last executing test programs: 7.855265382s ago: executing program 0 (id=2424): r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/cpuset\x00', 0x181100, 0x0) keyctl$auto(0x8, 0x5, 0x6, 0x6, 0x7) setreuid$auto(0x15, 0x5) socket(0xa, 0x3, 0x73) read$auto_proc_single_file_operations_base(r0, &(0x7f0000000040)=""/137, 0x89) 7.677525862s ago: executing program 0 (id=2426): openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x2a582, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram5\x00', 0x4000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = getpgid(0x0) rt_tgsigqueueinfo$auto(0xffffffffffffffff, r0, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xe, 0x5, @_sigchld={r0, 0x0, 0x401, 0x5, 0x3}}}) r1 = open(&(0x7f0000000300)='./file0\x00', 0x24100, 0x40) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/node/has_memory\x00', 0x22100, 0x0) removexattrat$auto(r1, &(0x7f0000000280)='./file0\x00', 0x3, &(0x7f00000002c0)='/sys/devices/system/node/has_memory\x00') read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000003480)=""/247, 0xf7) chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba) execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ') lseek$auto(0x3, 0x7fffffffffffffff, 0x1) 7.550116693s ago: executing program 0 (id=2427): mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) r3 = getuid() setresuid$auto(0x0, r3, 0xee00) r4 = getuid() setresuid$auto(0x0, r4, 0xee00) capget$auto(&(0x7f00000000c0)={0x4, 0x0}, &(0x7f0000000100)={0x7f, 0x0, 0x9}) sendmsg$auto_NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000340)={&(0x7f00000006c0)=ANY=[@ANYBLOB="0859e0d4c4d396f73e64eef2a878185d466cdfac", @ANYRES8=r0, @ANYBLOB="02002abd7000fedbdf2507000000cb0111809401768008004100", @ANYRES8=0x0, @ANYBLOB="04004e800e0070002f6465762f756869640000000800e400080000006a105fdc5ba1ac52d2678ad52adc9e20d6f5653d56deeaa230e8f26cdddc2671f9c23b13fd4e7f7230b389febf879b92bfed9b0154d9ef4636bf8d53dab86f959fe370253287dd8d294cc661e373d110e4b429134986ba5795dbfab2cc0fef342efecf73a83e9e9cb55e0400cb80a7f8b2c1e2534d15b08689b685178a3dd5119faaabdfe4a96466a7f111e4869db71ed3a650cca0f938043944d854691b05bf304b2d96410deae0206c34cd983bdfe9f7d3215cc1fb107cd910c9cb11b684d573aaa810b2ef2d676a60aca43aa32bba6752f57778f38f6ef1a1f9913be6c030831581622427eaffc94c33f11cf5528f6563c8d1d3049f50d6add3a8b538cc1c42ef8e8aa0a262ccf6e89a53e1aef80b8e2d38e9cc4fac0a556605da84ea8485900b19f34cda85091e0edaef8859c4899b3177caf956ea4f75882b4cdf79df27a6d5f43cd5c5c234acc63833bed3163549fb16dc86fea77eee004dde27823f768b0c5d2a3d8bc2a60400588008002a00080000000400f50008000500", @ANYRES32=r4, @ANYBLOB="0800b18004008d80b190a2c268f47dc0f0baf8594181b006004f0056ab5e55f966e54b257720e4f960a503529d7f9f35cad667d2625d313e666fc25ad65c7cb4594893f573a4d38193546b7584f075683d9a3a4a1720d99260d1c8e30876a5fbc7a0c3083b53bd69f5a411937ecb75539ccd5cea49de4c55fd9116b9bad358bf8748f9788323b3f13f4041d3d3b155ab5671e4900ba38125ec116e3aaf74cbfd0b424c1d95106388afb25a0ba2750823d9c26008f8", @ANYRES64=r2, @ANYRESDEC=r5], 0x200}, 0x1, 0x0, 0x0, 0x4084}, 0x20000841) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto(0x1, 0x5421, 0xa) r6 = socket(0x10, 0x2, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="eb6066ea", @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000400010000000a00050000000000000000000a00010000000000000000000a0001000000000000000000080004001000000008000200", @ANYRES32=0x0, @ANYBLOB="08000300fc030000"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r6, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0) 6.926850707s ago: executing program 0 (id=2439): mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x403, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) rt_sigpending$auto(0x0, 0x8) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) io_cancel$auto(0xffffffffffffffff, &(0x7f0000000040)={0xc, 0x0, 0xfffffeff, 0x3, 0x8, r0, 0x10001, 0x2, 0x964, 0x0, 0x3, r0}, &(0x7f0000000080)={0x1, 0x2, 0x1, 0xf9}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mseal$auto(0x1ffff000, 0x7dda, 0x0) bind$auto(0x3, 0x0, 0xf) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x8000, 0xc) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x2, 0x1, &(0x7f0000002100)=0x4, 0x5, 0x0) madvise$auto(0x0, 0x200007, 0x8) 6.368423249s ago: executing program 0 (id=2437): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x8}]}, 0x1c}}, 0x44000) (async) sendmsg$auto_NFSD_CMD_THREADS_GET(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r2, 0x100, 0x70bd2d, 0x25dfdbfd, {}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004080}, 0x0) (async) r3 = socket(0xa, 0x1, 0x84) sendto$auto(r3, 0x0, 0x1, 0x9, &(0x7f0000000000)=@in={0x2, 0x1, @remote}, 0x1c) 3.45894886s ago: executing program 1 (id=2464): openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0xf5000000) syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) 3.093949917s ago: executing program 1 (id=2467): mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x60, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_AGE={0x8, 0x3, 0x200}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IF1_AGE={0x8, 0x3, 0x400}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_IFINDEX={0x8}, @HSR_A_IFINDEX={0x8}]}, 0x60}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) (async) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SMC_PNETID_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, r1, 0x1, 0x70bd2d, 0x25dfdbfd}, 0x14}}, 0x40000) (async) socket(0x2, 0x3, 0x100) (async) socket(0x10, 0x2, 0x0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB='h'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.728766748s ago: executing program 1 (id=2470): openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x2a582, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram5\x00', 0x4000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = getpgid(0x0) rt_tgsigqueueinfo$auto(0xffffffffffffffff, r0, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xe, 0x5, @_sigchld={r0, 0x0, 0x401, 0x5, 0x3}}}) r1 = open(&(0x7f0000000300)='./file0\x00', 0x24100, 0x40) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/node/has_memory\x00', 0x22100, 0x0) removexattrat$auto(r1, &(0x7f0000000280)='./file0\x00', 0x3, &(0x7f00000002c0)='/sys/devices/system/node/has_memory\x00') read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000003480)=""/247, 0xf7) execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ') lseek$auto(0x3, 0x7fffffffffffffff, 0x1) 2.342416379s ago: executing program 1 (id=2473): mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x403, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) rt_sigpending$auto(0x0, 0x8) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="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", @ANYRES8, @ANYRES64], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x20008844) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mseal$auto(0x1ffff000, 0x7dda, 0x0) bind$auto(0x3, 0x0, 0xf) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x8000, 0xc) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x2, 0x1, &(0x7f0000002100)=0x4, 0x5, 0x0) madvise$auto(0x0, 0x200007, 0x8) 2.211764548s ago: executing program 2 (id=2474): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x14, 0x940, 0x1ffe0, 0x8003, 0x6, 0x6, 0x7, 0x5, 0x2, 0x9, 0x6, 0x9, 0x2, 0x3, 0x2, 0x7}, 0x1fe, 0x7) setsockopt$auto(r0, 0x1, 0x4, &(0x7f0000000000)='\x00', 0x2) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg$auto(r1, &(0x7f0000003c80)={{0x0, 0x54c5, &(0x7f0000003c00)={0x0, 0x4}, 0x9, 0x0, 0xd6a, 0x9}, 0x8}, 0x6, 0x5, 0x0) socket(0x10, 0x2, 0x0) recvmmsg$auto(r0, &(0x7f0000000180)={{0x0, 0x4, 0x0, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) 2.054132629s ago: executing program 3 (id=2475): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1b0026bd7000fddbdf2503000000040008001c00038008000600", @ANYRES32=r0, @ANYBLOB="0f000d006f76735f7061636b6574000012000100898771f1c19f177904859082c9693560040002"], 0x4c}, 0x1, 0x0, 0x0, 0x20048807}, 0xc800) 1.872026353s ago: executing program 3 (id=2476): r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x404, 0x8000) ioctl$auto(r0, 0x80045530, 0x9) r2 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto(0x3, 0xc10c5541, 0xb551) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="01844a1372f17e9cd1c9b06d002abd7000fc"], 0x18}, 0x1, 0x0, 0x0, 0x80}, 0x0) syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), 0xffffffffffffffff) getpgrp(0x0) openat$auto_userfaultfd_dev_fops_userfaultfd(0xffffffffffffff9c, &(0x7f0000000040), 0x280080, 0x0) sendmsg$auto_IPVS_CMD_GET_DEST(r2, 0x0, 0x804) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000f40)={'batadv0\x00'}) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xdaa0, 0x1, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r1, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x10000002) socket$nl_generic(0x10, 0x3, 0x10) socket(0x18, 0x5, 0x0) socket(0xa, 0x2, 0x73) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000080), 0x6b) socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) 1.478491905s ago: executing program 3 (id=2477): keyctl$auto(0x2000000000000016, 0xff000000000000, 0xfffffffffffffffc, 0x1, 0xc) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91) read$auto(r1, 0x0, 0x1) ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5) ioctl$auto(0x3, 0x4008af03, 0x0) msync$auto(0x0, 0x2000000005, 0x6) r2 = openat$auto_mon_fops_stat_usb_mon(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/15s\x00', 0x80, 0x0) io_uring_setup$auto(0x9, &(0x7f0000000040)={0xfffff357, 0xa, 0x5b, 0x8, 0x1, 0xc53, r2, [0x2b, 0x2, 0x200], {0x7, 0x6, 0x0, 0x1, 0x9, 0x5, 0x3, 0x6, 0x1fe0000}, {0xf, 0x10, 0x5, 0x6, 0x4, 0x0, 0x7, 0x7f, 0xfffffffffffffff0}}) 1.31003479s ago: executing program 2 (id=2478): mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x801, 0x7, 0x400, 0x1000049, 0xffffffffffffffff, 0x20000000000804, 0x3}, 0x6f3) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0xff0f0000, 0x9}, 0x7}, 0x3, 0x0) 1.175158835s ago: executing program 2 (id=2479): mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x403, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) rt_sigpending$auto(0x0, 0x8) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="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", @ANYRES8, @ANYRES64], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x20008844) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mseal$auto(0x1ffff000, 0x7dda, 0x0) bind$auto(0x3, 0x0, 0xf) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x8000, 0xc) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x2, 0x1, &(0x7f0000002100)=0x4, 0x5, 0x0) madvise$auto(0x0, 0x200007, 0x8) 1.066205365s ago: executing program 3 (id=2480): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_TIOCGPTPEER2(r0, 0x5441, 0x0) 749.398681ms ago: executing program 3 (id=2481): openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x2a582, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram5\x00', 0x4000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = getpgid(0x0) rt_tgsigqueueinfo$auto(0xffffffffffffffff, r0, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xe, 0x5, @_sigchld={r0, 0x0, 0x401, 0x5, 0x3}}}) r1 = open(&(0x7f0000000300)='./file0\x00', 0x24100, 0x40) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/node/has_memory\x00', 0x22100, 0x0) removexattrat$auto(r1, &(0x7f0000000280)='./file0\x00', 0x3, &(0x7f00000002c0)='/sys/devices/system/node/has_memory\x00') execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ') lseek$auto(0x3, 0x7fffffffffffffff, 0x1) 654.422999ms ago: executing program 2 (id=2482): futex$auto(&(0x7f00000002c0)=0x1, 0x101, 0x1008, 0x0, 0x0, 0x7) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) r3 = getuid() setresuid$auto(0x0, r3, 0xee00) r4 = getuid() setresuid$auto(0x0, r4, 0xee00) capget$auto(&(0x7f00000000c0)={0x4, 0x0}, &(0x7f0000000100)={0x7f, 0x0, 0x9}) sendmsg$auto_NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000340)={&(0x7f00000006c0)=ANY=[@ANYBLOB="0859e0d4c4d396f73e64eef2a878185d466cdfac", @ANYRES8=r0, @ANYBLOB="02002abd7000fedbdf2507000000cb0111809401768008004100", @ANYRES8=0x0, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="0800b18004008d80b190a2c268f47dc0f0baf8594181b006004f0056ab5e55f966e54b257720e4f960a503529d7f9f35cad667d2625d313e666fc25ad65c7cb4594893f573a4d38193546b7584f075683d9a3a4a1720d99260d1c8e30876a5fbc7a0c3083b53bd69f5a411937ecb75539ccd5cea49de4c55fd9116b9bad358bf8748f9788323b3f13f4041d3d3b155ab5671e4900ba38125ec116e3aaf74cbfd0b424c1d95106388afb25a0ba2750823d9c26008f8", @ANYRES64=r2, @ANYRESDEC=r5], 0x200}, 0x1, 0x0, 0x0, 0x4084}, 0x20000841) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto(0x1, 0x5421, 0xa) r6 = socket(0x10, 0x2, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="eb6066ea", @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000400010000000a00050000000000000000000a00010000000000000000000a0001000000000000000000080004001000000008000200", @ANYRES32=0x0, @ANYBLOB="08000300fc030000"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r6, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0) 598.218647ms ago: executing program 1 (id=2483): sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c000b8008001c"], 0x4c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) socket(0x10, 0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) socket(0x1e, 0x805, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x5, 0x0) fsopen$auto(0x0, 0x1) sysfs$auto(0x2, 0xf, 0x0) fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x1, &(0x7f00000001c0)='+\x00', &(0x7f0000000280), 0xfffffdf9) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="1100"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r2 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) copy_file_range$auto(r2, 0x0, r2, &(0x7f0000000180)=0x80, 0x21c1, 0x0) acct$auto(0xfffffffffffffffc) 419.82128ms ago: executing program 3 (id=2484): socket(0x8, 0x3, 0x9) unshare$auto(0x40000080) r0 = openat$auto_comedi_fops_comedi_fops(0xffffffffffffff9c, &(0x7f0000000000), 0x319480, 0x0) ioctl$auto_COMEDI_CMD(r0, 0x80506409, &(0x7f00000000c0)={0x8, 0x0, 0x8, 0x8cec, 0x401, 0x4f52, 0x7, 0x0, 0x1, 0xfff, 0x2, 0x10, &(0x7f0000000040)=0xfffff001, 0x2, &(0x7f0000000080)=0xc73b, 0xa}) 298.35541ms ago: executing program 0 (id=2443): mmap$auto(0x0, 0x8000404, 0x4000000000df, 0x60eb2, 0x4, 0x300000000000) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioperm$auto(0x4, 0xbc6, 0x81) mmap$auto(0x8001, 0x0, 0xdd, 0xeb1, 0x401, 0x2) getsockopt$auto(0x100000006, 0x1, 0x33, 0xfffffffffffffffe, 0x0) socket(0x2, 0x2, 0x88) ioctl$auto(0xc9, 0x100000002, 0x4000000005c8d) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r1) sendmsg$auto_NL802154_CMD_NEW_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r2, 0x8, 0x70bd2d, 0x25dfdbfd, {}, [@NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x7fff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x80) write$auto(0x3, 0x0, 0x9) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000) ioperm$auto(0x8, 0x0, 0x3) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0004, 0x19) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x7, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) close_range$auto(r0, 0x8, 0x9) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x5, 0x84) socket(0x1, 0x1, 0x1) io_uring_setup$auto(0x3, 0x0) io_uring_register$auto(0x2, 0x2, &(0x7f0000000040), 0x86) io_uring_register$auto(0x2, 0x6, &(0x7f0000000180), 0x1) getrandom$auto(0x0, 0x6000000, 0x3) 213.907213ms ago: executing program 2 (id=2485): open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98) open$dir(&(0x7f0000000040)='./file1\x00', 0x80202, 0xc2) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) mount$auto(&(0x7f0000000000)='pimreg\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd057, 0x0) mount$auto(0x0, &(0x7f0000000040)='802_15_4_MAC\x00', 0x0, 0xaaa, 0x0) execve$auto(&(0x7f0000000040)=':,\x00', 0x0, 0x0) 172.685293ms ago: executing program 1 (id=2486): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x14, 0x940, 0x1ffe0, 0x8003, 0x6, 0x6, 0x7, 0x5, 0x2, 0x9, 0x6, 0x9, 0x2, 0x3, 0x2, 0x7}, 0x1fe, 0x7) setsockopt$auto(r0, 0x1, 0x4, &(0x7f0000000000)='\x00', 0x2) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg$auto(r1, &(0x7f0000003c80)={{0x0, 0x54c5, &(0x7f0000003c00)={0x0, 0x4}, 0x9, 0x0, 0xd6a, 0x9}, 0x8}, 0x6, 0x5, 0x0) socket(0x10, 0x2, 0x0) recvmmsg$auto(r0, &(0x7f0000000180)={{0x0, 0x4, 0x0, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) 0s ago: executing program 2 (id=2487): socket(0x2, 0x4, 0x0) setsockopt$auto(0x3, 0x0, 0x2a, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r0) r1 = getpid() bpf$auto(0x5, &(0x7f0000000140)=@task_fd_query={r1, r0, 0x6, 0x6, 0x101, 0xfffffffd, r0, 0xf8, 0x5}, 0x4) r2 = syz_open_procfs$namespace(r1, &(0x7f0000000080)='ns/mnt\x00') setreuid$auto(0x3, 0x7) open(&(0x7f0000000040)='./file0\x00', 0x480100, 0xc0) fsconfig$auto(0xd677, 0x4, 0x0, 0xfffffffffffffffe, 0x6) setns(r2, 0x0) kernel console output (not intermixed with test programs): .528769][ T7724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 199.538863][ T7724] Call Trace: [ 199.542162][ T7724] [ 199.545114][ T7724] dump_stack_lvl+0x16c/0x1f0 [ 199.549830][ T7724] should_fail_ex+0x497/0x5b0 [ 199.554549][ T7724] _copy_from_user+0x2e/0xd0 [ 199.559192][ T7724] packet_setsockopt+0xa94/0x4070 [ 199.564260][ T7724] ? __pfx_packet_setsockopt+0x10/0x10 [ 199.569753][ T7724] ? __pfx___might_resched+0x10/0x10 [ 199.575076][ T7724] ? aa_sk_perm+0x2f5/0xb20 [ 199.579625][ T7724] ? ksys_write+0x191/0x250 [ 