last executing test programs: 1m23.007720061s ago: executing program 0 (id=256): openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x7, 0x2, {0x100000004, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x2, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808}) socket(0x2b, 0x1, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) mmap$auto(0xfffffffffffffffc, 0x4, 0x3, 0x40040000000eb2, 0xfffffffffffffffb, 0x8000) memfd_secret$auto(0x2) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/1:12/power/runtime_suspended_time\x00', 0x200, 0x0) r0 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x68200, 0x0) read$auto(r0, 0x0, 0x67) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000005540)='/dev/input/event2\x00', 0xa481, 0x0) ioctl$auto_EVIOCSKEYCODE_V2(r1, 0x40284504, 0x0) socket(0x11, 0x80000, 0x3ff) set_mempolicy$auto(0x6, 0x0, 0x4) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) getpid() r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x5) ioctl$auto(r2, 0xaf01, 0xffffffffffffffff) openat$auto_sc_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000040), 0x88080, 0x0) r3 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe\x00', 0x68200, 0x0) read$auto(r3, 0x0, 0x0) unshare$auto(0x40000080) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0) pipe$auto(0x0) 1m19.609369999s ago: executing program 0 (id=269): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r0, 0x7, r0) socket(0x11, 0x1, 0x0) r1 = socket(0x1e, 0x1, 0x0) socket(0x8, 0x3, 0x4) memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4) open(&(0x7f0000000800)='./file0\x00', 0x109d40, 0x140) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x4000804) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd2\x00', 0x68642, 0x0) write$auto(0x3, 0x0, 0x7fffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x10000009b72, 0x2, 0x8000) mbind$auto(0x80000002000, 0x100000004, 0x400100000000, 0x0, 0x400000004, 0xfffffffa) syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0) read$auto(r2, 0x0, 0x39b8) socket(0xa, 0x2, 0x3a) prctl$auto(0x23, 0xf, 0x8000000000000000, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(r1, &(0x7f0000000000)={{0x0, 0x10, 0x0, 0x103, 0x0, 0xfffffffffffffffe, 0x8002}, 0xed7138c}, 0x8007, 0x0) socket(0x2b, 0x80000, 0x800006) socket$nl_generic(0x10, 0x3, 0x10) eventfd$auto(0x20003) socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) 1m17.735382384s ago: executing program 0 (id=273): r0 = socket(0xa, 0x2, 0x0) setsockopt$auto(r0, 0x400029, 0x38, 0x0, 0x6) unshare$auto(0xc4e) gettid() (async) gettid() openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x189040, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x1c61fe90) (async) write$auto(0xffffffffffffffff, 0x0, 0x1c61fe90) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) lstat$auto(0x0, 0x0) ustat$auto(0x388, &(0x7f0000000000)={0x140000, 0x4, "2f87684e76c7", "017f0c3d968b"}) (async) ustat$auto(0x388, &(0x7f0000000000)={0x140000, 0x4, "2f87684e76c7", "017f0c3d968b"}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mseal$auto(0x0, 0x7dda, 0x0) write$auto(0xca, &(0x7f0000000400)='\x04>\x00\x1d\xa4\xd2\xc3\xec&9\v\xbc\xdein\xe1G8\x02\x18\x00\x00\xd3b\x01\xbd\x9b@\xb0\x00\x00\x00\x84\xa2\\\x15\xc4>\xa9\x82,\x95\xeeH\xf8}v\xb3\xcb(\xa90Abe\xc3\x8c\xcc\xe7\xb8\x00F\x89#\xb4\xf0F\xa1GH\xb5\x8f\x9dZ~\xea\xa3\x93\xc2\x04\xe1;b\x99\x97}Z\x7f\x0f\x90\xce\x85-e\xb6n\xbc\xc6=\xf8\xce\xe7\x1e]\x85|\xce\xd7L\x9b\xd3lb\xc5\xee\xdb\xcb\xbb\xd8\xd9\xd3\xf8 \xe9e\xe5\x80\x1c7B+]\\!\xcej}H\x03x\x83Z\x98\xb8\t\xde\xd4\xf5\xf32\xccR\xaa\xdd\x16\xab\xd8\x1d\"\xc7\xa5\xe1k\x1d\xd9k\xc6\xb2\xa7\x97\x9a\xf6\xfe\xef\x1a\xbd\xcb\xb8*\x8b9\x00R\xe9)?Em\xb2\xac\xd1\xf6\xff\xc1\xc7\xbdl\xa2+tI\xa3\xa8\xabVe\x87\xa9\xae9\x82\xd2.SCt\xcc\x8c7\x7f\xdc\xc3\xfb\x94\xfc\xdfc+\x04\xfb\xf5$\xecO1@\x99l;\xd3X\xd5\"\xec\x17hR\xc5\x99\x8b\x9f\xf3\xf48%\xfa\xf2\x1d\xc5\x10T\x83p0\xd7]\x83{\x81\xdei\xd2\xfc\xfd=3K\xc3\xfe\x12\x98\x8b\xbe\xd1+\xc4r\x7f\x8f5\xcc\xa6\xd8>k\xcc\xee\xe0\x9bW\x0e\xc63\x84^\xde`\xd2\xe8\xfc\x02\xef\xa4\xdc\xd0A\xd5`?9D\x1c\x1b\x1b\xd5\xcb\xfb\x03I\xc9\x97\xac#\x0ee\xc8ltL\x88\x17m~aA%\xd3\xaf\xaa6hf\x9b\x83\x02A\xb0\xf6\x14\xb3\x18B\xfd\x9ai\xf8j \a\x1es\xa3U\x98sqq,\xd2A4?l\xa2\x9c\xc9\x9fa\xe8\x99qw\xf3\x18\x12R+(%x\xb6\xf8\x92\xa5\xe4\xdd\xe9\xf2\x0e\xc8', 0x100) 1m14.151859697s ago: executing program 0 (id=294): mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xffffffffffffffff, 0x8000) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) open(0x0, 0x22240, 0x155) socket(0x2, 0x2, 0x0) (async) r1 = socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) open(0x0, 0x22240, 0x155) socket(0x2, 0x1, 0x106) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @dev={0xac, 0x14, 0x14, 0xb}}, 0x6a) (async) socket(0x2, 0x1, 0x106) (async) listen$auto(0x3, 0x81) (async) name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000001c0)='/\x00', &(0x7f0000000200)={0x0, 0x200}, 0x0, 0x1001) (async) r2 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x381801, 0x0) ioctl$auto(r2, 0x0, r0) (async) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) connect$auto(0x4, 0x0, 0x10) 1m13.748026489s ago: executing program 0 (id=297): r0 = socket(0x9, 0x80003, 0xfffffffd) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/mempolicy/weighted_interleave/node0\x00', 0xc2082, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0) read$auto(r1, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0xffff, 0x2020009, 0x3, 0xeb1, r0, 0x9) r2 = pidfd_open$auto(0x1, 0x0) setns(r2, 0x60020000) move_mount$auto(r2, 0x0, 0xffffffffffffffff, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000001900), 0xffffffffffffffff) r5 = syz_clone(0x1000000, &(0x7f0000001940), 0x0, 0x0, 0x0, 0x0) sendmsg$auto_TASKSTATS_CMD_GET(r3, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000001a40)={0x1c, r4, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@TASKSTATS_CMD_ATTR_PID={0x8, 0x1, r5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x4000000) r6 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x686000, 0x0) r7 = ioctl$auto_TUNSETSNDBUF2(r6, 0x400454d4, &(0x7f0000000000)=0x2) r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r8, 0x4, 0x7ff) ptrace$auto_PTRACE_SET_THREAD_AREA(0x1a, r8, 0x4, 0x8) capset$auto(&(0x7f0000000140)={0xf03, r8}, &(0x7f0000000180)={0x8, 0x34f2, 0xfffffff7}) mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0xda) read$auto_proc_iter_file_ops_compat_inode(r7, &(0x7f0000000080)=""/151, 0x97) r9 = openat$auto_lowpan_control_fops_6lowpan(0xffffffffffffff9c, &(0x7f0000000040), 0x2001, 0x0) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, 0x0, 0x2201, 0x0) write$auto_lowpan_control_fops_6lowpan(r9, 0x0, 0x14) 1m12.132269006s ago: executing program 0 (id=300): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xffffeffe, 0x2) pipe$auto(0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_IEEE802154_LLSEC_LIST_DEV(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x4c, r1, 0x400, 0x70bd2a, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0xbb}, @IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0xff4e}, @IEEE802154_ATTR_ED_LIST={0x1f, 0x16, "2675bd5c8983106f056a88e7a42c86aaeb05bfc76fcbef07c591e5"}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40400d0}, 0x404c010) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x0, 0x0) fsopen$auto(0x0, 0x1) epoll_create$auto(0x4) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) write$auto(r2, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff) ioctl$auto_SNDCTL_DSP_SYNC(r2, 0x5001, 0x0) 57.083047926s ago: executing program 32 (id=300): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xffffeffe, 0x2) pipe$auto(0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_IEEE802154_LLSEC_LIST_DEV(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x4c, r1, 0x400, 0x70bd2a, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0xbb}, @IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0xff4e}, @IEEE802154_ATTR_ED_LIST={0x1f, 0x16, "2675bd5c8983106f056a88e7a42c86aaeb05bfc76fcbef07c591e5"}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40400d0}, 0x404c010) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x0, 0x0) fsopen$auto(0x0, 0x1) epoll_create$auto(0x4) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) write$auto(r2, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff) ioctl$auto_SNDCTL_DSP_SYNC(r2, 0x5001, 0x0) 9.076618219s ago: executing program 1 (id=610): sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x8) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0x8301, 0x0) mmap$auto(0x0, 0x6020005, 0xb530, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram11\x00', 0x4eb02, 0x0) write$auto(0x3, 0x0, 0x7fffffff) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x40000, 0x0) ioctl$auto_SNDCTL_SYNTH_MEMAVL(r1, 0xc004510e, &(0x7f00000000c0)="e3e9574ce3cdf9") mmap$auto(0x800000, 0x2020009, 0xffffffffffffffff, 0x2000eb1, 0xfffffffffffffffa, 0x8000) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f00000001c0)={{0x0, 0x800, &(0x7f0000000100)={&(0x7f0000000080), 0xfc1}, 0x800038ef35f0, &(0x7f0000000240)="9647f270ac39b5828175ad6855d9fb151b0a3319e3c1389db52ecbdbcd3cea83216d8e112c41d0afe5065d32e3d0532f4faa555dd94761e7e9df5fc61255d30e47154c8e20ea3561aaf96324881336d8842cd927f849f04d9c3752", 0x7, 0xa505}, 0x800}, 0x7, 0x6) pipe2$auto(&(0x7f0000000000)=r2, 0xe017) openat$nci(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) ioctl$auto_PPPIOCSMRRU(r0, 0x4004743b, 0x0) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) symlinkat$auto(0xfffffffffffffffe, 0x8, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_SET_SERVICE(r3, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000002b00)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010028bd7000fcdbdf25050000001c0001800800058004007d00100001800a"], 0x30}, 0x1, 0x0, 0x0, 0x4050}, 0x4000000) unshare$auto(0x40000080) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) mount$auto(0x0, &(0x7f0000000300)='./file0\x00', 0x0, 0x313826de, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) readv$auto(0xffffffffffffffff, 0x0, 0x3) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dri/card1\x00', 0x6082, 0x0) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) 6.3098163s ago: executing program 1 (id=618): openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x6, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/irq/24/smp_affinity\x00', 0x48140, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ttyze\x00', 0x20c80, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x80000, 0x73) inotify_init1$auto(0x3000000000000) socket(0xa, 0x2, 0x3a) io_uring_setup$auto(0x4, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1c8340, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x3, 0x9) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_CGROUPSTATS_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="13000000", @ANYRES16=0x0, @ANYBLOB='%\x00'], 0x1c}, 0x1, 0x0, 0x0, 0x400c9d0}, 0x4080) r1 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0) 6.234092754s ago: executing program 3 (id=619): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001b40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000001c40)={0x0, 0x0, &(0x7f0000001c00)={&(0x7f0000001b80)={0x1c, r1, 0x1301, 0x70bd29, 0x25dfdbfc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40080}, 0x20008800) 6.148194146s ago: executing program 4 (id=620): r0 = socket(0x10, 0x3, 0x6) r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x1, 0x70bd26, 0x25dfdbff, {}, [@NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x7}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x4}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x40}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x4}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x2000000}]}, 0x50}, 0x1, 0x0, 0x0, 0x4048000}, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x3, 0x86) socket(0x2, 0x6, 0x0) statx$auto(0xffffff9c, 0x0, 0x1000, 0xd3, 0x0) ioctl$auto(0x1, 0x890b, 0x8) 6.000018961s ago: executing program 3 (id=621): sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_clone(0x2001000, 0x0, 0x0, 0x0, 0x0, 0x0) ftruncate$auto(0x3, 0x800000000008) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 5.881167676s ago: executing program 1 (id=622): r0 = socket(0x11, 0x80003, 0x300) socket(0xa, 0x3, 0x73) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) clone$auto(0x81000005, 0x6, 0xfffffffffffffffd, 0xffffffffffffffff, 0x80000001) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000600)={0x30, r2, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x5}, @NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xb12}]}, 0x30}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) move_pages$auto(0x0, 0xd0, 0x0, &(0x7f0000001140), 0x0, 0x2) setsockopt$auto(0x400000000000003, 0x29, 0x7, 0x0, 0x401) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r3 = socket(0x26, 0x6, 0xffffffff) ioctl$auto(r3, 0x8941, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000000), r0) ioctl$auto(0x3, 0x541b, 0x38) 5.788772662s ago: executing program 4 (id=623): mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) syz_clone(0x8124400, 0x0, 0x0, 0x0, 0x0, 0x0) clone$auto(0x7, 0x2000400000d, 0xfffffffffffffffc, 0x0, 0x3) madvise$auto(0x8, 0x5, 0x10001) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) madvise$auto(0x3, 0xff, 0xaaf) r0 = socket(0x2, 0x1, 0x106) io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x6, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) tee$auto(r1, r2, 0x1, 0x2) sysfs$auto(0x2, 0x0, 0x0) fsopen$auto(0x0, 0x1) epoll_create$auto(0x4) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) connect$auto(r0, &(0x7f00000001c0)=@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xa}}, 0x54) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r3 = socket(0x1d, 0x3, 0x1) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000040), r3) 5.523896104s ago: executing program 3 (id=625): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) mlockall$auto(0x7) r0 = openat$auto_ptdump_curusr_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) read$auto_ptdump_curusr_fops_(r0, &(0x7f0000000280)=""/4096, 0x1000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) semctl$auto(0x3, 0x2, 0x13, 0x9) r1 = socket(0xa, 0x1, 0x84) get_robust_list$auto(0x1, 0xffffffffffffffff, 0x0) getsockopt$auto(r1, 0x0, 0x484, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x806, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000540)='/sys/devices/virtual/net/rose10/statistics/tx_aborted_errors\x00', 0x300, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000580)=""/222, 0xde) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x80000, 0x5) 5.162538514s ago: executing program 1 (id=626): syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x401, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/seq/clients\x00', 0xc0002, 0x0) socket$nl_generic(0x11, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) socketpair$auto(0x1d, 0x2, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x2d1143, 0x118) socket(0x2, 0x1, 0x0) setsockopt$auto(0x3, 0x2, 0x17, 0x0, 0xfb3) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) bpf$auto(0x5, 0x0, 0x7) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x11, 0x80003, 0x300) socket(0x29, 0x5, 0x0) open(0x0, 0x80600, 0xb5d1af1605322d96) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/workqueue/nvme-reset-wq/cpumask\x00', 0x8802, 0x0) write$auto(0x3, 0x0, 0xfdef) socket(0x3, 0x800, 0x3a) socket(0x26, 0x80805, 0x0) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)) fcntl$auto(r2, 0x402, 0x8000007fffffdf) 4.022565366s ago: executing program 1 (id=627): sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x8) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0x8301, 0x0) mmap$auto(0x0, 0x6020005, 0xb530, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram11\x00', 0x4eb02, 0x0) write$auto(0x3, 0x0, 0x7fffffff) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x40000, 0x0) ioctl$auto_SNDCTL_SYNTH_MEMAVL(r1, 0xc004510e, &(0x7f00000000c0)="e3e9574ce3cdf9") mmap$auto(0x800000, 0x2020009, 0xffffffffffffffff, 0x2000eb1, 0xfffffffffffffffa, 0x8000) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f00000001c0)={{0x0, 0x800, &(0x7f0000000100)={&(0x7f0000000080), 0xfc1}, 0x800038ef35f0, &(0x7f0000000240)="9647f270ac39b5828175ad6855d9fb151b0a3319e3c1389db52ecbdbcd3cea83216d8e112c41d0afe5065d32e3d0532f4faa555dd94761e7e9df5fc61255d30e47154c8e20ea3561aaf96324881336d8842cd927f849f04d9c3752", 0x7, 0xa505}, 0x800}, 0x7, 0x6) pipe2$auto(&(0x7f0000000000)=r2, 0xe017) openat$nci(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) ioctl$auto_PPPIOCSMRRU(r0, 