1264'. [ 173.822094][ T9059] netlink: 134308 bytes leftover after parsing attributes in process `syz.1.1269'. [ 173.872419][ T9068] netlink: 134308 bytes leftover after parsing attributes in process `syz.0.1270'. [ 173.930308][ T9059] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 173.968988][ T9059] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 174.325146][ T9075] syzkaller1: entered promiscuous mode [ 174.356140][ T9075] syzkaller1: entered allmulticast mode [ 174.375134][ T9075] netlink: 134308 bytes leftover after parsing attributes in process `syz.4.1271'. [ 174.784551][ T9085] sch_fq: defrate 0 ignored. [ 175.048404][ T9096] syzkaller1: entered promiscuous mode [ 175.071566][ T9096] syzkaller1: entered allmulticast mode [ 175.129869][ T9091] netlink: 134308 bytes leftover after parsing attributes in process `syz.0.1276'. [ 175.194700][ T9091] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 175.210618][ T9091] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 175.283227][ T9107] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1281'. [ 175.920275][ T9120] netlink: 134308 bytes leftover after parsing attributes in process `syz.0.1283'. [ 175.969090][ T9120] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 176.001903][ T9120] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 176.124607][ T9125] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1285'. [ 176.265121][ T9132] sch_fq: defrate 0 ignored. [ 176.333929][ T9135] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 176.441092][ T9140] syzkaller1: entered promiscuous mode [ 176.449114][ T9140] syzkaller1: entered allmulticast mode [ 176.983061][ T9159] syzkaller1: entered promiscuous mode [ 177.004745][ T9159] syzkaller1: entered allmulticast mode [ 177.092235][ T9155] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 177.125088][ T9155] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 177.392660][ T9164] __nla_validate_parse: 4 callbacks suppressed [ 177.392679][ T9164] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1297'. [ 177.801655][ T9173] sch_fq: defrate 0 ignored. [ 178.290785][ T9184] netlink: 134308 bytes leftover after parsing attributes in process `syz.4.1305'. [ 178.342337][ T9196] syzkaller1: entered promiscuous mode [ 178.354567][ T9196] syzkaller1: entered allmulticast mode [ 178.380274][ T9184] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 178.434393][ T9184] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 178.581695][ T9199] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1308'. [ 178.617368][ T9196] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1308'. [ 179.380665][ T9215] sch_fq: defrate 0 ignored. [ 179.849278][ T9230] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 179.959287][ T9236] netlink: 564 bytes leftover after parsing attributes in process `syz.4.1319'. [ 179.963444][ T9234] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1318'. [ 180.169778][ T9245] syzkaller1: entered promiscuous mode [ 180.175458][ T9245] syzkaller1: entered allmulticast mode [ 180.241511][ T9248] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1323'. [ 180.258745][ T9245] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1323'. [ 180.337492][ T9250] sch_fq: defrate 0 ignored. [ 180.470816][ T9257] netlink: 134308 bytes leftover after parsing attributes in process `syz.3.1326'. [ 180.496075][ T9257] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 180.518195][ T9257] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 181.353980][ T9276] FAULT_INJECTION: forcing a failure. [ 181.353980][ T9276] name failslab, interval 1, probability 0, space 0, times 0 [ 181.367000][ T9276] CPU: 1 PID: 9276 Comm: syz.3.1333 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 181.376753][ T9276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 181.386831][ T9276] Call Trace: [ 181.390140][ T9276] [ 181.393086][ T9276] dump_stack_lvl+0x241/0x360 [ 181.397782][ T9276] ? __pfx_dump_stack_lvl+0x10/0x10 [ 181.403046][ T9276] ? __pfx__printk+0x10/0x10 [ 181.407672][ T9276] should_fail_ex+0x3b0/0x4e0 [ 181.412377][ T9276] ? __alloc_skb+0x1c3/0x440 [ 181.417003][ T9276] should_failslab+0x9/0x20 [ 181.421534][ T9276] kmem_cache_alloc_node_noprof+0x71/0x320 [ 181.427378][ T9276] __alloc_skb+0x1c3/0x440 [ 181.431828][ T9276] ? __pfx___alloc_skb+0x10/0x10 [ 181.436792][ T9276] ? netlink_ack_tlv_len+0x6e/0x200 [ 181.441987][ T9276] netlink_ack+0x13f/0xa30 [ 181.446394][ T9276] ? __pfx_lock_acquire+0x10/0x10 [ 181.451411][ T9276] ? __pfx_nl80211_join_mesh+0x10/0x10 [ 181.456857][ T9276] ? __pfx_nl80211_post_doit+0x10/0x10 [ 181.462331][ T9276] netlink_rcv_skb+0x262/0x430 [ 181.467094][ T9276] ? __pfx_genl_rcv_msg+0x10/0x10 [ 181.472115][ T9276] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 181.477401][ T9276] ? __netlink_deliver_tap+0x77e/0x7c0 [ 181.482954][ T9276] genl_rcv+0x28/0x40 [ 181.486953][ T9276] netlink_unicast+0x7f0/0x990 [ 181.491739][ T9276] ? __pfx_netlink_unicast+0x10/0x10 [ 181.497022][ T9276] ? __virt_addr_valid+0x183/0x530 [ 181.502133][ T9276] ? __check_object_size+0x49c/0x900 [ 181.507412][ T9276] ? bpf_lsm_netlink_send+0x9/0x10 [ 181.512518][ T9276] netlink_sendmsg+0x8e4/0xcb0 [ 181.517283][ T9276] ? __pfx_netlink_sendmsg+0x10/0x10 [ 181.522561][ T9276] ? __import_iovec+0x536/0x820 [ 181.527406][ T9276] ? aa_sock_msg_perm+0x91/0x160 [ 181.532339][ T9276] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 181.537616][ T9276] ? security_socket_sendmsg+0x87/0xb0 [ 181.543120][ T9276] ? __pfx_netlink_sendmsg+0x10/0x10 [ 181.548398][ T9276] __sock_sendmsg+0x221/0x270 [ 181.553077][ T9276] ____sys_sendmsg+0x525/0x7d0 [ 181.557845][ T9276] ? __pfx_____sys_sendmsg+0x10/0x10 [ 181.563142][ T9276] __sys_sendmsg+0x2b0/0x3a0 [ 181.567728][ T9276] ? __pfx___sys_sendmsg+0x10/0x10 [ 181.573019][ T9276] ? vfs_write+0x7c4/0xc90 [ 181.577457][ T9276] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 181.583787][ T9276] ? do_syscall_64+0x100/0x230 [ 181.588633][ T9276] ? do_syscall_64+0xb6/0x230 [ 181.593305][ T9276] do_syscall_64+0xf3/0x230 [ 181.597806][ T9276] ? clear_bhb_loop+0x35/0x90 [ 181.602490][ T9276] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.608376][ T9276] RIP: 0033:0x7f81d5b75f19 [ 181.612803][ T9276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.632594][ T9276] RSP: 002b:00007f81d6938048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 181.641003][ T9276] RAX: ffffffffffffffda RBX: 00007f81d5d05f60 RCX: 00007f81d5b75f19 [ 181.648970][ T9276] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 181.656934][ T9276] RBP: 00007f81d69380a0 R08: 0000000000000000 R09: 0000000000000000 [ 181.664894][ T9276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 181.672860][ T9276] R13: 000000000000000b R14: 00007f81d5d05f60 R15: 00007ffe1f185628 [ 181.681019][ T9276] [ 181.736243][ T9219] Bluetooth: hci1: command 0x0406 tx timeout [ 181.736779][ T54] Bluetooth: hci0: command 0x0406 tx timeout [ 181.744709][ T5227] Bluetooth: hci2: command 0x0406 tx timeout [ 181.748954][ T54] Bluetooth: hci4: command 0x0405 tx timeout [ 182.291870][ T9293] syzkaller1: entered promiscuous mode [ 182.297423][ T9293] syzkaller1: entered allmulticast mode [ 182.518007][ T9295] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1337'. [ 182.587896][ T9293] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1337'. [ 182.685838][ T9296] syzkaller1: entered promiscuous mode [ 182.696496][ T9296] syzkaller1: entered allmulticast mode [ 182.712268][ T9306] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1338'. [ 182.746442][ T9300] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1338'. [ 182.787044][ T9308] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1340'. [ 182.975804][ T9316] netlink: 134308 bytes leftover after parsing attributes in process `syz.2.1343'. [ 183.001428][ T9316] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 183.033178][ T9316] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 183.050193][ T9320] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 183.618608][ T9330] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1347'. [ 183.649852][ T9330] netlink: 'syz.3.1347': attribute type 153 has an invalid length. [ 183.668620][ T9330] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1347'. [ 184.287583][ T9348] syzkaller1: entered promiscuous mode [ 184.303921][ T9348] syzkaller1: entered allmulticast mode [ 184.359489][ T9352] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 184.440439][ T9354] syzkaller1: entered promiscuous mode [ 184.454577][ T9354] syzkaller1: entered allmulticast mode [ 184.477381][ T9357] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1354'. [ 184.492607][ T9350] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1354'. [ 185.375748][ T9380] FAULT_INJECTION: forcing a failure. [ 185.375748][ T9380] name failslab, interval 1, probability 0, space 0, times 0 [ 185.453358][ T9380] CPU: 0 PID: 9380 Comm: syz.4.1362 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 185.463140][ T9380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 185.473314][ T9380] Call Trace: [ 185.476707][ T9380] [ 185.479655][ T9380] dump_stack_lvl+0x241/0x360 [ 185.484363][ T9380] ? __pfx_dump_stack_lvl+0x10/0x10 [ 185.489595][ T9380] ? __pfx__printk+0x10/0x10 [ 185.494218][ T9380] ? __pfx___might_resched+0x10/0x10 [ 185.499540][ T9380] should_fail_ex+0x3b0/0x4e0 [ 185.504255][ T9380] ? __d_alloc+0x31/0x700 [ 185.508619][ T9380] should_failslab+0x9/0x20 [ 185.513144][ T9380] kmem_cache_alloc_lru_noprof+0x71/0x2b0 [ 185.518890][ T9380] ? mark_lock+0x9a/0x350 [ 185.523251][ T9380] __d_alloc+0x31/0x700 [ 185.527437][ T9380] d_alloc_pseudo+0x1f/0xb0 [ 185.531957][ T9380] alloc_file_pseudo+0x123/0x290 [ 185.536908][ T9380] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 185.542373][ T9380] ? __local_bh_enable_ip+0x168/0x200 [ 185.547742][ T9380] ? bpf_link_prime+0x7a/0x240 [ 185.552590][ T9380] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 185.558307][ T9380] anon_inode_getfile+0xc8/0x180 [ 185.563254][ T9380] bpf_link_prime+0xff/0x240 [ 185.567926][ T9380] bpf_raw_tp_link_attach+0x3c4/0x6e0 [ 185.573297][ T9380] ? __pfx_bpf_raw_tp_link_attach+0x10/0x10 [ 185.579208][ T9380] bpf_raw_tracepoint_open+0x1c2/0x240 [ 185.584665][ T9380] __sys_bpf+0x3c0/0x810 [ 185.588905][ T9380] ? __pfx___sys_bpf+0x10/0x10 [ 185.593670][ T9380] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 185.599647][ T9380] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 185.606054][ T9380] ? do_syscall_64+0x100/0x230 [ 185.610810][ T9380] __x64_sys_bpf+0x7c/0x90 [ 185.615315][ T9380] do_syscall_64+0xf3/0x230 [ 185.619817][ T9380] ? clear_bhb_loop+0x35/0x90 [ 185.624490][ T9380] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.630377][ T9380] RIP: 0033:0x7f5682375f19 [ 185.634785][ T9380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.654382][ T9380] RSP: 002b:00007f5683217048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 185.662819][ T9380] RAX: ffffffffffffffda RBX: 00007f5682505f60 RCX: 00007f5682375f19 [ 185.670867][ T9380] RDX: 0000000000000010 RSI: 0000000020000080 RDI: 0000000000000011 [ 185.678835][ T9380] RBP: 00007f56832170a0 R08: 0000000000000000 R09: 0000000000000000 [ 185.686797][ T9380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 185.694759][ T9380] R13: 000000000000000b R14: 00007f5682505f60 R15: 00007fff238ac888 [ 185.702732][ T9380] [ 186.149077][ T9399] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 186.354955][ T9403] syzkaller1: entered promiscuous mode [ 186.381356][ T9403] syzkaller1: entered allmulticast mode [ 186.517003][ T9405] syzkaller1: entered promiscuous mode [ 186.534611][ T9405] syzkaller1: entered allmulticast mode [ 187.394455][ T9439] FAULT_INJECTION: forcing a failure. [ 187.394455][ T9439] name failslab, interval 1, probability 0, space 0, times 0 [ 187.438884][ T9441] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 187.441316][ T9439] CPU: 1 PID: 9439 Comm: syz.2.1380 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 187.457596][ T9439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 187.467681][ T9439] Call Trace: [ 187.470981][ T9439] [ 187.473940][ T9439] dump_stack_lvl+0x241/0x360 [ 187.478645][ T9439] ? __pfx_dump_stack_lvl+0x10/0x10 [ 187.484041][ T9439] ? __pfx__printk+0x10/0x10 [ 187.488666][ T9439] should_fail_ex+0x3b0/0x4e0 [ 187.493367][ T9439] ? iovec_from_user+0x87/0x240 [ 187.498251][ T9439] should_failslab+0x9/0x20 [ 187.502951][ T9439] __kmalloc_noprof+0xd8/0x400 [ 187.507740][ T9439] ? __pfx_lock_acquire+0x10/0x10 [ 187.512798][ T9439] iovec_from_user+0x87/0x240 [ 187.517511][ T9439] __import_iovec+0x132/0x820 [ 187.522225][ T9439] import_iovec+0xeb/0x120 [ 187.526683][ T9439] vfs_writev+0x1c2/0xbb0 [ 187.531039][ T9439] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 187.536710][ T9439] ? sb_end_write+0xe9/0x1c0 [ 187.541334][ T9439] ? __pfx_vfs_writev+0x10/0x10 [ 187.546229][ T9439] ? __pfx_do_sys_openat2+0x10/0x10 [ 187.551461][ T9439] ? ppp_ioctl+0x459/0x1cd0 [ 187.556012][ T9439] __x64_sys_pwritev+0x1c7/0x2d0 [ 187.560982][ T9439] ? __pfx___x64_sys_pwritev+0x10/0x10 [ 187.566471][ T9439] ? do_syscall_64+0x100/0x230 [ 187.571268][ T9439] ? do_syscall_64+0xb6/0x230 [ 187.575970][ T9439] do_syscall_64+0xf3/0x230 [ 187.580590][ T9439] ? clear_bhb_loop+0x35/0x90 [ 187.585304][ T9439] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.591324][ T9439] RIP: 0033:0x7f5484775f19 [ 187.595772][ T9439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.615669][ T9439] RSP: 002b:00007f5485601048 EFLAGS: 00000246 ORIG_RAX: 0000000000000128 [ 187.624125][ T9439] RAX: ffffffffffffffda RBX: 00007f5484905f60 RCX: 00007f5484775f19 [ 187.632305][ T9439] RDX: 000000000000000a RSI: 0000000020000080 RDI: 0000000000000003 [ 187.640307][ T9439] RBP: 00007f54856010a0 R08: 0000000000000000 R09: 0000000000000000 [ 187.648305][ T9439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 187.656302][ T9439] R13: 000000000000004d R14: 00007f5484905f60 R15: 00007ffcacb93e68 [ 187.664288][ T9439] [ 187.711195][ T9448] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 187.744906][ T9448] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 188.049686][ T9459] netlink: 'syz.3.1388': attribute type 10 has an invalid length. [ 188.069284][ T9456] syzkaller1: entered promiscuous mode [ 188.074915][ T9456] syzkaller1: entered allmulticast mode [ 188.093864][ T9459] __nla_validate_parse: 8 callbacks suppressed [ 188.093881][ T9459] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1388'. [ 188.157199][ T9464] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1388'. [ 188.168749][ T9466] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1389'. [ 188.179425][ T9456] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1389'. [ 188.534067][ T9479] netlink: 'syz.4.1395': attribute type 1 has an invalid length. [ 188.628877][ T9479] bond2: entered promiscuous mode [ 188.647161][ T9479] bond2: (slave ip6gretap1): making interface the new active one [ 188.658495][ T9479] ip6gretap1: entered promiscuous mode [ 188.682290][ T9479] bond2: (slave ip6gretap1): Enslaving as an active interface with an up link [ 188.686422][ T9484] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 188.756182][ T9486] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1395'. [ 188.768916][ T9486] bond2: left promiscuous mode [ 188.773732][ T9486] ip6gretap1: left promiscuous mode [ 188.781090][ T9486] 8021q: adding VLAN 0 to HW filter on device bond2 [ 189.058620][ T9495] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 189.121777][ T9494] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 189.226608][ T9499] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1399'. [ 189.700252][ T9515] syzkaller1: entered promiscuous mode [ 189.728906][ T9515] syzkaller1: entered allmulticast mode [ 189.751427][ T9514] syzkaller1: entered promiscuous mode [ 189.764255][ T9514] syzkaller1: entered allmulticast mode [ 189.872795][ T9514] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1405'. [ 189.885948][ T9524] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1406'. [ 189.917709][ T9522] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1405'. [ 189.950274][ T9518] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1406'. [ 190.001230][ T9526] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 190.206633][ T9528] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 190.216434][ T9533] netlink: 'syz.1.1410': attribute type 1 has an invalid length. [ 190.257037][ T9528] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 190.262716][ T9533] bond2: entered promiscuous mode [ 190.345523][ T9533] bond2: (slave ip6gretap1): making interface the new active one [ 190.361082][ T9533] ip6gretap1: entered promiscuous mode [ 190.373092][ T9533] bond2: (slave ip6gretap1): Enslaving as an active interface with an up link [ 190.399671][ T9538] bond2: left promiscuous mode [ 190.404464][ T9538] ip6gretap1: left promiscuous mode [ 190.419671][ T9538] 8021q: adding VLAN 0 to HW filter on device bond2 [ 191.445025][ T9570] syzkaller1: entered promiscuous mode [ 191.468235][ T9570] syzkaller1: entered allmulticast mode [ 191.691700][ T9575] netlink: 'syz.1.1424': attribute type 1 has an invalid length. [ 191.745565][ T9575] bond3: entered promiscuous mode [ 191.822205][ T9577] bond3: (slave ip6gretap2): making interface the new active one [ 191.919431][ T9577] ip6gretap2: entered promiscuous mode [ 191.956624][ T9577] bond3: (slave ip6gretap2): Enslaving as an active interface with an up link [ 192.003029][ T9580] bond3: left promiscuous mode [ 192.042678][ T9580] ip6gretap2: left promiscuous mode [ 192.061440][ T9580] 8021q: adding VLAN 0 to HW filter on device bond3 [ 192.087136][ T9582] syzkaller1: entered promiscuous mode [ 192.104048][ T9582] syzkaller1: entered allmulticast mode [ 192.361637][ T9606] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 192.388831][ T9605] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 192.400978][ T9606] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 192.689561][ C1] eth0: bad gso: type: 1, size: 1408 [ 192.754275][ T9617] openvswitch: netlink: IP tunnel attribute has 3052 unknown bytes. [ 192.795777][ T9617] vxcan2: entered promiscuous mode [ 192.808100][ T9617] vxcan2: entered allmulticast mode [ 193.331895][ T9623] __nla_validate_parse: 11 callbacks suppressed [ 193.331919][ T9623] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1437'. [ 193.451055][ T9637] netlink: 'syz.4.1442': attribute type 1 has an invalid length. [ 193.511886][ T9637] bond3: entered promiscuous mode [ 193.519455][ T9629] syzkaller1: entered promiscuous mode [ 193.524945][ T9629] syzkaller1: entered allmulticast mode [ 193.532234][ T9633] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1437'. [ 193.546693][ T9642] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 193.666856][ T9643] bond3: (slave ip6gretap2): making interface the new active one [ 193.698701][ T9643] ip6gretap2: entered promiscuous mode [ 193.719340][ T9643] bond3: (slave ip6gretap2): Enslaving as an active interface with an up link [ 193.737710][ T9637] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1442'. [ 193.786126][ T9637] bond3: left promiscuous mode [ 193.831880][ T9637] ip6gretap2: left promiscuous mode [ 193.852041][ T9637] 8021q: adding VLAN 0 to HW filter on device bond3 [ 193.912595][ T9648] syzkaller1: entered promiscuous mode [ 193.931034][ T9648] syzkaller1: entered allmulticast mode [ 193.951768][ T9646] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1444'. [ 193.977713][ T9653] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1444'. [ 194.086299][ T9657] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1446'. [ 194.108261][ T9657] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1446'. [ 194.124322][ T9657] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1446'. [ 194.556090][ T9671] netlink: 134308 bytes leftover after parsing attributes in process `syz.0.1450'. [ 194.651840][ T9671] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 194.674111][ T9671] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 194.694281][ T1272] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.812417][ C1] eth0: bad gso: type: 1, size: 1408 [ 194.853581][ T9679] netlink: 134308 bytes leftover after parsing attributes in process `syz.4.1452'. [ 194.919689][ T9687] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 194.941458][ T9690] FAULT_INJECTION: forcing a failure. [ 194.941458][ T9690] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 194.978771][ T9690] CPU: 1 PID: 9690 Comm: syz.2.1455 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 194.988550][ T9690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 194.998633][ T9690] Call Trace: [ 195.001933][ T9690] [ 195.004883][ T9690] dump_stack_lvl+0x241/0x360 [ 195.009593][ T9690] ? __pfx_dump_stack_lvl+0x10/0x10 [ 195.014831][ T9690] ? __pfx__printk+0x10/0x10 [ 195.019452][ T9690] ? __pfx_lock_release+0x10/0x10 [ 195.024595][ T9690] should_fail_ex+0x3b0/0x4e0 [ 195.029304][ T9690] _copy_from_user+0x2f/0xe0 [ 195.033922][ T9690] copy_msghdr_from_user+0xae/0x680 [ 195.039233][ T9690] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 195.045073][ T9690] __sys_sendmsg+0x23d/0x3a0 [ 195.049778][ T9690] ? __pfx___sys_sendmsg+0x10/0x10 [ 195.055175][ T9690] ? vfs_write+0x7c4/0xc90 [ 195.059661][ T9690] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 195.066010][ T9690] ? do_syscall_64+0x100/0x230 [ 195.070796][ T9690] ? do_syscall_64+0xb6/0x230 [ 195.075495][ T9690] do_syscall_64+0xf3/0x230 [ 195.080124][ T9690] ? clear_bhb_loop+0x35/0x90 [ 195.084829][ T9690] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.090847][ T9690] RIP: 0033:0x7f5484775f19 [ 195.095286][ T9690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.115453][ T9690] RSP: 002b:00007f5485601048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 195.124071][ T9690] RAX: ffffffffffffffda RBX: 00007f5484905f60 RCX: 00007f5484775f19 [ 195.132068][ T9690] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003 [ 195.140066][ T9690] RBP: 00007f54856010a0 R08: 0000000000000000 R09: 0000000000000000 [ 195.148059][ T9690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 195.156052][ T9690] R13: 000000000000004d R14: 00007f5484905f60 R15: 00007ffcacb93e68 [ 195.164065][ T9690] [ 195.291787][ T9698] netlink: 'syz.0.1458': attribute type 1 has an invalid length. [ 195.318621][ T9698] bond2: entered promiscuous mode [ 195.378409][ T9698] bond2: (slave ip6gretap1): making interface the new active one [ 195.386285][ T9698] ip6gretap1: entered promiscuous mode [ 195.429521][ T9698] bond2: (slave ip6gretap1): Enslaving as an active interface with an up link [ 195.441987][ T9700] bond2: left promiscuous mode [ 195.447977][ T9700] ip6gretap1: left promiscuous mode [ 195.464925][ T9700] 8021q: adding VLAN 0 to HW filter on device bond2 [ 196.102355][ T9727] can: request_module (can-proto-0) failed. [ 196.160966][ T9724] syzkaller1: entered promiscuous mode [ 196.170753][ T9724] syzkaller1: entered allmulticast mode [ 196.208933][ T9731] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 196.516657][ C1] eth0: bad gso: type: 1, size: 1408 [ 196.941989][ T9750] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 196.980348][ T9750] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 197.217483][ T9770] netlink: 'syz.2.1476': attribute type 14 has an invalid length. [ 197.242929][ T9770] vxlan1: entered promiscuous mode [ 197.642847][ T9777] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 197.770546][ T9781] syzkaller1: entered promiscuous mode [ 197.776576][ T9781] syzkaller1: entered allmulticast mode [ 197.949534][ T9789] sit0: entered allmulticast mode [ 198.219521][ T9795] can: request_module (can-proto-0) failed. [ 198.418829][ T9810] __nla_validate_parse: 14 callbacks suppressed [ 198.418849][ T9810] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1489'. [ 198.571598][ T9813] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 198.925710][ T9826] syzkaller1: entered promiscuous mode [ 198.946585][ T9826] syzkaller1: entered allmulticast mode [ 199.045121][ T9826] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1495'. [ 199.094348][ T9822] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1495'. [ 199.138509][ T9829] syzkaller1: entered promiscuous mode [ 199.145992][ T9829] syzkaller1: entered allmulticast mode [ 199.148653][ T9834] FAULT_INJECTION: forcing a failure. [ 199.148653][ T9834] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 199.176819][ T9834] CPU: 0 PID: 9834 Comm: syz.2.1497 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 199.186591][ T9834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 199.196779][ T9834] Call Trace: [ 199.200070][ T9834] [ 199.203273][ T9834] dump_stack_lvl+0x241/0x360 [ 199.208059][ T9834] ? __pfx_dump_stack_lvl+0x10/0x10 [ 199.213274][ T9834] ? __pfx__printk+0x10/0x10 [ 199.217885][ T9834] ? __lock_acquire+0x137a/0x2040 [ 199.222934][ T9834] should_fail_ex+0x3b0/0x4e0 [ 199.227643][ T9834] prepare_alloc_pages+0x1da/0x5d0 [ 199.232744][ T9829] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1496'. [ 199.241947][ T9834] __alloc_pages_noprof+0x166/0x6c0 [ 199.241987][ T9834] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 199.242019][ T9834] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 199.242044][ T9834] alloc_pages_mpol_noprof+0x3e8/0x680 [ 199.242068][ T9834] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 199.242088][ T9834] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 199.242111][ T9834] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 199.242134][ T9834] ? alloc_pages_noprof+0xef/0x170 [ 199.242157][ T9834] get_free_pages_noprof+0xc/0x30 [ 199.242183][ T9834] __pollwait+0x134/0x430 [ 199.242203][ T9834] ? __pfx___pollwait+0x10/0x10 [ 199.261123][ T9831] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1496'. [ 199.264577][ T9834] datagram_poll+0x82/0x410 [ 199.315747][ T9834] sock_poll+0x350/0x410 [ 199.320002][ T9834] ? __pfx_sock_poll+0x10/0x10 [ 199.324781][ T9834] do_select+0xec6/0x1900 [ 199.329117][ T9834] ? do_select+0x127/0x1900 [ 199.333626][ T9834] ? __pfx_do_select+0x10/0x10 [ 199.338427][ T9834] ? __pfx___pollwait+0x10/0x10 [ 199.343273][ T9834] ? __pfx_pollwake+0x10/0x10 [ 199.348041][ T9834] ? __pfx_pollwake+0x10/0x10 [ 199.352718][ T9834] ? __pfx_pollwake+0x10/0x10 [ 199.357390][ T9834] ? __pfx_pollwake+0x10/0x10 [ 199.362059][ T9834] ? __pfx_pollwake+0x10/0x10 [ 199.366733][ T9834] ? __pfx_pollwake+0x10/0x10 [ 199.371414][ T9834] ? __pfx_pollwake+0x10/0x10 [ 199.376172][ T9834] ? __pfx_pollwake+0x10/0x10 [ 199.380843][ T9834] ? __pfx_pollwake+0x10/0x10 [ 199.385510][ T9834] ? __pfx_lock_release+0x10/0x10 [ 199.390539][ T9834] ? __might_fault+0xc6/0x120 [ 199.395212][ T9834] core_sys_select+0x6f4/0x910 [ 199.399987][ T9834] ? __pfx_core_sys_select+0x10/0x10 [ 199.405307][ T9834] ? rcu_read_lock_any_held+0xb7/0x160 [ 199.410789][ T9834] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 199.416446][ T9834] ? __pfx_set_user_sigmask+0x10/0x10 [ 199.421830][ T9834] ? __pfx_do_sys_openat2+0x10/0x10 [ 199.427058][ T9834] __se_sys_pselect6+0x319/0x3f0 [ 199.432085][ T9834] ? __pfx___se_sys_pselect6+0x10/0x10 [ 199.437537][ T9834] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 199.443858][ T9834] ? do_syscall_64+0x100/0x230 [ 199.448613][ T9834] ? __x64_sys_pselect6+0x21/0xf0 [ 199.453633][ T9834] do_syscall_64+0xf3/0x230 [ 199.458219][ T9834] ? clear_bhb_loop+0x35/0x90 [ 199.462890][ T9834] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.468775][ T9834] RIP: 0033:0x7f5484775f19 [ 199.473184][ T9834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.492792][ T9834] RSP: 002b:00007f54855e0048 EFLAGS: 00000246 ORIG_RAX: 000000000000010e [ 199.501204][ T9834] RAX: ffffffffffffffda RBX: 00007f5484906038 RCX: 00007f5484775f19 [ 199.509344][ T9834] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000040 [ 199.517308][ T9834] RBP: 00007f54855e00a0 R08: 0000000000000000 R09: 0000000000000000 [ 199.525270][ T9834] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000000001 [ 199.533258][ T9834] R13: 000000000000006e R14: 00007f5484906038 R15: 00007ffcacb93e68 [ 199.541254][ T9834] [ 199.752753][ T9842] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1500'. [ 199.758165][ T9837] sch_tbf: burst 34 is lower than device lo mtu (65550) ! [ 200.064215][ T9850] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 200.093758][ T9852] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1503'. [ 200.220177][ T9857] netlink: 134308 bytes leftover after parsing attributes in process `syz.4.1505'. [ 200.283981][ T9857] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 200.343273][ T9861] can: request_module (can-proto-0) failed. [ 200.361113][ T9857] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 201.184652][ T9881] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1513'. [ 201.225555][ T9883] syzkaller1: entered promiscuous mode [ 201.253460][ T9883] syzkaller1: entered allmulticast mode [ 201.369145][ T9889] syzkaller1: entered promiscuous mode [ 201.381297][ T9889] syzkaller1: entered allmulticast mode [ 201.403433][ T9890] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1512'. [ 201.629555][ T9897] openvswitch: netlink: Missing key (keys=20040, expected=100) [ 201.802320][ T9903] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 202.165880][ T9921] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 202.207981][ T9921] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 202.548097][ C1] eth0: bad gso: type: 1, size: 1408 [ 203.018911][ T9946] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 203.307231][ T9955] syzkaller1: entered promiscuous mode [ 203.316602][ T9955] syzkaller1: entered allmulticast mode [ 203.441915][ T9963] __nla_validate_parse: 10 callbacks suppressed [ 203.441929][ T9963] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1534'. [ 203.462345][ T9962] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1534'. [ 203.771442][ T9968] syzkaller1: entered promiscuous mode [ 203.777067][ T9968] syzkaller1: entered allmulticast mode [ 203.902975][ T9972] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1538'. [ 203.933898][ T9970] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1538'. [ 203.958541][ T9975] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1540'. [ 204.272675][ T9988] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 204.285384][ T9988] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1544'. [ 204.337406][ T9989] netlink: 134308 bytes leftover after parsing attributes in process `syz.0.1543'. [ 204.354389][ T9989] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 204.379681][ T9989] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 205.100577][T10000] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1547'. [ 205.113851][T10005] netlink: 564 bytes leftover after parsing attributes in process `syz.3.1549'. [ 205.321532][T10017] sch_fq: defrate 0 ignored. [ 205.375067][T10018] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1551'. [ 205.395299][T10018] netlink: 'syz.3.1551': attribute type 14 has an invalid length. [ 205.452350][T10023] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 205.473954][T10020] syzkaller1: entered promiscuous mode [ 205.484967][T10020] syzkaller1: entered allmulticast mode [ 205.518229][T10020] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 205.527763][T10020] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 206.608091][T10046] FAULT_INJECTION: forcing a failure. [ 206.608091][T10046] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 206.630821][T10046] CPU: 1 PID: 10046 Comm: syz.4.1562 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 206.640691][T10046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 206.650860][T10046] Call Trace: [ 206.654160][T10046] [ 206.657112][T10046] dump_stack_lvl+0x241/0x360 [ 206.661821][T10046] ? __pfx_dump_stack_lvl+0x10/0x10 [ 206.667058][T10046] ? __pfx__printk+0x10/0x10 [ 206.671829][T10046] ? __pfx_lock_release+0x10/0x10 [ 206.676897][T10046] should_fail_ex+0x3b0/0x4e0 [ 206.681612][T10046] _copy_from_user+0x2f/0xe0 [ 206.686237][T10046] copy_msghdr_from_user+0xae/0x680 [ 206.691473][T10046] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 206.697309][T10046] __sys_sendmsg+0x23d/0x3a0 [ 206.701910][T10046] ? __pfx___sys_sendmsg+0x10/0x10 [ 206.707103][T10046] ? vfs_write+0x7c4/0xc90 [ 206.711541][T10046] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 206.717864][T10046] ? do_syscall_64+0x100/0x230 [ 206.722629][T10046] ? do_syscall_64+0xb6/0x230 [ 206.727302][T10046] do_syscall_64+0xf3/0x230 [ 206.731800][T10046] ? clear_bhb_loop+0x35/0x90 [ 206.736657][T10046] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.742554][T10046] RIP: 0033:0x7f5682375f19 [ 206.747049][T10046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 206.766743][T10046] RSP: 002b:00007f5683217048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 206.775328][T10046] RAX: ffffffffffffffda RBX: 00007f5682505f60 RCX: 00007f5682375f19 [ 206.783384][T10046] RDX: 0000000000000000 RSI: 0000000020001200 RDI: 0000000000000003 [ 206.791358][T10046] RBP: 00007f56832170a0 R08: 0000000000000000 R09: 0000000000000000 [ 206.799329][T10046] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 206.807574][T10046] R13: 000000000000000b R14: 00007f5682505f60 R15: 00007fff238ac888 [ 206.815578][T10046] [ 206.878585][T10050] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 206.904295][T10050] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 207.089335][T10053] sch_fq: defrate 0 ignored. [ 207.223014][T10059] 0ªX¹¦D: renamed from gretap0 (while UP) [ 207.246726][T10059] 0ªX¹¦D: entered allmulticast mode [ 207.269963][T10059] A link change request failed with some changes committed already. Interface 40ªX¹¦D may have been left with an inconsistent configuration, please check. [ 207.289966][T10061] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 207.329548][T10063] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 207.553009][T10068] netlink: 'syz.3.1569': attribute type 14 has an invalid length. [ 207.646140][T10070] syzkaller1: entered promiscuous mode [ 207.652045][T10070] syzkaller1: entered allmulticast mode [ 207.671355][T10070] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 207.684936][T10070] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 208.701899][T10099] FAULT_INJECTION: forcing a failure. [ 208.701899][T10099] name failslab, interval 1, probability 0, space 0, times 0 [ 208.735183][T10099] CPU: 1 PID: 10099 Comm: syz.2.1578 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 208.740704][T10101] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 208.745116][T10099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 208.745136][T10099] Call Trace: [ 208.745146][T10099] [ 208.745154][T10099] dump_stack_lvl+0x241/0x360 [ 208.771271][T10101] __nla_validate_parse: 13 callbacks suppressed [ 208.771289][T10101] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1579'. [ 208.774995][T10099] ? __pfx_dump_stack_lvl+0x10/0x10 [ 208.775028][T10099] ? __pfx__printk+0x10/0x10 [ 208.800015][T10099] ? do_raw_spin_lock+0x14f/0x370 [ 208.805080][T10099] should_fail_ex+0x3b0/0x4e0 [ 208.809793][T10099] ? alloc_empty_file+0x9e/0x1d0 [ 208.814847][T10099] should_failslab+0x9/0x20 [ 208.819375][T10099] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 208.824777][T10099] alloc_empty_file+0x9e/0x1d0 [ 208.829572][T10099] alloc_file_pseudo+0x1da/0x290 [ 208.834538][T10099] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 208.840022][T10099] ? __local_bh_enable_ip+0x168/0x200 [ 208.845420][T10099] ? bpf_link_prime+0x7a/0x240 [ 208.850303][T10099] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 208.856065][T10099] anon_inode_getfile+0xc8/0x180 [ 208.861033][T10099] bpf_link_prime+0xff/0x240 [ 208.865652][T10099] bpf_raw_tp_link_attach+0x3c4/0x6e0 [ 208.871057][T10099] ? __pfx_bpf_raw_tp_link_attach+0x10/0x10 [ 208.877001][T10099] bpf_raw_tracepoint_open+0x1c2/0x240 [ 208.882489][T10099] __sys_bpf+0x3c0/0x810 [ 208.886761][T10099] ? __pfx___sys_bpf+0x10/0x10 [ 208.891555][T10099] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 208.897565][T10099] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 208.903932][T10099] ? do_syscall_64+0x100/0x230 [ 208.908726][T10099] __x64_sys_bpf+0x7c/0x90 [ 208.913176][T10099] do_syscall_64+0xf3/0x230 [ 208.917709][T10099] ? clear_bhb_loop+0x35/0x90 [ 208.922423][T10099] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.928352][T10099] RIP: 0033:0x7f5484775f19 [ 208.932795][T10099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 208.952434][T10099] RSP: 002b:00007f5485601048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 208.960884][T10099] RAX: ffffffffffffffda RBX: 00007f5484905f60 RCX: 00007f5484775f19 [ 208.968970][T10099] RDX: 0000000000000010 RSI: 0000000020000080 RDI: 0000000000000011 [ 208.977169][T10099] RBP: 00007f54856010a0 R08: 0000000000000000 R09: 0000000000000000 [ 208.985257][T10099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 208.993251][T10099] R13: 000000000000004d R14: 00007f5484905f60 R15: 00007ffcacb93e68 [ 209.001266][T10099] [ 209.014948][T10100] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 209.028474][T10100] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1580'. [ 209.082638][T10104] netlink: 134308 bytes leftover after parsing attributes in process `syz.0.1581'. [ 209.256945][T10104] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 209.277001][T10104] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 209.434900][T10114] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1584'. [ 209.458204][T10114] netlink: 'syz.1.1584': attribute type 14 has an invalid length. [ 209.493401][T10114] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 209.502493][T10114] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 209.511569][T10114] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 209.520432][T10114] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 209.593905][T10114] vxlan0: entered promiscuous mode [ 209.899158][ T4618] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 209.910717][ T4618] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 209.919719][ T4618] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 209.935813][ T4618] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 209.958520][ T4618] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 209.967026][ T4618] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 209.977017][T10132] netlink: 134308 bytes leftover after parsing attributes in process `syz.4.1586'. [ 210.071984][T10137] FAULT_INJECTION: forcing a failure. [ 210.071984][T10137] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 210.100286][T10137] CPU: 0 PID: 10137 Comm: syz.2.1588 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 210.110151][T10137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 210.120209][T10137] Call Trace: [ 210.123483][T10137] [ 210.126403][T10137] dump_stack_lvl+0x241/0x360 [ 210.131113][T10137] ? __pfx_dump_stack_lvl+0x10/0x10 [ 210.136327][T10137] ? __pfx__printk+0x10/0x10 [ 210.140914][T10137] ? __pfx_lock_release+0x10/0x10 [ 210.145936][T10137] ? __lock_acquire+0x137a/0x2040 [ 210.150961][T10137] should_fail_ex+0x3b0/0x4e0 [ 210.155638][T10137] _copy_from_user+0x2f/0xe0 [ 210.160232][T10137] kstrtouint_from_user+0xc6/0x190 [ 210.165358][T10137] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 210.171073][T10137] ? __pfx_lock_acquire+0x10/0x10 [ 210.176098][T10137] proc_fail_nth_write+0xaa/0x2d0 [ 210.181124][T10137] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 210.187048][T10137] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 210.192693][T10137] vfs_writev+0x5af/0xbb0 [ 210.197029][T10137] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 210.202658][T10137] ? __pfx_vfs_writev+0x10/0x10 [ 210.207522][T10137] ? __fget_files+0x29/0x470 [ 210.212164][T10137] __x64_sys_pwritev+0x1c7/0x2d0 [ 210.217360][T10137] ? __pfx___x64_sys_pwritev+0x10/0x10 [ 210.222813][T10137] ? do_syscall_64+0x100/0x230 [ 210.227584][T10137] ? do_syscall_64+0xb6/0x230 [ 210.232260][T10137] do_syscall_64+0xf3/0x230 [ 210.236761][T10137] ? clear_bhb_loop+0x35/0x90 [ 210.241437][T10137] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.247412][T10137] RIP: 0033:0x7f5484775f19 [ 210.251821][T10137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.271433][T10137] RSP: 002b:00007f54855e0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000128 [ 210.279931][T10137] RAX: ffffffffffffffda RBX: 00007f5484906038 RCX: 00007f5484775f19 [ 210.287904][T10137] RDX: 000000000000000a RSI: 0000000020000080 RDI: 0000000000000003 [ 210.295875][T10137] RBP: 00007f54855e00a0 R08: 0000000000000000 R09: 0000000000000000 [ 210.304016][T10137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 210.311980][T10137] R13: 000000000000006e R14: 00007f5484906038 R15: 00007ffcacb93e68 [ 210.319957][T10137] [ 210.334464][T10130] syzkaller1: entered promiscuous mode [ 210.346733][T10130] syzkaller1: entered allmulticast mode [ 210.378033][T10132] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 210.409144][T10132] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 210.437349][T10130] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1586'. [ 210.460040][T10138] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1586'. [ 210.550206][ T52] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 210.565989][ T52] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 210.686734][ T52] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 210.712389][ T52] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 210.840879][ T52] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 210.876927][ T52] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 211.003434][ T52] bond0: (slave netdevsim0): Releasing backup interface [ 211.015701][ T52] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 211.026197][ T52] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 211.099872][T10159] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 211.147459][T10159] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1594'. [ 211.186437][T10126] chnl_net:caif_netlink_parms(): no params data found [ 211.456057][T10126] bridge0: port 1(bridge_slave_0) entered blocking state [ 211.468478][T10126] bridge0: port 1(bridge_slave_0) entered disabled state [ 211.477601][T10126] bridge_slave_0: entered allmulticast mode [ 211.487178][T10126] bridge_slave_0: entered promiscuous mode [ 211.512287][T10126] bridge0: port 2(bridge_slave_1) entered blocking state [ 211.523211][T10126] bridge0: port 2(bridge_slave_1) entered disabled state [ 211.531483][T10126] bridge_slave_1: entered allmulticast mode [ 211.549208][T10126] bridge_slave_1: entered promiscuous mode [ 211.624716][ T52] bridge_slave_1: left allmulticast mode [ 211.632113][T10171] netlink: 134308 bytes leftover after parsing attributes in process `syz.1.1596'. [ 211.648431][ T52] bridge_slave_1: left promiscuous mode [ 211.655541][ T52] bridge0: port 2(bridge_slave_1) entered disabled state [ 211.682586][ T52] bridge_slave_0: left allmulticast mode [ 211.690904][ T52] bridge_slave_0: left promiscuous mode [ 211.700933][ T52] bridge0: port 1(bridge_slave_0) entered disabled state [ 212.048392][ T4618] Bluetooth: hci2: command tx timeout [ 212.336116][ T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 212.356948][ T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 212.368721][ T52] bond0 (unregistering): Released all slaves [ 212.381831][ T52] bond1 (unregistering): Released all slaves [ 212.393137][ T52] bond2 (unregistering): Released all slaves [ 212.427210][T10171] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 212.443647][T10179] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1598'. [ 212.453031][T10171] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 212.453286][T10179] netlink: 'syz.2.1598': attribute type 14 has an invalid length. [ 212.501177][T10179] vxlan1: entered promiscuous mode [ 212.577101][T10126] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 212.615194][ T52] Êü: left promiscuous mode [ 212.699165][T10126] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 212.761756][ T52] tipc: Disabling bearer [ 212.773011][ T52] tipc: Left network mode [ 212.876798][T10126] team0: Port device team_slave_0 added [ 212.899441][T10194] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 212.929342][ C1] TCP: request_sock_TCP: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies. [ 212.960164][T10196] sctp: [Deprecated]: syz.2.1603 (pid 10196) Use of int in max_burst socket option deprecated. [ 212.960164][T10196] Use struct sctp_assoc_value instead [ 212.992528][T10126] team0: Port device team_slave_1 added [ 213.177109][T10126] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 213.184873][T10126] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 213.213223][T10126] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 213.226795][T10126] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 213.234135][T10126] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 213.261585][T10126] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 213.303232][ T52] hsr_slave_0: left promiscuous mode [ 213.311203][ T52] hsr_slave_1: left promiscuous mode [ 213.317310][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 213.325129][ T52] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 213.337392][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 213.345271][ T52] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 213.366840][ T52] veth1_macvtap: left promiscuous mode [ 213.373024][ T52] veth0_macvtap: left promiscuous mode [ 213.379125][ T52] veth1_vlan: left promiscuous mode [ 213.384482][ T52] veth0_vlan: left promiscuous mode [ 214.129312][ T4618] Bluetooth: hci2: command tx timeout [ 214.206690][ T52] team0 (unregistering): Port device team_slave_1 removed [ 214.225988][T10219] __nla_validate_parse: 5 callbacks suppressed [ 214.226010][T10219] netlink: 134308 bytes leftover after parsing attributes in process `syz.0.1610'. [ 214.284042][ T52] team0 (unregistering): Port device team_slave_0 removed [ 214.781811][T10219] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 214.812057][T10219] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 214.838323][T10227] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1612'. [ 214.864392][T10227] netlink: 'syz.2.1612': attribute type 14 has an invalid length. [ 214.866692][T10230] tipc: Can't bind to reserved service type 0 [ 214.882316][T10227] vxlan1: entered promiscuous mode [ 214.990205][T10126] hsr_slave_0: entered promiscuous mode [ 215.039425][T10126] hsr_slave_1: entered promiscuous mode [ 215.056775][T10126] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 215.065902][T10126] Cannot create hsr debugfs directory [ 215.126898][T10234] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 215.360008][T10240] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1618'. [ 215.637166][T10238] can: request_module (can-proto-0) failed. [ 215.868740][T10259] syzkaller1: entered promiscuous mode [ 215.881908][T10259] syzkaller1: entered allmulticast mode [ 215.954715][T10126] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 215.976105][T10126] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 216.009034][T10126] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 216.041305][T10126] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 216.068775][T10262] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1620'. [ 216.079847][T10259] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1620'. [ 216.196391][T10126] 8021q: adding VLAN 0 to HW filter on device bond0 [ 216.208369][ T4618] Bluetooth: hci2: command tx timeout [ 216.235859][T10126] 8021q: adding VLAN 0 to HW filter on device team0 [ 216.271780][ T1177] bridge0: port 1(bridge_slave_0) entered blocking state [ 216.279069][ T1177] bridge0: port 1(bridge_slave_0) entered forwarding state [ 216.310699][ T1177] bridge0: port 2(bridge_slave_1) entered blocking state [ 216.317924][ T1177] bridge0: port 2(bridge_slave_1) entered forwarding state [ 216.471092][T10279] openvswitch: netlink: Missing key (keys=20040, expected=100) [ 216.537362][T10283] netlink: 134308 bytes leftover after parsing attributes in process `syz.0.1624'. [ 216.582069][T10283] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 216.603148][T10283] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 216.690110][T10126] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 216.791741][T10126] veth0_vlan: entered promiscuous mode [ 216.833938][T10126] veth1_vlan: entered promiscuous mode [ 216.895265][T10126] veth0_macvtap: entered promiscuous mode [ 216.907515][T10126] veth1_macvtap: entered promiscuous mode [ 217.024626][T10126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 217.041449][T10126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.055636][T10126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 217.073196][T10126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.084069][T10126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 217.103314][T10126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.114112][T10126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 217.135275][T10126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.159250][T10126] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 217.176081][T10302] sch_fq: defrate 0 ignored. [ 217.225944][T10126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 217.244850][T10126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.279029][T10126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 217.303306][T10126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.323794][T10126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 217.367218][T10126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.394745][T10126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 217.417979][T10126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.459907][T10126] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 217.509555][T10314] tipc: Enabling of bearer rejected, failed to enable media [ 217.541977][T10126] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 217.570808][T10126] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 217.600049][T10126] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 217.624297][T10126] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 217.708987][T10317] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 217.810609][T10319] netlink: 134308 bytes leftover after parsing attributes in process `syz.2.1637'. [ 217.856692][T10319] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 217.888411][T10319] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 218.097098][ T3018] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 218.130570][ T3018] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 218.205108][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 218.217306][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 218.289587][ T4618] Bluetooth: hci2: command tx timeout [ 218.617242][T10339] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 218.679011][T10338] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 218.932051][T10350] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 219.576132][T10381] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1654'. [ 219.709865][T10385] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1657'. [ 