199.584177][ T7724] ? find_held_lock+0x2d/0x110 [ 199.588979][ T7724] ? __pfx_packet_setsockopt+0x10/0x10 [ 199.594475][ T7724] do_sock_setsockopt+0x222/0x480 [ 199.599536][ T7724] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 199.605120][ T7724] ? lock_acquire+0x2f/0xb0 [ 199.609671][ T7724] __sys_setsockopt+0x1a0/0x230 [ 199.614572][ T7724] __x64_sys_setsockopt+0xbd/0x160 [ 199.620160][ T7724] ? do_syscall_64+0x91/0x250 [ 199.624872][ T7724] ? lockdep_hardirqs_on+0x7c/0x110 [ 199.630101][ T7724] do_syscall_64+0xcd/0x250 [ 199.634644][ T7724] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.640569][ T7724] RIP: 0033:0x7fa6e1585d19 [ 199.645018][ T7724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.664670][ T7724] RSP: 002b:00007fa6e2338038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 199.673124][ T7724] RAX: ffffffffffffffda RBX: 00007fa6e1776080 RCX: 00007fa6e1585d19 [ 199.681129][ T7724] RDX: 0000000000000002 RSI: 0000000000000107 RDI: 0000000000000003 [ 199.689131][ T7724] RBP: 00007fa6e2338090 R08: 0000000000000028 R09: 0000000000000000 [ 199.697132][ T7724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 199.705133][ T7724] R13: 0000000000000000 R14: 00007fa6e1776080 R15: 00007ffdd9cae528 [ 199.713144][ T7724] [ 200.417635][ T7729] netlink: 330 bytes leftover after parsing attributes in process `syz.0.499'. [ 200.763765][ T7753] random: crng reseeded on system resumption [ 200.897480][ T7735] netlink: 330 bytes leftover after parsing attributes in process `syz.1.501'. [ 201.927156][ T7779] netlink: 'syz.1.513': attribute type 1 has an invalid length. [ 202.534086][ T7787] netlink: 330 bytes leftover after parsing attributes in process `syz.2.514'. [ 203.034339][ T7807] random: crng reseeded on system resumption [ 203.278138][ T7799] netlink: 330 bytes leftover after parsing attributes in process `syz.3.515'. [ 203.748220][ T7817] lo: entered allmulticast mode [ 203.844134][ T7818] lo: left allmulticast mode [ 205.044444][ T7838] netlink: 330 bytes leftover after parsing attributes in process `syz.2.527'. [ 206.724568][ T7859] random: crng reseeded on system resumption [ 207.151571][ T7864] lo: entered allmulticast mode [ 207.177085][ T7864] lo: left allmulticast mode [ 208.124357][ T7880] FAULT_INJECTION: forcing a failure. [ 208.124357][ T7880] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 208.163735][ T7869] netlink: 330 bytes leftover after parsing attributes in process `syz.2.538'. [ 208.200773][ T7880] CPU: 1 UID: 0 PID: 7880 Comm: syz.0.541 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 208.211432][ T7880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 208.221522][ T7880] Call Trace: [ 208.224830][ T7880] [ 208.227784][ T7880] dump_stack_lvl+0x16c/0x1f0 [ 208.232493][ T7880] should_fail_ex+0x497/0x5b0 [ 208.237210][ T7880] ? fs_reclaim_acquire+0xae/0x150 [ 208.242355][ T7880] should_fail_alloc_page+0xe7/0x130 [ 208.247681][ T7880] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 208.253878][ T7880] __alloc_pages_noprof+0x190/0x25b0 [ 208.259199][ T7880] ? __pfx_mark_lock+0x10/0x10 [ 208.264018][ T7880] ? hlock_class+0x4e/0x130 [ 208.268559][ T7880] ? mark_lock+0xb5/0xc60 [ 208.272920][ T7880] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 208.278672][ T7880] ? hlock_class+0x4e/0x130 [ 208.283225][ T7880] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 208.289160][ T7880] ? policy_nodemask+0xea/0x4e0 [ 208.294051][ T7880] alloc_pages_mpol_noprof+0x2c9/0x610 [ 208.299561][ T7880] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 208.305582][ T7880] ? find_held_lock+0x2d/0x110 [ 208.310380][ T7880] ? __thp_vma_allowable_orders+0x1ca/0xb30 [ 208.316321][ T7880] __pmd_alloc+0x3f/0x860 [ 208.320690][ T7880] __handle_mm_fault+0x94a/0x2a40 [ 208.325762][ T7880] ? __pfx___handle_mm_fault+0x10/0x10 [ 208.331247][ T7880] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 208.336912][ T7880] ? find_vma+0xc0/0x140 [ 208.341160][ T7880] ? __pfx_find_vma+0x10/0x10 [ 208.345846][ T7880] handle_mm_fault+0x3fa/0xaa0 [ 208.350622][ T7880] do_user_addr_fault+0x7a3/0x13f0 [ 208.355742][ T7880] exc_page_fault+0x5c/0xc0 [ 208.360257][ T7880] asm_exc_page_fault+0x26/0x30 [ 208.365115][ T7880] RIP: 0010:rep_movs_alternative+0x30/0x70 [ 208.370935][ T7880] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 [ 208.390549][ T7880] RSP: 0018:ffffc90003277bb0 EFLAGS: 00050212 [ 208.396616][ T7880] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000010 [ 208.404588][ T7880] RDX: fffff5200064ef98 RSI: 0000000000000000 RDI: ffffc90003277cb0 [ 208.412562][ T7880] RBP: 0000000000000010 R08: 0000000000000001 R09: fffff5200064ef97 [ 208.420537][ T7880] R10: ffffc90003277cbf R11: 0000000000000001 R12: 0000000000000000 [ 208.428509][ T7880] R13: ffffc90003277cb0 R14: 000000000000000d R15: 0000000000000000 [ 208.436502][ T7880] _copy_from_user+0x9a/0xd0 [ 208.441110][ T7880] packet_setsockopt+0x1851/0x4070 [ 208.446233][ T7880] ? __pfx_packet_setsockopt+0x10/0x10 [ 208.451696][ T7880] ? __pfx___might_resched+0x10/0x10 [ 208.456989][ T7880] ? aa_sk_perm+0x2f5/0xb20 [ 208.461506][ T7880] ? __pfx_aa_sk_perm+0x10/0x10 [ 208.466381][ T7880] ? find_held_lock+0x2d/0x110 [ 208.471159][ T7880] ? __pfx_packet_setsockopt+0x10/0x10 [ 208.476625][ T7880] do_sock_setsockopt+0x222/0x480 [ 208.481663][ T7880] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 208.487225][ T7880] ? lock_acquire+0x2f/0xb0 [ 208.491761][ T7880] __sys_setsockopt+0x1a0/0x230 [ 208.496638][ T7880] __x64_sys_setsockopt+0xbd/0x160 [ 208.501763][ T7880] ? do_syscall_64+0x91/0x250 [ 208.506453][ T7880] ? lockdep_hardirqs_on+0x7c/0x110 [ 208.511682][ T7880] do_syscall_64+0xcd/0x250 [ 208.516197][ T7880] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.522097][ T7880] RIP: 0033:0x7f586f185d19 [ 208.526532][ T7880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 208.546146][ T7880] RSP: 002b:00007f586ffc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 208.554581][ T7880] RAX: ffffffffffffffda RBX: 00007f586f375fa0 RCX: 00007f586f185d19 [ 208.562571][ T7880] RDX: 000000000000000d RSI: 0000000000000107 RDI: 0000000000000003 [ 208.570551][ T7880] RBP: 00007f586ffc6090 R08: 0000000000008000 R09: 0000000000000000 [ 208.578559][ T7880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 208.586534][ T7880] R13: 0000000000000000 R14: 00007f586f375fa0 R15: 00007ffe80489278 [ 208.594522][ T7880] [ 210.084495][ T7900] netlink: 28 bytes leftover after parsing attributes in process `syz.1.545'. [ 210.452509][ T7894] netlink: 330 bytes leftover after parsing attributes in process `syz.0.551'. [ 211.454596][ T7924] random: crng reseeded on system resumption [ 211.785025][ T7932] netlink: 28 bytes leftover after parsing attributes in process `syz.0.561'. [ 212.688397][ T7939] netlink: 330 bytes leftover after parsing attributes in process `syz.0.557'. [ 212.993923][ T7948] lo: entered allmulticast mode [ 213.181270][ T7951] lo: left allmulticast mode [ 213.282106][ T7944] netlink: 330 bytes leftover after parsing attributes in process `syz.0.567'. [ 213.554900][ T29] audit: type=1800 audit(1734058871.098:6): pid=7959 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.562" name="discovery_nqn" dev="configfs" ino=14638 res=0 errno=0 [ 214.531650][ T7955] netlink: 330 bytes leftover after parsing attributes in process `syz.1.560'. [ 214.938940][ T7985] netlink: 330 bytes leftover after parsing attributes in process `syz.1.569'. [ 215.278835][ T7979] netlink: 28 bytes leftover after parsing attributes in process `syz.2.568'. [ 215.364783][ T7976] Process accounting resumed [ 215.904185][ T7994] netlink: 330 bytes leftover after parsing attributes in process `syz.2.572'. [ 216.322978][ T8008] lo: entered allmulticast mode [ 216.393270][ T8009] lo: left allmulticast mode [ 216.958547][ T8011] netlink: 330 bytes leftover after parsing attributes in process `syz.2.577'. [ 217.019974][ T8014] netlink: 330 bytes leftover after parsing attributes in process `syz.3.578'. [ 217.442762][ T8027] netlink: 28 bytes leftover after parsing attributes in process `syz.3.581'. [ 217.800056][ T8030] netlink: 330 bytes leftover after parsing attributes in process `syz.0.582'. [ 217.817766][ T8032] FAULT_INJECTION: forcing a failure. [ 217.817766][ T8032] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 217.845010][ T8032] CPU: 0 UID: 0 PID: 8032 Comm: syz.2.583 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 217.855666][ T8032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 217.865755][ T8032] Call Trace: [ 217.869062][ T8032] [ 217.872010][ T8032] dump_stack_lvl+0x16c/0x1f0 [ 217.876785][ T8032] should_fail_ex+0x497/0x5b0 [ 217.881472][ T8032] _copy_from_user+0x2e/0xd0 [ 217.886076][ T8032] copy_msghdr_from_user+0x99/0x160 [ 217.891288][ T8032] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 217.897106][ T8032] ? __lock_acquire+0xcc5/0x3c40 [ 217.902066][ T8032] ___sys_sendmsg+0xff/0x1e0 [ 217.906671][ T8032] ? __pfx____sys_sendmsg+0x10/0x10 [ 217.911897][ T8032] ? trace_lock_acquire+0x14e/0x1f0 [ 217.917125][ T8032] __sys_sendmmsg+0x201/0x420 [ 217.921810][ T8032] ? __pfx___sys_sendmmsg+0x10/0x10 [ 217.927032][ T8032] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 217.933026][ T8032] ? fput+0x67/0x440 [ 217.936932][ T8032] ? ksys_write+0x1ba/0x250 [ 217.941441][ T8032] ? __pfx_ksys_write+0x10/0x10 [ 217.946299][ T8032] __x64_sys_sendmmsg+0x9c/0x100 [ 217.951243][ T8032] ? lockdep_hardirqs_on+0x7c/0x110 [ 217.956449][ T8032] do_syscall_64+0xcd/0x250 [ 217.960962][ T8032] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 217.966867][ T8032] RIP: 0033:0x7fa6e1585d19 [ 217.971370][ T8032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 217.991068][ T8032] RSP: 002b:00007fa6e2359038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 217.999505][ T8032] RAX: ffffffffffffffda RBX: 00007fa6e1775fa0 RCX: 00007fa6e1585d19 [ 218.007490][ T8032] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 218.015460][ T8032] RBP: 00007fa6e2359090 R08: 0000000000000000 R09: 0000000000000000 [ 218.023521][ T8032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 218.031493][ T8032] R13: 0000000000000000 R14: 00007fa6e1775fa0 R15: 00007ffdd9cae528 [ 218.039568][ T8032] [ 218.911614][ T8047] netlink: 330 bytes leftover after parsing attributes in process `syz.1.589'. [ 219.354218][ T8055] netlink: 330 bytes leftover after parsing attributes in process `syz.2.590'. [ 219.506596][ T8067] netlink: 330 bytes leftover after parsing attributes in process `syz.1.594'. [ 220.134545][ T8084] netlink: 330 bytes leftover after parsing attributes in process `syz.3.601'. [ 221.296881][ T8110] __nla_validate_parse: 1 callbacks suppressed [ 221.296905][ T8110] netlink: 330 bytes leftover after parsing attributes in process `syz.1.608'. [ 221.692104][ T8130] FAULT_INJECTION: forcing a failure. [ 221.692104][ T8130] name failslab, interval 1, probability 0, space 0, times 0 [ 221.754573][ T8130] CPU: 1 UID: 0 PID: 8130 Comm: syz.1.617 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 221.765238][ T8130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 221.775322][ T8130] Call Trace: [ 221.778640][ T8130] [ 221.781599][ T8130] dump_stack_lvl+0x16c/0x1f0 [ 221.786320][ T8130] should_fail_ex+0x497/0x5b0 [ 221.791034][ T8130] ? fs_reclaim_acquire+0xae/0x150 [ 221.796178][ T8130] should_failslab+0xc2/0x120 [ 221.800897][ T8130] __kmalloc_noprof+0xce/0x4f0 [ 221.805702][ T8130] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 221.811807][ T8130] ? tomoyo_realpath_from_path+0xbf/0x710 [ 221.817584][ T8130] tomoyo_realpath_from_path+0xbf/0x710 [ 221.823179][ T8130] ? tomoyo_path_number_perm+0x235/0x5b0 [ 221.828862][ T8130] tomoyo_path_number_perm+0x248/0x5b0 [ 221.834343][ T8130] ? tomoyo_path_number_perm+0x235/0x5b0 [ 221.840086][ T8130] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 221.846103][ T8130] ? __pfx_lock_release+0x10/0x10 [ 221.851314][ T8130] ? trace_lock_acquire+0x14e/0x1f0 [ 221.856533][ T8130] ? lock_acquire+0x2f/0xb0 [ 221.861036][ T8130] ? __fget_files+0x40/0x3a0 [ 221.865639][ T8130] ? __fget_files+0x206/0x3a0 [ 221.870325][ T8130] security_file_ioctl+0x9b/0x240 [ 221.875353][ T8130] __x64_sys_ioctl+0xb7/0x200 [ 221.880053][ T8130] do_syscall_64+0xcd/0x250 [ 221.884564][ T8130] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.890462][ T8130] RIP: 0033:0x7f84aaf85d19 [ 221.894880][ T8130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.914576][ T8130] RSP: 002b:00007f84aadf9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 221.923009][ T8130] RAX: ffffffffffffffda RBX: 00007f84ab175fa0 RCX: 00007f84aaf85d19 [ 221.930986][ T8130] RDX: 0000000000000000 RSI: 0000000040045730 RDI: 0000000000000003 [ 221.938961][ T8130] RBP: 00007f84aadf9090 R08: 0000000000000000 R09: 0000000000000000 [ 221.946935][ T8130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 221.954907][ T8130] R13: 0000000000000000 R14: 00007f84ab175fa0 R15: 00007fff1f46c608 [ 221.962897][ T8130] [ 222.043176][ T8140] Unable to find swap-space signature [ 222.059078][ T8130] ERROR: Out of memory at tomoyo_realpath_from_path. [ 222.146079][ T8143] lo: entered allmulticast mode [ 222.151360][ T8143] lo: left allmulticast mode [ 222.537574][ T8155] lo: entered allmulticast mode [ 222.560451][ T8155] lo: left allmulticast mode [ 223.109665][ T8165] netlink: 330 bytes leftover after parsing attributes in process `syz.3.626'. [ 223.873798][ T8190] lo: entered allmulticast mode [ 223.890227][ T8190] lo: left allmulticast mode [ 223.954336][ T8178] netlink: 330 bytes leftover after parsing attributes in process `syz.2.630'. [ 224.428756][ T8195] netlink: 330 bytes leftover after parsing attributes in process `syz.2.638'. [ 225.340635][ T8221] lo: entered allmulticast mode [ 225.426196][ T8223] lo: left allmulticast mode [ 225.769887][ T8218] netlink: 330 bytes leftover after parsing attributes in process `syz.0.643'. [ 226.136442][ T8230] netlink: 330 bytes leftover after parsing attributes in process `syz.3.649'. [ 226.376710][ T8232] netlink: 330 bytes leftover after parsing attributes in process `syz.1.650'. [ 226.851196][ T29] audit: type=1800 audit(1734058884.388:7): pid=8253 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.654" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 226.987325][ T8250] netlink: 330 bytes leftover after parsing attributes in process `syz.1.655'. [ 227.045642][ T8248] netlink: 330 bytes leftover after parsing attributes in process `syz.0.662'. [ 227.619086][ T8267] netlink: 330 bytes leftover after parsing attributes in process `syz.0.668'. [ 228.086912][ T8291] lo: entered allmulticast mode [ 228.158760][ T8293] lo: left allmulticast mode [ 228.249236][ T8284] netlink: 330 bytes leftover after parsing attributes in process `syz.0.663'. [ 228.368272][ T8286] netlink: 330 bytes leftover after parsing attributes in process `syz.2.665'. [ 228.575418][ T8298] netlink: 330 bytes leftover after parsing attributes in process `syz.3.669'. [ 228.876540][ T29] audit: type=1800 audit(1734058886.418:8): pid=8296 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.667" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 229.234023][ T8318] netlink: 330 bytes leftover after parsing attributes in process `syz.2.675'. [ 229.398611][ T8328] lo: entered allmulticast mode [ 229.509236][ T8330] lo: left allmulticast mode [ 229.909118][ T8343] lo: entered allmulticast mode [ 229.992414][ T8344] lo: left allmulticast mode [ 230.259961][ T8346] netlink: 330 bytes leftover after parsing attributes in process `syz.2.683'. [ 230.474491][ T8342] netlink: 330 bytes leftover after parsing attributes in process `syz.1.681'. [ 230.872243][ T29] audit: type=1800 audit(1734058888.408:9): pid=8355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.686" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 231.726384][ T8385] __nla_validate_parse: 2 callbacks suppressed [ 231.726406][ T8385] netlink: 330 bytes leftover after parsing attributes in process `syz.2.696'. [ 231.970148][ T8401] netlink: 330 bytes leftover after parsing attributes in process `syz.1.701'. [ 232.495288][ T8408] netlink: 330 bytes leftover after parsing attributes in process `syz.1.712'. [ 232.519177][ T8410] netlink: 330 bytes leftover after parsing attributes in process `syz.2.704'. [ 232.589193][ T29] audit: type=1800 audit(1734058890.128:10): pid=8417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.705" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 233.263142][ T8435] netlink: 330 bytes leftover after parsing attributes in process `syz.1.709'. [ 233.491970][ T8445] netlink: 330 bytes leftover after parsing attributes in process `syz.2.715'. [ 234.173018][ T8453] FAULT_INJECTION: forcing a failure. [ 234.173018][ T8453] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 234.220388][ T8453] CPU: 1 UID: 0 PID: 8453 Comm: syz.2.719 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 234.231114][ T8453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 234.241189][ T8453] Call Trace: [ 234.244475][ T8453] [ 234.247407][ T8453] dump_stack_lvl+0x16c/0x1f0 [ 234.252098][ T8453] should_fail_ex+0x497/0x5b0 [ 234.256784][ T8453] ? fs_reclaim_acquire+0xae/0x150 [ 234.261910][ T8453] should_fail_alloc_page+0xe7/0x130 [ 234.267219][ T8453] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 234.273385][ T8453] __alloc_pages_noprof+0x190/0x25b0 [ 234.278701][ T8453] ? hlock_class+0x4e/0x130 [ 234.283214][ T8453] ? mark_lock+0xb5/0xc60 [ 234.287554][ T8453] ? hlock_class+0x4e/0x130 [ 234.292063][ T8453] ? mark_lock+0xb5/0xc60 [ 234.296407][ T8453] ? mark_lock+0xb5/0xc60 [ 