0x4004743b, 0x0) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) symlinkat$auto(0xfffffffffffffffe, 0x8, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_SET_SERVICE(r3, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000002b00)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010028bd7000fcdbdf25050000001c0001800800058004007d00100001800a"], 0x30}, 0x1, 0x0, 0x0, 0x4050}, 0x4000000) unshare$auto(0x40000080) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) mount$auto(0x0, &(0x7f0000000300)='./file0\x00', 0x0, 0x313826de, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) readv$auto(0xffffffffffffffff, 0x0, 0x3) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dri/card1\x00', 0x6082, 0x0) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB, @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) 3.638379781s ago: executing program 4 (id=628): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000040)={0x9, 0x10000, 0xffffffffffffd2e4, 0x6, 0x6, 0x6da, 0x1, 0x1, 0x6, 0x8, 0x4, 0x2, 0x80, 0x3, 0x200000000008, 0xdd2, 0x5, 0xe91, 0x6, 0x81, 0x0, 0x401, 0x0, 0x0, 0x40000}, 0x7fff, 0x80000001) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000fbdbdf25020000000800021d00020000080003"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00'], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) unshare$auto(0x40000080) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x3, 0x88) socket(0x2, 0x6, 0x0) statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0) ioctl$auto(0x1, 0x890b, 0x8) 3.409770994s ago: executing program 2 (id=629): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop5/mq/0/nr_reserved_tags\x00', 0x80880, 0x0) r0 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000) r1 = socket(0x2b, 0x1, 0x1) ioctl$auto(r1, 0x8901, 0x4) lseek$auto(r0, 0x7fffffffffffffff, 0x4) r2 = setfsuid$auto(0xee00) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x40400, 0x48) faccessat$auto(r3, &(0x7f0000000140)='./cgroup\x00', 0x2) r4 = getgid() shmctl$auto_IPC_RMID(0x7, 0x0, &(0x7f0000000380)={{0x1, 0x0, 0xee01, 0x4, 0x400, 0x400}, 0x5, 0xffff, 0x63, 0xfffffffffffffffd, @raw=0xf, @raw=0x7f, 0x0, 0x0, &(0x7f0000000080)="95e37313f7cafc718b458a0ae546a137a3ff794424afa7377f657f26c997268afe093617f8dad427b190907252afcc3c9a3d308dacb063585988eee4dcacf9e1a7b4583254f7fd60c6981cecce3673cc4bae58741c066e4552559566432e2e96649534fb205f9ad464526ae9be3e5685d492eed9b5a6f18d6a731271622fc02adf7531784aac26f613aa1d9a5c2b93801960e9b4a1c9a4561c75ffc62bebe32578f9706d05bc7d5fdeaff84bc028508db8c0c06efe", &(0x7f00000004c0)="b6bf5cea5219bf46cddfa0c44f243c9659891ce61f4c3bdc27e7c4edf740323d4c5460a621514dadd5273f5d69571fe77abafe2a1d54273f1e6cb8e5fbfd81a1d771489189d21136c5dbf0d16e51f18b93e73cd75791259484e2b5f369c561e6b154347e17ada3e5a1781c955116067ada75625431cebcbfedf9b6a6dd2ebf0d5aa0021ef62a015dd88f233e6f3db0a183a26ccc03f14b4dc3fbf32e8b0a0102d55f648a4b9dfca056d9f56c6e7f8e30336eca61b45bcbfe359f52191d43b01c1c909a66bd337d093177f4"}) setresgid$auto(0xffffffffffffffff, r4, r5) r6 = gettid() tkill$auto(r6, 0x7) msgctl$auto(0x1, 0xfffffff8, &(0x7f0000000180)={{0x8, r2, r4, 0x8, 0x2, 0x1, 0x3}, &(0x7f00000000c0)=0xaa, &(0x7f0000000100)=0x6, 0x2, 0x148c, 0x5, 0x1, 0xfff, 0x8, 0xfff8, 0xd, @raw=0x2, @inferred=r6}) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x2c, 0x2, 0x8) r7 = socket(0x58, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'vxcan1\x00'}) bind$auto(0x3, &(0x7f0000000040)=@l2={0x1f, 0x5722, @any, 0x8, 0x1}, 0x6a) io_uring_setup$auto(0x6, 0x0) read$auto(r7, 0x0, 0x7fffffffffffffff) close_range$auto(0x2, 0x8000, 0x0) socket(0x10, 0x3, 0x0) openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, 0x0, 0x40, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0x2003f0, 0x15) 2.979443499s ago: executing program 2 (id=630): set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) mmap$auto(0x0, 0xffff, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) clone$auto(0x1ff00, 0x0, 0x0, 0x0, 0x9) exit$auto(0x7) r0 = socket(0x2, 0x801, 0x84) getsockopt$auto(r0, 0x84, 0x82, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyd9\x00', 0x0, 0x0) 2.422571873s ago: executing program 4 (id=631): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r0 = eventfd$auto(0x0) sysfs$auto(0x2, 0x47, 0x0) r1 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x10, 0x3, 0x6) r3 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="50b5885ec02ff2000000", @ANYRES16=r3, @ANYBLOB="010026bd7000ffdbdf25050000000c00010007000000000000000c00010004000000000000000c00010040000000000000000c00010004000000000000000c0001000000080000000000"], 0x50}, 0x1, 0x0, 0x0, 0x4048000}, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'bridge0\x00'}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), r5) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_HARDIF(r4, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="f38327b97000fedbdf250500000008000300", @ANYRES32=r7], 0x1c}}, 0x4008000) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r8) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_GROUP(r8, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f00000000c0)={0x38, r9, 0x800, 0x70bd29, 0x25dfdbfe, {}, [@NET_SHAPER_A_HANDLE={0x4}, @NET_SHAPER_A_BW_MAX={0xc, 0x4, 0x4}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r10}, @NET_SHAPER_A_BW_MAX={0xc, 0x4, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x2004c041}, 0x14) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x801, 0x106) bind$auto(r0, &(0x7f0000000040)=@ethernet={0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x43}}, 0x6a) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x8) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'ipvlan0\x00'}) r11 = socket$nl_generic(0x10, 0x3, 0x10) r12 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), r11) r13 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r12, 0x1, 0x70bd28, 0x25dfdbf9, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r14}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xfff}]}, 0x24}, 0x1, 0x0, 0x0, 0x44010}, 0x0) 2.422038292s ago: executing program 2 (id=632): r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mprotect$auto(0x1000, 0x400000, 0x4) io_uring_setup$auto(0x40000002c55, 0x0) (async) io_uring_setup$auto(0x40000002c55, 0x0) mmap$auto(0x9, 0x3, 0x1, 0xfffffffffffffffd, r0, 0xa) write$auto(0x3, 0x0, 0x3f00) (async) write$auto(0x3, 0x0, 0x3f00) 1.701470021s ago: executing program 4 (id=633): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x10, 0x2, 0x4) socket(0x10, 0x3, 0x6) r0 = socket(0x10, 0x2, 0x4) r1 = socket(0x10, 0x3, 0x6) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r2, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c60141000c7940c00c50003000000000000000c02368008027a8087010c800800e8", @ANYRES32=r0, @ANYBLOB='\b'], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x1c, &(0x7f0000000040)=@link_update={r3, @new_prog_fd, 0x2c}, 0x92) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) 1.300202026s ago: executing program 2 (id=634): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000040)="11ce06d2b8", 0x40000100000001}, 0x6, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TCFLSH2(r2, 0x80045439, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto(r1, 0x89f0, r1) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r3 = io_uring_setup$auto(0x6, 0x0) r4 = socket(0x2b, 0x1, 0x1) r5 = getsockopt$auto(r4, 0x1, 0x1a, 0x0, 0x0) r6 = socket(0x2, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) shmget$auto(0x2, 0x7, 0x7) socket(0x2, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) r7 = memfd_create$auto(&(0x7f0000000000)='[\xd2\x00', 0xc3000000) sendmmsg$auto(r6, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) ioctl$auto_XFS_IOC_FREESP64(r7, 0x40305825, &(0x7f0000000180)={0x1, 0x1, 0x200, 0x7, 0x6, 0xffffffffffffffff}) capset$auto(&(0x7f00000001c0)={0x6bc, 0x0}, &(0x7f0000000200)={0x7, 0xffffffff, 0x6}) r10 = socket$nl_generic(0x10, 0x3, 0x10) r11 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r10) sendmsg$auto_ETHTOOL_MSG_PSE_SET(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x2c, r11, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_PSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x400c0c4) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_LIST(r3, 0xc0505510, &(0x7f00000002c0)={0x7, 0x5, 0x3, @inferred=r8, &(0x7f0000000240)={@inferred=r9, 0x6, 0x400, 0x0, "8be3378b56163a1e8613cba344b4c2883a7ca7c11d28d20b02093d71901393c8fe33dad80e3ba9bdec6bf971", @raw=0x2}, "0cd4ceb354d1082d11d50444e0cd48447e4e1a05431594ff5080f30516e066df0c66faceace8d1458047c0d068f87f7983c3"}) shutdown$auto(0x200000003, 0x2) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 830.002159ms ago: executing program 3 (id=635): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x2, 0x10000000f8, 0xfffffffffffffffa, 0x0) r0 = socket(0x9, 0x800, 0x22) close_range$auto(0x2, 0x8, 0xfffffffe) r1 = memfd_create$auto(0x0, 0xe) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001280)={&(0x7f0000000100)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) ioctl$auto_SOUND_MIXER_READ_RECMASK(r1, 0x80044dfd, &(0x7f0000000180)="31308f5b1ac00395d9f88a5e03010ae1b00b3ec5b0d0e7932a89a18cf48e450a791ca11b8f5ad02b02605f692c9f605c62e3c9c8096651106cba70b7eb281dad67dd57481447a442e65cff4ebf056586b3fb0b90fb3e8f2df4f3d335b118cfa6e3aed9286dd491e416060819bccb56b6a7efd28edd5a2860258c32414ed2ac6b774881b84fa5559408e469c963c293880f33c8951ca218ad256c94b6929fccb83ee2427049bf96f45da0a2efaa4f89bc275304ae9d6517c8e6711f9c656ba943ea5c1ee6239bb2b9f897ee") socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x31}}, 0x6a) r2 = fsopen$auto(0x0, 0x1) newfstatat$auto(0xffffffffffffffff, 0x0, 0x0, 0x1000) socket(0x18, 0x5, 0x1) mmap$auto(0x0, 0x0, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event2\x00', 0xd40, 0x0) ioctl$auto_EVIOCSCLOCKID(r3, 0x5452, &(0x7f00000000c0)=0xca9) io_uring_setup$auto(0x3ff, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/015/001\x00', 0x6a102, 0x0) mmap$auto(0x20000000000, 0x7ff, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0x5, 0x32d, 0x10011, 0x2, 0x986c) mprotect$auto(0x0, 0x5, 0x8) sendmsg$auto_IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000001380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001340)={&(0x7f00000012c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000329bd7000fbdb6c3a210000000c000900000000800000000006000e0006000000050025000800000006000b00010400000500190007000000050015000500000008002f0000000080"], 0x50}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) r4 = openat$auto_msft_opcode_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci0/msft_opcode\x00', 0x0, 0x0) read$auto(r4, &(0x7f0000006740)='^%-[)>\'\xdf\x00', 0xffff) fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0) ioctl$auto_BTRFS_IOC_SNAP_DESTROY_V2(r2, 0x5000943f, &(0x7f0000000280)={@inferred=r1, 0xfff, 0x9, @btrfs_ioctl_vol_args_v2_3_0={0x7, &(0x7f0000000080)={0x7f, 0x1, 0x6, 0x9c2, {0x90, 0x7, 0x6, 0x8001, 0x5}, [0x51]}}, @devid=0x8}) socketpair$auto(0x80, 0x1, 0x5, &(0x7f0000000000)=0x5) 758.707515ms ago: executing program 4 (id=636): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0x0, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x54f443, 0x10) fcntl$auto(r1, 0x409, 0x40003f) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001100)=""/192, 0xc0) write$auto(0x3, 0x0, 0x100082) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x8, 0xc, 0x0, 0x567) unshare$auto(0x40000080) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x8080) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008) acct$auto(0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f00000001c0)) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) adjtimex$auto(&(0x7f0000000000)={0x4, 0x0, 0xcbe9, 0xffff, 0xa, 0x80000000, 0xd37f, 0x0, 0x5, 0xd, 0x3, {0x10, 0x6}, 0xfffffffffffffffc, 0x10002, 0x2, 0x4, 0x0, 0xfffffffdfffffffa, 0x1, 0x20000, 0x9, 0x7, 0x8}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) r3 = gettid() process_vm_readv$auto(r3, &(0x7f0000000040)={0x0, 0xfffffffffffffff8}, 0x6, &(0x7f0000000100)={0x0, 0x100000000000002}, 0x3, 0xfffffffffffffffd) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0) r5 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) ioctl$auto_TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)=0x4) sendfile$auto(r4, r4, 0x0, 0x5) 733.964164ms ago: executing program 2 (id=637): openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x6, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/irq/24/smp_affinity\x00', 0x48140, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ttyze\x00', 0x20c80, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x80000, 0x73) socket(0xa, 0x2, 0x0) inotify_init1$auto(0x3000000000000) socket(0xa, 0x2, 0x3a) io_uring_setup$auto(0x4, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x3, 0x9) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_CGROUPSTATS_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="13000000", @ANYRES16=0x0, @ANYBLOB='%\x00'], 0x1c}, 0x1, 0x0, 0x0, 0x400c9d0}, 0x4080) r1 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0) 365.208907ms ago: executing program 3 (id=638): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setreuid$auto(0x3, 0x7) bpf$auto(0x8000000000000012, 0x0, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="3b3d2abd7000fcdbdf250200000008000300", @ANYRES32=0x0, @ANYBLOB="0a00090001"], 0x28}}, 0x80) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e"], 0x1ac}, 0x1, 0x0, 0x0, 0x4044000}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) setreuid$auto(0x3, 0x7) (async) bpf$auto(0x8000000000000012, 0x0, 0x0) (async) socket(0x10, 0x2, 0x0) (async) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="3b3d2abd7000fcdbdf250200000008000300", @ANYRES32=0x0, @ANYBLOB="0a00090001"], 0x28}}, 0x80) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e"], 0x1ac}, 0x1, 0x0, 0x0, 0x4044000}, 0x800) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async) 362.504726ms ago: executing program 2 (id=639): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(r0, 0x89a0, 0x8) write$auto(r0, &(0x7f0000000140)=')-+\xa2\x00', 0x6) r1 = openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000000040), 0xc0401, 0x0) write$auto_proc_timens_offsets_operations_base(r1, &(0x7f0000000300)="38675fd347658c23ffecd0d8bc1d982487a3ad5094ae47160fda3b2630d3370ca8b975057089c083c9bd2814031c19ae951929c98655d8f55cbc42208ee9cb966bf6eb2e555b9301df7e72e7d7f53dbef536f56921ce229e1c5344e237d9b7f62a6b66e774fffd83a8e0711677f72efdaa79cc9854619d920d7454de5411cc09e0af56d8d004f5031b601d8c3159ca47129002f5afde5d3f116c5d58712583b7077b170a11", 0xa5) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) mmap$auto(0x0, 0xffffffff, 0xe0, 0x15, r0, 0x7) r2 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc4c85513, &(0x7f0000000100)={{@raw=0x9, 0x85, 0x20e, 0x9, "669cbbd9e97551b991bea188e0f1a57ce2a1facac1f00b2f4ab8635524133f9e22c7717f6050f2d2252ca5f2"}, 0x0, @integer64=@value=[0x9, 0x7, 0xc2c3, 0x3, 0x8, 0x7, 0x4, 0x7, 0x80, 0x6, 0xfffffffffffffffd, 0x8000000000000001, 0x0, 0x9, 0x6, 0x1, 0x8, 0x5, 0x7ffffffffffffffc, 0x58a2, 0x5, 0xad, 0x7, 0x1000ffffe, 0x2, 0x85d7a604f, 0xc01, 0x7fffffff, 0x8, 0xff, 0x8, 0x9, 0x4, 0xfffffffffffffffd, 0x10000000000007, 0x0, 0x3, 0x9, 0x6, 0x8000000000000000, 0xfff, 0x4, 0x4, 0x4, 0x8001, 0x3, 0x3, 0x2, 0x7fffffff, 0x81, 0x2, 0x4, 0x5, 0x7, 0xffffffffffffffff, 0x7fff, 0xd468, 0xfffffffffffffff9, 0x612, 0xffff, 0xf60d, 0x5, 0x6, 0x1], "282f77b07e718ed4d99a34617774e3a82f982e0f05e516c299a28a585e87e0d908e2c8e50de5016f1de5d432da2cc20e951d8fcdc4f791a11996aad5af504c0d9927e62ef70b23a13735a4fe805c1ce1b6b1d83d21bb42794ec925b4547a3d52d4b5210392111e181719fef9d685b6534b171d76ad633f94a608b818600a6c85"}) read$auto(r3, 0x0, 0x1f40) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) write$auto(r2, 0x0, 0xe) r5 = io_uring_setup$auto(0x1, 0x0) read$auto_trace_fops_debugfs(r5, &(0x7f0000000040)=""/45, 0x2d) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x14) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmmsg$auto(r2, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x0, 0x0, 0x0, 0x80000000}, 0x1007}, 0x81, 0x8) mincore$auto(0x1000, 0x8001, 0x0) r6 = openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ubifs/chk_lprops\x00', 0x8182, 0x0) ioctl$auto(0xffffffffffffffff, 0x400c4d06, r6) 176.046345ms ago: executing program 1 (id=640): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000040)={0x9, 0x10000, 0xffffffffffffd2e4, 0x6, 0x6, 0x6da, 0x1, 0x1, 0x6, 0x8, 0x4, 0x2, 0x80, 0x3, 0x200000000008, 0xdd2, 0x5, 0xe91, 0x6, 0x81, 0x0, 0x401, 0x0, 0x0, 0x40000}, 0x7fff, 