220.181095][T10395] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1660'. [ 220.489499][T10410] openvswitch: netlink: EtherType 0 is less than min 600 [ 220.793755][T10428] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1673'. [ 220.893529][T10434] syzkaller1: entered promiscuous mode [ 220.906430][T10434] syzkaller1: entered allmulticast mode [ 220.950511][T10437] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1673'. [ 221.047652][T10434] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1672'. [ 221.174489][T10426] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1672'. [ 221.584899][T10462] netlink: 'syz.4.1681': attribute type 3 has an invalid length. [ 221.622822][T10462] netlink: 130984 bytes leftover after parsing attributes in process `syz.4.1681'. [ 221.716182][T10471] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1681'. [ 221.813919][T10473] FAULT_INJECTION: forcing a failure. [ 221.813919][T10473] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 221.827584][T10473] CPU: 1 PID: 10473 Comm: syz.1.1684 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 221.837599][T10473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 221.842556][T10476] netlink: 'syz.0.1685': attribute type 3 has an invalid length. [ 221.847743][T10473] Call Trace: [ 221.847762][T10473] [ 221.847771][T10473] dump_stack_lvl+0x241/0x360 [ 221.847800][T10473] ? __pfx_dump_stack_lvl+0x10/0x10 [ 221.847818][T10473] ? __pfx__printk+0x10/0x10 [ 221.847838][T10473] ? __pfx_lock_release+0x10/0x10 [ 221.855873][T10476] netlink: 'syz.0.1685': attribute type 3 has an invalid length. [ 221.858794][T10473] ? __alloc_skb+0x28f/0x440 [ 221.858828][T10473] should_fail_ex+0x3b0/0x4e0 [ 221.858853][T10473] _copy_from_user+0x2f/0xe0 [ 221.858877][T10473] ppp_write+0x18c/0x3f0 [ 221.907133][T10473] vfs_writev+0x5af/0xbb0 [ 221.911464][T10473] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 221.917097][T10473] ? sb_end_write+0xe9/0x1c0 [ 221.921681][T10473] ? __pfx_ppp_write+0x10/0x10 [ 221.926437][T10473] ? __pfx_vfs_writev+0x10/0x10 [ 221.931300][T10473] ? __pfx_do_sys_openat2+0x10/0x10 [ 221.936505][T10473] ? ppp_ioctl+0x459/0x1cd0 [ 221.941018][T10473] __x64_sys_pwritev+0x1c7/0x2d0 [ 221.945957][T10473] ? __pfx___x64_sys_pwritev+0x10/0x10 [ 221.951408][T10473] ? do_syscall_64+0x100/0x230 [ 221.956163][T10473] ? do_syscall_64+0xb6/0x230 [ 221.960840][T10473] do_syscall_64+0xf3/0x230 [ 221.965359][T10473] ? clear_bhb_loop+0x35/0x90 [ 221.970252][T10473] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.976274][T10473] RIP: 0033:0x7f48d9f75f19 [ 221.980699][T10473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.000396][T10473] RSP: 002b:00007f48dad2f048 EFLAGS: 00000246 ORIG_RAX: 0000000000000128 [ 222.008807][T10473] RAX: ffffffffffffffda RBX: 00007f48da105f60 RCX: 00007f48d9f75f19 [ 222.016767][T10473] RDX: 000000000000000a RSI: 0000000020000080 RDI: 0000000000000003 [ 222.024727][T10473] RBP: 00007f48dad2f0a0 R08: 0000000000000000 R09: 0000000000000000 [ 222.032690][T10473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 222.040662][T10473] R13: 000000000000000b R14: 00007f48da105f60 R15: 00007ffe58dc1318 [ 222.048737][T10473] [ 222.190402][T10478] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1686'. [ 222.308602][T10455] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 222.604486][T10501] netlink: 'syz.2.1692': attribute type 10 has an invalid length. [ 223.329586][ T4618] Bluetooth: hci2: command tx timeout [ 224.765487][T10589] __nla_validate_parse: 12 callbacks suppressed [ 224.765511][T10589] netlink: 564 bytes leftover after parsing attributes in process `syz.1.1723'. [ 225.139691][T10602] syzkaller1: entered promiscuous mode [ 225.156621][T10602] syzkaller1: entered allmulticast mode [ 225.413106][T10617] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1726'. [ 225.449658][T10614] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1726'. [ 225.915546][T10629] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1734'. [ 226.055623][T10633] bridge0: port 3(vlan2) entered blocking state [ 226.092888][T10633] bridge0: port 3(vlan2) entered disabled state [ 226.135320][T10633] vlan2: entered allmulticast mode [ 226.140863][T10636] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1735'. [ 226.172930][T10633] vlan2: left allmulticast mode [ 226.186998][T10640] FAULT_INJECTION: forcing a failure. [ 226.186998][T10640] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 226.209394][T10631] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1735'. [ 226.218894][T10640] CPU: 0 PID: 10640 Comm: syz.0.1736 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 226.228717][T10640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 226.238768][T10640] Call Trace: [ 226.242041][T10640] [ 226.244963][T10640] dump_stack_lvl+0x241/0x360 [ 226.249646][T10640] ? __pfx_dump_stack_lvl+0x10/0x10 [ 226.254840][T10640] ? __pfx__printk+0x10/0x10 [ 226.259425][T10640] ? __pfx_lock_release+0x10/0x10 [ 226.264450][T10640] should_fail_ex+0x3b0/0x4e0 [ 226.269123][T10640] _copy_from_iter+0x1f6/0x1960 [ 226.273974][T10640] ? __virt_addr_valid+0x183/0x530 [ 226.279080][T10640] ? __pfx_lock_release+0x10/0x10 [ 226.284100][T10640] ? __alloc_skb+0x28f/0x440 [ 226.288694][T10640] ? __pfx__copy_from_iter+0x10/0x10 [ 226.293972][T10640] ? __virt_addr_valid+0x183/0x530 [ 226.299076][T10640] ? __virt_addr_valid+0x183/0x530 [ 226.304176][T10640] ? __virt_addr_valid+0x45f/0x530 [ 226.309282][T10640] ? __check_object_size+0x49c/0x900 [ 226.314561][T10640] netlink_sendmsg+0x73d/0xcb0 [ 226.319417][T10640] ? __pfx_netlink_sendmsg+0x10/0x10 [ 226.324693][T10640] ? __import_iovec+0x536/0x820 [ 226.329534][T10640] ? aa_sock_msg_perm+0x91/0x160 [ 226.334463][T10640] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 226.339744][T10640] ? security_socket_sendmsg+0x87/0xb0 [ 226.345202][T10640] ? __pfx_netlink_sendmsg+0x10/0x10 [ 226.350481][T10640] __sock_sendmsg+0x221/0x270 [ 226.355154][T10640] ____sys_sendmsg+0x525/0x7d0 [ 226.359928][T10640] ? __pfx_____sys_sendmsg+0x10/0x10 [ 226.365222][T10640] __sys_sendmsg+0x2b0/0x3a0 [ 226.369809][T10640] ? __pfx___sys_sendmsg+0x10/0x10 [ 226.374911][T10640] ? vfs_write+0x7c4/0xc90 [ 226.379435][T10640] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 226.385754][T10640] ? do_syscall_64+0x100/0x230 [ 226.390511][T10640] ? do_syscall_64+0xb6/0x230 [ 226.395178][T10640] do_syscall_64+0xf3/0x230 [ 226.399673][T10640] ? clear_bhb_loop+0x35/0x90 [ 226.404344][T10640] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.410231][T10640] RIP: 0033:0x7ff86a175f19 [ 226.414638][T10640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.434669][T10640] RSP: 002b:00007ff86af56048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 226.443076][T10640] RAX: ffffffffffffffda RBX: 00007ff86a305f60 RCX: 00007ff86a175f19 [ 226.451041][T10640] RDX: 0000000000000000 RSI: 0000000020001200 RDI: 0000000000000003 [ 226.459002][T10640] RBP: 00007ff86af560a0 R08: 0000000000000000 R09: 0000000000000000 [ 226.466973][T10640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 226.474930][T10640] R13: 000000000000000b R14: 00007ff86a305f60 R15: 00007ffeb249e3f8 [ 226.482903][T10640] [ 226.836546][T10659] netlink: 'syz.3.1743': attribute type 10 has an invalid length. [ 226.905211][T10659] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 226.999692][T10665] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1743'. [ 227.022901][T10658] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 227.040550][T10658] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 227.051333][T10658] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 227.062243][T10658] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 227.079030][T10658] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0 [ 227.098059][T10658] netdevsim netdevsim2 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0 [ 227.118240][T10658] netdevsim netdevsim2 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0 [ 227.133737][T10658] netdevsim netdevsim2 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0 [ 227.146038][T10658] geneve2: entered promiscuous mode [ 227.153640][T10658] geneve2: entered allmulticast mode [ 227.181228][T10664] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1741'. [ 227.193205][T10664] netlink: 'syz.4.1741': attribute type 14 has an invalid length. [ 227.212272][T10664] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 227.221332][T10664] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 227.230273][T10664] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 227.239538][T10664] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 227.251049][T10664] vxlan0: entered promiscuous mode [ 227.266121][T10659] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1743'. [ 228.348668][T10710] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1757'. [ 228.698288][T10724] netlink: 'syz.1.1760': attribute type 14 has an invalid length. [ 228.715399][T10725] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 228.811921][T10723] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 229.951181][T10774] __nla_validate_parse: 2 callbacks suppressed [ 229.951195][T10774] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1779'. [ 230.208723][T10778] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 230.228284][T10778] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 230.238034][T10778] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 230.278522][T10778] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 230.294874][T10778] netdevsim netdevsim0 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0 [ 230.317212][T10778] netdevsim netdevsim0 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0 [ 230.355234][T10778] netdevsim netdevsim0 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0 [ 230.390312][T10778] netdevsim netdevsim0 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0 [ 230.426408][T10778] geneve2: entered promiscuous mode [ 230.441955][T10778] geneve2: entered allmulticast mode [ 230.468636][T10785] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1781'. [ 230.493450][T10785] netlink: 'syz.1.1781': attribute type 14 has an invalid length. [ 230.627004][T10799] netlink: 'syz.4.1785': attribute type 10 has an invalid length. [ 230.659884][T10799] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1785'. [ 230.778762][T10799] netlink: 104 bytes leftover after parsing attributes in process `syz.4.1785'. [ 230.877180][T10804] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1786'. [ 230.920723][T10810] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 230.954617][ C1] eth0: bad gso: type: 1, size: 1408 [ 231.067744][T10818] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1791'. [ 231.129751][T10823] Bluetooth: hci3: unsupported parameter 64512 [ 231.136172][T10823] Bluetooth: hci3: invalid len left 4, exp >= 114 [ 231.274672][T10829] mac80211_hwsim hwsim16 wlan1: entered promiscuous mode [ 231.288479][T10829] mac80211_hwsim hwsim16 wlan1: entered allmulticast mode [ 231.298591][T10833] netlink: 'syz.0.1797': attribute type 1 has an invalid length. [ 231.306513][T10833] netlink: 91240 bytes leftover after parsing attributes in process `syz.0.1797'. [ 231.719605][T10845] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1801'. [ 232.101593][T10859] netlink: 564 bytes leftover after parsing attributes in process `syz.1.1806'. [ 232.158037][T10857] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1803'. [ 232.196516][T10857] netlink: 'syz.3.1803': attribute type 14 has an invalid length. [ 232.252746][T10857] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 232.262013][T10857] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 232.270874][T10857] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 232.280546][T10857] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 232.318239][T10857] vxlan0: entered promiscuous mode [ 233.573345][T10923] FAULT_INJECTION: forcing a failure. [ 233.573345][T10923] name failslab, interval 1, probability 0, space 0, times 0 [ 233.625066][T10923] CPU: 0 PID: 10923 Comm: syz.3.1829 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 233.635028][T10923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 233.645108][T10923] Call Trace: [ 233.648413][T10923] [ 233.651355][T10923] dump_stack_lvl+0x241/0x360 [ 233.656043][T10923] ? __pfx_dump_stack_lvl+0x10/0x10 [ 233.661269][T10923] ? __pfx__printk+0x10/0x10 [ 233.665905][T10923] ? __pfx___might_resched+0x10/0x10 [ 233.671251][T10923] should_fail_ex+0x3b0/0x4e0 [ 233.676043][T10923] ? genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 233.682316][T10923] should_failslab+0x9/0x20 [ 233.686947][T10923] __kmalloc_noprof+0xd8/0x400 [ 233.691833][T10923] genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 233.697943][T10923] genl_rcv_msg+0x802/0xec0 [ 