234.300750][ T8453] ? __pfx_mark_lock+0x10/0x10 [ 234.305527][ T8453] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 234.311255][ T8453] ? __pfx_mark_lock+0x10/0x10 [ 234.316028][ T8453] ? __pfx_mark_lock+0x10/0x10 [ 234.320810][ T8453] ? finish_task_switch.isra.0+0x2e8/0xcc0 [ 234.326624][ T8453] ? __switch_to+0x749/0x1190 [ 234.331341][ T8453] ? hlock_class+0x4e/0x130 [ 234.335859][ T8453] ? hlock_class+0x4e/0x130 [ 234.340409][ T8453] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 234.346334][ T8453] ? policy_nodemask+0xea/0x4e0 [ 234.351213][ T8453] alloc_pages_mpol_noprof+0x2c9/0x610 [ 234.356706][ T8453] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 234.362710][ T8453] ? __pfx___lock_acquire+0x10/0x10 [ 234.367931][ T8453] ? mark_lock+0xb5/0xc60 [ 234.372276][ T8453] ? __pfx___lock_acquire+0x10/0x10 [ 234.377493][ T8453] pte_alloc_one+0x20/0x390 [ 234.382002][ T8453] do_pte_missing+0x1ae7/0x3e00 [ 234.386871][ T8453] __handle_mm_fault+0x103c/0x2a40 [ 234.392005][ T8453] ? __pfx___handle_mm_fault+0x10/0x10 [ 234.397518][ T8453] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 234.403182][ T8453] ? find_vma+0xc0/0x140 [ 234.407433][ T8453] ? __pfx_find_vma+0x10/0x10 [ 234.412120][ T8453] handle_mm_fault+0x3fa/0xaa0 [ 234.416904][ T8453] do_user_addr_fault+0x7a3/0x13f0 [ 234.422024][ T8453] exc_page_fault+0x5c/0xc0 [ 234.426623][ T8453] asm_exc_page_fault+0x26/0x30 [ 234.431486][ T8453] RIP: 0010:__get_user_8+0x1a/0x30 [ 234.436617][ T8453] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 ba 00 f0 ff ff ff 7f 00 00 48 39 c2 48 19 d2 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 [ 234.456255][ T8453] RSP: 0018:ffffc9000492fd58 EFLAGS: 00050246 [ 234.462674][ T8453] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc9000492fcc0 [ 234.470651][ T8453] RDX: 0000000000000000 RSI: ffffffff81fd58e7 RDI: ffffffff8bb15760 [ 234.478628][ T8453] RBP: 0000000000000003 R08: 0000000000000000 R09: fffffbfff203985a [ 234.486604][ T8453] R10: ffffffff901cc2d7 R11: 0000000000000000 R12: dffffc0000000000 [ 234.494579][ T8453] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88802f279e00 [ 234.502559][ T8453] ? kernel_move_pages+0x387/0x1560 [ 234.507783][ T8453] kernel_move_pages+0x395/0x1560 [ 234.512830][ T8453] ? __mutex_unlock_slowpath+0x164/0x690 [ 234.518476][ T8453] ? __pfx_kernel_move_pages+0x10/0x10 [ 234.523965][ T8453] ? fput+0x67/0x440 [ 234.527872][ T8453] ? ksys_write+0x1ba/0x250 [ 234.532398][ T8453] ? __pfx_ksys_write+0x10/0x10 [ 234.537274][ T8453] __x64_sys_move_pages+0xe0/0x1c0 [ 234.542410][ T8453] ? do_syscall_64+0x91/0x250 [ 234.547107][ T8453] ? lockdep_hardirqs_on+0x7c/0x110 [ 234.552322][ T8453] do_syscall_64+0xcd/0x250 [ 234.556841][ T8453] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.562747][ T8453] RIP: 0033:0x7fa6e1585d19 [ 234.567169][ T8453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.586784][ T8453] RSP: 002b:00007fa6e2359038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 234.595204][ T8453] RAX: ffffffffffffffda RBX: 00007fa6e1775fa0 RCX: 00007fa6e1585d19 [ 234.603179][ T8453] RDX: 0000000000000000 RSI: 0000000000001002 RDI: 0000000000000000 [ 234.611160][ T8453] RBP: 00007fa6e2359090 R08: 0000000000000000 R09: 0000000000000002 [ 234.619308][ T8453] R10: 0000000020001140 R11: 0000000000000246 R12: 0000000000000001 [ 234.627283][ T8453] R13: 0000000000000000 R14: 00007fa6e1775fa0 R15: 00007ffdd9cae528 [ 234.635286][ T8453] [ 235.032251][ T8459] netlink: 330 bytes leftover after parsing attributes in process `syz.0.717'. [ 235.289398][ T8473] netlink: 330 bytes leftover after parsing attributes in process `syz.2.725'. [ 235.733295][ T8488] netlink: 330 bytes leftover after parsing attributes in process `syz.2.727'. [ 235.994190][ T8503] netlink: 4 bytes leftover after parsing attributes in process `syz.2.732'. [ 236.790550][ T8514] netlink: 330 bytes leftover after parsing attributes in process `syz.0.736'. [ 236.864715][ T8523] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 236.936400][ T8512] netlink: 330 bytes leftover after parsing attributes in process `syz.1.735'. [ 237.400954][ T8529] netlink: 330 bytes leftover after parsing attributes in process `syz.0.740'. [ 238.317518][ T8554] netlink: 330 bytes leftover after parsing attributes in process `syz.1.748'. [ 238.805417][ T5838] Bluetooth: hci1: unexpected event 0x03 length: 72 > 11 [ 239.004588][ T8581] netlink: 93 bytes leftover after parsing attributes in process `syz.3.756'. [ 239.021700][ T8575] netlink: 330 bytes leftover after parsing attributes in process `syz.1.754'. [ 239.040746][ T8579] netlink: 93 bytes leftover after parsing attributes in process `syz.3.756'. [ 239.043489][ T29] audit: type=1800 audit(1734058896.578:11): pid=8584 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="members" dev="configfs" ino=16735 res=0 errno=0 [ 239.640318][ T8574] netlink: 330 bytes leftover after parsing attributes in process `syz.2.755'. [ 240.099101][ T8602] netlink: 330 bytes leftover after parsing attributes in process `syz.3.764'. [ 240.321652][ T8624] netlink: 4 bytes leftover after parsing attributes in process `syz.3.771'. [ 242.937371][ T8671] __nla_validate_parse: 3 callbacks suppressed [ 242.937395][ T8671] netlink: 330 bytes leftover after parsing attributes in process `syz.1.783'. [ 243.433303][ T8682] netlink: 330 bytes leftover after parsing attributes in process `syz.0.795'. [ 243.668931][ T8686] netlink: 330 bytes leftover after parsing attributes in process `syz.3.787'. [ 243.777063][ T8688] netlink: 330 bytes leftover after parsing attributes in process `syz.1.788'. [ 243.946522][ T8704] lo: entered allmulticast mode [ 244.025845][ T8707] lo: left allmulticast mode [ 244.081604][ T8700] netlink: 330 bytes leftover after parsing attributes in process `syz.2.799'. [ 244.504782][ T8723] netlink: 'syz.3.797': attribute type 11 has an invalid length. [ 244.512786][ T8723] netlink: 'syz.3.797': attribute type 11 has an invalid length. [ 244.527378][ T8723] netlink: 'syz.3.797': attribute type 11 has an invalid length. [ 245.061645][ T8738] netlink: 4 bytes leftover after parsing attributes in process `syz.3.804'. [ 245.088385][ T8734] netlink: 330 bytes leftover after parsing attributes in process `syz.2.803'. [ 245.392977][ T8742] netlink: 330 bytes leftover after parsing attributes in process `syz.2.805'. [ 246.184243][ T8738] kexec: Could not allocate control_code_buffer [ 246.236999][ T8738] Process accounting paused [ 246.333540][ T8754] netlink: 330 bytes leftover after parsing attributes in process `syz.1.809'. [ 246.727684][ T8769] netlink: 330 bytes leftover after parsing attributes in process `syz.3.814'. [ 247.999263][ T8804] __nla_validate_parse: 1 callbacks suppressed [ 247.999285][ T8804] netlink: 330 bytes leftover after parsing attributes in process `syz.0.825'. [ 248.024060][ T8811] netlink: 330 bytes leftover after parsing attributes in process `syz.3.829'. [ 249.087418][ T8853] netlink: 330 bytes leftover after parsing attributes in process `syz.0.842'. [ 250.154050][ T8862] netlink: 330 bytes leftover after parsing attributes in process `syz.0.851'. [ 250.272721][ T8858] netlink: 330 bytes leftover after parsing attributes in process `syz.3.843'. [ 251.420703][ T8914] syz.2.861 uses obsolete (PF_INET,SOCK_PACKET) [ 251.489350][ T8906] netlink: 330 bytes leftover after parsing attributes in process `syz.0.858'. [ 252.937304][ T8953] netlink: 330 bytes leftover after parsing attributes in process `syz.3.872'. [ 253.009221][ T8958] netlink: 330 bytes leftover after parsing attributes in process `syz.3.874'. [ 253.033494][ T8961] netlink: 330 bytes leftover after parsing attributes in process `syz.3.874'. [ 254.146781][ T8992] netlink: 330 bytes leftover after parsing attributes in process `syz.2.883'. [ 254.679848][ T9003] netlink: 330 bytes leftover after parsing attributes in process `syz.2.894'. [ 255.041203][ T9025] netlink: 306 bytes leftover after parsing attributes in process `syz.2.891'. [ 255.062966][ T9025] netlink: 4 bytes leftover after parsing attributes in process `syz.2.891'. [ 255.075669][ T9025] netlink: 4 bytes leftover after parsing attributes in process `syz.2.891'. [ 255.766551][ T9038] netlink: 342 bytes leftover after parsing attributes in process `syz.1.898'. [ 255.987620][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.994071][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.032789][ T9039] netlink: 330 bytes leftover after parsing attributes in process `syz.2.899'. [ 257.593728][ T9082] netlink: 330 bytes leftover after parsing attributes in process `syz.0.913'. [ 258.101328][ T5838] Bluetooth: hci0: ACL packet for unknown connection handle 16 [ 258.972556][ T9122] netlink: 330 bytes leftover after parsing attributes in process `syz.1.925'. [ 259.090170][ T9127] netlink: 338 bytes leftover after parsing attributes in process `syz.3.927'. [ 259.603531][ T9144] netlink: 'syz.2.931': attribute type 2 has an invalid length. [ 259.644625][ T9144] netlink: 'syz.2.931': attribute type 2 has an invalid length. [ 260.961439][ T9167] netlink: 338 bytes leftover after parsing attributes in process `syz.1.937'. [ 261.252325][ T9170] netlink: 330 bytes leftover after parsing attributes in process `syz.3.938'. [ 261.606915][ T9194] FAULT_INJECTION: forcing a failure. [ 261.606915][ T9194] name failslab, interval 1, probability 0, space 0, times 0 [ 261.673986][ T9194] CPU: 0 UID: 0 PID: 9194 Comm: syz.0.943 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 261.684651][ T9194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 261.694738][ T9194] Call Trace: [ 261.698041][ T9194] [ 261.700995][ T9194] dump_stack_lvl+0x16c/0x1f0 [ 261.705721][ T9194] should_fail_ex+0x497/0x5b0 [ 261.710444][ T9194] ? fs_reclaim_acquire+0xae/0x150 [ 261.715588][ T9194] should_failslab+0xc2/0x120 [ 261.720301][ T9194] __kmalloc_node_noprof+0xd1/0x520 [ 261.725537][ T9194] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 261.731046][ T9194] __kvmalloc_node_noprof+0xad/0x1a0 [ 261.736371][ T9194] io_sqe_buffers_register+0x136/0x740 [ 261.741868][ T9194] ? __lock_acquire+0xcc5/0x3c40 [ 261.746851][ T9194] ? __pfx_io_sqe_buffers_register+0x10/0x10 [ 261.752880][ T9194] ? __pfx___mutex_trylock_common+0x10/0x10 [ 261.758810][ T9194] __io_uring_register+0x222f/0x2290 [ 261.764151][ T9194] ? trace_contention_end+0xee/0x140 [ 261.769468][ T9194] ? __pfx___io_uring_register+0x10/0x10 [ 261.775138][ T9194] ? __mutex_lock+0x1cc/0xa60 [ 261.779855][ T9194] ? __fget_files+0x1fc/0x3a0 [ 261.784562][ T9194] ? __x64_sys_io_uring_register+0x168/0x2b0 [ 261.790661][ T9194] ? __pfx_lock_release+0x10/0x10 [ 261.795721][ T9194] ? __pfx___mutex_lock+0x10/0x10 [ 261.800780][ T9194] ? __fget_files+0x40/0x3a0 [ 261.805403][ T9194] ? __fget_files+0x206/0x3a0 [ 261.810120][ T9194] __x64_sys_io_uring_register+0x17a/0x2b0 [ 261.815972][ T9194] do_syscall_64+0xcd/0x250 [ 261.820514][ T9194] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.826439][ T9194] RIP: 0033:0x7f586f185d19 [ 261.830878][ T9194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 261.850519][ T9194] RSP: 002b:00007f586ff84038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 261.858966][ T9194] RAX: ffffffffffffffda RBX: 00007f586f376160 RCX: 00007f586f185d19 [ 261.866976][ T9194] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 261.874980][ T9194] RBP: 00007f586ff84090 R08: 0000000000000000 R09: 0000000000000000 [ 261.882982][ T9194] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 261.890996][ T9194] R13: 0000000000000000 R14: 00007f586f376160 R15: 00007ffe80489278 [ 261.899021][ T9194] [ 262.985831][ T9209] netlink: 338 bytes leftover after parsing attributes in process `syz.2.950'. [ 263.737758][ T9230] netlink: 330 bytes leftover after parsing attributes in process `syz.1.953'. [ 264.378346][ T9237] netlink: 330 bytes leftover after parsing attributes in process `syz.1.964'. [ 264.509772][ T9248] FAULT_INJECTION: forcing a failure. [ 264.509772][ T9248] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 264.522983][ T9248] CPU: 0 UID: 0 PID: 9248 Comm: syz.0.958 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 264.533709][ T9248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 264.543795][ T9248] Call Trace: [ 264.547095][ T9248] [ 264.550061][ T9248] dump_stack_lvl+0x16c/0x1f0 [ 264.554791][ T9248] should_fail_ex+0x497/0x5b0 [ 264.559504][ T9248] ? page_copy_sane+0xcd/0x2d0 [ 264.564307][ T9248] copy_page_from_iter_atomic+0x399/0x1810 [ 264.570164][ T9248] ? mark_buffer_dirty+0x397/0x420 [ 264.575307][ T9248] ? __pfx_copy_page_from_iter_atomic+0x10/0x10 [ 264.581590][ T9248] ? fault_in_readable+0x1a7/0x200 [ 264.586755][ T9248] ? __pfx_fault_in_readable+0x10/0x10 [ 264.592259][ T9248] ? I_BDEV+0xd/0x20 [ 264.596199][ T9248] ? inode_to_bdi+0x9e/0x160 [ 264.600827][ T9248] iomap_file_buffered_write+0x633/0xc70 [ 264.606488][ T9248] ? __pfx_iomap_file_buffered_write+0x10/0x10 [ 264.612656][ T9248] ? find_held_lock+0x2d/0x110 [ 264.617434][ T9248] ? __pfx_inode_set_ctime_current+0x10/0x10 [ 264.623443][ T9248] ? preempt_count_add+0x76/0x150 [ 264.628481][ T9248] ? mnt_put_write_access_file+0xc1/0xf0 [ 264.634120][ T9248] blkdev_write_iter+0x574/0xd40 [ 264.639065][ T9248] vfs_write+0x5ae/0x1150 [ 264.643412][ T9248] ? __pfx_blkdev_write_iter+0x10/0x10 [ 264.648880][ T9248] ? __pfx_vfs_write+0x10/0x10 [ 264.653662][ T9248] ? __fget_files+0x40/0x3a0 [ 264.658702][ T9248] ksys_write+0x12b/0x250 [ 264.663037][ T9248] ? __pfx_ksys_write+0x10/0x10 [ 264.667899][ T9248] do_syscall_64+0xcd/0x250 [ 264.672413][ T9248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 264.678333][ T9248] RIP: 0033:0x7f586f185d19 [ 264.682784][ T9248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 264.702495][ T9248] RSP: 002b:00007f586ffc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 264.710919][ T9248] RAX: ffffffffffffffda RBX: 00007f586f375fa0 RCX: 00007f586f185d19 [ 264.718892][ T9248] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 264.726869][ T9248] RBP: 00007f586ffc6090 R08: 0000000000000000 R09: 0000000000000000 [ 264.734839][ T9248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 264.742814][ T9248] R13: 0000000000000000 R14: 00007f586f375fa0 R15: 00007ffe80489278 [ 264.750810][ T9248] [ 265.370835][ T9258] netlink: 338 bytes leftover after parsing attributes in process `syz.3.961'. [ 267.301210][ T9281] netlink: 330 bytes leftover after parsing attributes in process `syz.2.969'. [ 268.376469][ T9311] netlink: 122 bytes leftover after parsing attributes in process `syz.1.974'. [ 268.408640][ T9311] netlink: 122 bytes leftover after parsing attributes in process `syz.1.974'. [ 268.566615][ T9309] netlink: 338 bytes leftover after parsing attributes in process `syz.0.973'. [ 269.753922][ T9328] netlink: 330 bytes leftover after parsing attributes in process `syz.2.981'. [ 270.123878][ T9342] netlink: 4 bytes leftover after parsing attributes in process `syz.2.986'. [ 270.165816][ T9342] netlink: 4 bytes leftover after parsing attributes in process `syz.2.986'. [ 270.830720][ T9352] netlink: 338 bytes leftover after parsing attributes in process `syz.2.989'. [ 271.459120][ T9368] netlink: 330 bytes leftover after parsing attributes in process `syz.3.993'. [ 272.690416][ T9377] netlink: 330 bytes leftover after parsing attributes in process `syz.1.997'. [ 272.777343][ T9389] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1001'. [ 273.296188][ T9402] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1004'. [ 273.877590][ T9417] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1010'. [ 274.646978][ T9423] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1012'. [ 274.853032][ T9434] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1015'. [ 275.025815][ T9439] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 275.395077][ T9441] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1018'. [ 275.415688][ T9446] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1020'. [ 276.173630][ T9455] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1031'. [ 276.297966][ T9457] Process accounting resumed [ 276.701239][ T9470] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1024'. [ 276.811940][ T9477] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 277.458702][ T9489] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1034'. [ 278.023358][ T9517] FAULT_INJECTION: forcing a failure. [ 278.023358][ T9517] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 278.037421][ T9517] CPU: 0 UID: 0 PID: 9517 Comm: syz.1.1042 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 278.048144][ T9517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 278.058323][ T9517] Call Trace: [ 278.061619][ T9517] [ 278.064569][ T9517] dump_stack_lvl+0x16c/0x1f0 [ 278.069362][ T9517] should_fail_ex+0x497/0x5b0 [ 278.074072][ T9517] _copy_to_user+0x32/0xd0 [ 278.078524][ T9517] simple_read_from_buffer+0xd0/0x160 [ 278.083936][ T9517] proc_fail_nth_read+0x198/0x270 [ 278.088994][ T9517] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 278.094839][ T9517] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 278.100418][ T9517] vfs_read+0x1df/0xbe0 [ 278.104604][ T9517] ? __fget_files+0x1fc/0x3a0 [ 278.109302][ T9517] ? __pfx___mutex_lock+0x10/0x10 [ 278.114414][ T9517] ? __pfx_vfs_read+0x10/0x10 [ 278.119125][ T9517] ? __fget_files+0x206/0x3a0 [ 278.123847][ T9517] ksys_read+0x12b/0x250 [ 278.128113][ T9517] ? __pfx_ksys_read+0x10/0x10 [ 278.132909][ T9517] do_syscall_64+0xcd/0x250 [ 278.137444][ T9517] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.143367][ T9517] RIP: 0033:0x7f84aaf8472c [ 