0x80000001) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000fbdbdf25020000000800021d00020000080003"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00'], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) unshare$auto(0x40000080) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x3, 0x88) socket(0x2, 0x6, 0x0) statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0) ioctl$auto(0x1, 0x890b, 0x8) 0s ago: executing program 3 (id=641): sendmsg$auto_NLBL_CALIPSO_C_REMOVE(0xffffffffffffffff, &(0x7f0000002100)={&(0x7f0000001fc0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000020c0)={&(0x7f0000002040)={0x5c, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x5}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x7ff}, @NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x9}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x9}, @NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x10000}, @NLBL_CALIPSO_A_DOI={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0xa}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x13b0}]}, 0x5c}, 0x1, 0x0, 0x0, 0x80}, 0x4010) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x5452, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_PEER_REMOVE(r1, &(0x7f00000110c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f000000e000)={0x18, r2, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x104}, 0x40) r3 = getpid() r4 = setfsuid$auto(0xee00) r5 = setfsuid$auto(0xee01) setresuid$auto(r4, r5, r4) r6 = waitid$auto_P_PGID(0x2, 0x0, &(0x7f00000000c0)={@_si_pad}, 0x0, &(0x7f0000000140)={{0x80000000, 0x2ef}, {0x7ff, 0x80}, 0x8, 0x4, 0x4c, 0xc24, 0x8, 0x5, 0xffffffffffffffff, 0x0, 0xfffffffffffffff9, 0xfa26, 0x8001, 0x213a, 0xff, 0x370}) r7 = openat$auto_userfaultfd_dev_fops_userfaultfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r8 = openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/tracing_cpumask\x00', 0x54101, 0x0) r9 = openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000280), 0x40c900, 0x0) r10 = getpid() syz_open_procfs$namespace(r10, &(0x7f0000000280)='ns/pid_for_children\x00') r11 = geteuid() setreuid$auto(r11, 0x0) r12 = socket$nl_generic(0x10, 0x3, 0x10) r13 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r12, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000003a00)={0x34, r13, 0x201, 0x70bd2c, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x1c, 0x1, 0x0, 0x1, [@nested={0x15, 0x139, 0x0, 0x1, [@nested={0x4, 0xeb}, @typed={0x8, 0x2d, 0x0, 0x0, @fd}, @generic="5ecb8698ec"]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x4000048) r14 = set_tid_address$auto(0x0) sendmsg$auto_TIPC_NL_MON_PEER_GET(r0, &(0x7f0000001f80)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001f40)={&(0x7f0000005600)={0x1be4, r2, 0x10, 0x70bd28, 0x25dfdbfc, {}, [@TIPC_NLA_NAME_TABLE={0x1205, 0x8, 0x0, 0x1, [@nested={0x8, 0xdc, 0x0, 0x1, [@nested={0x4, 0x2a}]}, @typed={0x8, 0xcc, 0x0, 0x0, @u32=0x2}, @generic="5631d769dd358f399870f1dc4d6b515bf92e63121a42a3b96fe6e8f0867701842b870fa666eac9fb36895715ecb332c2d626c4cc9ce51e311a0fd12937b4e3bef52615b0ec9b607dc5e089da28c7ca06cbb3944bc31e98d4ba8e6f526cee82ca07d664b62ed1bb44918c1f779b0db046dae801c8b231cef634568b4a44569cf3043f5833b612ffa837e5062d441ecec6735df2cdbd97941724a41b50d0beb08a8bec9b6addbc53f75483512800bc13ed2e943f111d0700a32ee58fff399d", @generic="7424197928e468a02cf3767081cbd826a002a0805ac4b6ed97c5cf6a01567d9b32ec4f627515b2fc4edd6777eb83ed6b51", @typed={0x8, 0xc4, 0x0, 0x0, @fd}, @typed={0x1004, 0x2e, 0x0, 0x0, @binary="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"}, @generic="a47a1daf73385c58abf1f68c9744ceff73bd92dd11762b6692a6cbde88ca877517909c414180d0cc06b180129ed9ba6e6174310797f4b4225e32a8693a0153ac1e6971d88ece0a827ca0223ed208d622c4ca844e308bcf2dcaacf6b5cec160027e5a5ece008279c3e86b009065594396e1d3ad84a749e140bff1569ea1e0c9cbb95fe6fb7ba406b3d1bc9d913e0cbda77d494abddd4ad30f182eacf3177d4d7f608e3c659df8f4cdf063a7d076a83b66f4a713855e3ebfc0cb251965875e42dd1dec6e384356bfde2baa64286f8222024a7eb806e15e0c187a7bf697d37964251797efbe147358540e8a1155e41c8663438784a17edf"]}, @TIPC_NLA_NODE={0x1d1, 0x6, 0x0, 0x1, [@generic="d8fdb0f3345048ab55655cc8f5ff94870364a539e3a80370c432d7103ef6c2109b8218fa7944484d025b1da7c1522d3859283ca5cdfcf9c6ffb10814449250d1b129f1ccd2ccc346e140d0288826a44bcac99558c4bb61636777e257235c5607513afde69573677418031332a2669395f77cd3a97155c1d7c27aee7a58fc961cafd412aa112b1900b0888d28afc64f8547449a2139410eba0f25686525624166ac6c796e8fb7169e9119828953840f5c00d34a9aaf4a8be79141fb36ec8074f75f00b4320c24", @typed={0xaa, 0xf, 0x0, 0x0, @binary="a4681a704d4bba044220ac931d54a992afc6f2bec62243338ac46db0c587018944ee9e85c2ac8223b60c5d7759c07578c6b737cbe31ebf6819bfa85f1c1d914bb25a66cee31d2e12ba7aeb5cac69c8f560108db922854f1fdb2c8fa8723e714acb4f935dcf6eb7dc74c91c83a0e9a95b54b2230b8a0797def0fb8f62dfbcbdfd356528659dac4cfcdd44b0aee713416e43b20738f3bdbc1369d8e3baa02407c5f790c3a6ea92"}, @generic="311a0b0f0c70eab2d691a4c82b6e8cf7d5508a104943b2a920ce230eba3691e9c8a33265ae0cfac70f18", @nested={0x14, 0x4b, 0x0, 0x1, [@nested={0x4, 0xfe}, @typed={0xc, 0x13e, 0x0, 0x0, @u64=0xfffffffffffffffa}]}, @typed={0x8, 0xc0, 0x0, 0x0, @pid=r3}, @generic="53ff8cc1dfb1ea9fdafb26dcf983d0099a315c6136"]}, @TIPC_NLA_PUBL={0x2a3, 0x3, 0x0, 0x1, [@typed={0x8, 0xf7, 0x0, 0x0, @uid}, @typed={0x8, 0x65, 0x0, 0x0, @uid=r4}, @typed={0x9, 0xbc, 0x0, 0x0, @str='C*-\'\x00'}, @generic="3f7d8785f750de8ff3ef397a48d7756be5bef4fee9c76f18fb17c1b3b7eddc8f93257de0748711996ed630d3e7bb51bfd4ceb14d0b12e74df3d87355977972443d539f505c004e0d9f9ee7f6a13664229d9425ca5508", @typed={0x8, 0x14e, 0x0, 0x0, @u32=0x6}, @typed={0x8, 0x79, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="2e39a3f3b29ac6932a9c311f74b66e0025d6aa819e77e03f5a", @nested={0x13d, 0xf6, 0x0, 0x1, [@typed={0x8, 0xe1, 0x0, 0x0, @u32=0x9}, @generic="dc888965ccbe1aec430917aba9d1e522a8df60417172a6546db2143e47510db550a440349517a5088444e2b6a4515d44ac874baf08fd20c4a162d7b1a12b1899bb30ba602fdc8a4c647820cb28fe1868916cbd31b5efaa6966acc4a7555863f8697681e8d7507d2c6ee71bb26b6fda5d", @generic="e9f0bbbc9bc32343578b7fc3085879eaff11661ac2ecb88732e4c9571003b80c4d56d518a57879df910259dd73a7ba437349ed1f0ed4a20638edebcd0297f0acd6864b5cb39a7d16d67aef02dbb5470a7920d0b49515237dcc13a8e6c6625017270ac3f02d1b258165c1f3437df7038b208bbdb937b3cf786412c422154382f1970e89ee2309eb73be6e98e826b0dcef6b1bb655a43d", @nested={0x4, 0x67}, @typed={0x14, 0x9f, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @private=0xa010102}}, @nested={0x4, 0x108}, @generic="04cf323fc9cf47", @typed={0x8, 0x10c, 0x0, 0x0, @pid=r6}]}, @nested={0xc1, 0x125, 0x0, 0x1, [@nested={0x4, 0x130}, @generic="80353981ea0ec614af01ead7cf71d4da9171cf77e0b80530fe75076fc8c0121230b5e16ae83944ee10c19d113e13776e3f45677a134ad50bb20a7e451a49e028f20c341c32c178f4a4436bbc61c38c231fc2e1a214327f0d8519c5c918acaab34b9e329c29c8555eaf41621cedab21a53bac5cf8139fd556728d6c9f48db7e3ce44641510636dfa807e09d8f371052ce6e7bee26e7d24757ef12eb4a7798688750d5b541e7bda203f14ea05dd8efd9fb76d98834e07cda8b0e"]}]}, @TIPC_NLA_NAME_TABLE={0x2d3, 0x8, 0x0, 0x1, [@generic="1753c900513fe875d8bd1a6c6e4fca72692f9cc47f4af6095991f84ba4ad6c025dc4cc0a735d690495fb0b9ccd", @generic="caefa59024ac45a9f92e79e592a402b55cefaa6800b3a2919669bdb016530f77aaa870336bcd0c878d4e5989cf40d3ce4b889019d894345eb5a3fd5e489ad374bdc3dd", @nested={0x1df, 0xe, 0x0, 0x1, [@generic="6e852797abbd394186d7c0276b8c29e17bda284f47814cb442c0cdd71304a17b405cb48e15aa2061b8f03396f8888dd7748b2e1652248750e09be4ff6a20d5874b59c330a78b43235c26f5b1a60fcac5d17d54070a1a224e012ed2ecb7c1559229dbdccec0f7ce90caaab3b679689bb4208b85944856179cc813c9f47a934dc1e7479b821767fc3baaef3cef04226fc8e7bcd938fc81d8eb2df45b92cdf21cf97780747507941654fbf8ce8ca40bf6", @nested={0x4, 0xfb}, @typed={0x8, 0x21, 0x0, 0x0, @u32=0x9}, @typed={0x8, 0x12c, 0x0, 0x0, @fd=r7}, @generic="ff12005732d7c8199107804dc55cd8526e0b29e04e0f91499d7c433b2e3f65847c370bce11129843ad6e6f89047ab8fdec817832d9c59eef2d19102e6386329cd128919ed34e6157cb08719b7eeb0b304a87d64ef45e90e2ffec35ce8d3129f1900e11a99143925c76e58bf47db1dcc4c40e6bed0a61a7faa19443522e987bea992eb93302eb2cc9c45aeaeeeffe75d8387803efa1c73a06acf23402f4d38ebd92af12e8d5a7851292dc3027c475249c19", @generic="3094488d2b2aaa49fd57be627b0060736918e7b8e511242a28c0a6c7b27ec44e2d3ce66d130b7ebe47facdf0264d775b408b5c24b7e2f5c55cb8b0d1912c84d27b1f7f24c604383553f331e97aacfc5bc3a00f86d5f2d5ceb2e2fe76f3e6cfa35a232569776af6"]}, @typed={0x8, 0x23, 0x0, 0x0, @fd=r8}, @nested={0xc, 0x44, 0x0, 0x1, [@typed={0x8, 0x52, 0x0, 0x0, @u32=0x4}]}, @generic="69b248784a6d92fc81b91844c5eabeaa325c7a2b4041cafb0d23a03aea1e4a9bce9358978a88757bbd9399b0e42f2d59fc9146078ca809210f7803991fd79128ac9ae72a55127b38204b55195bde9d2d941252f67d0c5dec9f60cf50b847f83f631d0d", @typed={0x8, 0xb8, 0x0, 0x0, @fd=r9}]}, @TIPC_NLA_MEDIA={0x3f, 0x5, 0x0, 0x1, [@generic="176cd5d4d81e0bfe7d78ddc3b5eb7c816873d69d8f480c82dd7031d4cb1d176e078e29b6bc09fe55664ad546f95372ecb45b47651a443b", @typed={0x4, 0x8b}]}, @TIPC_NLA_NAME_TABLE={0x101, 0x8, 0x0, 0x1, [@typed={0x8, 0x45, 0x0, 0x0, @pid=r10}, @typed={0xc, 0x4a, 0x0, 0x0, @u64=0xe295}, @generic="c9ae505cbd9112a028f2784d72f517639b59bcae077fb101f1bd21c2e4d7ea0ea1", @generic="de4e92e27ea80cfebd763de05ed5d8befe552594d7e26ae42908b245023daf23e49d74e2825a2452a843bc0f75c551a445fbc7696a7abe8b4a80f6073b7aba628a57990ae797ade2a395aad2365928ddff8bffc973ff7e57fbd7144cd650b4e6996a25413a7e18d926048bb3847e5061f9371e70d701e7b26324e949d9b2ef432a5837bd595666fbb5d65f0fcb382311e0fde300107a64c6bd0999f7618492914799246074fb4252d8caf22f91bd2dbe522eebd2e3292716b555cbb6ca960da9da57d3f593f42bd6"]}, @TIPC_NLA_NAME_TABLE={0x137, 0x8, 0x0, 0x1, [@nested={0x20, 0x12, 0x0, 0x1, [@typed={0x8, 0x13e, 0x0, 0x0, @uid=r11}, @typed={0x8, 0xfe, 0x0, 0x0, @pid=r14}, @typed={0xc, 0xc0, 0x0, 0x0, @u64=0x8}]}, @generic="1d4a1ae9c1b1b898407fafa5c77faef8ab50b6c6d95202b2ed7360e276e1bcc93f584b7f302c42122a650067ff2c141333ac06bc92c4364fe96e71070800bc396bfbc0ce8cfaa14968c35a4518557a43fc2f0ef448657c6adbbc9b5c36bab5b079dbfca41701d3488619135481dbfbf7d4a0f424ec1c0c31a318260b96e3955351766a5da0a738f9fc36c420987713514b48387e0ab130b371ec07c0bc785d92", @generic="51cb9dcb661adc758ff16f8ebfd401b23e3341887d634e369313514922d11cbb88dea118bc3b13956977db26cb979a186f262145dd24684bdda270a35ef8ddce5b71b46e314d40a087d235090f44069959f092fdd28b50064c7223d5cbf9b4a16531eb4d642261efdf5cf8fb6abad3cae8cc9c"]}]}, 0x1be4}, 0x1, 0x0, 0x0, 0x24048041}, 0x14000084) r15 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop7/trace/act_mask\x00', 0x40402, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) write$auto(0x3, 0x0, 0xfdef) ioctl$auto_VHOST_SET_BACKEND_FEATURES(r15, 0x4008af25, &(0x7f0000000080)) kernel console output (not intermixed with test programs): : Enslaving as an active interface with an up link [ 96.419520][ T5846] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.473738][ T5844] chnl_net:caif_netlink_parms(): no params data found [ 96.552450][ T5846] team0: Port device team_slave_0 added [ 96.566017][ T5846] team0: Port device team_slave_1 added [ 96.572691][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.579914][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.587088][ T5838] bridge_slave_0: entered allmulticast mode [ 96.595268][ T5838] bridge_slave_0: entered promiscuous mode [ 96.617696][ T5850] chnl_net:caif_netlink_parms(): no params data found [ 96.643073][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.650333][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.657557][ T5838] bridge_slave_1: entered allmulticast mode [ 96.664828][ T5838] bridge_slave_1: entered promiscuous mode [ 96.710569][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.717935][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.744703][ T5846] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.821989][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.829151][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.855239][ T5846] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.885104][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.894520][ T5844] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.902478][ T5844] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.909823][ T5844] bridge_slave_0: entered allmulticast mode [ 96.917410][ T5844] bridge_slave_0: entered promiscuous mode [ 96.943512][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.965442][ T5844] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.972745][ T5844] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.980015][ T5844] bridge_slave_1: entered allmulticast mode [ 96.987453][ T5844] bridge_slave_1: entered promiscuous mode [ 97.046572][ T5838] team0: Port device team_slave_0 added [ 97.090011][ T5838] team0: Port device team_slave_1 added [ 97.112226][ T5844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 97.126678][ T24] cfg80211: failed to load regulatory.db [ 97.170668][ T5846] hsr_slave_0: entered promiscuous mode [ 97.177468][ T5846] hsr_slave_1: entered promiscuous mode [ 97.187686][ T5844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 97.258776][ T5850] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.266035][ T5850] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.274618][ T5850] bridge_slave_0: entered allmulticast mode [ 97.282653][ T5850] bridge_slave_0: entered promiscuous mode [ 97.291179][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.298306][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.324334][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.353438][ T5844] team0: Port device team_slave_0 added [ 97.360021][ T5153] Bluetooth: hci0: command tx timeout [ 97.363962][ T5844] team0: Port device team_slave_1 added [ 97.374302][ T5850] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.381574][ T5850] bridge0: port 2(bridge_slave_1) entered disabled state [ 97.389445][ T5850] bridge_slave_1: entered allmulticast mode [ 97.396975][ T5850] bridge_slave_1: entered promiscuous mode [ 97.405696][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.413000][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.439009][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.527517][ T5153] Bluetooth: hci2: command tx timeout [ 97.545629][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.552880][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.579211][ T5844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.593524][ T5850] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 97.597348][ T5153] Bluetooth: hci1: command tx timeout [ 97.610818][ T5850] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 97.655726][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.663154][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.690080][ T5153] Bluetooth: hci3: command tx timeout [ 97.695921][ T5844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.751408][ T5838] hsr_slave_0: entered promiscuous mode [ 97.758570][ T5838] hsr_slave_1: entered promiscuous mode [ 97.764719][ T5838] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.773002][ T5838] Cannot create hsr debugfs directory [ 97.805439][ T5850] team0: Port device team_slave_0 added [ 97.814820][ T5850] team0: Port device team_slave_1 added [ 97.882786][ T5844] hsr_slave_0: entered promiscuous mode [ 97.889983][ T5844] hsr_slave_1: entered promiscuous mode [ 97.896149][ T5844] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.903892][ T5844] Cannot create hsr debugfs directory [ 97.924733][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.932000][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.958065][ T5850] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.972219][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.979327][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.005893][ T5850] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 98.216646][ T5850] hsr_slave_0: entered promiscuous mode [ 98.223981][ T5850] hsr_slave_1: entered promiscuous mode [ 98.230743][ T5850] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 98.238450][ T5850] Cannot create hsr debugfs directory [ 98.454708][ T5846] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 98.480460][ T5846] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 98.512465][ T5846] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 98.532142][ T5846] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 98.638766][ T5838] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 98.659068][ T5838] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 98.679070][ T5838] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 98.703237][ T5838] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 98.766890][ T5844] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 98.781840][ T5844] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 