233.702476][T10923] ? mark_lock+0x9a/0x350 [ 233.706846][T10923] ? __pfx_genl_rcv_msg+0x10/0x10 [ 233.711945][T10923] ? __pfx_lock_acquire+0x10/0x10 [ 233.717013][T10923] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 233.722422][T10923] ? __pfx_nl80211_join_mesh+0x10/0x10 [ 233.727912][T10923] ? __pfx_nl80211_post_doit+0x10/0x10 [ 233.733501][T10923] ? __pfx___might_resched+0x10/0x10 [ 233.738903][T10923] netlink_rcv_skb+0x1e3/0x430 [ 233.743707][T10923] ? __pfx_genl_rcv_msg+0x10/0x10 [ 233.748768][T10923] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 233.754105][T10923] ? __netlink_deliver_tap+0x77e/0x7c0 [ 233.759700][T10923] genl_rcv+0x28/0x40 [ 233.763712][T10923] netlink_unicast+0x7f0/0x990 [ 233.768521][T10923] ? __pfx_netlink_unicast+0x10/0x10 [ 233.773845][T10923] ? __virt_addr_valid+0x183/0x530 [ 233.778996][T10923] ? __check_object_size+0x49c/0x900 [ 233.784307][T10923] ? bpf_lsm_netlink_send+0x9/0x10 [ 233.789450][T10923] netlink_sendmsg+0x8e4/0xcb0 [ 233.794267][T10923] ? __pfx_netlink_sendmsg+0x10/0x10 [ 233.799581][T10923] ? __import_iovec+0x536/0x820 [ 233.804459][T10923] ? aa_sock_msg_perm+0x91/0x160 [ 233.809424][T10923] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 233.814732][T10923] ? security_socket_sendmsg+0x87/0xb0 [ 233.820228][T10923] ? __pfx_netlink_sendmsg+0x10/0x10 [ 233.825536][T10923] __sock_sendmsg+0x221/0x270 [ 233.830243][T10923] ____sys_sendmsg+0x525/0x7d0 [ 233.835052][T10923] ? __pfx_____sys_sendmsg+0x10/0x10 [ 233.840389][T10923] __sys_sendmsg+0x2b0/0x3a0 [ 233.845102][T10923] ? __pfx___sys_sendmsg+0x10/0x10 [ 233.850240][T10923] ? vfs_write+0x7c4/0xc90 [ 233.854731][T10923] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 233.861097][T10923] ? do_syscall_64+0x100/0x230 [ 233.865887][T10923] ? do_syscall_64+0xb6/0x230 [ 233.870590][T10923] do_syscall_64+0xf3/0x230 [ 233.875206][T10923] ? clear_bhb_loop+0x35/0x90 [ 233.879912][T10923] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.885839][T10923] RIP: 0033:0x7f6378175f19 [ 233.890287][T10923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 233.909938][T10923] RSP: 002b:00007f6378ed2048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 233.918382][T10923] RAX: ffffffffffffffda RBX: 00007f6378305f60 RCX: 00007f6378175f19 [ 233.926380][T10923] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 233.934383][T10923] RBP: 00007f6378ed20a0 R08: 0000000000000000 R09: 0000000000000000 [ 233.942556][T10923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 233.950531][T10923] R13: 000000000000000b R14: 00007f6378305f60 R15: 00007ffe1f370048 [ 233.958607][T10923] [ 234.095288][T10949] netlink: 'syz.1.1836': attribute type 1 has an invalid length. [ 234.114113][T10949] netlink: 'syz.1.1836': attribute type 1 has an invalid length. [ 234.126762][T10949] netlink: 'syz.1.1836': attribute type 2 has an invalid length. [ 234.462683][T10968] tipc: Started in network mode [ 234.491521][T10968] tipc: Node identity 72508fc6e996, cluster identity 4711 [ 234.519218][T10968] tipc: Enabled bearer , priority 0 [ 234.619585][T10968] tipc: Disabling bearer [ 234.622602][T10977] FAULT_INJECTION: forcing a failure. [ 234.622602][T10977] name failslab, interval 1, probability 0, space 0, times 0 [ 234.643893][T10977] CPU: 0 PID: 10977 Comm: syz.3.1845 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 234.653756][T10977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 234.663845][T10977] Call Trace: [ 234.667137][T10977] [ 234.670078][T10977] dump_stack_lvl+0x241/0x360 [ 234.674865][T10977] ? __pfx_dump_stack_lvl+0x10/0x10 [ 234.680091][T10977] ? __pfx__printk+0x10/0x10 [ 234.684706][T10977] should_fail_ex+0x3b0/0x4e0 [ 234.689404][T10977] ? hash_netnet_create+0x7a9/0x16a0 [ 234.694712][T10977] should_failslab+0x9/0x20 [ 234.699233][T10977] __kmalloc_cache_noprof+0x6c/0x2c0 [ 234.704544][T10977] hash_netnet_create+0x7a9/0x16a0 [ 234.709681][T10977] ? __pfx_lock_acquire+0x10/0x10 [ 234.714746][T10977] ? ip_set_create+0x45e/0x1900 [ 234.719718][T10977] ? __pfx_lock_release+0x10/0x10 [ 234.724858][T10977] ? __pfx_hash_netnet_create+0x10/0x10 [ 234.730429][T10977] ? __nla_parse+0x40/0x60 [ 234.734869][T10977] ? __pfx_hash_netnet_create+0x10/0x10 [ 234.740438][T10977] ip_set_create+0xa5c/0x1900 [ 234.745225][T10977] ? ip_set_create+0x45e/0x1900 [ 234.750088][T10977] ? trace_raw_output_contention_end+0xb2/0xd0 [ 234.756253][T10977] ? __pfx_ip_set_create+0x10/0x10 [ 234.761355][T10977] ? trace_contention_end+0x3c/0x120 [ 234.766691][T10977] ? nfnetlink_rcv_msg+0x225/0x1180 [ 234.772002][T10977] nfnetlink_rcv_msg+0xbec/0x1180 [ 234.777045][T10977] ? kernel_text_address+0xa7/0xe0 [ 234.782157][T10977] ? nfnetlink_rcv_msg+0x225/0x1180 [ 234.787466][T10977] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 234.792938][T10977] ? netlink_deliver_tap+0x19d/0x1b0 [ 234.798213][T10977] ? netlink_unicast+0x7be/0x990 [ 234.803143][T10977] ? netlink_sendmsg+0x8e4/0xcb0 [ 234.808070][T10977] ? __sock_sendmsg+0x221/0x270 [ 234.812910][T10977] ? ____sys_sendmsg+0x525/0x7d0 [ 234.817853][T10977] ? __sys_sendmsg+0x2b0/0x3a0 [ 234.822608][T10977] ? do_syscall_64+0xf3/0x230 [ 234.827277][T10977] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.833348][T10977] netlink_rcv_skb+0x1e3/0x430 [ 234.838107][T10977] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 234.843567][T10977] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 234.848854][T10977] ? apparmor_capable+0x138/0x1b0 [ 234.853879][T10977] ? bpf_lsm_capable+0x9/0x10 [ 234.858546][T10977] ? security_capable+0x90/0xb0 [ 234.863568][T10977] nfnetlink_rcv+0x297/0x2a90 [ 234.868246][T10977] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 234.873962][T10977] ? __dev_queue_xmit+0x2da/0x3e90 [ 234.879072][T10977] ? __dev_queue_xmit+0x1763/0x3e90 [ 234.884262][T10977] ? kasan_save_track+0x51/0x80 [ 234.889200][T10977] ? do_syscall_64+0xf3/0x230 [ 234.893869][T10977] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 234.898978][T10977] ? __dev_queue_xmit+0x2da/0x3e90 [ 234.904088][T10977] ? __pfx___dev_queue_xmit+0x10/0x10 [ 234.909465][T10977] ? ref_tracker_free+0x643/0x7e0 [ 234.914480][T10977] ? __asan_memcpy+0x40/0x70 [ 234.919065][T10977] ? __pfx_ref_tracker_free+0x10/0x10 [ 234.924444][T10977] ? netlink_deliver_tap+0x2e/0x1b0 [ 234.929721][T10977] ? skb_clone+0x240/0x390 [ 234.934134][T10977] ? __pfx_lock_release+0x10/0x10 [ 234.939159][T10977] ? __netlink_deliver_tap+0x77e/0x7c0 [ 234.944623][T10977] ? netlink_deliver_tap+0x2e/0x1b0 [ 234.949816][T10977] netlink_unicast+0x7f0/0x990 [ 234.954582][T10977] ? __pfx_netlink_unicast+0x10/0x10 [ 234.959879][T10977] ? __virt_addr_valid+0x183/0x530 [ 234.965008][T10977] ? __check_object_size+0x49c/0x900 [ 234.970293][T10977] ? bpf_lsm_netlink_send+0x9/0x10 [ 234.975407][T10977] netlink_sendmsg+0x8e4/0xcb0 [ 234.980181][T10977] ? __pfx_netlink_sendmsg+0x10/0x10 [ 234.985481][T10977] ? __import_iovec+0x536/0x820 [ 234.990327][T10977] ? aa_sock_msg_perm+0x91/0x160 [ 234.995260][T10977] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 235.000538][T10977] ? security_socket_sendmsg+0x87/0xb0 [ 235.006004][T10977] ? __pfx_netlink_sendmsg+0x10/0x10 [ 235.011288][T10977] __sock_sendmsg+0x221/0x270 [ 235.015972][T10977] ____sys_sendmsg+0x525/0x7d0 [ 235.020755][T10977] ? __pfx_____sys_sendmsg+0x10/0x10 [ 235.026051][T10977] __sys_sendmsg+0x2b0/0x3a0 [ 235.030726][T10977] ? __pfx___sys_sendmsg+0x10/0x10 [ 235.036092][T10977] ? vfs_write+0x7c4/0xc90 [ 235.040533][T10977] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 235.046860][T10977] ? do_syscall_64+0x100/0x230 [ 235.051623][T10977] ? do_syscall_64+0xb6/0x230 [ 235.056301][T10977] do_syscall_64+0xf3/0x230 [ 235.061234][T10977] ? clear_bhb_loop+0x35/0x90 [ 235.065913][T10977] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 235.071797][T10977] RIP: 0033:0x7f6378175f19 [ 235.076206][T10977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 235.095824][T10977] RSP: 002b:00007f6378ed2048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 235.104272][T10977] RAX: ffffffffffffffda RBX: 00007f6378305f60 RCX: 00007f6378175f19 [ 235.112243][T10977] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003 [ 235.120207][T10977] RBP: 00007f6378ed20a0 R08: 0000000000000000 R09: 0000000000000000 [ 235.128172][T10977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 235.136133][T10977] R13: 000000000000000b R14: 00007f6378305f60 R15: 00007ffe1f370048 [ 235.144112][T10977] [ 236.119390][T11019] __nla_validate_parse: 4 callbacks suppressed [ 236.119412][T11019] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1861'. [ 237.124293][T11048] netlink: 564 bytes leftover after parsing attributes in process `syz.2.1873'. [ 237.322390][T11056] netlink: 'syz.2.1875': attribute type 10 has an invalid length. [ 237.377506][T11056] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 237.540618][T11067] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1879'. [ 237.902303][T11090] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1887'. [ 237.973038][T11093] netlink: 191416 bytes leftover after parsing attributes in process `syz.2.1886'. [ 238.139288][T11093] can: request_module (can-proto-0) failed. [ 238.180890][T11105] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1890'. [ 238.207291][T11105] netlink: 'syz.4.1890': attribute type 21 has an invalid length. [ 238.246642][T11105] netlink: 156 bytes leftover after parsing attributes in process `syz.4.1890'. [ 238.259422][T11100] sch_tbf: burst 0 is lower than device team0 mtu (1514) ! [ 238.586136][T11122] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1898'. [ 238.608544][T11122] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1898'. [ 238.622222][T11126] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1900'. [ 238.674073][ T4618] block nbd0: Receive control failed (result -107) [ 239.424639][T11163] tap0: tun_chr_ioctl cmd 1074025677 [ 239.449009][T11163] tap0: linktype set to 1 [ 239.734691][T11176] netlink: 'syz.3.1909': attribute type 2 has an invalid length. [ 240.109639][T11197] netlink: 'syz.1.1917': attribute type 14 has an invalid length. [ 240.195981][T11200] netlink: 'syz.0.1920': attribute type 1 has an invalid length. [ 240.203996][T11200] netlink: 'syz.0.1920': attribute type 1 has an invalid length. [ 240.640354][T11214] netlink: 'syz.2.1926': attribute type 1 has an invalid length. [ 240.649482][T11214] netlink: 'syz.2.1926': attribute type 1 has an invalid length. [ 240.892568][T11223] sch_fq: defrate 0 ignored. [ 241.063701][T11227] syzkaller1: entered promiscuous mode [ 241.078610][T11227] syzkaller1: entered allmulticast mode [ 241.159203][T11235] __nla_validate_parse: 10 callbacks suppressed [ 241.159225][T11235] netlink: 134308 bytes leftover after parsing attributes in process `syz.1.1932'. [ 241.200956][T11235] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 241.215434][T11235] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 241.244891][T11243] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1933'. [ 241.254697][T11231] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1933'. [ 241.645194][T11246] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1937'. [ 241.654725][T11246] tipc: Invalid UDP bearer configuration [ 241.654761][T11246] tipc: Enabling of bearer rejected, failed to enable media [ 241.726528][T11248] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1938'. [ 241.771796][T11248] netlink: 'syz.4.1938': attribute type 1 has an invalid length. [ 241.779820][T11248] netlink: 9344 bytes leftover after parsing attributes in process `syz.4.1938'. [ 241.792376][T11248] netlink: 'syz.4.1938': attribute type 1 has an invalid length. [ 242.068920][T11261] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1940'. [ 242.206487][T11272] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1943'. [ 242.216970][T11271] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1944'. [ 242.368912][T11277] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 242.431193][T11283] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1949'. [ 242.497438][T11283] validate_nla: 1 callbacks suppressed [ 242.497454][T11283] netlink: 'syz.3.1949': attribute type 1 has an invalid length. [ 242.512741][T11283] netlink: 'syz.3.1949': attribute type 1 has an invalid length. [ 242.711142][T11293] syzkaller1: entered promiscuous mode [ 242.716758][T11293] syzkaller1: entered allmulticast mode [ 243.094919][T11314] FAULT_INJECTION: forcing a failure. [ 243.094919][T11314] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 243.109278][T11314] CPU: 1 PID: 11314 Comm: syz.4.1958 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 243.119134][T11314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 243.129394][T11314] Call Trace: [ 243.132674][T11314] [ 243.135612][T11314] dump_stack_lvl+0x241/0x360 [ 243.140298][T11314] ? __pfx_dump_stack_lvl+0x10/0x10 [ 243.145489][T11314] ? __pfx__printk+0x10/0x10 [ 243.150093][T11314] ? snprintf+0xda/0x120 [ 243.154345][T11314] should_fail_ex+0x3b0/0x4e0 [ 243.159026][T11314] _copy_to_user+0x2f/0xb0 [ 243.163455][T11314] simple_read_from_buffer+0xca/0x150 [ 243.168865][T11314] proc_fail_nth_read+0x1e9/0x250 [ 243.173934][T11314] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 243.179495][T11314] ? rw_verify_area+0x520/0x6b0 [ 243.184350][T11314] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 243.189935][T11314] vfs_read+0x204/0xbc0 [ 243.194089][T11314] ? __pfx_lock_release+0x10/0x10 [ 243.199118][T11314] ? __pfx_vfs_read+0x10/0x10 [ 243.203792][T11314] ? __fget_files+0x29/0x470 [ 243.208377][T11314] ? __fget_files+0x3f6/0x470 [ 243.213066][T11314] ksys_read+0x1a0/0x2c0 [ 243.217304][T11314] ? __pfx_ksys_read+0x10/0x10 [ 243.222072][T11314] ? do_syscall_64+0x100/0x230 [ 243.226851][T11314] ? do_syscall_64+0xb6/0x230 [ 243.231523][T11314] do_syscall_64+0xf3/0x230 [ 243.236024][T11314] ? clear_bhb_loop+0x35/0x90 [ 243.240708][T11314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.246872][T11314] RIP: 0033:0x7f56823749fc [ 243.251286][T11314] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48 [ 243.271403][T11314] RSP: 002b:00007f5683217040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 243.279831][T11314] RAX: ffffffffffffffda RBX: 00007f5682505f60 RCX: 00007f56823749fc [ 243.287800][T11314] RDX: 000000000000000f RSI: 00007f56832170b0 RDI: 0000000000000004 [ 243.295779][T11314] RBP: 00007f56832170a0 R08: 0000000000000000 R09: 0000000000000000 [ 243.303746][T11314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 243.311706][T11314] R13: 000000000000000b R14: 00007f5682505f60 R15: 00007fff238ac888 [ 243.319684][T11314] [ 243.643170][T11330] netlink: 'syz.2.1964': attribute type 10 has an invalid length. [ 243.784873][T11327] syzkaller1: entered promiscuous mode [ 243.792933][T11327] syzkaller1: entered allmulticast mode [ 243.934085][T11336] syzkaller1: entered promiscuous mode [ 243.939954][T11336] syzkaller1: entered allmulticast mode [ 244.266805][T11348] tipc: Started in network mode [ 244.272133][T11348] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711 [ 244.282090][T11348] tipc: Enabling of bearer rejected, failed to enable media [ 244.456101][T11351] netlink: 'syz.1.1970': attribute type 3 has an invalid length. [ 244.988819][T11385] netlink: 'syz.1.1985': attribute type 1 has an invalid length. [ 245.000968][T11385] netlink: 'syz.1.1985': attribute type 1 has an invalid length. [ 245.072649][T11382] delete_channel: no stack [ 245.315344][T11392] netlink: 'syz.3.1986': attribute type 3 has an invalid length. [ 245.376303][T11404] netlink: 'syz.1.1990': attribute type 10 has an invalid length. [ 245.499849][T11407] netlink: 'syz.4.1991': attribute type 1 has an invalid length. [ 245.636057][T11407] veth1: entered promiscuous mode [ 245.666497][T11407] veth1: left promiscuous mode [ 245.947607][T11433] x_tables: duplicate underflow at hook 1 [ 247.672053][T11494] __nla_validate_parse: 26 callbacks suppressed [ 247.672072][T11494] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2015'. [ 248.125586][T11518] netlink: 104 bytes leftover after parsing attributes in process `syz.3.2024'. [ 248.287512][T11523] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2026'. [ 248.297322][T11523] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2026'. [ 248.308221][T11523] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2026'. [ 248.643523][T11533] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5 [ 249.073627][T11552] x_tables: ip6_tables: sctp match: only valid for protocol 132 [ 249.093359][T11552] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2036'. [ 249.102533][T11552] netlink: 'syz.2.2036': attribute type 14 has an invalid length. [ 249.115553][T11552] vxlan1: entered promiscuous mode [ 249.344517][T11557] netlink: 564 bytes leftover after parsing attributes in process `syz.0.2038'. [ 249.612580][T11562] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2040'. [ 249.990254][T11573] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2044'. [ 250.168711][T11583] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2048'. [ 250.300724][T11586] netlink: 'syz.2.2049': attribute type 1 has an invalid length. [ 252.545452][ T3018] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 252.581705][ T3018] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.770798][ T3018] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 252.797984][ T3018] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.880653][ C1] eth0: bad gso: type: 1, size: 1408 [ 252.951208][T11698] netlink: zone id is out of range [ 252.971882][T11698] netlink: zone id is out of range [ 252.987296][ T3018] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 253.029186][ T3018] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 253.046470][T11698] netlink: set zone limit has 4 unknown bytes [ 253.215629][T11703] __nla_validate_parse: 4 callbacks suppressed [ 253.215649][T11703] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2098'. [ 253.259541][ T3018] bond0: (slave netdevsim0): Releasing backup interface [ 253.281026][ T3018] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 253.315808][ T3018] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 253.530933][T11714] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2101'. [ 253.641781][ T5225] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 253.649884][ T3018] bridge_slave_1: left allmulticast mode [ 253.659352][ T5225] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 253.668154][ T5225] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 253.678116][ T5225] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 253.685630][ T3018] bridge_slave_1: left promiscuous mode [ 253.691796][ T5225] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 253.699629][ T5225] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 253.726013][ T3018] bridge0: port 2(bridge_slave_1) entered disabled state [ 253.767730][ T3018] bridge_slave_0: left allmulticast mode [ 253.791488][ T3018] bridge_slave_0: left promiscuous mode [ 253.808203][ T3018] bridge0: port 1(bridge_slave_0) entered disabled state [ 253.944214][T11732] [ 253.946585][T11732] ====================================================== [ 253.953614][T11732] WARNING: possible circular locking dependency detected [ 253.960677][T11732] 6.10.0-syzkaller-09720-gc1668292689a #0 Not tainted [ 253.967434][T11732] ------------------------------------------------------ [ 253.974439][T11732] syz.4.2110/11732 is trying to acquire lock: [ 253.980502][T11732] ffff8880b9238798 (lock#10){+.+.}-{2:2}, at: __mmap_lock_do_trace_acquire_returned+0x8f/0x630 [ 253.990923][T11732] [ 253.990923][T11732] but task is already holding lock: [ 253.998282][T11732] ffff8880b923e858 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140 [ 254.007909][T11732] [ 254.007909][T11732] which lock already depends on the new lock. [ 254.007909][T11732] [ 254.018376][T11732] [ 254.018376][T11732] the existing dependency chain (in reverse order) is: [ 254.027363][T11732] [ 254.027363][T11732] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 254.034635][T11732] lock_acquire+0x1ed/0x550 [ 254.039639][T11732] _raw_spin_lock_nested+0x31/0x40 [ 254.045256][T11732] raw_spin_rq_lock_nested+0x2a/0x140 [ 254.051127][T11732] sched_mm_cid_exit_signals+0x17b/0x4b0 [ 254.057257][T11732] exit_signals+0x2a1/0x5c0 [ 254.062256][T11732] do_exit+0x6b4/0x27f0 [ 254.066909][T11732] __pfx___ia32_sys_exit+0x0/0x10 [ 254.072528][T11732] x64_sys_call+0x26b1/0x26d0 [ 254.077707][T11732] do_syscall_64+0xf3/0x230 [ 254.082726][T11732] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.089117][T11732] [ 254.089117][T11732] -> #1 (&sighand->siglock){-.-.}-{2:2}: [ 254.097169][T11732] lock_acquire+0x1ed/0x550 [ 254.102260][T11732] _raw_spin_lock_irqsave+0xd5/0x120 [ 254.108050][T11732] __lock_task_sighand+0x149/0x2d0 [ 254.113661][T11732] group_send_sig_info+0x274/0x310 [ 254.119531][T11732] bpf_send_signal_common+0x2dd/0x430 [ 254.126099][T11732] bpf_send_signal_thread+0x16/0x20 [ 254.131797][T11732] bpf_prog_682b67a395ac5c66+0x11/0x1a [ 254.137753][T11732] bpf_trace_run4+0x334/0x590 [ 254.143118][T11732] __mmap_lock_do_trace_acquire_returned+0x5c8/0x630 [ 254.150334][T11732] lock_mm_and_find_vma+0x213/0x2f0 [ 254.156057][T11732] exc_page_fault+0x1bf/0x8c0 [ 254.161250][T11732] asm_exc_page_fault+0x26/0x30 [ 254.166617][T11732] fault_in_readable+0x165/0x2b0 [ 254.172065][T11732] fault_in_iov_iter_readable+0x229/0x280 [ 254.178285][T11732] generic_perform_write+0x29f/0x840 [ 254.184071][T11732] shmem_file_write_iter+0xfc/0x120 [ 254.189796][T11732] vfs_write+0xa72/0xc90 [ 254.194534][T11732] ksys_write+0x1a0/0x2c0 [ 254.199363][T11732] do_syscall_64+0xf3/0x230 [ 254.204363][T11732] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.210769][T11732] [ 254.210769][T11732] -> #0 (lock#10){+.+.}-{2:2}: [ 254.217722][T11732] validate_chain+0x18e0/0x5900 [ 254.223087][T11732] __lock_acquire+0x137a/0x2040 [ 254.228450][T11732] lock_acquire+0x1ed/0x550 [ 254.233450][T11732] __mmap_lock_do_trace_acquire_returned+0xa8/0x630 [ 254.240625][T11732] stack_map_get_build_id_offset+0x9af/0x9d0 [ 254.247105][T11732] __bpf_get_stack+0x4ad/0x5a0 [ 254.252366][T11732] bpf_get_stack_raw_tp+0x1a3/0x240 [ 254.258057][T11732] bpf_prog_ec3b2eefa702d8d3+0x42/0x46 [ 254.264010][T11732] bpf_trace_run2+0x2ec/0x540 [ 254.269182][T11732] trace_tlb_flush+0x118/0x140 [ 254.274444][T11732] switch_mm_irqs_off+0x7cb/0xae0 [ 254.279967][T11732] __schedule+0x1079/0x4a60 [ 254.284968][T11732] preempt_schedule_common+0x84/0xd0 [ 254.290752][T11732] preempt_schedule+0xe1/0xf0 [ 254.295935][T11732] preempt_schedule_thunk+0x1a/0x30 [ 254.301628][T11732] _raw_spin_unlock+0x3e/0x50 [ 254.306804][T11732] __text_poke+0xa6b/0xd30 [ 254.311813][T11732] text_poke_bp_batch+0x8cd/0xb30 [ 254.317340][T11732] text_poke_finish+0x30/0x50 [ 254.322513][T11732] arch_jump_label_transform_apply+0x1c/0x30 [ 254.328989][T11732] static_key_enable_cpuslocked+0x136/0x260 [ 254.335400][T11732] static_key_enable+0x1a/0x20 [ 254.340664][T11732] tracepoint_add_func+0x953/0x9e0 [ 254.346272][T11732] tracepoint_probe_register_prio_may_exist+0x122/0x190 [ 254.353703][T11732] bpf_raw_tp_link_attach+0x48b/0x6e0 [ 254.359574][T11732] bpf_raw_tracepoint_open+0x1c2/0x240 [ 254.365528][T11732] __sys_bpf+0x3c0/0x810 [ 254.370264][T11732] __x64_sys_bpf+0x7c/0x90 [ 254.375174][T11732] do_syscall_64+0xf3/0x230 [ 254.380172][T11732] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.386589][T11732] [ 254.386589][T11732] other info that might help us debug this: [ 254.386589][T11732] [ 254.396792][T11732] Chain exists of: [ 254.396792][T11732] lock#10 --> &sighand->siglock --> &rq->__lock [ 254.396792][T11732] [ 254.408940][T11732] Possible unsafe locking scenario: [ 254.408940][T11732] [ 254.416377][T11732] CPU0 CPU1 [ 254.421735][T11732] ---- ---- [ 254.427071][T11732] lock(&rq->__lock); [ 254.431114][T11732] lock(&sighand->siglock); [ 254.438199][T11732] lock(&rq->__lock); [ 254.444761][T11732] lock(lock#10); [ 254.448461][T11732] [ 254.448461][T11732] *** DEADLOCK *** [ 254.448461][T11732] [ 254.456574][T11732] 8 locks held by syz.4.2110/11732: [ 254.461741][T11732] #0: ffffffff8e7841a8 (tracepoints_mutex){+.+.}-{3:3}, at: tracepoint_probe_register_prio_may_exist+0xbb/0x190 [ 254.473630][T11732] #1: ffffffff8e5d1410 (cpu_hotplug_lock){++++}-{0:0}, at: static_key_enable+0x12/0x20 [ 254.483359][T11732] #2: ffffffff8e7e6008 (jump_label_mutex){+.+.}-{3:3}, at: static_key_enable_cpuslocked+0xd7/0x260 [ 254.494138][T11732] #3: ffffffff8e5e6588 (text_mutex){+.+.}-{3:3}, at: arch_jump_label_transform_apply+0x17/0x30 [ 254.504554][T11732] #4: ffffffff8e736e20 (rcu_read_lock){....