278.147803][ T9517] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 278.167442][ T9517] RSP: 002b:00007f84aadf9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 278.175884][ T9517] RAX: ffffffffffffffda RBX: 00007f84ab175fa0 RCX: 00007f84aaf8472c [ 278.183883][ T9517] RDX: 000000000000000f RSI: 00007f84aadf90a0 RDI: 0000000000000003 [ 278.191871][ T9517] RBP: 00007f84aadf9090 R08: 0000000000000000 R09: 0000000000000000 [ 278.199861][ T9517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 278.207847][ T9517] R13: 0000000000000000 R14: 00007f84ab175fa0 R15: 00007fff1f46c608 [ 278.215858][ T9517] [ 278.447001][ T9521] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 278.956964][ T9530] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1047'. [ 279.754631][ T9546] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1051'. [ 280.159637][ T9562] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 281.084286][ T9582] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1061'. [ 281.816726][ T9590] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1065'. [ 282.972294][ T9620] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1075'. [ 283.940989][ T9630] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1078'. [ 284.637055][ T9657] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1086'. [ 285.266893][ T9669] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1098'. [ 285.411322][ T9679] FAULT_INJECTION: forcing a failure. [ 285.411322][ T9679] name failslab, interval 1, probability 0, space 0, times 0 [ 285.449221][ T9679] CPU: 1 UID: 0 PID: 9679 Comm: syz.0.1093 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 285.459976][ T9679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 285.470059][ T9679] Call Trace: [ 285.473357][ T9679] [ 285.476327][ T9679] dump_stack_lvl+0x16c/0x1f0 [ 285.481045][ T9679] should_fail_ex+0x497/0x5b0 [ 285.485756][ T9679] ? fs_reclaim_acquire+0xae/0x150 [ 285.490903][ T9679] should_failslab+0xc2/0x120 [ 285.495635][ T9679] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 285.501496][ T9679] ? __alloc_skb+0x2b3/0x380 [ 285.506134][ T9679] __alloc_skb+0x2b3/0x380 [ 285.510640][ T9679] ? __pfx___alloc_skb+0x10/0x10 [ 285.515616][ T9679] ? lock_acquire+0x2f/0xb0 [ 285.520151][ T9679] netlink_alloc_large_skb+0x69/0x130 [ 285.525557][ T9679] netlink_sendmsg+0x689/0xd70 [ 285.530361][ T9679] ? __pfx_netlink_sendmsg+0x10/0x10 [ 285.535692][ T9679] ____sys_sendmsg+0x9ae/0xb40 [ 285.540484][ T9679] ? copy_msghdr_from_user+0x10b/0x160 [ 285.545977][ T9679] ? __pfx_____sys_sendmsg+0x10/0x10 [ 285.551309][ T9679] ___sys_sendmsg+0x135/0x1e0 [ 285.556024][ T9679] ? __pfx____sys_sendmsg+0x10/0x10 [ 285.561355][ T9679] ? __pfx_lock_release+0x10/0x10 [ 285.566415][ T9679] ? trace_lock_acquire+0x14e/0x1f0 [ 285.571655][ T9679] ? __fget_files+0x206/0x3a0 [ 285.576367][ T9679] __sys_sendmsg+0x16e/0x220 [ 285.581004][ T9679] ? __pfx___sys_sendmsg+0x10/0x10 [ 285.586173][ T9679] do_syscall_64+0xcd/0x250 [ 285.590716][ T9679] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 285.596638][ T9679] RIP: 0033:0x7f586f185d19 [ 285.601081][ T9679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 285.620894][ T9679] RSP: 002b:00007f586ffc6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 285.629356][ T9679] RAX: ffffffffffffffda RBX: 00007f586f375fa0 RCX: 00007f586f185d19 [ 285.637335][ T9679] RDX: 0000000004044820 RSI: 00000000200002c0 RDI: 0000000000000003 [ 285.645306][ T9679] RBP: 00007f586ffc6090 R08: 0000000000000000 R09: 0000000000000000 [ 285.653271][ T9679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 285.661239][ T9679] R13: 0000000000000000 R14: 00007f586f375fa0 R15: 00007ffe80489278 [ 285.669235][ T9679] [ 286.450005][ T9692] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1097'. [ 286.748793][ T9703] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1103'. [ 288.301130][ T9744] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1112'. [ 288.514942][ T9751] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1114'. [ 288.673209][ T9741] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1111'. [ 291.531323][ T9778] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1124'. [ 292.568870][ T9792] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1126'. [ 292.854251][ T9804] netlink: 22 bytes leftover after parsing attributes in process `syz.1.1132'. [ 293.507475][ T9814] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1137'. [ 295.011326][ T9853] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1150'. [ 297.101922][ T9898] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1164'. [ 299.248117][ T9944] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1177'. [ 301.336720][ T9985] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1189'. [ 303.360277][T10019] ======================================================= [ 303.360277][T10019] WARNING: The mand mount option has been deprecated and [ 303.360277][T10019] and is ignored by this kernel. Remove the mand [ 303.360277][T10019] option from the mount to silence this warning. [ 303.360277][T10019] ======================================================= [ 303.884098][T10034] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1201'. [ 305.100770][T10064] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1213'. [ 307.608032][T10118] sp0: Synchronizing with TNC [ 307.775952][T10128] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd31 [ 308.098872][T10138] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1240'. [ 311.864277][T10233] netlink: 'syz.0.1265': attribute type 4 has an invalid length. [ 311.922936][T10233] netlink: 314 bytes leftover after parsing attributes in process `syz.0.1265'. [ 311.968281][T10233] IPv6: NLM_F_CREATE should be specified when creating new route [ 313.573726][T10270] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1278'. [ 317.426502][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.432999][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 320.456811][T10404] kernel read not supported for file /#)-\&[} (pid: 10404 comm: syz.0.1318) [ 320.466249][ T29] audit: type=1804 audit(4294967355.100:12): pid=10404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1318" name="#)-\&[}" dev="mqueue" ino=23183 res=1 errno=0 [ 320.548806][ T29] audit: type=1800 audit(4294967355.190:13): pid=10404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1318" name="#)-\&[}" dev="mqueue" ino=23183 res=0 errno=0 [ 320.852379][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 321.314593][T10423] bridge0: port 3(hsr0) entered blocking state [ 321.367887][T10423] bridge0: port 3(hsr0) entered disabled state [ 321.388423][T10423] hsr0: entered allmulticast mode [ 321.412916][T10423] hsr_slave_0: entered allmulticast mode [ 321.418703][T10423] hsr_slave_1: entered allmulticast mode [ 321.439929][T10423] hsr0: entered promiscuous mode [ 321.459647][T10423] bridge0: port 3(hsr0) entered blocking state [ 321.466241][T10423] bridge0: port 3(hsr0) entered forwarding state [ 322.389701][T10452] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2]. [ 322.793940][T10461] bridge0: port 3(hsr0) entered blocking state [ 322.809385][T10461] bridge0: port 3(hsr0) entered disabled state [ 322.823077][T10461] hsr0: entered allmulticast mode [ 322.833304][T10461] hsr_slave_0: entered allmulticast mode [ 322.853018][T10461] hsr_slave_1: entered allmulticast mode [ 322.870347][T10461] hsr0: entered promiscuous mode [ 322.916259][T10461] bridge0: port 3(hsr0) entered blocking state [ 322.922566][T10461] bridge0: port 3(hsr0) entered forwarding state [ 324.200497][T10488] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1346'. [ 324.385377][T10502] bridge0: port 3(hsr0) entered blocking state [ 324.391766][T10502] bridge0: port 3(hsr0) entered disabled state [ 324.413169][T10502] hsr0: entered allmulticast mode [ 324.418267][T10502] hsr_slave_0: entered allmulticast mode [ 324.446094][T10502] hsr_slave_1: entered allmulticast mode [ 324.473699][T10502] hsr0: entered promiscuous mode [ 324.479138][T10502] bridge0: port 3(hsr0) entered blocking state [ 324.485468][T10502] bridge0: port 3(hsr0) entered forwarding state [ 324.815950][T10515] tipc: Can't bind to reserved service type 2 [ 325.621830][T10534] ICMPv6: process `syz.1.1361' is using deprecated sysctl (syscall) net.ipv6.neigh.virt_wifi0.retrans_time - use net.ipv6.neigh.virt_wifi0.retrans_time_ms instead [ 325.886302][T10530] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1360'. [ 325.967556][T10541] bridge0: port 3(hsr0) entered blocking state [ 325.974172][T10541] bridge0: port 3(hsr0) entered disabled state [ 325.981443][T10541] hsr0: entered allmulticast mode [ 325.989720][T10541] hsr_slave_0: entered allmulticast mode [ 325.996339][T10541] hsr_slave_1: entered allmulticast mode [ 326.013307][T10541] hsr0: entered promiscuous mode [ 326.018753][T10541] bridge0: port 3(hsr0) entered blocking state [ 326.025295][T10541] bridge0: port 3(hsr0) entered forwarding state [ 326.691171][T10559] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1369'. [ 326.694001][T10551] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1376'. [ 326.709568][T10559] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1369'. [ 326.829657][T10563] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1371'. [ 326.919194][T10570] tipc: Started in network mode [ 326.932265][T10570] tipc: Node identity ee00, cluster identity 4711 [ 326.951881][T10570] tipc: Node number set to 60928 [ 328.070654][T10596] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1383'. [ 328.104785][T10596] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1383'. [ 328.378977][T10603] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1385'. [ 328.524275][T10594] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1384'. [ 328.648216][T10610] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 328.762779][T10610] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 329.234675][T10617] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 329.763856][T10633] __nla_validate_parse: 1 callbacks suppressed [ 329.763878][T10633] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1395'. [ 329.853168][T10635] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1395'. [ 330.082034][T10641] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1397'. [ 330.119084][T10641] netlink: 274 bytes leftover after parsing attributes in process `syz.0.1397'. [ 330.228849][T10643] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1401'. [ 330.429858][T10646] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1400'. [ 331.194064][T10664] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1414'. [ 331.419637][T10673] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1407'. [ 331.516637][T10673] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1407'. [ 333.280571][T10713] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1417'. [ 334.071884][T10741] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[10741] [ 334.847964][T10756] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1429'. [ 336.233704][T10792] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1436'. [ 336.851891][T10798] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1439'. [ 338.933830][T10853] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1453'. [ 339.029374][T10853] bridge0: port 3(hsr0) entered disabled state [ 340.183671][T10867] nbd: must specify at least one socket [ 341.598581][T10911] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1469'. [ 341.671847][T10911] bridge0: port 3(hsr0) entered disabled state [ 344.294543][T10954] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1481'. [ 344.327350][T10954] bridge0: port 3(hsr0) entered disabled state [ 347.776002][T11008] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1498'. [ 347.818479][T11008] bridge0: port 3(hsr0) entered disabled state [ 349.643767][T11049] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1508'. [ 350.369532][T11062] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1514'. [ 352.254807][T11099] nfs: Unknown parameter '¿' [ 352.525657][T11106] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1527'. [ 353.255629][T11127] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1533'. [ 353.276640][T11129] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1534'. [ 353.670336][T11147] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1538'. [ 354.915978][T11174] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1545'. [ 355.167612][T11181] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 356.084299][T11202] bridge0: port 4(batadv0) entered blocking state [ 356.103048][T11202] bridge0: port 4(batadv0) entered disabled state [ 356.114819][T11202] batadv0: entered allmulticast mode [ 356.126104][T11202] batadv0: entered promiscuous mode [ 356.135198][T11202] bridge0: port 4(batadv0) entered blocking state [ 356.141761][T11202] bridge0: port 4(batadv0) entered forwarding state [ 356.154314][ T3527] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 356.164373][ T3527] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 357.731327][T11238] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1562'. [ 358.520318][T11245] ima: policy update failed [ 358.525783][ T29] audit: type=1802 audit(4294967393.170:14): pid=11245 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1564" res=0 errno=0 [ 358.815616][T11259] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 359.381929][T11288] netlink: 'syz.1.1577': attribute type 1 has an invalid length. [ 359.434958][T11283] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1575'. [ 360.061785][T11295] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1579'. [ 360.078157][T11302] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1581'. [ 360.114973][T11295] lo: entered promiscuous mode [ 360.119815][T11295] lo: entered allmulticast mode [ 361.537650][T11328] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1587'. [ 362.018586][T11343] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1593'. [ 362.302552][T11337] ima: policy update failed [ 362.314135][ T29] audit: type=1802 audit(4294967396.960:15): pid=11337 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1591" res=0 errno=0 [ 362.799878][T11367] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1600'. [ 364.527804][T11404] ima: policy update failed [ 364.559135][ T29] audit: type=1802 audit(4294967399.200:16): pid=11404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1607" res=0 errno=0 [ 366.355276][T11476] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1628'. [ 367.113082][T11495] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1634'. [ 368.666607][T11555] netlink: zone id is out of range [ 368.707270][T11555] netlink: zone id is out of range [ 368.712456][T11555] netlink: zone id is out of range [ 368.733129][T11555] netlink: zone id is out of range [ 368.738373][T11555] netlink: zone id is out of range [ 368.810685][T11555] netlink: zone id is out of range [ 368.827868][T11555] netlink: zone id is out of range [ 368.848090][T11555] netlink: zone id is out of range [ 368.853703][T11555] netlink: set zone limit has 4 unknown bytes [ 370.770294][T11623] nbd: must specify a device to reconfigure [ 371.190643][T11642] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1681'. [ 371.774506][T11658] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1686'. [ 373.479007][T11723] FAULT_INJECTION: forcing a failure. [ 373.479007][T11723] name failslab, interval 1, probability 0, space 0, times 0 [ 373.512894][T11723] CPU: 1 UID: 0 PID: 11723 Comm: syz.1.1710 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 373.523732][T11723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 373.534354][T11723] Call Trace: [ 373.537666][T11723] [ 373.540630][T11723] dump_stack_lvl+0x16c/0x1f0 [ 373.545364][T11723] should_fail_ex+0x497/0x5b0 [ 373.550182][T11723] ? fs_reclaim_acquire+0xae/0x150 [ 373.555520][T11723] should_failslab+0xc2/0x120 [ 373.560252][T11723] __kmalloc_noprof+0xce/0x4f0 [ 373.565089][T11723] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 373.571204][T11723] ? tomoyo_realpath_from_path+0xbf/0x710 [ 373.576978][T11723] tomoyo_realpath_from_path+0xbf/0x710 [ 373.582590][T11723] ? tomoyo_path_number_perm+0x235/0x5b0 [ 373.588825][T11723] tomoyo_path_number_perm+0x248/0x5b0 [ 373.594435][T11723] ? tomoyo_path_number_perm+0x235/0x5b0 [ 373.600519][T11723] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 373.606947][T11723] ? __pfx_lock_release+0x10/0x10 [ 373.612528][T11723] ? trace_lock_acquire+0x14e/0x1f0 [ 373.618319][T11723] ? lock_acquire+0x2f/0xb0 [ 373.622960][T11723] ? __fget_files+0x40/0x3a0 [ 373.627749][T11723] ? __fget_files+0x206/0x3a0 [ 373.633350][T11723] security_file_ioctl+0x9b/0x240 [ 373.638425][T11723] __x64_sys_ioctl+0xb7/0x200 [ 373.643166][T11723] do_syscall_64+0xcd/0x250 [ 373.647819][T11723] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 373.653864][T11723] RIP: 0033:0x7f84aaf85d19 [ 373.658324][T11723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 373.679029][T11723] RSP: 002b:00007f84aadf9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 373.687757][T11723] RAX: ffffffffffffffda RBX: 00007f84ab175fa0 RCX: 00007f84aaf85d19 [ 373.696035][T11723] RDX: 0000000020000040 RSI: 0000000040046109 RDI: 0000000000000003 [ 373.704048][T11723] RBP: 00007f84aadf9090 R08: 0000000000000000 R09: 0000000000000000 [ 373.712067][T11723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 373.720164][T11723] R13: 0000000000000000 R14: 00007f84ab175fa0 R15: 00007fff1f46c608 [ 