98.793948][ T5844] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 98.824597][ T5844] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 98.905456][ T5850] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 98.922946][ T5850] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 98.935793][ T5850] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 98.959003][ T5850] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 99.050753][ T5846] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.146287][ T5846] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.162702][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.197243][ T81] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.204646][ T81] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.217033][ T81] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.224222][ T81] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.264620][ T5838] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.320232][ T81] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.327436][ T81] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.341579][ T5850] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.355239][ T5844] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.414390][ T1103] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.421626][ T1103] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.438168][ T5153] Bluetooth: hci0: command tx timeout [ 99.491282][ T5850] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.523756][ T5844] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.547202][ T81] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.554391][ T81] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.586042][ T1103] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.593249][ T1103] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.601224][ T5153] Bluetooth: hci2: command tx timeout [ 99.617266][ T81] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.624442][ T81] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.660907][ T81] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.668155][ T81] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.677682][ T5153] Bluetooth: hci1: command tx timeout [ 99.757857][ T5153] Bluetooth: hci3: command tx timeout [ 99.924627][ T5846] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.082229][ T5846] veth0_vlan: entered promiscuous mode [ 100.106336][ T5846] veth1_vlan: entered promiscuous mode [ 100.193644][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.264548][ T5846] veth0_macvtap: entered promiscuous mode [ 100.285475][ T5844] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.304390][ T5846] veth1_macvtap: entered promiscuous mode [ 100.376516][ T5838] veth0_vlan: entered promiscuous mode [ 100.385708][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.444081][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.455115][ T5846] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.465572][ T5846] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.474652][ T5846] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.484108][ T5846] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.495946][ T5838] veth1_vlan: entered promiscuous mode [ 100.532403][ T5844] veth0_vlan: entered promiscuous mode [ 100.544300][ T5850] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.566542][ T5844] veth1_vlan: entered promiscuous mode [ 100.682524][ T5838] veth0_macvtap: entered promiscuous mode [ 100.727045][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.736906][ T5838] veth1_macvtap: entered promiscuous mode [ 100.739139][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.752873][ T5850] veth0_vlan: entered promiscuous mode [ 100.766403][ T5844] veth0_macvtap: entered promiscuous mode [ 100.789637][ T5844] veth1_macvtap: entered promiscuous mode [ 100.834617][ T81] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.836378][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.851600][ T81] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.855604][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.873475][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.885352][ T5850] veth1_vlan: entered promiscuous mode [ 100.913314][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.924946][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.936774][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.956145][ T5838] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.967024][ T5838] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.976429][ T5838] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.985634][ T5838] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.001601][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 101.012274][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.022718][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 101.033690][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.049319][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.076018][ T5846] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 101.086168][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 101.108506][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.120208][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 101.131451][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.143168][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.173289][ T5844] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.186349][ T5844] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.196051][ T5844] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.211105][ T5844] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.306747][ T5850] veth0_macvtap: entered promiscuous mode [ 101.453873][ T5850] veth1_macvtap: entered promiscuous mode [ 101.484670][ T5900] netlink: 186 bytes leftover after parsing attributes in process `syz.3.4'. [ 101.513161][ T3022] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.522739][ T5153] Bluetooth: hci0: command tx timeout [ 101.551060][ T3022] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.624934][ T5850] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 101.642182][ T5850] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.660580][ T5850] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 101.679924][ T5850] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.690751][ T5153] Bluetooth: hci2: command tx timeout [ 101.697613][ T5850] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 101.709602][ T5850] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.722390][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.758373][ T5153] Bluetooth: hci1: command tx timeout [ 101.772855][ T1103] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.781853][ T1103] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.821176][ T5850] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 101.834492][ T5850] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.847400][ T5850] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 101.847711][ T5153] Bluetooth: hci3: command tx timeout [ 101.858236][ T5850] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.873370][ T5850] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 101.884074][ T5850] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.895878][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.911109][ T1165] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.919864][ T1165] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.959568][ T5850] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.972575][ T5850] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.982181][ T5850] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.991591][ T5850] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.034228][ T1103] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.050307][ T1103] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.311192][ T81] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.343268][ T81] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.501588][ T3022] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.527397][ T3022] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.458494][ T5924] netlink: 330 bytes leftover after parsing attributes in process `syz.2.3'. [ 103.489027][ T5924] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 103.517424][ T5924] Zero length message leads to an empty skb [ 103.606033][ T5153] Bluetooth: hci0: command tx timeout [ 103.674136][ T5153] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 103.674178][ T5153] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 103.690047][ T5153] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 103.690109][ T5153] Bluetooth: hci2: adv larger than maximum supported [ 103.699072][ T5153] Bluetooth: hci2: Malformed LE Event: 0x0d [ 103.758953][ T5153] Bluetooth: hci2: command tx timeout [ 103.841595][ T5153] Bluetooth: hci1: command tx timeout [ 103.918480][ T5153] Bluetooth: hci3: command tx timeout [ 104.748933][ T5950] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11'. [ 105.402268][ T5964] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 105.859177][ T5972] netlink: 3806 bytes leftover after parsing attributes in process `syz.3.15'. [ 106.744789][ T5985] hub 8-0:1.0: USB hub found [ 106.758906][ T5985] hub 8-0:1.0: 1 port detected [ 108.492409][ T6007] netlink: 334 bytes leftover after parsing attributes in process `syz.2.24'. [ 108.551000][ T6007] netlink: 334 bytes leftover after parsing attributes in process `syz.2.24'. [ 108.967966][ T6015] netlink: 186 bytes leftover after parsing attributes in process `syz.2.25'. [ 111.418673][ T6040] netlink: 186 bytes leftover after parsing attributes in process `syz.2.30'. [ 111.490390][ T6043] netlink: 338 bytes leftover after parsing attributes in process `syz.2.30'. [ 113.033574][ T6068] netlink: 186 bytes leftover after parsing attributes in process `syz.2.34'. [ 113.662749][ T6076] netlink: 186 bytes leftover after parsing attributes in process `syz.1.37'. [ 116.018247][ T6111] nbd: socks must be embedded in a SOCK_ITEM attr [ 116.064050][ T6111] block nbd0: shutting down sockets [ 116.594283][ T6122] netlink: 186 bytes leftover after parsing attributes in process `syz.3.48'. [ 116.706639][ T6121] netlink: 186 bytes leftover after parsing attributes in process `syz.1.47'. [ 117.294241][ T6134] netlink: 186 bytes leftover after parsing attributes in process `syz.2.52'. [ 117.463022][ T6136] netlink: 338 bytes leftover after parsing attributes in process `syz.1.51'. [ 117.494414][ T6136] netlink: 186 bytes leftover after parsing attributes in process `syz.1.51'. [ 118.628349][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 118.657599][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 118.667528][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 118.757418][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 118.927672][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 119.107685][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 120.054646][ T6167] netlink: 334 bytes leftover after parsing attributes in process `syz.1.62'. [ 120.607653][ T6174] nbd: socks must be embedded in a SOCK_ITEM attr [ 120.632682][ T6174] block nbd0: shutting down sockets [ 120.670794][ T6176] netlink: 186 bytes leftover after parsing attributes in process `syz.0.57'. [ 120.866862][ T6182] FAULT_INJECTION: forcing a failure. [ 120.866862][ T6182] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 120.929883][ T6184] netlink: 186 bytes leftover after parsing attributes in process `syz.2.58'. [ 120.980448][ T6182] CPU: 0 UID: 0 PID: 6182 Comm: syz.0.60 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 120.980490][ T6182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 120.980507][ T6182] Call Trace: [ 120.980516][ T6182] [ 120.980547][ T6182] dump_stack_lvl+0x16c/0x1f0 [ 120.980612][ T6182] should_fail_ex+0x512/0x640 [ 120.980653][ T6182] _copy_from_iter+0x2a4/0x15b0 [ 120.980695][ T6182] ? __alloc_skb+0x200/0x380 [ 120.980734][ T6182] ? __pfx__copy_from_iter+0x10/0x10 [ 120.980775][ T6182] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 120.980819][ T6182] ? __lock_acquire+0xaa4/0x1ba0 [ 120.980879][ T6182] netlink_sendmsg+0x829/0xdd0 [ 120.980932][ T6182] ? __pfx_netlink_sendmsg+0x10/0x10 [ 120.980993][ T6182] ____sys_sendmsg+0xa95/0xc70 [ 120.981022][ T6182] ? copy_msghdr_from_user+0x10a/0x160 [ 120.981063][ T6182] ? __pfx_____sys_sendmsg+0x10/0x10 [ 120.981110][ T6182] ___sys_sendmsg+0x134/0x1d0 [ 120.981152][ T6182] ? __pfx____sys_sendmsg+0x10/0x10 [ 120.981242][ T6182] __sys_sendmsg+0x16d/0x220 [ 120.981283][ T6182] ? __pfx___sys_sendmsg+0x10/0x10 [ 120.981336][ T6182] ? rcu_is_watching+0x12/0xc0 [ 120.981386][ T6182] do_syscall_64+0xcd/0x260 [ 120.981434][ T6182] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.981464][ T6182] RIP: 0033:0x7f06ebf8d169 [ 120.981488][ T6182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 120.981516][ T6182] RSP: 002b:00007f06ecda0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 120.981550][ T6182] RAX: ffffffffffffffda RBX: 00007f06ec1a5fa0 RCX: 00007f06ebf8d169 [ 120.981570][ T6182] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003 [ 120.981587][ T6182] RBP: 00007f06ecda0090 R08: 0000000000000000 R09: 0000000000000000 [ 120.981605][ T6182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 120.981623][ T6182] R13: 0000000000000000 R14: 00007f06ec1a5fa0 R15: 00007fffbcbafcd8 [ 120.981661][ T6182] [ 121.186335][ C0] vkms_vblank_simulate: vblank timer overrun [ 121.801232][ T6196] netlink: 342 bytes leftover after parsing attributes in process `syz.1.63'. [ 121.841390][ T6196] netlink: 342 bytes leftover after parsing attributes in process `syz.1.63'. [ 122.839887][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 122.914812][ T6221] FAULT_INJECTION: forcing a failure. [ 122.914812][ T6221] name failslab, interval 1, probability 0, space 0, times 1 [ 122.937452][ T6221] CPU: 1 UID: 0 PID: 6221 Comm: syz.3.70 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 122.937491][ T6221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 122.937507][ T6221] Call Trace: [ 122.937516][ T6221] [ 122.937526][ T6221] dump_stack_lvl+0x16c/0x1f0 [ 122.937574][ T6221] should_fail_ex+0x512/0x640 [ 122.937612][ T6221] should_failslab+0xc2/0x120 [ 122.937639][ T6221] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 122.937684][ T6221] ? skb_clone+0x190/0x3f0 [ 122.937727][ T6221] skb_clone+0x190/0x3f0 [ 122.937767][ T6221] netlink_deliver_tap+0xabd/0xd30 [ 122.937816][ T6221] netlink_unicast+0x5df/0x7f0 [ 122.937863][ T6221] ? __pfx_netlink_unicast+0x10/0x10 [ 122.937902][ T6221] ? __lock_acquire+0xaa4/0x1ba0 [ 122.937959][ T6221] netlink_sendmsg+0x8d1/0xdd0 [ 122.938009][ T6221] ? __pfx_netlink_sendmsg+0x10/0x10 [ 122.938066][ T6221] ____sys_sendmsg+0xa95/0xc70 [ 122.938094][ T6221] ? copy_msghdr_from_user+0x10a/0x160 [ 122.938132][ T6221] ? __pfx_____sys_sendmsg+0x10/0x10 [ 122.938177][ T6221] ___sys_sendmsg+0x134/0x1d0 [ 122.938217][ T6221] ? __pfx____sys_sendmsg+0x10/0x10 [ 122.938302][ T6221] __sys_sendmsg+0x16d/0x220 [ 122.938379][ T6221] ? __pfx___sys_sendmsg+0x10/0x10 [ 122.938428][ T6221] ? rcu_is_watching+0x12/0xc0 [ 122.938475][ T6221] do_syscall_64+0xcd/0x260 [ 122.938520][ T6221] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.938548][ T6221] RIP: 0033:0x7fdcd7b8d169 [ 122.938570][ T6221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.938596][ T6221] RSP: 002b:00007fdcd8a2b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 122.938623][ T6221] RAX: ffffffffffffffda RBX: 00007fdcd7da5fa0 RCX: 00007fdcd7b8d169 [ 122.938641][ T6221] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003 [ 122.938658][ T6221] RBP: 00007fdcd8a2b090 R08: 0000000000000000 R09: 0000000000000000 [ 122.938675][ T6221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 122.938691][ T6221] R13: 0000000000000000 R14: 00007fdcd7da5fa0 R15: 00007ffca928ae28 [ 122.938728][ T6221] [ 123.479894][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 123.491039][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 123.507567][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 123.601014][ T6233] netlink: 334 bytes leftover after parsing attributes in process `syz.3.72'. [ 123.836162][ T5153] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 123.905454][ T30] audit: type=1800 audit(14888.154:2): pid=6238 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.73" name="dbroot" dev="configfs" ino=8399 res=0 errno=0 [ 125.902584][ T6274] FAULT_INJECTION: forcing a failure. [ 125.902584][ T6274] name failslab, interval 