}-{1:2}, at: __pte_offset_map+0x82/0x380 [ 254.514026][T11732] #5: ffff8880b923e858 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140 [ 254.523943][T11732] #6: ffffffff8e736e20 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x1fc/0x540 [ 254.533309][T11732] #7: ffff888015470b18 (&mm->mmap_lock){++++}-{3:3}, at: stack_map_get_build_id_offset+0x237/0x9d0 [ 254.544071][T11732] [ 254.544071][T11732] stack backtrace: [ 254.549933][T11732] CPU: 0 PID: 11732 Comm: syz.4.2110 Not tainted 6.10.0-syzkaller-09720-gc1668292689a #0 [ 254.559728][T11732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 254.569759][T11732] Call Trace: [ 254.573017][T11732] [ 254.575930][T11732] dump_stack_lvl+0x241/0x360 [ 254.580597][T11732] ? __pfx_dump_stack_lvl+0x10/0x10 [ 254.585772][T11732] ? print_circular_bug+0x130/0x1a0 [ 254.590951][T11732] check_noncircular+0x36a/0x4a0 [ 254.595869][T11732] ? hlock_conflict+0x59/0x1e0 [ 254.600641][T11732] ? __pfx_check_noncircular+0x10/0x10 [ 254.606079][T11732] ? lockdep_lock+0x123/0x2b0 [ 254.610754][T11732] ? __pfx_lock_release+0x10/0x10 [ 254.615759][T11732] validate_chain+0x18e0/0x5900 [ 254.620596][T11732] ? __pfx_validate_chain+0x10/0x10 [ 254.625782][T11732] ? validate_chain+0x11e/0x5900 [ 254.630772][T11732] ? mark_lock+0x9a/0x350 [ 254.635125][T11732] ? mark_lock+0x9a/0x350 [ 254.639452][T11732] __lock_acquire+0x137a/0x2040 [ 254.644292][T11732] lock_acquire+0x1ed/0x550 [ 254.648772][T11732] ? __mmap_lock_do_trace_acquire_returned+0x8f/0x630 [ 254.655518][T11732] ? __pfx_lock_acquire+0x10/0x10 [ 254.660518][T11732] ? validate_chain+0x11e/0x5900 [ 254.665431][T11732] ? validate_chain+0x11e/0x5900 [ 254.670344][T11732] ? exc_int3+0xe/0x80 [ 254.674391][T11732] ? __mmap_lock_do_trace_acquire_returned+0x8f/0x630 [ 254.681139][T11732] __mmap_lock_do_trace_acquire_returned+0xa8/0x630 [ 254.687705][T11732] ? __mmap_lock_do_trace_acquire_returned+0x8f/0x630 [ 254.694447][T11732] stack_map_get_build_id_offset+0x9af/0x9d0 [ 254.700408][T11732] ? __pfx_stack_map_get_build_id_offset+0x10/0x10 [ 254.706891][T11732] __bpf_get_stack+0x4ad/0x5a0 [ 254.711636][T11732] ? __pfx___bpf_get_stack+0x10/0x10 [ 254.716901][T11732] ? __pfx___cant_migrate+0x10/0x10 [ 254.722075][T11732] bpf_get_stack_raw_tp+0x1a3/0x240 [ 254.727253][T11732] ? bpf_trace_run2+0x1fc/0x540 [ 254.732080][T11732] bpf_prog_ec3b2eefa702d8d3+0x42/0x46 [ 254.737519][T11732] bpf_trace_run2+0x2ec/0x540 [ 254.742175][T11732] ? __pfx_bpf_trace_run2+0x10/0x10 [ 254.747351][T11732] trace_tlb_flush+0x118/0x140 [ 254.752103][T11732] switch_mm_irqs_off+0x7cb/0xae0 [ 254.757193][T11732] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 254.762719][T11732] __schedule+0x1079/0x4a60 [ 254.767207][T11732] ? bpf_get_stack_raw_tp+0x1a3/0x240 [ 254.772557][T11732] ? __pfx___schedule+0x10/0x10 [ 254.777384][T11732] ? bpf_trace_run2+0x36e/0x540 [ 254.782212][T11732] ? preempt_schedule+0xe1/0xf0 [ 254.787039][T11732] preempt_schedule_common+0x84/0xd0 [ 254.792331][T11732] preempt_schedule+0xe1/0xf0 [ 254.797102][T11732] ? __pfx_preempt_schedule+0x10/0x10 [ 254.802481][T11732] ? restore_signal_shadow_stack+0x121/0x450 [ 254.808455][T11732] ? restore_signal_shadow_stack+0x121/0x450 [ 254.814419][T11732] preempt_schedule_thunk+0x1a/0x30 [ 254.819597][T11732] _raw_spin_unlock+0x3e/0x50 [ 254.824257][T11732] __text_poke+0xa6b/0xd30 [ 254.828649][T11732] ? restore_signal_shadow_stack+0x121/0x450 [ 254.834607][T11732] ? __pfx_text_poke_memcpy+0x10/0x10 [ 254.839952][T11732] ? __pfx___text_poke+0x10/0x10 [ 254.844864][T11732] ? xdp_umem_create+0x901/0xf30 [ 254.849798][T11732] ? perf_event_text_poke+0x258/0x330 [ 254.855183][T11732] ? __pfx_smp_call_function_many_cond+0x10/0x10 [ 254.861499][T11732] ? __pfx_perf_event_text_poke+0x10/0x10 [ 254.867194][T11732] ? __mutex_trylock_common+0x183/0x2e0 [ 254.872718][T11732] ? __pfx___might_resched+0x10/0x10 [ 254.877981][T11732] text_poke_bp_batch+0x8cd/0xb30 [ 254.882989][T11732] ? xdp_umem_create+0x902/0xf30 [ 254.887908][T11732] ? __pfx_text_poke_bp_batch+0x10/0x10 [ 254.893431][T11732] ? arch_jump_label_transform_queue+0x9b/0x100 [ 254.899649][T11732] text_poke_finish+0x30/0x50 [ 254.904305][T11732] arch_jump_label_transform_apply+0x1c/0x30 [ 254.910262][T11732] static_key_enable_cpuslocked+0x136/0x260 [ 254.916152][T11732] ? __pfx___bpf_trace_mmap_lock_acquire_returned+0x10/0x10 [ 254.923418][T11732] static_key_enable+0x1a/0x20 [ 254.928156][T11732] tracepoint_add_func+0x953/0x9e0 [ 254.933250][T11732] ? __pfx___bpf_trace_mmap_lock_acquire_returned+0x10/0x10 [ 254.940604][T11732] tracepoint_probe_register_prio_may_exist+0x122/0x190 [ 254.947606][T11732] ? __pfx_tracepoint_probe_register_prio_may_exist+0x10/0x10 [ 254.955041][T11732] ? __pfx___bpf_trace_mmap_lock_acquire_returned+0x10/0x10 [ 254.962304][T11732] ? anon_inode_getfile+0xff/0x180 [ 254.967395][T11732] ? bpf_probe_register+0x134/0x1f0 [ 254.972658][T11732] bpf_raw_tp_link_attach+0x48b/0x6e0 [ 254.978012][T11732] ? __pfx_bpf_raw_tp_link_attach+0x10/0x10 [ 254.983985][T11732] bpf_raw_tracepoint_open+0x1c2/0x240 [ 254.989429][T11732] __sys_bpf+0x3c0/0x810 [ 254.993655][T11732] ? __pfx___sys_bpf+0x10/0x10 [ 254.998400][T11732] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 255.004360][T11732] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 255.010853][T11732] ? do_syscall_64+0x100/0x230 [ 255.015631][T11732] __x64_sys_bpf+0x7c/0x90 [ 255.020024][T11732] do_syscall_64+0xf3/0x230 [ 255.024512][T11732] ? clear_bhb_loop+0x35/0x90 [ 255.029169][T11732] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.035045][T11732] RIP: 0033:0x7f5682375f19 [ 255.039436][T11732] Code: Unable to access opcode bytes at 0x7f5682375eef. [ 255.046425][T11732] RSP: 002b:00007f5683217048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 255.054816][T11732] RAX: ffffffffffffffda RBX: 00007f5682505f60 RCX: 00007f5682375f19 [ 255.062769][T11732] RDX: 0000000000000010 RSI: 0000000020000180 RDI: 0000000000000011 [ 255.070720][T11732] RBP: 00007f56823e4e68 R08: 0000000000000000 R09: 0000000000000000 [ 255.078673][T11732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 255.086619][T11732] R13: 000000000000000b R14: 00007f5682505f60 R15: 00007fff238ac888 [ 255.094575][T11732] [ 255.186178][ T3018] bond2 (unregistering): (slave ip6gretap1): Releasing active interface [ 255.204814][ T3018] bond3 (unregistering): (slave ip6gretap2): Releasing active interface [ 255.727906][ T5225] Bluetooth: hci1: command tx timeout [ 255.819239][ T3018] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 255.830419][ T3018] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 255.840333][ T3018] bond0 (unregistering): Released all slaves [ 255.850592][ T3018] bond1 (unregistering): Released all slaves [ 255.931593][ T3018] bond2 (unregistering): Released all slaves [ 256.006749][ T3018] bond3 (unregistering): Released all slaves [ 256.016329][ T3018] bond4 (unregistering): Released all slaves [ 256.097723][ T3018] tipc: Left network mode [ 256.131051][ T1272] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.175921][T11718] chnl_net:caif_netlink_parms(): no params data found [ 256.233939][T11718] bridge0: port 1(bridge_slave_0) entered blocking state [ 256.241369][T11718] bridge0: port 1(bridge_slave_0) entered disabled state [ 256.248733][T11718] bridge_slave_0: entered allmulticast mode [ 256.255348][T11718] bridge_slave_0: entered promiscuous mode [ 256.265156][T11718] bridge0: port 2(bridge_slave_1) entered blocking state [ 256.272641][T11718] bridge0: port 2(bridge_slave_1) entered disabled state [ 256.279870][T11718] bridge_slave_1: entered allmulticast mode [ 256.286471][T11718] bridge_slave_1: entered promiscuous mode [ 256.305891][ T3018] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 256.313478][ T3018] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 256.321340][ T3018] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 256.328810][ T3018] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 256.337390][ T3018] veth1_macvtap: left promiscuous mode [ 256.343399][ T3018] veth0_macvtap: left promiscuous mode [ 256.349445][ T3018] veth1_vlan: left promiscuous mode [ 256.354698][ T3018] veth0_vlan: left promiscuous mode [ 256.510088][ T3018] team0 (unregistering): Port device team_slave_1 removed [ 256.534997][ T3018] team0 (unregistering): Port device team_slave_0 removed [ 256.671302][T11718] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 256.685621][T11718] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 256.729595][T11718] team0: Port device team_slave_0 added [ 256.736712][T11718] team0: Port device team_slave_1 added [ 256.755701][T11718] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 256.763231][T11718] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 256.789815][T11718] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 256.801496][T11718] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 256.808911][T11718] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 256.835051][T11718] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 256.876761][T11718] hsr_slave_0: entered promiscuous mode [ 256.883452][T11718] hsr_slave_1: entered promiscuous mode [ 256.889779][T11718] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 256.897319][T11718] Cannot create hsr debugfs directory [ 256.999838][ T3018] IPVS: stop unused estimator thread 0... [ 257.162929][T11718] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 257.173840][T11718] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 257.183444][T11718] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 257.200378][T11718] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 257.250373][T11718] 8021q: adding VLAN 0 to HW filter on device bond0 [ 257.267313][T11718] 8021q: adding VLAN 0 to HW filter on device team0 [ 257.277570][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 257.284705][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 257.296700][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 257.303823][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 257.335077][T11718] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 257.423490][T11718] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 257.453056][T11718] veth0_vlan: entered promiscuous mode [ 257.465226][T11718] veth1_vlan: entered promiscuous mode [ 257.487669][T11718] veth0_macvtap: entered promiscuous mode [ 257.496750][T11718] veth1_macvtap: entered promiscuous mode [ 257.510839][T11718] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 257.521654][T11718] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 257.531951][T11718] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 257.542390][T11718] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 257.552244][T11718] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 257.562892][T11718] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 257.572851][T11718] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 257.583716][T11718] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 257.594563][T11718] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 257.607422][T11718] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 257.617970][T11718] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 257.627765][T11718] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 257.638353][T11718] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 257.648327][T11718] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 257.658778][T11718] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 257.668841][T11718] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 257.679486][T11718] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 257.690773][T11718] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 257.702718][T11718] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 257.711646][T11718] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 257.720378][T11718] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 257.729875][T11718] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 257.759899][T11718] ieee80211 phy18: Selected rate control algorithm 'minstrel_ht' [ 257.782497][ T3018] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 257.784634][T11718] ieee80211 phy19: Selected rate control algorithm 'minstrel_ht' [ 257.804890][ T3018] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 257.807924][ T5225] Bluetooth: hci1: command tx timeout [ 257.827062][ T2961] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 257.835137][ T2961] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 260.963640][ T3033] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 263.333483][ T3033] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 263.394160][ T3033] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 263.443999][ T3033] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 263.516089][ T3033] bridge_slave_1: left allmulticast mode [ 263.522081][ T3033] bridge_slave_1: left promiscuous mode [ 263.530270][ T3033] bridge0: port 2(bridge_slave_1) entered disabled state [ 263.539500][ T3033] bridge_slave_0: left allmulticast mode [ 263.545253][ T3033] bridge_slave_0: left promiscuous mode [ 263.557244][ T3033] bridge0: port 1(bridge_slave_0) entered disabled state [ 263.641374][ T3033] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 263.652508][ T3033] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 263.662462][ T3033] bond0 (unregistering): Released all slaves [ 263.867173][ T3033] hsr_slave_0: left promiscuous mode [ 263.873088][ T3033] hsr_slave_1: left promiscuous mode [ 263.879196][ T3033] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 263.886725][ T3033] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 263.894551][ T3033] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 263.905254][ T3033] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 263.914432][ T3033] veth1_macvtap: left promiscuous mode [ 263.920174][ T3033] veth0_macvtap: left promiscuous mode [ 263.925706][ T3033] veth1_vlan: left promiscuous mode [ 263.931018][ T3033] veth0_vlan: left promiscuous mode