373.728281][T11723] [ 373.731471][ C1] vkms_vblank_simulate: vblank timer overrun [ 373.772121][T11723] ERROR: Out of memory at tomoyo_realpath_from_path. [ 375.983159][T11754] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1721'. [ 376.019637][T11754] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1721'. [ 376.411245][T11767] netlink: 93 bytes leftover after parsing attributes in process `syz.1.1723'. [ 376.866352][T11795] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1731'. [ 376.913609][T11795] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1731'. [ 378.060435][T11816] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1741'. [ 378.083161][T11816] ü: renamed from team0 [ 378.613247][T11844] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1752'. [ 378.732202][T11844] bond0: (slave bond_slave_0): Releasing backup interface [ 378.864641][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.874799][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.967663][T11858] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1757'. [ 379.116939][T11851] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1756'. [ 379.154310][T11851] ü: renamed from team0 [ 379.188204][T11864] FAULT_INJECTION: forcing a failure. [ 379.188204][T11864] name failslab, interval 1, probability 0, space 0, times 0 [ 379.228473][T11864] CPU: 1 UID: 0 PID: 11864 Comm: syz.1.1758 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 379.239585][T11864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 379.250027][T11864] Call Trace: [ 379.253421][T11864] [ 379.256391][T11864] dump_stack_lvl+0x16c/0x1f0 [ 379.261118][T11864] should_fail_ex+0x497/0x5b0 [ 379.265936][T11864] ? fs_reclaim_acquire+0xae/0x150 [ 379.271154][T11864] should_failslab+0xc2/0x120 [ 379.276102][T11864] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 379.282049][T11864] ? __alloc_skb+0x2b3/0x380 [ 379.286706][T11864] __alloc_skb+0x2b3/0x380 [ 379.291290][T11864] ? __pfx___alloc_skb+0x10/0x10 [ 379.296376][T11864] ? lock_acquire+0x2f/0xb0 [ 379.300926][T11864] netlink_alloc_large_skb+0x69/0x130 [ 379.306444][T11864] netlink_sendmsg+0x689/0xd70 [ 379.311352][T11864] ? __pfx_netlink_sendmsg+0x10/0x10 [ 379.316711][T11864] ____sys_sendmsg+0x9ae/0xb40 [ 379.321535][T11864] ? copy_msghdr_from_user+0x10b/0x160 [ 379.327050][T11864] ? __pfx_____sys_sendmsg+0x10/0x10 [ 379.332502][T11864] ___sys_sendmsg+0x135/0x1e0 [ 379.337859][T11864] ? __pfx____sys_sendmsg+0x10/0x10 [ 379.343126][T11864] ? __pfx_lock_release+0x10/0x10 [ 379.348386][T11864] ? trace_lock_acquire+0x14e/0x1f0 [ 379.353739][T11864] ? __fget_files+0x206/0x3a0 [ 379.358581][T11864] __sys_sendmsg+0x16e/0x220 [ 379.363406][T11864] ? __pfx___sys_sendmsg+0x10/0x10 [ 379.368796][T11864] do_syscall_64+0xcd/0x250 [ 379.373425][T11864] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 379.379774][T11864] RIP: 0033:0x7f84aaf85d19 [ 379.384545][T11864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 379.404562][T11864] RSP: 002b:00007f84aadf9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 379.413107][T11864] RAX: ffffffffffffffda RBX: 00007f84ab175fa0 RCX: 00007f84aaf85d19 [ 379.421231][T11864] RDX: 0000000000040000 RSI: 0000000020000240 RDI: 0000000000000003 [ 379.429339][T11864] RBP: 00007f84aadf9090 R08: 0000000000000000 R09: 0000000000000000 [ 379.437618][T11864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 379.445729][T11864] R13: 0000000000000000 R14: 00007f84ab175fa0 R15: 00007fff1f46c608 [ 379.453848][T11864] [ 379.928128][T11885] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1766'. [ 379.996605][T11885] bond0: (slave bond_slave_0): Releasing backup interface [ 380.844383][T11903] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1769'. [ 380.862914][T11903] ü: renamed from team0 [ 381.474466][T11919] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1780'. [ 381.500551][T11921] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1777'. [ 381.608759][T11921] bond0: (slave bond_slave_0): Releasing backup interface [ 382.803027][T11946] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1788'. [ 384.974698][T11960] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1791'. [ 385.255959][T11960] bond0: (slave bond_slave_0): Releasing backup interface [ 386.217028][T11988] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1801'. [ 386.245408][T11988] ü: renamed from team0 [ 386.731948][T11998] FAULT_INJECTION: forcing a failure. [ 386.731948][T11998] name failslab, interval 1, probability 0, space 0, times 0 [ 386.793714][T12000] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1805'. [ 386.801837][T11998] CPU: 1 UID: 0 PID: 11998 Comm: syz.0.1806 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 386.813489][T11998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 386.823583][T11998] Call Trace: [ 386.826909][T11998] [ 386.829882][T11998] dump_stack_lvl+0x16c/0x1f0 [ 386.834705][T11998] should_fail_ex+0x497/0x5b0 [ 386.839517][T11998] ? fs_reclaim_acquire+0xae/0x150 [ 386.844764][T11998] should_failslab+0xc2/0x120 [ 386.849489][T11998] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 386.854915][T11998] ? __thp_vma_allowable_orders+0x1ca/0xb30 [ 386.860868][T11998] ? __pmd_alloc+0xc3/0x860 [ 386.865446][T11998] __pmd_alloc+0xc3/0x860 [ 386.869834][T11998] __handle_mm_fault+0x94a/0x2a40 [ 386.874945][T11998] ? __pfx___handle_mm_fault+0x10/0x10 [ 386.880459][T11998] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 386.886161][T11998] ? find_vma+0xc0/0x140 [ 386.890452][T11998] ? __pfx_find_vma+0x10/0x10 [ 386.895186][T11998] handle_mm_fault+0x3fa/0xaa0 [ 386.900010][T11998] do_user_addr_fault+0x7a3/0x13f0 [ 386.905170][T11998] exc_page_fault+0x5c/0xc0 [ 386.909728][T11998] asm_exc_page_fault+0x26/0x30 [ 386.914623][T11998] RIP: 0010:rep_movs_alternative+0x13/0x70 [ 386.920487][T11998] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f [ 386.940234][T11998] RSP: 0018:ffffc90004bafd60 EFLAGS: 00050202 [ 386.946350][T11998] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000004 [ 386.954997][T11998] RDX: fffff52000975fbc RSI: 0000000000000000 RDI: ffffc90004bafde0 [ 386.963275][T11998] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff52000975fbc [ 386.971506][T11998] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 386.979604][T11998] R13: ffffc90004bafde0 R14: 0000000000000000 R15: 0000000000000114 [ 386.987636][T11998] _copy_from_user+0x9a/0xd0 [ 386.992281][T11998] do_sock_getsockopt+0x319/0x870 [ 386.997359][T11998] ? trace_lock_acquire+0x140/0x1f0 [ 387.002612][T11998] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 387.008211][T11998] ? lock_acquire+0x2f/0xb0 [ 387.012764][T11998] ? __fget_files+0x40/0x3a0 [ 387.017399][T11998] ? 0xffffffffff600000 [ 387.021689][T11998] ? __fget_files+0x206/0x3a0 [ 387.026506][T11998] __sys_getsockopt+0x12f/0x260 [ 387.031411][T11998] ? 0xffffffffff600000 [ 387.035778][T11998] __x64_sys_getsockopt+0xbd/0x160 [ 387.040944][T11998] ? do_syscall_64+0x91/0x250 [ 387.045668][T11998] ? lockdep_hardirqs_on+0x7c/0x110 [ 387.050912][T11998] do_syscall_64+0xcd/0x250 [ 387.055485][T11998] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 387.061518][T11998] RIP: 0033:0x7f586f185d19 [ 387.065973][T11998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 387.085627][T11998] RSP: 002b:00007f586ffc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 387.094189][T11998] RAX: ffffffffffffffda RBX: 00007f586f375fa0 RCX: 00007f586f185d19 [ 387.102199][T11998] RDX: 000000000000271e RSI: 0000000000000114 RDI: 0000000000000002 [ 387.110208][T11998] RBP: 00007f586ffc6090 R08: 0000000000000000 R09: 0000000000000000 [ 387.118221][T11998] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000001 [ 387.126244][T11998] R13: 0000000000000000 R14: 00007f586f375fa0 R15: 00007ffe80489278 [ 387.134441][T11998] ? 0xffffffffff600000 [ 387.138648][T11998] [ 392.600837][T12085] FAULT_INJECTION: forcing a failure. [ 392.600837][T12085] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 392.646151][T12085] CPU: 1 UID: 0 PID: 12085 Comm: syz.1.1838 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 392.656998][T12085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 392.667062][T12085] Call Trace: [ 392.670365][T12085] [ 392.673307][T12085] dump_stack_lvl+0x16c/0x1f0 [ 392.678010][T12085] should_fail_ex+0x497/0x5b0 [ 392.682735][T12085] _copy_to_user+0x32/0xd0 [ 392.687181][T12085] simple_read_from_buffer+0xd0/0x160 [ 392.692583][T12085] proc_fail_nth_read+0x198/0x270 [ 392.697627][T12085] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 392.703190][T12085] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 392.708760][T12085] vfs_read+0x1df/0xbe0 [ 392.712934][T12085] ? __fget_files+0x1fc/0x3a0 [ 392.717625][T12085] ? __pfx___mutex_lock+0x10/0x10 [ 392.722667][T12085] ? __pfx_vfs_read+0x10/0x10 [ 392.727462][T12085] ? __fget_files+0x206/0x3a0 [ 392.732177][T12085] ksys_read+0x12b/0x250 [ 392.736437][T12085] ? __pfx_ksys_read+0x10/0x10 [ 392.741224][T12085] do_syscall_64+0xcd/0x250 [ 392.745749][T12085] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 392.751655][T12085] RIP: 0033:0x7f84aaf8472c [ 392.756077][T12085] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 392.775754][T12085] RSP: 002b:00007f84aadf9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 392.784176][T12085] RAX: ffffffffffffffda RBX: 00007f84ab175fa0 RCX: 00007f84aaf8472c [ 392.792152][T12085] RDX: 000000000000000f RSI: 00007f84aadf90a0 RDI: 0000000000000004 [ 392.800129][T12085] RBP: 00007f84aadf9090 R08: 0000000000000000 R09: 0000000000000000 [ 392.808102][T12085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 392.816079][T12085] R13: 0000000000000000 R14: 00007f84ab175fa0 R15: 00007fff1f46c608 [ 392.824068][T12085] [ 393.876080][T12106] FAULT_INJECTION: forcing a failure. [ 393.876080][T12106] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 393.902957][T12106] CPU: 1 UID: 0 PID: 12106 Comm: syz.1.1846 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 393.913872][T12106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 393.924054][T12106] Call Trace: [ 393.927353][T12106] [ 393.930378][T12106] dump_stack_lvl+0x16c/0x1f0 [ 393.935074][T12106] should_fail_ex+0x497/0x5b0 [ 393.939784][T12106] _copy_to_user+0x32/0xd0 [ 393.944234][T12106] simple_read_from_buffer+0xd0/0x160 [ 393.949635][T12106] proc_fail_nth_read+0x198/0x270 [ 393.954683][T12106] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 393.960252][T12106] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 393.965815][T12106] vfs_read+0x1df/0xbe0 [ 393.969988][T12106] ? __fget_files+0x1fc/0x3a0 [ 393.974766][T12106] ? __pfx___mutex_lock+0x10/0x10 [ 393.979802][T12106] ? __pfx_vfs_read+0x10/0x10 [ 393.984495][T12106] ? __fget_files+0x206/0x3a0 [ 393.989196][T12106] ksys_read+0x12b/0x250 [ 393.993449][T12106] ? __pfx_ksys_read+0x10/0x10 [ 393.998227][T12106] do_syscall_64+0xcd/0x250 [ 394.002739][T12106] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 394.008641][T12106] RIP: 0033:0x7f84aaf8472c [ 394.013058][T12106] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 394.032773][T12106] RSP: 002b:00007f84aadf9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 394.041219][T12106] RAX: ffffffffffffffda RBX: 00007f84ab175fa0 RCX: 00007f84aaf8472c [ 394.049213][T12106] RDX: 000000000000000f RSI: 00007f84aadf90a0 RDI: 0000000000000004 [ 394.057715][T12106] RBP: 00007f84aadf9090 R08: 0000000000000000 R09: 0000000000000000 [ 394.065886][T12106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 394.073883][T12106] R13: 0000000000000000 R14: 00007f84ab175fa0 R15: 00007fff1f46c608 [ 394.082180][T12106] [ 397.146638][T12172] FAULT_INJECTION: forcing a failure. [ 397.146638][T12172] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 397.170296][T12172] CPU: 1 UID: 0 PID: 12172 Comm: syz.1.1870 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 397.181144][T12172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 397.191245][T12172] Call Trace: [ 397.194634][T12172] [ 397.197589][T12172] dump_stack_lvl+0x16c/0x1f0 [ 397.202305][T12172] should_fail_ex+0x497/0x5b0 [ 397.207032][T12172] _copy_to_iter+0x29b/0x1400 [ 397.211747][T12172] ? trace_lock_acquire+0x14e/0x1f0 [ 397.216964][T12172] ? __pfx_lock_release+0x10/0x10 [ 397.222013][T12172] ? __pfx__copy_to_iter+0x10/0x10 [ 397.227135][T12172] ? __virt_addr_valid+0x1a4/0x590 [ 397.232264][T12172] ? __virt_addr_valid+0x5e/0x590 [ 397.237301][T12172] ? __phys_addr_symbol+0x30/0x80 [ 397.242335][T12172] ? __check_object_size+0x488/0x710 [ 397.247635][T12172] seq_read_iter+0xd00/0x12b0 [ 397.252331][T12172] kernfs_fop_read_iter+0x414/0x580 [ 397.257545][T12172] ? rw_verify_area+0xd0/0x700 [ 397.262317][T12172] vfs_read+0x87f/0xbe0 [ 397.266492][T12172] ? __pfx_vfs_read+0x10/0x10 [ 397.271194][T12172] ksys_read+0x12b/0x250 [ 397.275445][T12172] ? __pfx_ksys_read+0x10/0x10 [ 397.280226][T12172] do_syscall_64+0xcd/0x250 [ 397.284749][T12172] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 397.290655][T12172] RIP: 0033:0x7f84aaf85d19 [ 397.295078][T12172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 397.314692][T12172] RSP: 002b:00007f84aadf9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 397.323114][T12172] RAX: ffffffffffffffda RBX: 00007f84ab175fa0 RCX: 00007f84aaf85d19 [ 397.331088][T12172] RDX: 0000000000000014 RSI: 0000000020000100 RDI: 0000000000000003 [ 397.339061][T12172] RBP: 00007f84aadf9090 R08: 0000000000000000 R09: 0000000000000000 [ 397.347044][T12172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 397.355023][T12172] R13: 0000000000000000 R14: 00007f84ab175fa0 R15: 00007fff1f46c608 [ 397.363015][T12172] [ 398.590730][T12192] FAULT_INJECTION: forcing a failure. [ 398.590730][T12192] name failslab, interval 1, probability 0, space 0, times 0 [ 398.608710][T12192] CPU: 1 UID: 0 PID: 12192 Comm: syz.0.1877 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 398.619543][T12192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 398.629640][T12192] Call Trace: [ 398.632946][T12192] [ 398.635909][T12192] dump_stack_lvl+0x16c/0x1f0 [ 398.640724][T12192] should_fail_ex+0x497/0x5b0 [ 398.645447][T12192] ? fs_reclaim_acquire+0xae/0x150 [ 398.650600][T12192] should_failslab+0xc2/0x120 [ 398.655330][T12192] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 398.660746][T12192] ? getname_flags.part.0+0x4c/0x550 [ 398.666083][T12192] getname_flags.part.0+0x4c/0x550 [ 398.671301][T12192] getname_flags+0x93/0xf0 [ 398.675779][T12192] __x64_sys_rename+0x65/0xa0 [ 398.680510][T12192] do_syscall_64+0xcd/0x250 [ 398.685164][T12192] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 398.691287][T12192] RIP: 0033:0x7f586f185d19 [ 398.695838][T12192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 398.716176][T12192] RSP: 002b:00007f586ffc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 398.724978][T12192] RAX: ffffffffffffffda RBX: 00007f586f375fa0 RCX: 00007f586f185d19 [ 398.733070][T12192] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000020000180 [ 398.741069][T12192] RBP: 00007f586ffc6090 R08: 0000000000000000 R09: 0000000000000000 [ 398.749044][T12192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 398.757205][T12192] R13: 0000000000000000 R14: 00007f586f375fa0 R15: 00007ffe80489278 [ 398.765204][T12192] [ 401.209925][T12228] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1888'. [ 403.367805][T12269] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1902'. [ 405.828060][T12311] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1915'. [ 407.910044][T12359] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1932'. [ 410.318469][T12408] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1957'. [ 411.418530][T12429] FAULT_INJECTION: forcing a failure. [ 411.418530][T12429] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 411.432299][T12429] CPU: 0 UID: 0 PID: 12429 Comm: syz.0.1959 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 411.443121][T12429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 411.453297][T12429] Call Trace: [ 411.456735][T12429] [ 411.459698][T12429] dump_stack_lvl+0x16c/0x1f0 [ 411.464418][T12429] should_fail_ex+0x497/0x5b0 [ 411.469139][T12429] ? fs_reclaim_acquire+0xae/0x150 [ 411.474555][T12429] should_fail_alloc_page+0xe7/0x130 [ 411.480005][T12429] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 411.486229][T12429] __alloc_pages_noprof+0x190/0x25b0 [ 411.491651][T12429] ? __pfx_mark_lock+0x10/0x10 [ 411.496566][T12429] ? hlock_class+0x4e/0x130 [ 411.501113][T12429] ? mark_lock+0xb5/0xc60 [ 411.505550][T12429] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 411.511311][T12429] ? hlock_class+0x4e/0x130 [ 411.516067][T12429] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 411.522122][T12429] ? policy_nodemask+0xea/0x4e0 [ 411.527104][T12429] alloc_pages_mpol_noprof+0x2c9/0x610 [ 411.532609][T12429] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 411.538961][T12429] ? find_held_lock+0x2d/0x110 [ 411.543831][T12429] ? __thp_vma_allowable_orders+0x1ca/0xb30 [ 411.550206][T12429] __pmd_alloc+0x3f/0x860 [ 411.554548][T12429] __handle_mm_fault+0x94a/0x2a40 [ 411.560202][T12429] ? __pfx___handle_mm_fault+0x10/0x10 [ 411.565688][T12429] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 411.571552][T12429] ? find_vma+0xc0/0x140 [ 411.575817][T12429] ? __pfx_find_vma+0x10/0x10 [ 411.580506][T12429] handle_mm_fault+0x3fa/0xaa0 [ 411.585318][T12429] do_user_addr_fault+0x7a3/0x13f0 [ 411.590624][T12429] exc_page_fault+0x5c/0xc0 [ 411.595258][T12429] asm_exc_page_fault+0x26/0x30 [ 411.600136][T12429] RIP: 0010:rep_movs_alternative+0x30/0x70 [ 411.605982][T12429] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 [ 411.626186][T12429] RSP: 0018:ffffc90003b57bb0 EFLAGS: 00050202 [ 411.632814][T12429] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000028 [ 411.642189][T12429] RDX: fffff5200076afa3 RSI: 0000000000000000 RDI: ffffc90003b57cf0 [ 411.650368][T12429] RBP: 0000000000000028 R08: 0000000000000001 R09: fffff5200076afa2 [ 411.658440][T12429] R10: ffffc90003b57d17 R11: 0000000000000000 R12: 0000000000000000 [ 411.666526][T12429] R13: ffffc90003b57cf0 R14: 0000000000000002 R15: 0000000000000028 [ 411.674551][T12429] _copy_from_user+0x9a/0xd0 [ 411.679195][T12429] packet_setsockopt+0xa94/0x4070 [ 411.684349][T12429] ? __pfx_packet_setsockopt+0x10/0x10 [ 411.689902][T12429] ? __pfx___might_resched+0x10/0x10 [ 411.695321][T12429] ? aa_sk_perm+0x2f5/0xb20 [ 411.699855][T12429] ? ksys_write+0x191/0x250 [ 411.704482][T12429] ? find_held_lock+0x2d/0x110 [ 411.709259][T12429] ? __pfx_packet_setsockopt+0x10/0x10 [ 411.714815][T12429] do_sock_setsockopt+0x222/0x480 [ 411.719865][T12429] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 411.725431][T12429] ? lock_acquire+0x2f/0xb0 [ 411.730035][T12429] __sys_setsockopt+0x1a0/0x230 [ 411.734929][T12429] __x64_sys_setsockopt+0xbd/0x160 [ 411.740162][T12429] ? do_syscall_64+0x91/0x250 [ 411.744845][T12429] ? lockdep_hardirqs_on+0x7c/0x110 [ 411.750056][T12429] do_syscall_64+0xcd/0x250 [ 411.754571][T12429] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 411.760471][T12429] RIP: 0033:0x7f586f185d19 [ 411.764891][T12429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 411.785476][T12429] RSP: 002b:00007f586ffa5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 411.794711][T12429] RAX: ffffffffffffffda RBX: 00007f586f376080 RCX: 00007f586f185d19 [ 411.803213][T12429] RDX: 0000000000000002 RSI: 0000000000000107 RDI: 0000000000000003 [ 411.811538][T12429] RBP: 00007f586ffa5090 R08: 0000000000000028 R09: 0000000000000000 [ 411.819948][T12429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 411.827945][T12429] R13: 0000000000000000 R14: 00007f586f376080 R15: 00007ffe80489278 [ 411.836134][T12429] [ 412.739774][T12446] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1964'. [ 414.415386][T12481] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1976'. [ 416.148061][T12515] random: crng reseeded on system resumption [ 417.772692][T12528] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1991'. [ 419.512181][T12558] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2003'. [ 420.301579][T12570] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2006'. [ 421.335495][T12597] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2013'. [ 421.655937][T12604] netlink: 'syz.2.2015': attribute type 1 has an invalid length. [ 423.953832][T12634] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2024'. [ 424.147438][T12639] FAULT_INJECTION: forcing a failure. [ 424.147438][T12639] name failslab, interval 1, probability 0, space 0, times 0 [ 424.186752][T12639] CPU: 0 UID: 0 PID: 12639 Comm: syz.1.2028 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 424.197949][T12639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 424.208223][T12639] Call Trace: [ 424.211543][T12639] [ 424.214596][T12639] dump_stack_lvl+0x16c/0x1f0 [ 424.219320][T12639] should_fail_ex+0x497/0x5b0 [ 424.224167][T12639] ? fs_reclaim_acquire+0xae/0x150 [ 424.229419][T12639] should_failslab+0xc2/0x120 [ 424.234330][T12639] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 424.239760][T12639] ? __thp_vma_allowable_orders+0x1ca/0xb30 [ 424.245967][T12639] ? __pmd_alloc+0xc3/0x860 [ 424.250840][T12639] __pmd_alloc+0xc3/0x860 [ 424.255409][T12639] __handle_mm_fault+0x94a/0x2a40 [ 424.260862][T12639] ? __pfx___handle_mm_fault+0x10/0x10 [ 424.266369][T12639] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 424.272066][T12639] ? find_vma+0xc0/0x140 [ 424.276357][T12639] ? __pfx_find_vma+0x10/0x10 [ 424.281212][T12639] handle_mm_fault+0x3fa/0xaa0 [ 424.286171][T12639] do_user_addr_fault+0x7a3/0x13f0 [ 424.291353][T12639] exc_page_fault+0x5c/0xc0 [ 424.295944][T12639] asm_exc_page_fault+0x26/0x30 [ 424.300848][T12639] RIP: 0010:rep_movs_alternative+0x30/0x70 [ 424.306795][T12639] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 [ 424.326442][T12639] RSP: 0018:ffffc90005847bb0 EFLAGS: 00050212 [ 424.332562][T12639] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000010 [ 424.340571][T12639] RDX: fffff52000b08f98 RSI: 0000000000000000 RDI: ffffc90005847cb0 [ 424.348680][T12639] RBP: 0000000000000010 R08: 0000000000000001 R09: fffff52000b08f97 [ 424.356950][T12639] R10: ffffc90005847cbf R11: 0000000000000001 R12: 0000000000000000 [ 424.365581][T12639] R13: ffffc90005847cb0 R14: 000000000000000d R15: 0000000000000000 [ 424.373790][T12639] _copy_from_user+0x9a/0xd0 [ 424.378436][T12639] packet_setsockopt+0x1851/0x4070 [ 424.383608][T12639] ? __pfx_packet_setsockopt+0x10/0x10 [ 424.389119][T12639] ? __pfx___might_resched+0x10/0x10 [ 424.394544][T12639] ? aa_sk_perm+0x2f5/0xb20 [ 424.399204][T12639] ? __pfx_aa_sk_perm+0x10/0x10 [ 424.404125][T12639] ? find_held_lock+0x2d/0x110 [ 424.408947][T12639] ? __pfx_packet_setsockopt+0x10/0x10 [ 424.414547][T12639] do_sock_setsockopt+0x222/0x480 [ 424.419627][T12639] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 424.425251][T12639] ? lock_acquire+0x2f/0xb0 [ 424.429999][T12639] __sys_setsockopt+0x1a0/0x230 [ 424.435169][T12639] __x64_sys_setsockopt+0xbd/0x160 [ 424.440789][T12639] ? do_syscall_64+0x91/0x250 [ 424.446561][T12639] ? lockdep_hardirqs_on+0x7c/0x110 [ 424.452085][T12639] do_syscall_64+0xcd/0x250 [ 424.456611][T12639] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 424.462519][T12639] RIP: 0033:0x7f84aaf85d19 [ 424.467242][T12639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 424.487394][T12639] RSP: 002b:00007f84aadf9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 424.495925][T12639] RAX: ffffffffffffffda RBX: 00007f84ab175fa0 RCX: 00007f84aaf85d19 [ 424.503939][T12639] RDX: 000000000000000d RSI: 0000000000000107 RDI: 0000000000000003 [ 424.511950][T12639] RBP: 00007f84aadf9090 R08: 0000000000008000 R09: 0000000000000000 [ 424.519954][T12639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 424.528121][T12639] R13: 0000000000000000 R14: 00007f84ab175fa0 R15: 00007fff1f46c608 [ 424.536137][T12639] [ 426.656723][T12667] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2037'. [ 427.316888][ T29] audit: type=1800 audit(4294967461.960:17): pid=12685 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2045" name="discovery_nqn" dev="configfs" ino=32442 res=0 errno=0 [ 428.274314][T12706] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2051'. [ 430.719911][T12736] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2061'. [ 431.149336][T12749] FAULT_INJECTION: forcing a failure. [ 431.149336][T12749] name failslab, interval 1, probability 0, space 0, times 0 [ 431.230178][T12749] CPU: 1 UID: 0 PID: 12749 Comm: syz.0.2063 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 431.241011][T12749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 431.251098][T12749] Call Trace: [ 431.254406][T12749] [ 431.257367][T12749] dump_stack_lvl+0x16c/0x1f0 [ 431.262090][T12749] should_fail_ex+0x497/0x5b0 [ 431.266797][T12749] ? fs_reclaim_acquire+0xae/0x150 [ 431.272042][T12749] should_failslab+0xc2/0x120 [ 431.276762][T12749] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 431.282626][T12749] ? __alloc_skb+0x2b3/0x380 [ 431.287281][T12749] __alloc_skb+0x2b3/0x380 [ 431.291749][T12749] ? __pfx___alloc_skb+0x10/0x10 [ 431.297261][T12749] ? find_held_lock+0x20/0x110 [ 431.302055][T12749] tipc_buf_acquire+0x26/0xe0 [ 431.306751][T12749] tipc_msg_build+0x114/0x10d0 [ 431.311530][T12749] ? __pfx_tipc_msg_build+0x10/0x10 [ 431.316751][T12749] __tipc_sendmsg+0xa2a/0x1990 [ 431.321547][T12749] ? __pfx___tipc_sendmsg+0x10/0x10 [ 431.326757][T12749] ? __pfx_mark_lock+0x10/0x10 [ 431.331623][T12749] ? lock_acquire.part.0+0x11b/0x380 [ 431.336918][T12749] ? __pfx_woken_wake_function+0x10/0x10 [ 431.342666][T12749] ? mark_held_locks+0x9f/0xe0 [ 431.347450][T12749] ? __local_bh_enable_ip+0xa4/0x120 [ 431.352746][T12749] tipc_sendmsg+0x4f/0x70 [ 431.357093][T12749] ____sys_sendmsg+0x9ae/0xb40 [ 431.361862][T12749] ? copy_msghdr_from_user+0x10b/0x160 [ 431.367424][T12749] ? __pfx_____sys_sendmsg+0x10/0x10 [ 431.372826][T12749] ? __lock_acquire+0xcc5/0x3c40 [ 431.377815][T12749] ___sys_sendmsg+0x135/0x1e0 [ 431.382512][T12749] ? __pfx____sys_sendmsg+0x10/0x10 [ 431.387747][T12749] ? trace_lock_acquire+0x14e/0x1f0 [ 431.392975][T12749] __sys_sendmmsg+0x201/0x420 [ 431.397668][T12749] ? __pfx___sys_sendmmsg+0x10/0x10 [ 431.402886][T12749] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 431.408901][T12749] ? fput+0x67/0x440 [ 431.412815][T12749] ? ksys_write+0x1ba/0x250 [ 431.417484][T12749] ? __pfx_ksys_write+0x10/0x10 [ 431.422379][T12749] __x64_sys_sendmmsg+0x9c/0x100 [ 431.427345][T12749] ? lockdep_hardirqs_on+0x7c/0x110 [ 431.432610][T12749] do_syscall_64+0xcd/0x250 [ 431.437345][T12749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 431.443979][T12749] RIP: 0033:0x7f586f185d19 [ 431.448434][T12749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 431.469479][T12749] RSP: 002b:00007f586ffa5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 431.478892][T12749] RAX: ffffffffffffffda RBX: 00007f586f376080 RCX: 00007f586f185d19 [ 431.486899][T12749] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 431.495243][T12749] RBP: 00007f586ffa5090 R08: 0000000000000000 R09: 0000000000000000 [ 431.503239][T12749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 431.511344][T12749] R13: 0000000000000000 R14: 00007f586f376080 R15: 00007ffe80489278 [ 431.519496][T12749] [ 432.669744][T12777] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2072'. [ 435.286973][T12817] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2085'. [ 435.834074][T12824] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2088'. [ 436.023289][T12824] ptrace attach of "./syz-executor exec"[5829] was attempted by "./syz-executor exec"[12824] [ 437.452987][T12851] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2096'. [ 438.249490][T12869] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2101'. [ 440.060644][T12888] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2109'. [ 440.305208][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.311775][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 441.974889][T12915] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2118'. [ 443.064836][T12940] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2129'. [ 443.413679][T12953] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2131'. [ 444.575837][T12976] FAULT_INJECTION: forcing a failure. [ 444.575837][T12976] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 444.603009][T12976] CPU: 0 UID: 0 PID: 12976 Comm: syz.1.2134 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 444.613936][T12976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 444.624031][T12976] Call Trace: [ 444.627331][T12976] [ 444.630458][T12976] dump_stack_lvl+0x16c/0x1f0 [ 444.635194][T12976] should_fail_ex+0x497/0x5b0 [ 444.639919][T12976] _copy_to_user+0x32/0xd0 [ 444.644399][T12976] simple_read_from_buffer+0xd0/0x160 [ 444.649841][T12976] proc_fail_nth_read+0x198/0x270 [ 444.654926][T12976] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 444.660539][T12976] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 444.666137][T12976] vfs_read+0x1df/0xbe0 [ 444.670426][T12976] ? __fget_files+0x1fc/0x3a0 [ 444.675145][T12976] ? __pfx___mutex_lock+0x10/0x10 [ 444.680198][T12976] ? __pfx_vfs_read+0x10/0x10 [ 444.684919][T12976] ? __fget_files+0x206/0x3a0 [ 444.689637][T12976] ksys_read+0x12b/0x250 [ 444.693914][T12976] ? __pfx_ksys_read+0x10/0x10 [ 444.698713][T12976] do_syscall_64+0xcd/0x250 [ 444.703253][T12976] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 444.709179][T12976] RIP: 0033:0x7f84aaf8472c [ 444.713624][T12976] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 444.733268][T12976] RSP: 002b:00007f84aad96030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 444.741781][T12976] RAX: ffffffffffffffda RBX: 00007f84ab176240 RCX: 00007f84aaf8472c [ 444.750036][T12976] RDX: 000000000000000f RSI: 00007f84aad960a0 RDI: 0000000000000004 [ 444.758095][T12976] RBP: 00007f84aad96090 R08: 0000000000000000 R09: 0000000000000000 [ 444.766077][T12976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 444.774157][T12976] R13: 0000000000000001 R14: 00007f84ab176240 R15: 00007fff1f46c608 [ 444.782173][T12976] [ 444.785218][ C0] vkms_vblank_simulate: vblank timer overrun [ 445.161545][T12987] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2142'. [ 445.366728][T12995] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2144'. [ 445.478043][T12988] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2141'. [ 446.293698][T13017] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2153'. [ 446.972028][T13023] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2155'. [ 446.993732][ T5835] Bluetooth: hci3: unexpected event 0x03 length: 72 > 11 [ 447.405716][T13041] qrtr: Invalid version 0 [ 447.522970][T13048] FAULT_INJECTION: forcing a failure. [ 447.522970][T13048] name failslab, interval 1, probability 0, space 0, times 0 [ 447.572651][T13048] CPU: 0 UID: 0 PID: 13048 Comm: syz.1.2163 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 447.583586][T13048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 447.593682][T13048] Call Trace: [ 447.596984][T13048] [ 447.599936][T13048] dump_stack_lvl+0x16c/0x1f0 [ 447.604650][T13048] should_fail_ex+0x497/0x5b0 [ 447.609375][T13048] ? fs_reclaim_acquire+0xae/0x150 [ 447.614545][T13048] should_failslab+0xc2/0x120 [ 447.619454][T13048] __kmalloc_noprof+0xce/0x4f0 [ 447.624267][T13048] ? iovec_from_user.part.0+0xf3/0x130 [ 447.629776][T13048] iovec_from_user.part.0+0xf3/0x130 [ 447.635110][T13048] __import_iovec+0xd6/0x6d0 [ 447.639765][T13048] import_iovec+0x108/0x140 [ 447.644344][T13048] vfs_writev+0x198/0xdd0 [ 447.648798][T13048] ? __pfx_lock_release+0x10/0x10 [ 447.653873][T13048] ? proc_fail_nth_write+0xa0/0x250 [ 447.659120][T13048] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 447.664801][T13048] ? __pfx_vfs_writev+0x10/0x10 [ 447.669703][T13048] ? vfs_write+0x306/0x1150 [ 447.674445][T13048] ? do_writev+0x133/0x340 [ 447.678985][T13048] do_writev+0x133/0x340 [ 447.683283][T13048] ? __pfx_do_writev+0x10/0x10 [ 447.688109][T13048] do_syscall_64+0xcd/0x250 [ 447.692739][T13048] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 447.698670][T13048] RIP: 0033:0x7f84aaf85d19 [ 447.703211][T13048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 447.722955][T13048] RSP: 002b:00007f84aadf9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 447.731409][T13048] RAX: ffffffffffffffda RBX: 00007f84ab175fa0 RCX: 00007f84aaf85d19 [ 447.739427][T13048] RDX: 00000000000000a2 RSI: 0000000020000140 RDI: 0000000000000003 [ 447.747434][T13048] RBP: 00007f84aadf9090 R08: 0000000000000000 R09: 0000000000000000 [ 447.755448][T13048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 447.763465][T13048] R13: 0000000000000000 R14: 00007f84ab175fa0 R15: 00007fff1f46c608 [ 447.771662][T13048] [ 448.196447][T13058] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2164'. [ 448.359888][T13067] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2170'. [ 448.384502][T13067] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2170'. [ 449.921056][T13089] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2178'. [ 450.031005][T13099] lo: entered allmulticast mode [ 450.087631][T13103] lo: entered allmulticast mode [ 450.130552][T13106] lo: left allmulticast mode [ 450.254115][T13113] netlink: 'syz.0.2187': attribute type 11 has an invalid length. [ 450.270649][T13113] netlink: 'syz.0.2187': attribute type 11 has an invalid length. [ 450.290322][T13113] netlink: 'syz.0.2187': attribute type 11 has an invalid length. [ 450.306299][T13111] lo: entered allmulticast mode [ 450.375750][T13115] lo: left allmulticast mode [ 450.961762][T13125] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2192'. [ 451.047861][T13103] lo: left allmulticast mode [ 451.909397][T13155] lo: entered allmulticast mode [ 451.972387][T13156] lo: left allmulticast mode [ 452.068980][T13159] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2203'. [ 453.529329][T13198] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2214'. [ 453.620577][T13201] lo: entered allmulticast mode [ 453.684281][T13202] lo: left allmulticast mode [ 454.102621][T13205] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2225'. [ 455.578262][T13247] lo: entered allmulticast mode [ 455.661333][T13250] lo: left allmulticast mode [ 456.306501][T13258] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2231'. [ 456.753668][T13269] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2243'. [ 458.453793][T13306] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2247'. [ 460.036929][T13341] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2261'. [ 461.699267][T13374] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2271'. [ 463.312605][T13410] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2285'. [ 463.594338][T13423] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2287'. [ 463.728650][ T5835] Bluetooth: hci2: ACL packet for unknown connection handle 16 [ 464.354393][T13447] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2294'. [ 464.720293][T13456] netlink: 'syz.3.2295': attribute type 2 