1, probability 0, space 0, times 0 [ 125.915618][ T6274] CPU: 1 UID: 0 PID: 6274 Comm: syz.3.81 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 125.915658][ T6274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 125.915676][ T6274] Call Trace: [ 125.915686][ T6274] [ 125.915697][ T6274] dump_stack_lvl+0x16c/0x1f0 [ 125.915749][ T6274] should_fail_ex+0x512/0x640 [ 125.915783][ T6274] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 125.915838][ T6274] should_failslab+0xc2/0x120 [ 125.915868][ T6274] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 125.915916][ T6274] ? __alloc_skb+0x2b2/0x380 [ 125.915960][ T6274] __alloc_skb+0x2b2/0x380 [ 125.915998][ T6274] ? __pfx___alloc_skb+0x10/0x10 [ 125.916061][ T6274] netlink_ack+0x15d/0xb80 [ 125.916105][ T6274] ? __mutex_trylock_common+0xe9/0x250 [ 125.916150][ T6274] netlink_rcv_skb+0x347/0x440 [ 125.916197][ T6274] ? __pfx_xfrm_user_rcv_msg+0x10/0x10 [ 125.916248][ T6274] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 125.916322][ T6274] ? netlink_deliver_tap+0x1ae/0xd30 [ 125.916370][ T6274] xfrm_netlink_rcv+0x71/0x90 [ 125.916414][ T6274] netlink_unicast+0x53a/0x7f0 [ 125.916464][ T6274] ? __pfx_netlink_unicast+0x10/0x10 [ 125.916508][ T6274] ? __lock_acquire+0xaa4/0x1ba0 [ 125.916570][ T6274] netlink_sendmsg+0x8d1/0xdd0 [ 125.916623][ T6274] ? __pfx_netlink_sendmsg+0x10/0x10 [ 125.916686][ T6274] ____sys_sendmsg+0xa95/0xc70 [ 125.916716][ T6274] ? copy_msghdr_from_user+0x10a/0x160 [ 125.916757][ T6274] ? __pfx_____sys_sendmsg+0x10/0x10 [ 125.916806][ T6274] ___sys_sendmsg+0x134/0x1d0 [ 125.916850][ T6274] ? __pfx____sys_sendmsg+0x10/0x10 [ 125.916943][ T6274] __sys_sendmsg+0x16d/0x220 [ 125.916984][ T6274] ? __pfx___sys_sendmsg+0x10/0x10 [ 125.917044][ T6274] ? rcu_is_watching+0x12/0xc0 [ 125.917100][ T6274] do_syscall_64+0xcd/0x260 [ 125.917151][ T6274] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.917183][ T6274] RIP: 0033:0x7fdcd7b8d169 [ 125.917207][ T6274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.917237][ T6274] RSP: 002b:00007fdcd8a2b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 125.917265][ T6274] RAX: ffffffffffffffda RBX: 00007fdcd7da5fa0 RCX: 00007fdcd7b8d169 [ 125.917286][ T6274] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003 [ 125.917305][ T6274] RBP: 00007fdcd8a2b090 R08: 0000000000000000 R09: 0000000000000000 [ 125.917322][ T6274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 125.917339][ T6274] R13: 0000000000000000 R14: 00007fdcd7da5fa0 R15: 00007ffca928ae28 [ 125.917378][ T6274] [ 126.508632][ T6286] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7efe27546 pfn:0x78400 [ 126.532525][ T6286] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff) [ 126.570078][ T6286] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000 [ 126.627211][ T6286] raw: 00000007efe27546 0000000000000000 0000000400000002 0000000000000000 [ 126.675281][ T6286] page dumped because: unmovable page [ 126.683965][ T6286] page_owner tracks the page as allocated [ 126.690612][ T6286] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5835, tgid 5835 (syz-executor), ts 94838715689, free_ts 94605553317 [ 126.772006][ T6286] post_alloc_hook+0x181/0x1b0 [ 126.787744][ T6286] get_page_from_freelist+0x1193/0x39b0 [ 126.818493][ T6286] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 126.833098][ T6286] alloc_pages_mpol+0x1fb/0x550 [ 126.857482][ T6286] alloc_pages_noprof+0x131/0x390 [ 126.861891][ T6294] FAULT_INJECTION: forcing a failure. [ 126.861891][ T6294] name failslab, interval 1, probability 0, space 0, times 0 [ 126.896688][ T6286] __vmalloc_node_range_noprof+0x732/0x1540 [ 126.897007][ T6294] CPU: 1 UID: 0 PID: 6294 Comm: syz.2.85 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 126.897051][ T6294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 126.897072][ T6294] Call Trace: [ 126.897082][ T6294] [ 126.897103][ T6294] dump_stack_lvl+0x16c/0x1f0 [ 126.897158][ T6294] should_fail_ex+0x512/0x640 [ 126.897253][ T6294] ? fs_reclaim_acquire+0xae/0x150 [ 126.897302][ T6294] should_failslab+0xc2/0x120 [ 126.897336][ T6294] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 126.897389][ T6294] ? security_inode_alloc+0x3b/0x2b0 [ 126.897435][ T6294] security_inode_alloc+0x3b/0x2b0 [ 126.897473][ T6294] inode_init_always_gfp+0xce4/0x1030 [ 126.897532][ T6294] alloc_inode+0x86/0x240 [ 126.897570][ T6294] new_inode+0x22/0x1c0 [ 126.897613][ T6294] tracefs_get_inode+0x19/0x80 [ 126.897661][ T6294] eventfs_get_inode+0x53/0x520 [ 126.897715][ T6294] eventfs_root_lookup+0x23c/0xa50 [ 126.897768][ T6294] ? __pfx_eventfs_root_lookup+0x10/0x10 [ 126.897825][ T6294] ? lockdep_init_map_type+0x5c/0x280 [ 126.897860][ T6294] ? lockdep_init_map_type+0x5c/0x280 [ 126.897902][ T6294] __lookup_slow+0x24e/0x460 [ 126.897943][ T6294] ? __pfx___lookup_slow+0x10/0x10 [ 126.898023][ T6294] ? lookup_fast+0x156/0x610 [ 126.898085][ T6294] walk_component+0x353/0x5b0 [ 126.898134][ T6294] link_path_walk.part.0.constprop.0+0x682/0xd60 [ 126.898201][ T6294] path_openat+0x227/0x2d40 [ 126.898246][ T6294] ? __x64_sys_openat+0x174/0x210 [ 126.898303][ T6294] ? __pfx_path_openat+0x10/0x10 [ 126.898366][ T6294] do_filp_open+0x20b/0x470 [ 126.898418][ T6294] ? __pfx_do_filp_open+0x10/0x10 [ 126.898501][ T6294] ? alloc_fd+0x471/0x7d0 [ 126.898561][ T6294] do_sys_openat2+0x11b/0x1d0 [ 126.898597][ T6294] ? __pfx_do_sys_openat2+0x10/0x10 [ 126.898651][ T6294] __x64_sys_openat+0x174/0x210 [ 126.898690][ T6294] ? __pfx___x64_sys_openat+0x10/0x10 [ 126.898730][ T6294] ? rcu_is_watching+0x12/0xc0 [ 126.898785][ T6294] do_syscall_64+0xcd/0x260 [ 126.898841][ T6294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.898875][ T6294] RIP: 0033:0x7fa92a18d169 [ 126.898903][ T6294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 126.898936][ T6294] RSP: 002b:00007fa92afdc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 126.898982][ T6294] RAX: ffffffffffffffda RBX: 00007fa92a3a6240 RCX: 00007fa92a18d169 [ 126.899004][ T6294] RDX: 0000000000109041 RSI: 0000200000007380 RDI: ffffffffffffff9c [ 126.899026][ T6294] RBP: 00007fa92a20e990 R08: 0000000000000000 R09: 0000000000000000 [ 126.899047][ T6294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 126.899067][ T6294] R13: 0000000000000000 R14: 00007fa92a3a6240 R15: 00007ffdac598478 [ 126.899111][ T6294] [ 127.181642][ T6286] vmalloc_user_noprof+0x6b/0x90 [ 127.186685][ T6286] kcov_ioctl+0x4c/0x730 [ 127.191061][ T6286] __x64_sys_ioctl+0x190/0x200 [ 127.199319][ T6286] do_syscall_64+0xcd/0x260 [ 127.204057][ T6286] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.210154][ T6286] page last free pid 5829 tgid 5829 stack trace: [ 127.216527][ T6286] free_unref_folios+0x999/0x1630 [ 127.231998][ T6286] folios_put_refs+0x56f/0x740 [ 127.236942][ T6286] free_pages_and_swap_cache+0x245/0x4a0 [ 127.243172][ T6286] __tlb_batch_free_encoded_pages+0xf9/0x290 [ 127.253134][ T6286] tlb_finish_mmu+0x168/0x7b0 [ 127.258621][ T6286] vms_clear_ptes+0x55e/0x770 [ 127.263589][ T6286] vms_complete_munmap_vmas+0x1ca/0x970 [ 127.273347][ T6286] do_vmi_align_munmap+0x43b/0x7d0 [ 127.298705][ T6286] do_vmi_munmap+0x208/0x3e0 [ 127.350773][ T6286] __vm_munmap+0x19a/0x390 [ 127.355278][ T6286] __x64_sys_munmap+0x59/0x80 [ 127.360361][ T6286] do_syscall_64+0xcd/0x260 [ 127.364945][ T6286] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.308632][ T6324] netlink: 338 bytes leftover after parsing attributes in process `syz.3.94'. [ 128.428427][ T6323] netlink: 338 bytes leftover after parsing attributes in process `syz.1.95'. [ 128.432024][ T6321] netlink: 186 bytes leftover after parsing attributes in process `syz.1.95'. [ 128.461975][ T6318] netlink: 186 bytes leftover after parsing attributes in process `syz.3.94'. [ 128.659425][ T6322] netlink: 'syz.0.96': attribute type 1 has an invalid length. [ 128.920724][ T6340] FAULT_INJECTION: forcing a failure. [ 128.920724][ T6340] name failslab, interval 1, probability 0, space 0, times 0 [ 128.977284][ T6340] CPU: 0 UID: 0 PID: 6340 Comm: syz.3.99 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 128.977329][ T6340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 128.977349][ T6340] Call Trace: [ 128.977360][ T6340] [ 128.977372][ T6340] dump_stack_lvl+0x16c/0x1f0 [ 128.977426][ T6340] should_fail_ex+0x512/0x640 [ 128.977462][ T6340] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 128.977528][ T6340] should_failslab+0xc2/0x120 [ 128.977557][ T6340] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 128.977606][ T6340] ? alloc_empty_file+0x55/0x1e0 [ 128.977639][ T6340] ? find_held_lock+0x2b/0x80 [ 128.977682][ T6340] alloc_empty_file+0x55/0x1e0 [ 128.977716][ T6340] dentry_open+0x46/0xd0 [ 128.977749][ T6340] pidfs_alloc_file+0x1c6/0x320 [ 128.977790][ T6340] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 128.977835][ T6340] ? find_get_pid+0x19b/0x310 [ 128.977869][ T6340] pidfd_prepare+0xa8/0x130 [ 128.977917][ T6340] __x64_sys_pidfd_open+0x105/0x1a0 [ 128.977952][ T6340] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 128.978000][ T6340] ? rcu_is_watching+0x12/0xc0 [ 128.978043][ T6340] do_syscall_64+0xcd/0x260 [ 128.978093][ T6340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.978124][ T6340] RIP: 0033:0x7fdcd7b8d169 [ 128.978149][ T6340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.978178][ T6340] RSP: 002b:00007fdcd8a2b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 128.978206][ T6340] RAX: ffffffffffffffda RBX: 00007fdcd7da5fa0 RCX: 00007fdcd7b8d169 [ 128.978225][ T6340] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 128.978242][ T6340] RBP: 00007fdcd7c0e990 R08: 0000000000000000 R09: 0000000000000000 [ 128.978259][ T6340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 128.978276][ T6340] R13: 0000000000000000 R14: 00007fdcd7da5fa0 R15: 00007ffca928ae28 [ 128.978318][ T6340] [ 129.317950][ T6350] FAULT_INJECTION: forcing a failure. [ 129.317950][ T6350] name failslab, interval 1, probability 0, space 0, times 0 [ 129.358430][ T6350] CPU: 0 UID: 0 PID: 6350 Comm: syz.3.101 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 129.358480][ T6350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 129.358497][ T6350] Call Trace: [ 129.358507][ T6350] [ 129.358518][ T6350] dump_stack_lvl+0x16c/0x1f0 [ 129.358569][ T6350] should_fail_ex+0x512/0x640 [ 129.358610][ T6350] should_failslab+0xc2/0x120 [ 129.358639][ T6350] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 129.358697][ T6350] ? skb_clone+0x190/0x3f0 [ 129.358744][ T6350] skb_clone+0x190/0x3f0 [ 129.358789][ T6350] netlink_deliver_tap+0xabd/0xd30 [ 129.358844][ T6350] netlink_unicast+0x6b2/0x7f0 [ 129.358898][ T6350] ? __pfx_netlink_unicast+0x10/0x10 [ 129.358959][ T6350] netlink_ack+0x696/0xb80 [ 129.359019][ T6350] netlink_rcv_skb+0x347/0x440 [ 129.359066][ T6350] ? __pfx_xfrm_user_rcv_msg+0x10/0x10 [ 129.359119][ T6350] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 129.359194][ T6350] ? netlink_deliver_tap+0x1ae/0xd30 [ 129.359245][ T6350] xfrm_netlink_rcv+0x71/0x90 [ 129.359291][ T6350] netlink_unicast+0x53a/0x7f0 [ 129.359344][ T6350] ? __pfx_netlink_unicast+0x10/0x10 [ 129.359389][ T6350] ? __lock_acquire+0xaa4/0x1ba0 [ 129.359451][ T6350] netlink_sendmsg+0x8d1/0xdd0 [ 129.359505][ T6350] ? __pfx_netlink_sendmsg+0x10/0x10 [ 129.359565][ T6350] ____sys_sendmsg+0xa95/0xc70 [ 129.359594][ T6350] ? copy_msghdr_from_user+0x10a/0x160 [ 129.359634][ T6350] ? __pfx_____sys_sendmsg+0x10/0x10 [ 129.359687][ T6350] ___sys_sendmsg+0x134/0x1d0 [ 129.359730][ T6350] ? __pfx____sys_sendmsg+0x10/0x10 [ 129.359822][ T6350] __sys_sendmsg+0x16d/0x220 [ 129.359864][ T6350] ? __pfx___sys_sendmsg+0x10/0x10 [ 129.359919][ T6350] ? rcu_is_watching+0x12/0xc0 [ 129.359971][ T6350] do_syscall_64+0xcd/0x260 [ 129.360020][ T6350] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.360050][ T6350] RIP: 0033:0x7fdcd7b8d169 [ 129.360074][ T6350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 129.360101][ T6350] RSP: 002b:00007fdcd8a2b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 129.360129][ T6350] RAX: ffffffffffffffda RBX: 00007fdcd7da5fa0 RCX: 00007fdcd7b8d169 [ 129.360149][ T6350] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003 [ 129.360167][ T6350] RBP: 00007fdcd8a2b090 R08: 0000000000000000 R09: 0000000000000000 [ 129.360184][ T6350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 129.360201][ T6350] R13: 0000000000000000 R14: 00007fdcd7da5fa0 R15: 00007ffca928ae28 [ 129.360241][ T6350] [ 129.670765][ T6354] ima: policy update failed [ 129.680811][ T30] audit: type=1802 audit(4294982189.920:3): pid=6354 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.102" res=0 errno=0 [ 130.345449][ T6365] netlink: 338 bytes leftover after parsing attributes in process `syz.1.107'. [ 130.428417][ T6365] netlink: 186 bytes leftover after parsing attributes in process `syz.1.107'. [ 131.250257][ T6378] FAULT_INJECTION: forcing a failure. [ 131.250257][ T6378] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 131.293549][ T6378] CPU: 1 UID: 0 PID: 6378 Comm: syz.1.111 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 131.293592][ T6378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 131.293610][ T6378] Call Trace: [ 131.293620][ T6378] [ 131.293632][ T6378] dump_stack_lvl+0x16c/0x1f0 [ 131.293682][ T6378] should_fail_ex+0x512/0x640 [ 131.293724][ T6378] _copy_to_user+0x32/0xd0 [ 131.293768][ T6378] simple_read_from_buffer+0xcb/0x170 [ 131.293815][ T6378] proc_fail_nth_read+0x197/0x270 [ 131.293860][ T6378] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 131.293907][ T6378] ? rw_verify_area+0xcf/0x680 [ 131.293944][ T6378] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 131.293989][ T6378] vfs_read+0x1de/0xc70 [ 131.294038][ T6378] ? __pfx___mutex_lock+0x10/0x10 [ 131.294086][ T6378] ? __pfx_vfs_read+0x10/0x10 [ 131.294141][ T6378] ? __fget_files+0x20e/0x3c0 [ 131.294200][ T6378] ksys_read+0x12a/0x240 [ 131.294243][ T6378] ? __pfx_ksys_read+0x10/0x10 [ 131.294283][ T6378] ? rcu_is_watching+0x12/0xc0 [ 131.294335][ T6378] do_syscall_64+0xcd/0x260 [ 131.294386][ T6378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.294418][ T6378] RIP: 0033:0x7f8d99b8bb7c [ 131.294442][ T6378] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 131.294471][ T6378] RSP: 002b:00007f8d9a903030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 131.294507][ T6378] RAX: ffffffffffffffda RBX: 00007f8d99da5fa0 RCX: 00007f8d99b8bb7c [ 131.294528][ T6378] RDX: 000000000000000f RSI: 00007f8d9a9030a0 RDI: 0000000000000004 [ 131.294546][ T6378] RBP: 00007f8d9a903090 R08: 0000000000000000 R09: 0000000000000000 [ 131.294565][ T6378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 131.294583][ T6378] R13: 0000000000000000 R14: 00007f8d99da5fa0 R15: 00007ffdfb0e0f68 [ 131.294623][ T6378] [ 131.717901][ T6386] netlink: 'syz.0.114': attribute type 11 has an invalid length. [ 132.056603][ T6394] netlink: 'syz.1.116': attribute type 1 has an invalid length. [ 132.359231][ T6408] netlink: 338 bytes leftover after parsing attributes in process `syz.2.117'. [ 132.387435][ T6403] netlink: 186 bytes leftover after parsing attributes in process `syz.2.117'. [ 132.614015][ T6413] netlink: 4 bytes leftover after parsing attributes in process `syz.1.118'. [ 133.107466][ T6415] FAULT_INJECTION: forcing a failure. [ 133.107466][ T6415] name failslab, interval 1, probability 0, space 0, times 0 [ 133.168482][ T6415] CPU: 0 UID: 0 PID: 6415 Comm: syz.0.120 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 133.168535][ T6415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 133.168554][ T6415] Call Trace: [ 133.168565][ T6415] [ 133.168577][ T6415] dump_stack_lvl+0x16c/0x1f0 [ 133.168630][ T6415] should_fail_ex+0x512/0x640 [ 133.168667][ T6415] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 133.168723][ T6415] should_failslab+0xc2/0x120 [ 133.168753][ T6415] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 133.168805][ T6415] ? __d_alloc+0x31/0xaa0 [ 133.168839][ T6415] __d_alloc+0x31/0xaa0 [ 133.168874][ T6415] path_from_stashed+0x500/0xb00 [ 133.168931][ T6415] ? __pfx_path_from_stashed+0x10/0x10 [ 133.168978][ T6415] ? find_held_lock+0x2b/0x80 [ 133.169021][ T6415] ? alloc_fd+0x471/0x7d0 [ 133.169073][ T6415] pidfs_alloc_file+0xf8/0x320 [ 133.169116][ T6415] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 133.169164][ T6415] ? find_get_pid+0x19b/0x310 [ 133.169200][ T6415] pidfd_prepare+0xa8/0x130 [ 133.169250][ T6415] __x64_sys_pidfd_open+0x105/0x1a0 [ 133.169286][ T6415] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 133.169327][ T6415] ? rcu_is_watching+0x12/0xc0 [ 133.169371][ T6415] do_syscall_64+0xcd/0x260 [ 