has an invalid length. [ 464.759273][T13456] netlink: 'syz.3.2295': attribute type 2 has an invalid length. [ 465.439235][T13472] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2300'. [ 466.092040][T13477] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2301'. [ 466.314125][T13484] FAULT_INJECTION: forcing a failure. [ 466.314125][T13484] name failslab, interval 1, probability 0, space 0, times 0 [ 466.675371][T13484] CPU: 1 UID: 0 PID: 13484 Comm: syz.0.2302 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 466.686295][T13484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 466.696382][T13484] Call Trace: [ 466.699677][T13484] [ 466.702641][T13484] dump_stack_lvl+0x16c/0x1f0 [ 466.707363][T13484] should_fail_ex+0x497/0x5b0 [ 466.712101][T13484] ? fs_reclaim_acquire+0xae/0x150 [ 466.717268][T13484] should_failslab+0xc2/0x120 [ 466.721995][T13484] __kmalloc_cache_noprof+0x68/0x420 [ 466.727341][T13484] io_sqe_buffer_register+0x117/0x22d0 [ 466.732863][T13484] ? rcu_is_watching+0x12/0xc0 [ 466.737763][T13484] ? copy_iovec_from_user+0x138/0x170 [ 466.743171][T13484] ? __pfx_io_sqe_buffer_register+0x10/0x10 [ 466.749109][T13484] ? iovec_from_user.part.0+0x7e/0x130 [ 466.754614][T13484] io_sqe_buffers_register+0x1fa/0x740 [ 466.760127][T13484] ? __pfx_io_sqe_buffers_register+0x10/0x10 [ 466.766160][T13484] ? __pfx___mutex_trylock_common+0x10/0x10 [ 466.772098][T13484] __io_uring_register+0x222f/0x2290 [ 466.777436][T13484] ? trace_contention_end+0xee/0x140 [ 466.782757][T13484] ? __pfx___io_uring_register+0x10/0x10 [ 466.788567][T13484] ? __mutex_lock+0x1cc/0xa60 [ 466.793293][T13484] ? __fget_files+0x1fc/0x3a0 [ 466.798012][T13484] ? __x64_sys_io_uring_register+0x168/0x2b0 [ 466.804040][T13484] ? __pfx_lock_release+0x10/0x10 [ 466.809114][T13484] ? __pfx___mutex_lock+0x10/0x10 [ 466.814180][T13484] ? __fget_files+0x40/0x3a0 [ 466.818814][T13484] ? __fget_files+0x206/0x3a0 [ 466.823553][T13484] __x64_sys_io_uring_register+0x17a/0x2b0 [ 466.829411][T13484] do_syscall_64+0xcd/0x250 [ 466.833968][T13484] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 466.839897][T13484] RIP: 0033:0x7f586f185d19 [ 466.844344][T13484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 466.863993][T13484] RSP: 002b:00007f586ffa5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 466.872452][T13484] RAX: ffffffffffffffda RBX: 00007f586f376080 RCX: 00007f586f185d19 [ 466.880461][T13484] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 466.888475][T13484] RBP: 00007f586ffa5090 R08: 0000000000000000 R09: 0000000000000000 [ 466.896476][T13484] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 466.904480][T13484] R13: 0000000000000000 R14: 00007f586f376080 R15: 00007ffe80489278 [ 466.912591][T13484] [ 467.713945][T13511] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2310'. [ 467.914508][T13514] FAULT_INJECTION: forcing a failure. [ 467.914508][T13514] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 467.927719][T13514] CPU: 1 UID: 0 PID: 13514 Comm: syz.0.2309 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 467.939325][T13514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 467.949409][T13514] Call Trace: [ 467.952708][T13514] [ 467.955655][T13514] dump_stack_lvl+0x16c/0x1f0 [ 467.960367][T13514] should_fail_ex+0x497/0x5b0 [ 467.965085][T13514] ? page_copy_sane+0xcd/0x2d0 [ 467.969890][T13514] copy_page_from_iter_atomic+0x399/0x1810 [ 467.975800][T13514] ? mark_buffer_dirty+0x397/0x420 [ 467.981032][T13514] ? __pfx_copy_page_from_iter_atomic+0x10/0x10 [ 467.987403][T13514] ? fault_in_readable+0x1a7/0x200 [ 467.992555][T13514] ? __pfx_fault_in_readable+0x10/0x10 [ 467.998047][T13514] ? I_BDEV+0xd/0x20 [ 468.001976][T13514] ? inode_to_bdi+0x9e/0x160 [ 468.006602][T13514] iomap_file_buffered_write+0x633/0xc70 [ 468.012265][T13514] ? __pfx_iomap_file_buffered_write+0x10/0x10 [ 468.018434][T13514] ? find_held_lock+0x2d/0x110 [ 468.023212][T13514] ? __pfx_inode_set_ctime_current+0x10/0x10 [ 468.029222][T13514] ? preempt_count_add+0x76/0x150 [ 468.034258][T13514] ? mnt_put_write_access_file+0xc1/0xf0 [ 468.039902][T13514] blkdev_write_iter+0x574/0xd40 [ 468.044855][T13514] vfs_write+0x5ae/0x1150 [ 468.049193][T13514] ? __pfx_blkdev_write_iter+0x10/0x10 [ 468.054743][T13514] ? __pfx_vfs_write+0x10/0x10 [ 468.059545][T13514] ? __fget_files+0x40/0x3a0 [ 468.064163][T13514] ksys_write+0x12b/0x250 [ 468.068516][T13514] ? __pfx_ksys_write+0x10/0x10 [ 468.073397][T13514] do_syscall_64+0xcd/0x250 [ 468.077917][T13514] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 468.083819][T13514] RIP: 0033:0x7f586f185d19 [ 468.088246][T13514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 468.107878][T13514] RSP: 002b:00007f586ffc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 468.116385][T13514] RAX: ffffffffffffffda RBX: 00007f586f375fa0 RCX: 00007f586f185d19 [ 468.124360][T13514] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 468.132335][T13514] RBP: 00007f586ffc6090 R08: 0000000000000000 R09: 0000000000000000 [ 468.140311][T13514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 468.148292][T13514] R13: 0000000000000000 R14: 00007f586f375fa0 R15: 00007ffe80489278 [ 468.156283][T13514] [ 468.279624][T13519] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2313'. [ 468.380286][T13519] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2313'. [ 468.651091][T13523] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 468.673147][T13523] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 468.691622][T13523] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 468.703316][T13523] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 468.723117][T13523] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 468.730540][T13523] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 469.007184][T13526] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2315'. [ 469.060002][T13528] bridge0: port 4(ü) entered blocking state [ 469.072047][T13528] bridge0: port 4(ü) entered disabled state [ 469.103525][T13528] ü: entered allmulticast mode [ 469.108445][T13528] team_slave_1: entered allmulticast mode [ 469.122688][T13528] ü: entered promiscuous mode [ 469.128207][T13528] team_slave_1: entered promiscuous mode [ 469.202429][T13522] chnl_net:caif_netlink_parms(): no params data found [ 469.328606][T13539] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2318'. [ 469.434639][T13522] bridge0: port 1(bridge_slave_0) entered blocking state [ 469.452971][T13522] bridge0: port 1(bridge_slave_0) entered disabled state [ 469.460228][T13522] bridge_slave_0: entered allmulticast mode [ 469.467883][T13522] bridge_slave_0: entered promiscuous mode [ 469.477917][T13522] bridge0: port 2(bridge_slave_1) entered blocking state [ 469.485394][T13522] bridge0: port 2(bridge_slave_1) entered disabled state [ 469.492642][T13522] bridge_slave_1: entered allmulticast mode [ 469.506070][T13522] bridge_slave_1: entered promiscuous mode [ 469.558766][T13546] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2320'. [ 469.648911][T13522] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 469.686214][T13522] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 469.795309][T13522] team0: Port device team_slave_0 added [ 469.813612][T13522] team0: Port device team_slave_1 added [ 469.917225][T13522] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 469.932880][T13522] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 469.987714][T13522] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 470.014837][T13522] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 470.017221][T13560] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2333'. [ 470.021924][T13522] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 470.021958][T13522] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 470.095866][T13564] Process accounting resumed [ 470.130004][T13522] hsr_slave_0: entered promiscuous mode [ 470.179245][T13522] hsr_slave_1: entered promiscuous mode [ 470.204942][T13522] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 470.216876][T13522] Cannot create hsr debugfs directory [ 470.444098][T13522] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 470.569021][T13522] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 470.634579][T13522] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 470.697111][T13522] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 470.801181][T13522] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 470.810569][T13522] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 470.820231][T13522] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 470.841415][T13522] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 470.873889][T13523] Bluetooth: hci4: command tx timeout [ 470.912548][T13522] 8021q: adding VLAN 0 to HW filter on device bond0 [ 470.931399][T13522] 8021q: adding VLAN 0 to HW filter on device team0 [ 470.944929][ T3527] bridge0: port 1(bridge_slave_0) entered blocking state [ 470.952059][ T3527] bridge0: port 1(bridge_slave_0) entered forwarding state [ 470.966412][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 470.973560][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 471.114150][T13522] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 471.153403][T13522] veth0_vlan: entered promiscuous mode [ 471.166267][T13522] veth1_vlan: entered promiscuous mode [ 471.192331][T13522] veth0_macvtap: entered promiscuous mode [ 471.201174][T13522] veth1_macvtap: entered promiscuous mode [ 471.216345][T13522] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 471.227360][T13522] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 471.237414][T13522] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 471.247891][T13522] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 471.257842][T13522] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 471.268326][T13522] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 471.278268][T13522] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 471.289477][T13522] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 471.300412][T13522] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 471.312747][T13522] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 471.324079][T13522] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 471.334777][T13522] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 471.345441][T13522] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 471.355405][T13522] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 471.366358][T13522] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 471.377669][T13522] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 471.389737][T13522] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 471.399062][T13522] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 471.408022][T13522] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 471.417059][T13522] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 471.487640][ T1120] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 471.503078][ T1120] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 471.529306][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 471.537348][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 471.678054][T13578] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2337'. [ 472.066887][T13591] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2334'. [ 472.200802][T13585] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2328'. [ 472.211221][T13585] ü: renamed from team0 (while UP) [ 472.903917][T13610] __nla_validate_parse: 1 callbacks suppressed [ 472.903941][T13610] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2342'. [ 472.943200][T13523] Bluetooth: hci4: command tx timeout [ 473.800059][T13650] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2356'. [ 475.022962][T13523] Bluetooth: hci4: command tx timeout [ 475.452720][T13685] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2367'. [ 475.540162][T13689] netlink: 'syz.0.2368': attribute type 33 has an invalid length. [ 475.562929][T13689] netlink: 322 bytes leftover after parsing attributes in process `syz.0.2368'. [ 475.719230][T13695] netlink: 'syz.2.2370': attribute type 7 has an invalid length. [ 477.131080][T13523] Bluetooth: hci4: command tx timeout [ 477.427664][T13728] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2379'. [ 477.798325][T13739] netlink: 'syz.1.2381': attribute type 7 has an invalid length. [ 477.913518][T13742] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2383'. [ 477.922544][T13742] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 477.987935][T13742] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 478.043204][T13742] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 478.101579][T13742] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 479.212839][ T5835] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 479.221760][ T5835] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 479.230455][ T5835] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 479.239684][ T5835] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 479.247760][ T5835] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 479.255151][ T5835] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 479.696497][T13760] chnl_net:caif_netlink_parms(): no params data found [ 479.803233][T13767] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2389'. [ 480.006054][T13760] bridge0: port 1(bridge_slave_0) entered blocking state [ 480.019570][T13760] bridge0: port 1(bridge_slave_0) entered disabled state [ 480.029433][T13760] bridge_slave_0: entered allmulticast mode [ 480.038415][T13760] bridge_slave_0: entered promiscuous mode [ 480.047861][T13760] bridge0: port 2(bridge_slave_1) entered blocking state [ 480.063063][T13760] bridge0: port 2(bridge_slave_1) entered disabled state [ 480.080662][T13760] bridge_slave_1: entered allmulticast mode [ 480.094026][T13760] bridge_slave_1: entered promiscuous mode [ 480.186821][T13760] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 480.209852][T13760] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 480.287203][T13783] netlink: 'syz.3.2393': attribute type 7 has an invalid length. [ 480.299469][T13760] team0: Port device team_slave_0 added [ 480.319671][T13760] team0: Port device team_slave_1 added [ 480.397833][T13760] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 480.419082][T13760] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 480.451392][T13760] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 480.465459][T13760] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 480.480954][T13760] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 480.510413][T13760] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 480.605339][T13795] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2395'. [ 480.636403][T13760] hsr_slave_0: entered promiscuous mode [ 480.649465][T13760] hsr_slave_1: entered promiscuous mode [ 480.669359][T13760] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 480.677723][T13760] Cannot create hsr debugfs directory [ 480.691663][T13795] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 480.720189][T13795] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 480.774922][ T29] audit: type=1800 audit(4294967311.480:18): pid=13798 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2396" name="members" dev="configfs" ino=36739 res=0 errno=0 [ 480.969182][T13760] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.019193][T13805] capability: warning: `syz.3.2398' uses 32-bit capabilities (legacy support in use) [ 481.062489][T13760] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.160016][T13760] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.248285][T13807] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2399'. [ 481.281654][T13760] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.424171][ T5835] Bluetooth: hci2: command tx timeout [ 481.491722][T13760] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 481.548347][T13760] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 481.583265][T13760] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 481.629122][T13760] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 481.772730][T13760] 8021q: adding VLAN 0 to HW filter on device bond0 [ 481.802308][T13760] 8021q: adding VLAN 0 to HW filter on device team0 [ 481.819308][ T3527] bridge0: port 1(bridge_slave_0) entered blocking state [ 481.826584][ T3527] bridge0: port 1(bridge_slave_0) entered forwarding state [ 481.859486][ T3527] bridge0: port 2(bridge_slave_1) entered blocking state [ 481.866657][ T3527] bridge0: port 2(bridge_slave_1) entered forwarding state [ 482.192622][T13760] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 482.270850][T13760] veth0_vlan: entered promiscuous mode [ 482.284964][T13760] veth1_vlan: entered promiscuous mode [ 482.337248][T13760] veth0_macvtap: entered promiscuous mode [ 482.348373][T13760] veth1_macvtap: entered promiscuous mode [ 482.373656][T13760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 482.393265][T13760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 482.413000][T13760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 482.424281][T13760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 482.439629][T13760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 482.451593][T13760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 482.469809][T13760] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 482.488004][T13760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 482.499460][T13760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 