133.169423][ T6415] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.169455][ T6415] RIP: 0033:0x7f06ebf8d169 [ 133.169480][ T6415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.169524][ T6415] RSP: 002b:00007f06ecda0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 133.169555][ T6415] RAX: ffffffffffffffda RBX: 00007f06ec1a5fa0 RCX: 00007f06ebf8d169 [ 133.169575][ T6415] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 133.169594][ T6415] RBP: 00007f06ec00e990 R08: 0000000000000000 R09: 0000000000000000 [ 133.169612][ T6415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 133.169630][ T6415] R13: 0000000000000000 R14: 00007f06ec1a5fa0 R15: 00007fffbcbafcd8 [ 133.169670][ T6415] [ 135.347029][ T6456] netlink: 4 bytes leftover after parsing attributes in process `syz.1.130'. [ 135.426195][ T6446] process 'syz.0.127' launched './file0' with NULL argv: empty string added [ 136.424391][ T6477] FAULT_INJECTION: forcing a failure. [ 136.424391][ T6477] name failslab, interval 1, probability 0, space 0, times 0 [ 136.493865][ T6477] CPU: 1 UID: 0 PID: 6477 Comm: syz.1.136 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 136.493911][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 136.493930][ T6477] Call Trace: [ 136.493940][ T6477] [ 136.493952][ T6477] dump_stack_lvl+0x16c/0x1f0 [ 136.494005][ T6477] should_fail_ex+0x512/0x640 [ 136.494042][ T6477] ? fs_reclaim_acquire+0xae/0x150 [ 136.494084][ T6477] ? tomoyo_supervisor+0x45b/0x13b0 [ 136.494132][ T6477] should_failslab+0xc2/0x120 [ 136.494170][ T6477] __kmalloc_noprof+0xd2/0x510 [ 136.494218][ T6477] ? tomoyo_profile+0x47/0x60 [ 136.494277][ T6477] tomoyo_supervisor+0x45b/0x13b0 [ 136.494336][ T6477] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 136.494385][ T6477] ? __pfx_vsnprintf+0x10/0x10 [ 136.494449][ T6477] ? tomoyo_encode2+0x329/0x3e0 [ 136.494512][ T6477] tomoyo_path_number_perm+0x448/0x580 [ 136.494555][ T6477] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 136.494590][ T6477] ? __lock_acquire+0xaa4/0x1ba0 [ 136.494682][ T6477] ? find_held_lock+0x2b/0x80 [ 136.494723][ T6477] ? hook_file_ioctl_common+0x145/0x410 [ 136.494767][ T6477] ? __fget_files+0x20e/0x3c0 [ 136.494821][ T6477] security_file_ioctl+0x9b/0x240 [ 136.494863][ T6477] __x64_sys_ioctl+0xb7/0x200 [ 136.494904][ T6477] do_syscall_64+0xcd/0x260 [ 136.494955][ T6477] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.494985][ T6477] RIP: 0033:0x7f8d99b8d169 [ 136.495008][ T6477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 136.495037][ T6477] RSP: 002b:00007f8d979f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 136.495066][ T6477] RAX: ffffffffffffffda RBX: 00007f8d99da6080 RCX: 00007f8d99b8d169 [ 136.495088][ T6477] RDX: 0000000000000000 RSI: 00000000c0045005 RDI: 0000000000000006 [ 136.495107][ T6477] RBP: 00007f8d99c0e990 R08: 0000000000000000 R09: 0000000000000000 [ 136.495126][ T6477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 136.495145][ T6477] R13: 0000000000000000 R14: 00007f8d99da6080 R15: 00007ffdfb0e0f68 [ 136.495194][ T6477] [ 137.040211][ T6483] netlink: 338 bytes leftover after parsing attributes in process `syz.2.135'. [ 137.216456][ T6485] netlink: 186 bytes leftover after parsing attributes in process `syz.2.135'. [ 138.098095][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.105112][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 139.687510][ T6509] netlink: 'syz.3.143': attribute type 1 has an invalid length. [ 140.555999][ T6537] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 140.572541][ T6530] netlink: 16 bytes leftover after parsing attributes in process `syz.1.148'. [ 140.734410][ T6530] netlink: 338 bytes leftover after parsing attributes in process `syz.1.148'. [ 140.746160][ T6537] netlink: 338 bytes leftover after parsing attributes in process `syz.1.148'. [ 141.397784][ T30] audit: type=1800 audit(4294982201.650:4): pid=6540 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.146" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 141.457946][ T6541] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 142.222329][ T6560] netlink: zone id is out of range [ 143.451121][ T6576] mmap: syz.2.156 (6576) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 143.720761][ T6541] Device name cannot be null; rc = [-22] [ 143.764262][ T6577] Invalid ELF header magic: != ELF [ 144.387502][ T6584] netlink: 342 bytes leftover after parsing attributes in process `syz.3.159'. [ 144.457659][ T6584] netlink: 342 bytes leftover after parsing attributes in process `syz.3.159'. [ 144.997756][ T6595] FAULT_INJECTION: forcing a failure. [ 144.997756][ T6595] name failslab, interval 1, probability 0, space 0, times 0 [ 145.021783][ T6595] CPU: 1 UID: 0 PID: 6595 Comm: syz.1.160 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 145.021827][ T6595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 145.021846][ T6595] Call Trace: [ 145.021856][ T6595] [ 145.021868][ T6595] dump_stack_lvl+0x16c/0x1f0 [ 145.021923][ T6595] should_fail_ex+0x512/0x640 [ 145.021959][ T6595] ? fs_reclaim_acquire+0xae/0x150 [ 145.022014][ T6595] ? tomoyo_encode2+0x100/0x3e0 [ 145.022058][ T6595] should_failslab+0xc2/0x120 [ 145.022092][ T6595] __kmalloc_noprof+0xd2/0x510 [ 145.022140][ T6595] ? d_absolute_path+0x136/0x1a0 [ 145.022183][ T6595] tomoyo_encode2+0x100/0x3e0 [ 145.022234][ T6595] tomoyo_encode+0x29/0x50 [ 145.022277][ T6595] tomoyo_realpath_from_path+0x18f/0x6e0 [ 145.022342][ T6595] tomoyo_check_open_permission+0x2ab/0x3c0 [ 145.022384][ T6595] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 145.022465][ T6595] ? do_raw_spin_lock+0x12c/0x2b0 [ 145.022514][ T6595] tomoyo_file_open+0x6b/0x90 [ 145.022568][ T6595] security_file_open+0x84/0x1e0 [ 145.022611][ T6595] do_dentry_open+0x596/0x1c10 [ 145.022671][ T6595] vfs_open+0x82/0x3f0 [ 145.022709][ T6595] path_openat+0x1e5e/0x2d40 [ 145.022774][ T6595] ? __pfx_path_openat+0x10/0x10 [ 145.022834][ T6595] do_filp_open+0x20b/0x470 [ 145.022883][ T6595] ? __pfx_do_filp_open+0x10/0x10 [ 145.022962][ T6595] ? alloc_fd+0x471/0x7d0 [ 145.023021][ T6595] do_sys_openat2+0x11b/0x1d0 [ 145.023055][ T6595] ? __pfx_do_sys_openat2+0x10/0x10 [ 145.023092][ T6595] ? __sys_sendmsg+0x199/0x220 [ 145.023147][ T6595] __x64_sys_openat+0x174/0x210 [ 145.023182][ T6595] ? __pfx___x64_sys_openat+0x10/0x10 [ 145.023220][ T6595] ? rcu_is_watching+0x12/0xc0 [ 145.023272][ T6595] do_syscall_64+0xcd/0x260 [ 145.023330][ T6595] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.023375][ T6595] RIP: 0033:0x7f8d99b8d169 [ 145.023400][ T6595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 145.023429][ T6595] RSP: 002b:00007f8d9a903038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 145.023458][ T6595] RAX: ffffffffffffffda RBX: 00007f8d99da5fa0 RCX: 00007f8d99b8d169 [ 145.023478][ T6595] RDX: 0000000000004800 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 145.023497][ T6595] RBP: 00007f8d99c0e990 R08: 0000000000000000 R09: 0000000000000000 [ 145.023515][ T6595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 145.023532][ T6595] R13: 0000000000000000 R14: 00007f8d99da5fa0 R15: 00007ffdfb0e0f68 [ 145.023572][ T6595] [ 145.024820][ T6595] ERROR: Out of memory at tomoyo_realpath_from_path. [ 145.435959][ T6597] netlink: 'syz.2.161': attribute type 1 has an invalid length. [ 146.486266][ T6626] netlink: 28 bytes leftover after parsing attributes in process `syz.3.165'. [ 147.102284][ T6626] bond0: (slave bond_slave_0): Releasing backup interface [ 147.523126][ T6638] netlink: 338 bytes leftover after parsing attributes in process `syz.1.167'. [ 147.581909][ T6640] netlink: 338 bytes leftover after parsing attributes in process `syz.1.167'. [ 148.494317][ T6664] netlink: 'syz.1.174': attribute type 1 has an invalid length. [ 148.524429][ T6647] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 148.543607][ T6647] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 148.575903][ T6647] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 148.601282][ T6647] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 148.609943][ T6647] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 148.620133][ T6647] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 148.635771][ T6647] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 148.658138][ T6647] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 148.670482][ T6647] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 148.689150][ T6647] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 148.697834][ T6647] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 148.713281][ T6647] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 149.171566][ T6686] netlink: 8 bytes leftover after parsing attributes in process `syz.0.179'. [ 149.927142][ T5153] Bluetooth: hci0: command 0x0c1a tx timeout [ 150.183958][ T6702] netlink: 338 bytes leftover after parsing attributes in process `syz.1.184'. [ 150.219648][ T6702] netlink: 186 bytes leftover after parsing attributes in process `syz.1.184'. [ 150.636993][ T6710] netlink: 'syz.0.186': attribute type 1 has an invalid length. [ 150.653016][ T5153] Bluetooth: hci2: command 0x0c1a tx timeout [ 150.659813][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 150.717202][ T5153] Bluetooth: hci3: command 0x0c1a tx timeout [ 151.092940][ T6730] netlink: 4 bytes leftover after parsing attributes in process `syz.1.191'. [ 151.102661][ T6730] netlink: 354 bytes leftover after parsing attributes in process `syz.1.191'. [ 151.280846][ T6739] netlink: 504 bytes leftover after parsing attributes in process `syz.2.194'. [ 151.323947][ T6739] netlink: 350 bytes leftover after parsing attributes in process `syz.2.194'. [ 151.546799][ T6743] netlink: 338 bytes leftover after parsing attributes in process `syz.1.195'. [ 151.645335][ T6745] netlink: 186 bytes leftover after parsing attributes in process `syz.1.195'. [ 151.997304][ T5153] Bluetooth: hci0: command 0x0c1a tx timeout [ 152.288566][ T6753] netlink: 8 bytes leftover after parsing attributes in process `syz.1.196'. [ 152.665334][ T30] audit: type=1800 audit(4294982212.910:5): pid=6747 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.193" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 152.717761][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 152.723912][ T5153] Bluetooth: hci2: command 0x0c1a tx timeout [ 152.799407][ T5153] Bluetooth: hci3: command 0x0c1a tx timeout [ 153.020863][ T6760] netlink: 334 bytes leftover after parsing attributes in process `syz.3.198'. [ 153.053863][ T6760] netlink: 334 bytes leftover after parsing attributes in process `syz.3.198'. [ 153.964717][ T6767] netlink: 'syz.3.200': attribute type 1 has an invalid length. [ 154.079658][ T5153] Bluetooth: hci0: command 0x0c1a tx timeout [ 154.171517][ T6776] Invalid ELF header magic: != ELF [ 154.193299][ T6778] netlink: 4 bytes leftover after parsing attributes in process `syz.0.203'. [ 154.202713][ T6778] netlink: 354 bytes leftover after parsing attributes in process `syz.0.203'. [ 154.590791][ T6783] netlink: 186 bytes leftover after parsing attributes in process `syz.0.204'. [ 154.797262][ T5153] Bluetooth: hci2: command 0x0c1a tx timeout [ 154.803377][ T5153] Bluetooth: hci1: command 0x0c1a tx timeout [ 154.877223][ T5153] Bluetooth: hci3: command 0x0c1a tx timeout [ 155.140415][ T6794] netlink: 334 bytes leftover after parsing attributes in process `syz.0.208'. [ 155.234832][ T6797] netlink: 334 bytes leftover after parsing attributes in process `syz.0.208'. [ 157.354955][ T6826] netlink: 'syz.0.215': attribute type 1 has an invalid length. [ 157.475916][ T6831] __nla_validate_parse: 3 callbacks suppressed [ 157.475940][ T6831] netlink: 338 bytes leftover after parsing attributes in process `syz.3.217'. [ 157.606273][ T6838] netlink: 186 bytes leftover after parsing attributes in process `syz.3.217'. [ 158.659034][ T6866] netlink: 4 bytes leftover after parsing attributes in process `syz.3.223'. [ 158.727850][ T6867] netlink: 354 bytes leftover after parsing attributes in process `syz.3.223'. [ 159.896765][ T6892] netlink: 342 bytes leftover after parsing attributes in process `syz.2.229'. [ 159.928513][ T6892] netlink: 4 bytes leftover after parsing attributes in process `syz.2.229'. [ 160.518768][ T6895] netlink: 'syz.3.230': attribute type 1 has an invalid length. [ 160.560872][ T6906] netlink: 4 bytes leftover after parsing attributes in process `syz.2.232'. [ 160.570486][ T6906] netlink: 354 bytes leftover after parsing attributes in process `syz.2.232'. [ 161.230496][ T6916] netlink: 266 bytes leftover after parsing attributes in process `syz.0.234'. [ 161.239726][ T6916] IPv6: NLM_F_CREATE should be specified when creating new route [ 161.357920][ T6918] tipc: Trying to set illegal importance in message [ 162.507495][ T6937] netlink: zone id is out of range [ 162.749876][ T6942] netlink: 4 bytes leftover after parsing attributes in process `syz.3.241'. [ 162.798932][ T6942] netlink: 354 bytes leftover after parsing attributes in process `syz.3.241'. [ 163.277041][ T6947] netlink: 'syz.2.243': attribute type 1 has an invalid length. [ 163.467331][ T6960] netlink: 186 bytes leftover after parsing attributes in process `syz.3.246'. [ 163.961067][ T6966] kexec: Could not allocate control_code_buffer [ 164.524519][ T6979] netlink: zone id is out of range [ 164.552731][ T6981] FAULT_INJECTION: forcing a failure. [ 164.552731][ T6981] name failslab, interval 1, probability 0, space 0, times 0 [ 164.594735][ T6981] CPU: 0 UID: 0 PID: 6981 Comm: syz.3.252 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 164.594776][ T6981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 164.594792][ T6981] Call Trace: [ 164.594801][ T6981] [ 164.594812][ T6981] dump_stack_lvl+0x16c/0x1f0 [ 164.594861][ T6981] should_fail_ex+0x512/0x640 [ 164.594894][ T6981] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 164.594943][ T6981] should_failslab+0xc2/0x120 [ 164.594971][ T6981] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 164.595018][ T6981] ? __pmd_alloc+0xc3/0x870 [ 164.595059][ T6981] __pmd_alloc+0xc3/0x870 [ 164.595093][ T6981] ? find_held_lock+0x2b/0x80 [ 164.595136][ T6981] __handle_mm_fault+0x948/0x2a40 [ 164.595193][ T6981] ? __pfx___handle_mm_fault+0x10/0x10 [ 164.595273][ T6981] ? find_vma+0xbf/0x140 [ 164.595307][ T6981] ? __pfx_find_vma+0x10/0x10 [ 164.595347][ T6981] handle_mm_fault+0x3fe/0xad0 [ 164.595399][ T6981] do_user_addr_fault+0x7a6/0x1370 [ 164.595441][ T6981] ? rcu_is_watching+0x12/0xc0 [ 164.595490][ T6981] exc_page_fault+0x5c/0xc0 [ 164.595535][ T6981] asm_exc_page_fault+0x26/0x30 [ 164.595566][ T6981] RIP: 0010:rep_movs_alternative+0x33/0x90 [ 164.595603][ T6981] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb [ 164.595632][ T6981] RSP: 0018:ffffc90004a2fe10 EFLAGS: 00050212 [ 164.595658][ T6981] RAX: 0000000003f13e43 RBX: 0000000000000010 RCX: 0000000000000010 [ 164.595677][ T6981] RDX: fffff52000945fd1 RSI: ffffc90004a2fe78 RDI: 0000000000000005 [ 164.595697][ T6981] RBP: 0000000000000005 R08: 0000000000000000 R09: fffff52000945fd0 [ 164.595716][ T6981] R10: ffffc90004a2fe87 R11: 0000000000000000 R12: ffffc90004a2fe78 [ 164.595736][ T6981] R13: 0000000000000015 R14: 00007ffffffff000 R15: 0000000000000000 [ 164.595777][ T6981] _copy_to_user+0xbb/0xd0 [ 164.595821][ T6981] blkdev_ioctl+0x5bb/0x6d0 [ 164.595873][ T6981] ? __pfx_blkdev_ioctl+0x10/0x10 [ 164.595928][ T6981] ? __pfx_blkdev_ioctl+0x10/0x10 [ 164.595981][ T6981] __x64_sys_ioctl+0x190/0x200 [ 164.596024][ T6981] do_syscall_64+0xcd/0x260 [ 164.596074][ T6981] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.596105][ T6981] RIP: 0033:0x7fdcd7b8d169 [ 164.596130][ T6981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 164.596159][ T6981] RSP: 002b:00007fdcd8a2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 164.596187][ T6981] RAX: ffffffffffffffda RBX: 00007fdcd7da5fa0 RCX: 00007fdcd7b8d169 [ 164.596207][ T6981] RDX: 0000000000000005 RSI: 0000000000000301 RDI: 0000000000000003 [ 164.596226][ T6981] RBP: 00007fdcd8a2b090 R08: 0000000000000000 R09: 0000000000000000 [ 164.596253][ T6981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 164.596272][ T6981] R13: 0000000000000000 R14: 00007fdcd7da5fa0 R15: 00007ffca928ae28 [ 164.596313][ T6981] [ 165.329094][ T6984] netlink: 4 bytes leftover after parsing attributes in process `syz.0.253'. [ 165.347949][ T6984] netlink: 354 bytes leftover after parsing attributes in process `syz.0.253'. [ 166.461283][ T7012] FAULT_INJECTION: forcing a failure. [ 166.461283][ T7012] name failslab, interval 1, probability 0, space 0, times 0 [ 166.478203][ T7006] FAULT_INJECTION: forcing a failure. [ 166.478203][ T7006] name failslab, interval 1, probability 0, space 0, times 0 [ 166.497265][ T7006] CPU: 0 UID: 0 PID: 7006 Comm: syz.3.260 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 166.497310][ T7006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 166.497328][ T7006] Call Trace: [ 166.497337][ T7006] [ 166.497350][ T7006] dump_stack_lvl+0x16c/0x1f0 [ 166.497403][ T7006] should_fail_ex+0x512/0x640 [ 166.497440][ T7006] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 166.497496][ T7006] should_failslab+0xc2/0x120 [ 166.497528][ T7006] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 166.497579][ T7006] ? alloc_empty_file+0x55/0x1e0 [ 166.497614][ T7006] ? find_held_lock+0x2b/0x80 [ 166.497660][ T7006] alloc_empty_file+0x55/0x1e0 [ 166.497696][ T7006] dentry_open+0x46/0xd0 [ 166.497729][ T7006] pidfs_alloc_file+0x1c6/0x320 [ 166.497774][ T7006] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 166.497821][ T7006] ? find_get_pid+0x19b/0x310 [ 166.497858][ T7006] pidfd_prepare+0xa8/0x130 [ 166.497910][ T7006] __x64_sys_pidfd_open+0x105/0x1a0 [ 166.497946][ T7006] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 166.497988][ T7006] ? rcu_is_watching+0x12/0xc0 [ 166.498032][ T7006] do_syscall_64+0xcd/0x260 [ 166.498094][ T7006] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 166.498129][ T7006] RIP: 0033:0x7fdcd7b8d169 [ 166.498155][ T7006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 166.498187][ T7006] RSP: 002b:00007fdcd8a0a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 166.498219][ T7006] RAX: ffffffffffffffda RBX: 00007fdcd7da6080 RCX: 00007fdcd7b8d169 [ 166.498240][ T7006] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 166.498259][ T7006] RBP: 00007fdcd7c0e990 R08: 0000000000000000 R09: 0000000000000000 [ 166.498279][ T7006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 166.498299][ T7006] R13: 0000000000000000 R14: 00007fdcd7da6080 R15: 00007ffca928ae28 [ 166.498340][ T7006] [ 166.732197][ T7012] CPU: 0 UID: 0 PID: 7012 Comm: syz.2.262 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 166.732240][ T7012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 166.732257][ T7012] Call Trace: [ 166.732267][ T7012] [ 166.732278][ T7012] dump_stack_lvl+0x16c/0x1f0 [ 166.732330][ T7012] should_fail_ex+0x512/0x640 [ 166.732365][ T7012] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 166.732418][ T7012] should_failslab+0xc2/0x120 [ 166.732448][ T7012] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 166.732497][ T7012] ? __pmd_alloc+0xc3/0x870 [ 166.732538][ T7012] __pmd_alloc+0xc3/0x870 [ 166.732573][ T7012] ? find_held_lock+0x2b/0x80 [ 166.732615][ T7012] __handle_mm_fault+0x948/0x2a40 [ 166.732673][ T7012] ? __pfx___handle_mm_fault+0x10/0x10 [ 166.732737][ T7012] ? find_vma+0xbf/0x140 [ 166.732770][ T7012] ? __pfx_find_vma+0x10/0x10 [ 166.732806][ T7012] handle_mm_fault+0x3fe/0xad0 [ 166.732869][ T7012] do_user_addr_fault+0x7a6/0x1370 [ 166.732912][ T7012] ? rcu_is_watching+0x12/0xc0 [ 166.732953][ T7012] exc_page_fault+0x5c/0xc0 [ 166.732998][ T7012] asm_exc_page_fault+0x26/0x30 [ 166.733027][ T7012] RIP: 0010:rep_movs_alternative+0x33/0x90 [ 166.733062][ T7012] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb [ 166.733090][ T7012] RSP: 0018:ffffc90003d9fe10 EFLAGS: 00050212 [ 166.733115][ T7012] RAX: 0000000003f13e43 RBX: 0000000000000010 RCX: 0000000000000010 [ 166.733133][ T7012] RDX: fffff520007b3fd1 RSI: ffffc90003d9fe78 RDI: 0000000000000005 [ 166.733153][ T7012] RBP: 0000000000000005 R08: 0000000000000000 R09: fffff520007b3fd0 [ 166.733171][ T7012] R10: ffffc90003d9fe87 R11: 0000000000000000 R12: ffffc90003d9fe78 [ 166.733191][ T7012] R13: 0000000000000015 R14: 00007ffffffff000 R15: 0000000000000000 [ 166.733235][ T7012] _copy_to_user+0xbb/0xd0 [ 166.733279][ T7012] blkdev_ioctl+0x5bb/0x6d0 [ 166.733328][ T7012] ? __pfx_blkdev_ioctl+0x10/0x10 [ 166.733383][ T7012] ? __pfx_blkdev_ioctl+0x10/0x10 [ 166.733434][ T7012] __x64_sys_ioctl+0x190/0x200 [ 166.733476][ T7012] do_syscall_64+0xcd/0x260 [ 166.733527][ T7012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 166.733557][ T7012] RIP: 0033:0x7fa92a18d169 [ 166.733581][ T7012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 166.733610][ T7012] RSP: 002b:00007fa92b03f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 166.733636][ T7012] RAX: ffffffffffffffda RBX: 00007fa92a3a5fa0 RCX: 00007fa92a18d169 [ 166.733655][ T7012] RDX: 0000000000000005 RSI: 0000000000000301 RDI: 0000000000000003 [ 166.733673][ T7012] RBP: 00007fa92b03f090 R08: 0000000000000000 R09: 0000000000000000 [ 166.733691][ T7012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 166.733708][ T7012] R13: 0000000000000000 R14: 00007fa92a3a5fa0 R15: 00007ffdac598478 [ 166.733748][ T7012] [ 167.362225][ T7019] netlink: 28 bytes leftover after parsing attributes in process `syz.2.263'. [ 167.448392][ T7021] netlink: 4 bytes leftover after parsing attributes in process `syz.3.264'. [ 167.458152][ T7021] netlink: 354 bytes leftover after parsing attributes in process `syz.3.264'. [ 167.776101][ T7029] netlink: 28 bytes leftover after parsing attributes in process `syz.2.267'. [ 167.789857][ T7029] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 167.941774][ T7029] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 167.978532][ T7030] ======================================================= [ 167.978532][ T7030] WARNING: The mand mount option has been deprecated and [ 167.978532][ T7030] and is ignored by this kernel. Remove the mand [ 167.978532][ T7030] option from the mount to silence this warning. [ 167.978532][ T7030] ======================================================= [ 168.239343][ T7024] netlink: 'syz.1.265': attribute type 1 has an invalid length. [ 170.347574][ T7058] FAULT_INJECTION: forcing a failure. [ 170.347574][ T7058] name failslab, interval 1, probability 0, space 0, times 0 [ 170.388134][ T7058] CPU: 0 UID: 0 PID: 7058 Comm: syz.2.272 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 170.388176][ T7058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 170.388194][ T7058] Call Trace: [ 170.388204][ T7058] [ 170.388216][ T7058] dump_stack_lvl+0x16c/0x1f0 [ 170.388268][ T7058] should_fail_ex+0x512/0x640 [ 170.388302][ T7058] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 170.388353][ T7058] ? __pfx_filemap_map_pages+0x10/0x10 [ 170.388381][ T7058] should_failslab+0xc2/0x120 [ 170.388407][ T7058] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 170.388457][ T7058] ? ptlock_alloc+0x1f/0x70 [ 170.388502][ T7058] ? __pfx_filemap_map_pages+0x10/0x10 [ 170.388533][ T7058] ptlock_alloc+0x1f/0x70 [ 170.388575][ T7058] pte_alloc_one+0x6d/0x380 [ 170.388614][ T7058] __do_fault+0x320/0x490 [ 170.388653][ T7058] ? __pfx_filemap_map_pages+0x10/0x10 [ 170.388681][ T7058] do_pte_missing+0x1a6/0x3fb0 [ 170.388724][ T7058] ? do_raw_spin_unlock+0x172/0x230 [ 170.388757][ T7058] ? __pmd_alloc+0x3c2/0x870 [ 170.388785][ T7058] ? find_held_lock+0x2b/0x80 [ 170.388820][ T7058] __handle_mm_fault+0x103d/0x2a40 [ 170.388866][ T7058] ? __pfx___handle_mm_fault+0x10/0x10 [ 170.388921][ T7058] ? find_vma+0xbf/0x140 [ 170.388947][ T7058] ? __pfx_find_vma+0x10/0x10 [ 170.388979][ T7058] handle_mm_fault+0x3fe/0xad0 [ 170.389020][ T7058] do_user_addr_fault+0x7a6/0x1370 [ 170.389054][ T7058] ? rcu_is_watching+0x12/0xc0 [ 170.389090][ T7058] exc_page_fault+0x5c/0xc0 [ 170.389127][ T7058] asm_exc_page_fault+0x26/0x30 [ 170.389152][ T7058] RIP: 0010:rep_movs_alternative+0x33/0x90 [ 170.389183][ T7058] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb [ 170.389206][ T7058] RSP: 0018:ffffc9000e98fe10 EFLAGS: 00050212 [ 170.389227][ T7058] RAX: 0000000003f13e43 RBX: 0000000000000010 RCX: 0000000000000010 [ 170.389242][ T7058] RDX: fffff52001d31fd1 RSI: ffffc9000e98fe78 RDI: 0000000000000005 [ 170.389259][ T7058] RBP: 0000000000000005 R08: 0000000000000000 R09: fffff52001d31fd0 [ 170.389274][ T7058] R10: ffffc9000e98fe87 R11: 0000000000000000 R12: ffffc9000e98fe78 [ 170.389290][ T7058] R13: 0000000000000015 R14: 00007ffffffff000 R15: 0000000000000000 [ 170.389322][ T7058] _copy_to_user+0xbb/0xd0 [ 170.389357][ T7058] blkdev_ioctl+0x5bb/0x6d0 [ 170.389400][ T7058] ? __pfx_blkdev_ioctl+0x10/0x10 [ 170.389446][ T7058] ? __pfx_blkdev_ioctl+0x10/0x10 [ 170.389488][ T7058] __x64_sys_ioctl+0x190/0x200 [ 170.389523][ T7058] do_syscall_64+0xcd/0x260 [ 170.389564][ T7058] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.389589][ T7058] RIP: 0033:0x7fa92a18d169 [ 170.389609][ T7058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.389638][ T7058] RSP: 002b:00007fa92b03f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 170.389660][ T7058] RAX: ffffffffffffffda RBX: 00007fa92a3a5fa0 RCX: 00007fa92a18d169 [ 170.389677][ T7058] RDX: 0000000000000005 RSI: 0000000000000301 RDI: 0000000000000003 [ 170.389692][ T7058] RBP: 00007fa92b03f090 R08: 0000000000000000 R09: 0000000000000000 [ 170.389707][ T7058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 170.389722][ T7058] R13: 0000000000000000 R14: 00007fa92a3a5fa0 R15: 00007ffdac598478 [ 170.389754][ T7058] [ 171.157885][ T7066] netlink: 4 bytes leftover after parsing attributes in process `syz.2.274'. [ 171.209041][ T7066] netlink: 354 bytes leftover after parsing attributes in process `syz.2.274'. [ 171.466952][ T7076] netlink: zone id is out of range [ 171.815001][ T7080] netlink: 'syz.1.279': attribute type 1 has an invalid length. [ 172.034533][ T7092] FAULT_INJECTION: forcing a failure. [ 172.034533][ T7092] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 172.083178][ T7092] CPU: 0 UID: 0 PID: 7092 Comm: syz.3.282 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 172.083222][ T7092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 172.083240][ T7092] Call Trace: [ 172.083249][ T7092] [ 172.083261][ T7092] dump_stack_lvl+0x16c/0x1f0 [ 172.083315][ T7092] should_fail_ex+0x512/0x640 [ 172.083356][ T7092] should_fail_alloc_page+0xe7/0x130 [ 172.083389][ T7092] prepare_alloc_pages+0x3c2/0x610 [ 172.083434][ T7092] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 172.083498][ T7092] ? __lock_acquire+0x5ca/0x1ba0 [ 172.083560][ T7092] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 172.083622][ T7092] ? find_held_lock+0x2b/0x80 [ 172.083664][ T7092] ? is_bpf_text_address+0x8a/0x1a0 [ 172.083692][ T7092] ? bpf_ksym_find+0x124/0x1c0 [ 172.083733][ T7092] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 172.083769][ T7092] ? policy_nodemask+0xea/0x4e0 [ 172.083829][ T7092] alloc_pages_mpol+0x1fb/0x550 [ 172.083861][ T7092] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 172.083902][ T7092] folio_alloc_mpol_noprof+0x36/0x2f0 [ 172.083942][ T7092] shmem_alloc_folio+0x135/0x160 [ 172.083987][ T7092] shmem_alloc_and_add_folio+0x499/0xc20 [ 172.084048][ T7092] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 172.084103][ T7092] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 172.084161][ T7092] shmem_get_folio_gfp+0x687/0x1530 [ 172.084221][ T7092] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 172.084281][ T7092] shmem_fault+0x1fe/0xa30 [ 172.084334][ T7092] ? __pfx_shmem_fault+0x10/0x10 [ 172.084384][ T7092] ? __mod_memcg_lruvec_state+0x533/0x760 [ 172.084430][ T7092] ? __pfx_filemap_map_pages+0x10/0x10 [ 172.084463][ T7092] ? pte_alloc_one+0x2b1/0x380 [ 172.084508][ T7092] ? __pfx_filemap_map_pages+0x10/0x10 [ 172.084546][ T7092] __do_fault+0x10a/0x490 [ 172.084578][ T7092] ? __pfx_filemap_map_pages+0x10/0x10 [ 172.084608][ T7092] do_pte_missing+0x1a6/0x3fb0 [ 172.084653][ T7092] ? do_raw_spin_unlock+0x172/0x230 [ 172.084692][ T7092] ? __pmd_alloc+0x3c2/0x870 [ 172.084726][ T7092] ? find_held_lock+0x2b/0x80 [ 172.084769][ T7092] __handle_mm_fault+0x103d/0x2a40 [ 172.084827][ T7092] ? __pfx___handle_mm_fault+0x10/0x10 [ 172.084897][ T7092] ? find_vma+0xbf/0x140 [ 172.084930][ T7092] ? __pfx_find_vma+0x10/0x10 [ 172.084970][ T7092] handle_mm_fault+0x3fe/0xad0 [ 172.085023][ T7092] do_user_addr_fault+0x7a6/0x1370 [ 172.085065][ T7092] ? rcu_is_watching+0x12/0xc0 [ 172.085109][ T7092] exc_page_fault+0x5c/0xc0 [ 172.085155][ T7092] asm_exc_page_fault+0x26/0x30 [ 172.085186][ T7092] RIP: 0010:rep_movs_alternative+0x33/0x90 [ 172.085223][ T7092] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb [ 172.085252][ T7092] RSP: 0018:ffffc90003a5fe10 EFLAGS: 00050212 [ 172.085277][ T7092] RAX: 0000000003f13e43 RBX: 0000000000000010 RCX: 0000000000000010 [ 172.085296][ T7092] RDX: fffff5200074bfd1 RSI: ffffc90003a5fe78 RDI: 0000000000000005 [ 172.085314][ T7092] RBP: 0000000000000005 R08: 0000000000000000 R09: fffff5200074bfd0 [ 172.085332][ T7092] R10: ffffc90003a5fe87 R11: 0000000000000000 R12: ffffc90003a5fe78 [ 172.085350][ T7092] R13: 0000000000000015 R14: 00007ffffffff000 R15: 0000000000000000 [ 172.085389][ T7092] _copy_to_user+0xbb/0xd0 [ 172.085434][ T7092] blkdev_ioctl+0x5bb/0x6d0 [ 172.085484][ T7092] ? __pfx_blkdev_ioctl+0x10/0x10 [ 172.085545][ T7092] ? __pfx_blkdev_ioctl+0x10/0x10 [ 172.085598][ T7092] __x64_sys_ioctl+0x190/0x200 [ 172.085641][ T7092] do_syscall_64+0xcd/0x260 [ 172.085692][ T7092] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.085723][ T7092] RIP: 0033:0x7fdcd7b8d169 [ 172.085747][ T7092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 172.085776][ T7092] RSP: 002b:00007fdcd8a2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 172.085803][ T7092] RAX: ffffffffffffffda RBX: 00007fdcd7da5fa0 RCX: 00007fdcd7b8d169 [ 172.085824][ T7092] RDX: 0000000000000005 RSI: 0000000000000301 RDI: 0000000000000003 [ 172.085842][ T7092] RBP: 00007fdcd8a2b090 R08: 0000000000000000 R09: 0000000000000000 [ 172.085860][ T7092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 172.085876][ T7092] R13: 0000000000000000 R14: 00007fdcd7da5fa0 R15: 00007ffca928ae28 [ 172.085916][ T7092] [ 172.953888][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 173.291933][ T7107] netlink: 4 bytes leftover after parsing attributes in process `syz.2.285'. [ 173.305534][ T7107] netlink: 354 bytes leftover after parsing attributes in process `syz.2.285'. [ 173.637341][ T7113] netlink: zone id is out of range [ 173.965129][ T7120] FAULT_INJECTION: forcing a failure. [ 173.965129][ T7120] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 174.013861][ T7120] CPU: 1 UID: 0 PID: 7120 Comm: syz.2.292 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 174.013904][ T7120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 174.013922][ T7120] Call Trace: [ 174.013932][ T7120] [ 174.013944][ T7120] dump_stack_lvl+0x16c/0x1f0 [ 174.013996][ T7120] should_fail_ex+0x512/0x640 [ 174.014039][ T7120] _copy_to_user+0x32/0xd0 [ 174.014082][ T7120] simple_read_from_buffer+0xcb/0x170 [ 174.014129][ T7120] proc_fail_nth_read+0x197/0x270 [ 174.014173][ T7120] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 174.014226][ T7120] ? rw_verify_area+0xcf/0x680 [ 174.014264][ T7120] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 174.014307][ T7120] vfs_read+0x1de/0xc70 [ 174.014354][ T7120] ? __pfx___mutex_lock+0x10/0x10 [ 174.014400][ T7120] ? __pfx_vfs_read+0x10/0x10 [ 174.014454][ T7120] ? __fget_files+0x20e/0x3c0 [ 174.014498][ T7120] ? check_zeroed_user+0x160/0x1b0 [ 174.014548][ T7120] ksys_read+0x12a/0x240 [ 174.014592][ T7120] ? __pfx_ksys_read+0x10/0x10 [ 174.014650][ T7120] do_syscall_64+0xcd/0x260 [ 174.014705][ T7120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.014738][ T7120] RIP: 0033:0x7fa92a18bb7c [ 174.014763][ T7120] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 174.014792][ T7120] RSP: 002b:00007fa92b03f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 174.014822][ T7120] RAX: ffffffffffffffda RBX: 00007fa92a3a5fa0 RCX: 00007fa92a18bb7c [ 174.014842][ T7120] RDX: 000000000000000f RSI: 00007fa92b03f0a0 RDI: 0000000000000004 [ 174.014860][ T7120] RBP: 00007fa92b03f090 R08: 0000000000000000 R09: 0000000000000000 [ 174.014877][ T7120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 174.014896][ T7120] R13: 0000000000000000 R14: 00007fa92a3a5fa0 R15: 00007ffdac598478 [ 174.014936][ T7120] [ 174.204374][ C1] vkms_vblank_simulate: vblank timer overrun [ 174.670630][ T7123] Invalid ELF header magic: != ELF [ 174.691655][ T7132] netlink: 4 bytes leftover after parsing attributes in process `syz.2.295'. [ 174.701102][ T7132] netlink: 354 bytes leftover after parsing attributes in process `syz.2.295'. [ 176.988448][ T7159] netlink: 'syz.2.301': attribute type 1 has an invalid length. [ 178.484994][ T7184] netlink: 4 bytes leftover after parsing attributes in process `syz.1.306'. [ 178.496534][ T7184] netlink: 354 bytes leftover after parsing attributes in process `syz.1.306'. [ 178.742864][ T7190] netlink: 342 bytes leftover