482.509889][T13760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 482.522493][T13760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 482.533425][T13760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 482.545688][T13760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 482.556916][T13760] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 482.567931][T13760] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 482.577298][T13760] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 482.586756][T13760] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 482.596401][T13760] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 482.695768][ T1120] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 482.718062][ T1120] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 482.746289][ T3439] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 482.756049][ T3439] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 483.052447][T13828] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2411'. [ 483.293604][T13837] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2406'. [ 483.327666][T13841] netlink: 'syz.0.2403': attribute type 7 has an invalid length. [ 483.328167][T13837] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 483.362912][T13837] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 483.398839][T13837] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 483.416892][T13837] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 483.504078][ T5835] Bluetooth: hci2: command tx timeout [ 484.048612][T13855] netlink: 93 bytes leftover after parsing attributes in process `syz.2.2409'. [ 484.178610][T13863] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2413'. [ 484.202932][T13863] ü: renamed from team0 (while UP) [ 485.084798][T13891] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2421'. [ 485.113624][T13891] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 485.131568][T13891] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 485.155043][T13891] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 485.171801][T13891] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 485.582948][ T5835] Bluetooth: hci2: command tx timeout [ 486.081924][T13906] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2427'. [ 486.531741][T13917] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2433'. [ 487.239763][T13942] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2440'. [ 487.476992][T13952] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2444'. [ 487.654141][T13523] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 487.682928][T13523] Bluetooth: hci2: command tx timeout [ 487.689917][T13523] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 487.701264][ T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 487.709673][ T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 487.719907][ T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 487.727430][ T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 488.356830][T13956] chnl_net:caif_netlink_parms(): no params data found [ 488.452463][T13966] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2453'. [ 488.829323][T13956] bridge0: port 1(bridge_slave_0) entered blocking state [ 488.837319][T13956] bridge0: port 1(bridge_slave_0) entered disabled state [ 488.845092][T13956] bridge_slave_0: entered allmulticast mode [ 488.852232][T13956] bridge_slave_0: entered promiscuous mode [ 488.860334][T13956] bridge0: port 2(bridge_slave_1) entered blocking state [ 488.867847][T13956] bridge0: port 2(bridge_slave_1) entered disabled state [ 488.875150][T13956] bridge_slave_1: entered allmulticast mode [ 488.883094][T13956] bridge_slave_1: entered promiscuous mode [ 489.010140][T13956] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 489.030560][T13956] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 489.127532][T13956] team0: Port device team_slave_0 added [ 489.149162][T13956] team0: Port device team_slave_1 added [ 489.324781][T13956] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 489.342241][T13956] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 489.434687][T13956] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 489.466177][T13956] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 489.485315][T13956] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 489.519599][T13956] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 489.622373][T13956] hsr_slave_0: entered promiscuous mode [ 489.638871][T13956] hsr_slave_1: entered promiscuous mode [ 489.676462][T13956] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 489.696901][T13956] Cannot create hsr debugfs directory [ 489.751718][T14007] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2459'. [ 489.823018][ T5835] Bluetooth: hci0: command tx timeout [ 489.848190][T14014] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2462'. [ 489.943143][T14017] nbd: must specify at least one socket [ 490.120694][T14023] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2465'. [ 490.257889][T13956] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 490.532568][T13956] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 490.764648][T13956] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 490.950693][T13956] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 491.115725][T14044] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2472'. [ 491.297124][T13956] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 491.388107][T13956] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 491.410056][T13956] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 491.429062][T13956] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 491.554844][T13956] 8021q: adding VLAN 0 to HW filter on device bond0 [ 491.592345][T13956] 8021q: adding VLAN 0 to HW filter on device team0 [ 491.610801][ T1120] bridge0: port 1(bridge_slave_0) entered blocking state [ 491.618066][ T1120] bridge0: port 1(bridge_slave_0) entered forwarding state [ 491.661685][ T3527] bridge0: port 2(bridge_slave_1) entered blocking state [ 491.668877][ T3527] bridge0: port 2(bridge_slave_1) entered forwarding state [ 491.903481][ T5835] Bluetooth: hci0: command tx timeout [ 492.079657][T13956] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 492.158668][T13956] veth0_vlan: entered promiscuous mode [ 492.182649][T13956] veth1_vlan: entered promiscuous mode [ 492.250864][T13956] veth0_macvtap: entered promiscuous mode [ 492.267552][T13956] veth1_macvtap: entered promiscuous mode [ 492.308971][T13956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 492.333316][T13956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.352968][T13956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 492.373027][T13956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.403455][T13956] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 492.446100][T13956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.473820][T13956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.502956][T13956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.522923][T13956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.555100][T13956] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 492.576470][T13956] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.596920][T13956] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.632975][T13956] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.641736][T13956] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.861422][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 492.893052][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 492.957826][ T3439] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 492.982569][ T3439] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 493.034803][T14076] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2482'. [ 493.983177][ T5835] Bluetooth: hci0: command tx timeout [ 494.161887][ T6887] ------------[ cut here ]------------ [ 494.168273][ T6887] ODEBUG: free active (active state 1) object: ffff88802fad7d00 object type: rcu_head hint: 0x0 [ 494.227111][ T6887] WARNING: CPU: 1 PID: 6887 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0 [ 494.236876][ T6887] Modules linked in: [ 494.240856][ T6887] CPU: 1 UID: 0 PID: 6887 Comm: syz.3.239 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 494.251689][ T6887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 494.261936][ T6887] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 494.268330][ T6887] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 48 8b 14 dd 40 68 b1 8b 41 56 4c 89 e6 48 c7 c7 c0 5c b1 8b e8 4f 51 bc fc 90 <0f> 0b 90 90 58 83 05 f6 31 7f 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 494.288633][ T6887] RSP: 0000:ffffc900106d77c8 EFLAGS: 00010286 [ 494.294991][ T6887] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff815a16c9 [ 494.303214][ T6887] RDX: ffff88802a585a00 RSI: ffffffff815a16d6 RDI: 0000000000000001 [ 494.311230][ T6887] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 494.319329][ T6887] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8bb16360 [ 494.327977][ T6887] R13: ffffffff8b4e5d20 R14: 0000000000000000 R15: ffffc900106d78d8 [ 494.336468][ T6887] FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 494.345668][ T6887] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 494.352392][ T6887] CR2: 00007fcf3a975f40 CR3: 0000000045ef4000 CR4: 00000000003526f0 [ 494.360460][ T6887] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 494.368644][ T6887] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 494.377196][ T6887] Call Trace: [ 494.380506][ T6887] [ 494.384025][ T6887] ? __warn+0xea/0x3c0 [ 494.388142][ T6887] ? preempt_schedule_notrace+0x62/0xe0 [ 494.393767][ T6887] ? debug_print_object+0x1a2/0x2b0 [ 494.399012][ T6887] ? report_bug+0x3c0/0x580 [ 494.403655][ T6887] ? handle_bug+0x54/0xa0 [ 494.408023][ T6887] ? exc_invalid_op+0x17/0x50 [ 494.412739][ T6887] ? asm_exc_invalid_op+0x1a/0x20 [ 494.417877][ T6887] ? __warn_printk+0x199/0x350 [ 494.422686][ T6887] ? __warn_printk+0x1a6/0x350 [ 494.428007][ T6887] ? debug_print_object+0x1a2/0x2b0 [ 494.433697][ T6887] ? debug_print_object+0x1a1/0x2b0 [ 494.438968][ T6887] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 494.444893][ T6887] debug_check_no_obj_freed+0x4b7/0x600 [ 494.450500][ T6887] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 494.456659][ T6887] ? lock_acquire+0x2f/0xb0 [ 494.461277][ T6887] ? find_unlink_vmap_area+0x6e/0x3d0 [ 494.466952][ T6887] ? _raw_spin_unlock+0x28/0x50 [ 494.471836][ T6887] ? find_unlink_vmap_area+0x303/0x3d0 [ 494.477928][ T6887] remove_vm_area+0x1ae/0x3f0 [ 494.482652][ T6887] vfree+0x90/0x890 [ 494.487056][ T6887] ? __pfx___might_resched+0x10/0x10 [ 494.492418][ T6887] kvfree+0x33/0x50 [ 494.496311][ T6887] vfree+0x333/0x890 [ 494.500247][ T6887] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 494.506207][ T6887] ? __pfx_kcov_close+0x10/0x10 [ 494.511095][ T6887] kcov_put+0x2a/0x40 [ 494.515167][ T6887] kcov_close+0xd/0x20 [ 494.519266][ T6887] __fput+0x3f8/0xb60 [ 494.523355][ T6887] ? _raw_spin_unlock_irq+0x23/0x50 [ 494.529062][ T6887] task_work_run+0x14e/0x250 [ 494.534121][ T6887] ? __pfx_task_work_run+0x10/0x10 [ 494.539284][ T6887] ? __put_net+0x61/0x70 [ 494.543695][ T6887] do_exit+0xadd/0x2d70 [ 494.547920][ T6887] ? get_signal+0x8f7/0x2610 [ 494.552550][ T6887] ? __pfx_do_exit+0x10/0x10 [ 494.557218][ T6887] ? do_raw_spin_lock+0x12d/0x2c0 [ 494.562290][ T6887] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 494.567878][ T6887] do_group_exit+0xd3/0x2a0 [ 494.572430][ T6887] get_signal+0x2576/0x2610 [ 494.577499][ T6887] ? do_user_addr_fault+0xdc7/0x13f0 [ 494.583338][ T6887] ? reacquire_held_locks+0x20b/0x4c0 [ 494.588758][ T6887] ? __pfx_get_signal+0x10/0x10 [ 494.593683][ T6887] ? __pfx_do_futex+0x10/0x10 [ 494.598398][ T6887] ? find_held_lock+0x2d/0x110 [ 494.603255][ T6887] arch_do_signal_or_restart+0x90/0x7e0 [ 494.608836][ T6887] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 494.615095][ T6887] syscall_exit_to_user_mode+0x150/0x2a0 [ 494.620776][ T6887] do_syscall_64+0xda/0x250 [ 494.625463][ T6887] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 494.631859][ T6887] RIP: 0033:0x7fe400785d19 [ 494.636752][ T6887] Code: Unable to access opcode bytes at 0x7fe400785cef. [ 494.643956][ T6887] RSP: 002b:00007fe40160b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 494.652418][ T6887] RAX: fffffffffffffe00 RBX: 00007fe400976088 RCX: 00007fe400785d19 [ 494.660543][ T6887] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe400976088 [ 494.668621][ T6887] RBP: 00007fe400976080 R08: 0000000000000000 R09: 0000000000000000 [ 494.676678][ T6887] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe40097608c [ 494.685236][ T6887] R13: 0000000000000000 R14: 00007ffd135e60f0 R15: 00007ffd135e61d8 [ 494.693755][ T6887] [ 494.696803][ T6887] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 494.704360][ T6887] CPU: 1 UID: 0 PID: 6887 Comm: syz.3.239 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 494.714976][ T6887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 494.725058][ T6887] Call Trace: [ 494.728356][ T6887] [ 494.731307][ T6887] dump_stack_lvl+0x3d/0x1f0 [ 494.735935][ T6887] panic+0x71d/0x800 [ 494.739865][ T6887] ? __pfx_panic+0x10/0x10 [ 494.744323][ T6887] ? show_trace_log_lvl+0x29d/0x3d0 [ 494.749644][ T6887] ? check_panic_on_warn+0x1f/0xb0 [ 494.754794][ T6887] ? debug_print_object+0x1a2/0x2b0 [ 494.760032][ T6887] check_panic_on_warn+0xab/0xb0 [ 494.765008][ T6887] __warn+0xf6/0x3c0 [ 494.768943][ T6887] ? preempt_schedule_notrace+0x62/0xe0 [ 494.774514][ T6887] ? debug_print_object+0x1a2/0x2b0 [ 494.779743][ T6887] report_bug+0x3c0/0x580 [ 494.784106][ T6887] handle_bug+0x54/0xa0 [ 494.788296][ T6887] exc_invalid_op+0x17/0x50 [ 494.792826][ T6887] asm_exc_invalid_op+0x1a/0x20 [ 494.797696][ T6887] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 494.803538][ T6887] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 48 8b 14 dd 40 68 b1 8b 41 56 4c 89 e6 48 c7 c7 c0 5c b1 8b e8 4f 51 bc fc 90 <0f> 0b 90 90 58 83 05 f6 31 7f 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 494.823699][ T6887] RSP: 0000:ffffc900106d77c8 EFLAGS: 00010286 [ 494.829800][ T6887] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff815a16c9 [ 494.837803][ T6887] RDX: ffff88802a585a00 RSI: ffffffff815a16d6 RDI: 0000000000000001 [ 494.845800][ T6887] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 494.853818][ T6887] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8bb16360 [ 494.861813][ T6887] R13: ffffffff8b4e5d20 R14: 0000000000000000 R15: ffffc900106d78d8 [ 494.869822][ T6887] ? __warn_printk+0x199/0x350 [ 494.874627][ T6887] ? __warn_printk+0x1a6/0x350 [ 494.879431][ T6887] ? debug_print_object+0x1a1/0x2b0 [ 494.884668][ T6887] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 494.890507][ T6887] debug_check_no_obj_freed+0x4b7/0x600 [ 494.896100][ T6887] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 494.902206][ T6887] ? lock_acquire+0x2f/0xb0 [ 494.906732][ T6887] ? find_unlink_vmap_area+0x6e/0x3d0 [ 494.912146][ T6887] ? _raw_spin_unlock+0x28/0x50 [ 494.917027][ T6887] ? find_unlink_vmap_area+0x303/0x3d0 [ 494.922532][ T6887] remove_vm_area+0x1ae/0x3f0 [ 494.927243][ T6887] vfree+0x90/0x890 [ 494.931080][ T6887] ? __pfx___might_resched+0x10/0x10 [ 494.936404][ T6887] kvfree+0x33/0x50 [ 494.940243][ T6887] vfree+0x333/0x890 [ 494.944171][ T6887] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 494.950007][ T6887] ? __pfx_kcov_close+0x10/0x10 [ 494.954889][ T6887] kcov_put+0x2a/0x40 [ 494.958898][ T6887] kcov_close+0xd/0x20 [ 494.963084][ T6887] __fput+0x3f8/0xb60 [ 494.967139][ T6887] ? _raw_spin_unlock_irq+0x23/0x50 [ 494.972383][ T6887] task_work_run+0x14e/0x250 [ 494.977029][ T6887] ? __pfx_task_work_run+0x10/0x10 [ 494.982199][ T6887] ? __put_net+0x61/0x70 [ 494.986511][ T6887] do_exit+0xadd/0x2d70 [ 494.990897][ T6887] ? get_signal+0x8f7/0x2610 [ 494.995538][ T6887] ? __pfx_do_exit+0x10/0x10 [ 495.000171][ T6887] ? do_raw_spin_lock+0x12d/0x2c0 [ 495.005273][ T6887] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 495.010698][ T6887] do_group_exit+0xd3/0x2a0 [ 495.015305][ T6887] get_signal+0x2576/0x2610 [ 495.019851][ T6887] ? do_user_addr_fault+0xdc7/0x13f0 [ 495.025160][ T6887] ? reacquire_held_locks+0x20b/0x4c0 [ 495.030576][ T6887] ? __pfx_get_signal+0x10/0x10 [ 495.035460][ T6887] ? __pfx_do_futex+0x10/0x10 [ 495.040172][ T6887] ? find_held_lock+0x2d/0x110 [ 495.044972][ T6887] arch_do_signal_or_restart+0x90/0x7e0 [ 495.050561][ T6887] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 495.056823][ T6887] syscall_exit_to_user_mode+0x150/0x2a0 [ 495.062485][ T6887] do_syscall_64+0xda/0x250 [ 495.067031][ T6887] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 495.072961][ T6887] RIP: 0033:0x7fe400785d19 [ 495.077398][ T6887] Code: Unable to access opcode bytes at 0x7fe400785cef. [ 495.084429][ T6887] RSP: 002b:00007fe40160b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 495.092876][ T6887] RAX: fffffffffffffe00 RBX: 00007fe400976088 RCX: 00007fe400785d19 [ 495.100873][ T6887] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe400976088 [ 495.109052][ T6887] RBP: 00007fe400976080 R08: 0000000000000000 R09: 0000000000000000 [ 495.117054][ T6887] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe40097608c [ 495.125056][ T6887] R13: 0000000000000000 R14: 00007ffd135e60f0 R15: 00007ffd135e61d8 [ 495.133079][ T6887] [ 495.136393][ T6887] Kernel Offset: disabled [ 495.140719][ T6887] Rebooting in 86400 seconds..