after parsing attributes in process `syz.1.307'. [ 179.156838][ T7197] netlink: 28 bytes leftover after parsing attributes in process `syz.3.310'. [ 180.695263][ T7219] netlink: 4 bytes leftover after parsing attributes in process `syz.1.315'. [ 180.705062][ T7219] netlink: 354 bytes leftover after parsing attributes in process `syz.1.315'. [ 180.956471][ T7230] FAULT_INJECTION: forcing a failure. [ 180.956471][ T7230] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 180.985988][ T7230] CPU: 0 UID: 0 PID: 7230 Comm: syz.2.316 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 180.986035][ T7230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 180.986054][ T7230] Call Trace: [ 180.986065][ T7230] [ 180.986081][ T7230] dump_stack_lvl+0x16c/0x1f0 [ 180.986135][ T7230] should_fail_ex+0x512/0x640 [ 180.986178][ T7230] should_fail_alloc_page+0xe7/0x130 [ 180.986212][ T7230] prepare_alloc_pages+0x3c2/0x610 [ 180.986253][ T7230] ? rcu_is_watching+0x12/0xc0 [ 180.986298][ T7230] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 180.986357][ T7230] ? do_raw_spin_lock+0x12c/0x2b0 [ 180.986395][ T7230] ? find_held_lock+0x2b/0x80 [ 180.986442][ T7230] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 180.986504][ T7230] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 180.986549][ T7230] ? stack_depot_save_flags+0x3e6/0xa50 [ 180.986598][ T7230] ? kasan_save_stack+0x42/0x60 [ 180.986652][ T7230] ? __lock_acquire+0xaa4/0x1ba0 [ 180.986702][ T7230] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 180.986739][ T7230] ? policy_nodemask+0xea/0x4e0 [ 180.986795][ T7230] alloc_pages_mpol+0x1fb/0x550 [ 180.986827][ T7230] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 180.986854][ T7230] ? __page_table_check_ptes_set+0x1ae/0x420 [ 180.986908][ T7230] ? find_held_lock+0x2b/0x80 [ 180.986960][ T7230] alloc_pages_noprof+0x131/0x390 [ 180.986991][ T7230] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 180.987036][ T7230] get_free_pages_noprof+0xc/0x40 [ 180.987067][ T7230] kasan_populate_vmalloc_pte+0x2d/0x160 [ 180.987111][ T7230] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 180.987154][ T7230] __apply_to_page_range+0x5f9/0xd30 [ 180.987196][ T7230] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 180.987247][ T7230] ? __pfx___apply_to_page_range+0x10/0x10 [ 180.987289][ T7230] ? alloc_vmap_area+0x872/0x2970 [ 180.987333][ T7230] alloc_vmap_area+0x919/0x2970 [ 180.987386][ T7230] ? __pfx_alloc_vmap_area+0x10/0x10 [ 180.987431][ T7230] __get_vm_area_node+0x1a7/0x300 [ 180.987487][ T7230] __vmalloc_node_range_noprof+0x277/0x1540 [ 180.987531][ T7230] ? __do_sys_listmount+0x1c2/0xed0 [ 180.987588][ T7230] ? __do_sys_listmount+0x1c2/0xed0 [ 180.987638][ T7230] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 180.987691][ T7230] __kvmalloc_node_noprof+0x2ff/0x600 [ 180.987731][ T7230] ? __do_sys_listmount+0x1c2/0xed0 [ 180.987774][ T7230] ? __do_sys_listmount+0x1c2/0xed0 [ 180.987824][ T7230] ? __do_sys_listmount+0x1c2/0xed0 [ 180.987863][ T7230] __do_sys_listmount+0x1c2/0xed0 [ 180.987913][ T7230] ? __x64_sys_futex+0x1e0/0x4c0 [ 180.987957][ T7230] ? __x64_sys_futex+0x1e9/0x4c0 [ 180.988005][ T7230] ? __pfx___do_sys_listmount+0x10/0x10 [ 180.988049][ T7230] ? xfd_validate_state+0x5d/0x180 [ 180.988099][ T7230] do_syscall_64+0xcd/0x260 [ 180.988151][ T7230] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.988183][ T7230] RIP: 0033:0x7fa92a18d169 [ 180.988209][ T7230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.988238][ T7230] RSP: 002b:00007fa92affd038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 180.988269][ T7230] RAX: ffffffffffffffda RBX: 00007fa92a3a6160 RCX: 00007fa92a18d169 [ 180.988289][ T7230] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 180.988308][ T7230] RBP: 00007fa92a20e990 R08: 0000000000000000 R09: 0000000000000000 [ 180.988327][ T7230] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 180.988345][ T7230] R13: 0000000000000000 R14: 00007fa92a3a6160 R15: 00007ffdac598478 [ 180.988385][ T7230] [ 181.403417][ T7230] syz.2.316: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 181.418772][ T7230] CPU: 0 UID: 0 PID: 7230 Comm: syz.2.316 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 181.418814][ T7230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 181.418833][ T7230] Call Trace: [ 181.418845][ T7230] [ 181.418857][ T7230] dump_stack_lvl+0x16c/0x1f0 [ 181.418908][ T7230] warn_alloc+0x248/0x3a0 [ 181.418958][ T7230] ? __pfx_warn_alloc+0x10/0x10 [ 181.419008][ T7230] ? kfree+0x2b6/0x4d0 [ 181.419055][ T7230] ? __get_vm_area_node+0x1e5/0x300 [ 181.419101][ T7230] __vmalloc_node_range_noprof+0xd31/0x1540 [ 181.419156][ T7230] ? __do_sys_listmount+0x1c2/0xed0 [ 181.419206][ T7230] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 181.419263][ T7230] __kvmalloc_node_noprof+0x2ff/0x600 [ 181.419313][ T7230] ? __do_sys_listmount+0x1c2/0xed0 [ 181.419351][ T7230] ? __do_sys_listmount+0x1c2/0xed0 [ 181.419395][ T7230] ? __do_sys_listmount+0x1c2/0xed0 [ 181.419429][ T7230] __do_sys_listmount+0x1c2/0xed0 [ 181.419472][ T7230] ? __x64_sys_futex+0x1e0/0x4c0 [ 181.419509][ T7230] ? __x64_sys_futex+0x1e9/0x4c0 [ 181.419554][ T7230] ? __pfx___do_sys_listmount+0x10/0x10 [ 181.419596][ T7230] ? xfd_validate_state+0x5d/0x180 [ 181.419648][ T7230] do_syscall_64+0xcd/0x260 [ 181.419699][ T7230] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.419731][ T7230] RIP: 0033:0x7fa92a18d169 [ 181.419755][ T7230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.419785][ T7230] RSP: 002b:00007fa92affd038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 181.419813][ T7230] RAX: ffffffffffffffda RBX: 00007fa92a3a6160 RCX: 00007fa92a18d169 [ 181.419832][ T7230] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 181.419851][ T7230] RBP: 00007fa92a20e990 R08: 0000000000000000 R09: 0000000000000000 [ 181.419869][ T7230] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 181.419886][ T7230] R13: 0000000000000000 R14: 00007fa92a3a6160 R15: 00007ffdac598478 [ 181.419925][ T7230] [ 181.419936][ T7230] Mem-Info: [ 181.633713][ T7230] active_anon:10893 inactive_anon:0 isolated_anon:0 [ 181.633713][ T7230] active_file:17270 inactive_file:40284 isolated_file:0 [ 181.633713][ T7230] unevictable:768 dirty:1821 writeback:0 [ 181.633713][ T7230] slab_reclaimable:9989 slab_unreclaimable:94589 [ 181.633713][ T7230] mapped:25963 shmem:1403 pagetables:829 [ 181.633713][ T7230] sec_pagetables:0 bounce:0 [ 181.633713][ T7230] kernel_misc_reclaimable:0 [ 181.633713][ T7230] free:1322530 free_pcp:12394 free_cma:0 [ 181.680397][ T7230] Node 0 active_anon:43572kB inactive_anon:0kB active_file:69080kB inactive_file:161040kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:103832kB dirty:7280kB writeback:0kB shmem:4076kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10748kB pagetables:3316kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 181.714458][ T7230] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:96kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:20kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 181.794420][ T7230] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 182.057235][ T7230] lowmem_reserve[]: 0 2482 2483 2483 2483 [ 182.092180][ T7230] Node 0 DMA32 free:1422920kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:45464kB inactive_anon:0kB active_file:69080kB inactive_file:159468kB unevictable:1536kB writepending:7280kB present:3129332kB managed:2541668kB mlocked:0kB bounce:0kB free_pcp:1336kB local_pcp:536kB free_cma:0kB [ 182.180641][ T7230] lowmem_reserve[]: 0 0 1 1 1 [ 182.186701][ T7230] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:1572kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 182.214193][ C1] vkms_vblank_simulate: vblank timer overrun [ 182.223084][ T7230] lowmem_reserve[]: 0 0 0 0 0 [ 182.228513][ T7230] Node 1 Normal free:3853416kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:96kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:45832kB local_pcp:15984kB free_cma:0kB [ 182.258229][ C1] vkms_vblank_simulate: vblank timer overrun [ 182.277197][ T7230] lowmem_reserve[]: 0 0 0 0 0 [ 182.282069][ T7230] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 182.311101][ T7230] Node 0 DMA32: 7*4kB (UME) 815*8kB (UME) 760*16kB (UME) 522*32kB (UME) 527*64kB (UME) 261*128kB (UME) 164*256kB (UME) 77*512kB (UM) 43*1024kB (UM) 10*2048kB (UM) 286*4096kB (UME) = 1419924kB [ 182.357346][ T7230] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 182.383263][ T7230] Node 1 Normal: 73*4kB (UME) 5*8kB (E) 11*16kB (ME) 211*32kB (UE) 107*64kB (UME) 31*128kB (UME) 18*256kB (UM) 8*512kB (UE) 3*1024kB (U) 3*2048kB (UE) 932*4096kB (M) = 3853468kB [ 182.419066][ T7230] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 182.431678][ T7230] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 182.442060][ T7230] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 182.454575][ T7230] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 182.464929][ T7230] 58962 total pagecache pages [ 182.472206][ T7230] 0 pages in swap cache [ 182.476487][ T7230] Free swap = 123836kB [ 182.481577][ T7230] Total swap = 124996kB [ 182.485818][ T7230] 2097051 pages RAM [ 182.494869][ T7230] 0 pages HighMem/MovableOnly [ 182.500518][ T7230] 429592 pages reserved [ 182.504787][ T7230] 0 pages cma reserved [ 183.957589][ T7266] netlink: 4 bytes leftover after parsing attributes in process `syz.3.326'. [ 183.967336][ T7266] netlink: 354 bytes leftover after parsing attributes in process `syz.3.326'. [ 184.561749][ T7292] netlink: 48 bytes leftover after parsing attributes in process `syz.1.333'. [ 184.581068][ T7292] netlink: zone id is out of range [ 184.598378][ T7292] netlink: zone id is out of range [ 184.607521][ T7292] netlink: zone id is out of range [ 184.619789][ T7292] netlink: zone id is out of range [ 184.899672][ T7303] netlink: 4 bytes leftover after parsing attributes in process `syz.1.335'. [ 184.917608][ T7303] netlink: 354 bytes leftover after parsing attributes in process `syz.1.335'. [ 185.496962][ T7313] FAULT_INJECTION: forcing a failure. [ 185.496962][ T7313] name failslab, interval 1, probability 0, space 0, times 0 [ 185.514240][ T7313] CPU: 0 UID: 0 PID: 7313 Comm: syz.3.338 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 185.514282][ T7313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 185.514299][ T7313] Call Trace: [ 185.514309][ T7313] [ 185.514320][ T7313] dump_stack_lvl+0x16c/0x1f0 [ 185.514369][ T7313] should_fail_ex+0x512/0x640 [ 185.514402][ T7313] ? __kvmalloc_node_noprof+0x122/0x600 [ 185.514450][ T7313] should_failslab+0xc2/0x120 [ 185.514478][ T7313] __kvmalloc_node_noprof+0x135/0x600 [ 185.514518][ T7313] ? rcu_is_watching+0x12/0xc0 [ 185.514554][ T7313] ? kfree+0x252/0x4d0 [ 185.514586][ T7313] ? snd_pcm_plugin_alloc+0x5f8/0x7f0 [ 185.514624][ T7313] ? snd_pcm_plugin_alloc+0x5f8/0x7f0 [ 185.514653][ T7313] snd_pcm_plugin_alloc+0x5f8/0x7f0 [ 185.514691][ T7313] snd_pcm_plug_alloc+0x146/0x330 [ 185.514724][ T7313] snd_pcm_oss_change_params_locked+0x19b8/0x3b40 [ 185.514794][ T7313] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 185.514881][ T7313] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 185.514918][ T7313] snd_pcm_oss_ioctl+0x21e9/0x37a0 [ 185.514950][ T7313] ? hook_file_ioctl_common+0x145/0x410 [ 185.514984][ T7313] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 185.515017][ T7313] ? __fget_files+0x20e/0x3c0 [ 185.515077][ T7313] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 185.515110][ T7313] __x64_sys_ioctl+0x190/0x200 [ 185.515150][ T7313] do_syscall_64+0xcd/0x260 [ 185.515198][ T7313] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.515228][ T7313] RIP: 0033:0x7fdcd7b8d169 [ 185.515252][ T7313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.515281][ T7313] RSP: 002b:00007fdcd8a2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 185.515308][ T7313] RAX: ffffffffffffffda RBX: 00007fdcd7da5fa0 RCX: 00007fdcd7b8d169 [ 185.515327][ T7313] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000009 [ 185.515344][ T7313] RBP: 00007fdcd7c0e990 R08: 0000000000000000 R09: 0000000000000000 [ 185.515361][ T7313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 185.515378][ T7313] R13: 0000000000000000 R14: 00007fdcd7da5fa0 R15: 00007ffca928ae28 [ 185.515416][ T7313] [ 186.025712][ T7325] netlink: 8 bytes leftover after parsing attributes in process `syz.3.343'. [ 186.113725][ T7331] netlink: 4 bytes leftover after parsing attributes in process `syz.1.344'. [ 186.116963][ T7328] deleting an unspecified loop device is not supported. [ 186.140561][ T7331] netlink: 354 bytes leftover after parsing attributes in process `syz.1.344'. [ 187.840015][ T7360] FAULT_INJECTION: forcing a failure. [ 187.840015][ T7360] name failslab, interval 1, probability 0, space 0, times 0 [ 187.865998][ T7362] netlink: 4 bytes leftover after parsing attributes in process `syz.3.353'. [ 187.875635][ T7362] netlink: 354 bytes leftover after parsing attributes in process `syz.3.353'. [ 188.003243][ T7360] CPU: 1 UID: 0 PID: 7360 Comm: syz.2.352 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 188.003292][ T7360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 188.003311][ T7360] Call Trace: [ 188.003322][ T7360] [ 188.003335][ T7360] dump_stack_lvl+0x16c/0x1f0 [ 188.003390][ T7360] should_fail_ex+0x512/0x640 [ 188.003427][ T7360] ? __kvmalloc_node_noprof+0x122/0x600 [ 188.003480][ T7360] should_failslab+0xc2/0x120 [ 188.003510][ T7360] __kvmalloc_node_noprof+0x135/0x600 [ 188.003563][ T7360] ? rcu_is_watching+0x12/0xc0 [ 188.003605][ T7360] ? kfree+0x252/0x4d0 [ 188.003644][ T7360] ? snd_pcm_plugin_alloc+0x5f8/0x7f0 [ 188.003687][ T7360] ? snd_pcm_plugin_alloc+0x5f8/0x7f0 [ 188.003720][ T7360] snd_pcm_plugin_alloc+0x5f8/0x7f0 [ 188.003765][ T7360] snd_pcm_plug_alloc+0x146/0x330 [ 188.003803][ T7360] snd_pcm_oss_change_params_locked+0x19b8/0x3b40 [ 188.003880][ T7360] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 188.003971][ T7360] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 188.004013][ T7360] snd_pcm_oss_ioctl+0x21e9/0x37a0 [ 188.004049][ T7360] ? hook_file_ioctl_common+0x145/0x410 [ 188.004085][ T7360] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 188.004123][ T7360] ? __fget_files+0x20e/0x3c0 [ 188.004178][ T7360] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 188.004213][ T7360] __x64_sys_ioctl+0x190/0x200 [ 188.004257][ T7360] do_syscall_64+0xcd/0x260 [ 188.004314][ T7360] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.004347][ T7360] RIP: 0033:0x7fa92a18d169 [ 188.004373][ T7360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 188.004404][ T7360] RSP: 002b:00007fa92b03f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 188.004433][ T7360] RAX: ffffffffffffffda RBX: 00007fa92a3a5fa0 RCX: 00007fa92a18d169 [ 188.004453][ T7360] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000009 [ 188.004471][ T7360] RBP: 00007fa92a20e990 R08: 0000000000000000 R09: 0000000000000000 [ 188.004490][ T7360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 188.004508][ T7360] R13: 0000000000000000 R14: 00007fa92a3a5fa0 R15: 00007ffdac598478 [ 188.004554][ T7360] [ 188.226455][ C1] vkms_vblank_simulate: vblank timer overrun [ 189.161390][ T7378] could not allocate digest TFM handle [ 189.241682][ T7381] could not allocate digest TFM handle [ 189.470132][ T7387] netlink: set zone limit has 4 unknown bytes [ 189.734316][ T7395] netlink: 4 bytes leftover after parsing attributes in process `syz.2.362'. [ 189.751425][ T7395] netlink: 354 bytes leftover after parsing attributes in process `syz.2.362'. [ 190.310966][ T7408] netlink: 'syz.3.366': attribute type 1 has an invalid length. [ 190.649109][ T7419] FAULT_INJECTION: forcing a failure. [ 190.649109][ T7419] name failslab, interval 1, probability 0, space 0, times 0 [ 190.694859][ T7419] CPU: 1 UID: 0 PID: 7419 Comm: syz.2.368 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 190.694899][ T7419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 190.694915][ T7419] Call Trace: [ 190.694925][ T7419] [ 190.694936][ T7419] dump_stack_lvl+0x16c/0x1f0 [ 190.694985][ T7419] should_fail_ex+0x512/0x640 [ 190.695019][ T7419] ? __kmalloc_noprof+0xbf/0x510 [ 190.695065][ T7419] ? lsm_blob_alloc+0x68/0x90 [ 190.695109][ T7419] should_failslab+0xc2/0x120 [ 190.695142][ T7419] __kmalloc_noprof+0xd2/0x510 [ 190.695198][ T7419] lsm_blob_alloc+0x68/0x90 [ 190.695246][ T7419] security_sk_alloc+0x30/0x270 [ 190.695281][ T7419] sk_prot_alloc+0xfb/0x2a0 [ 190.695333][ T7419] sk_alloc+0x36/0xc20 [ 190.695372][ T7419] smc_create+0x114/0x2a0 [ 190.695411][ T7419] __sock_create+0x335/0x8d0 [ 190.695445][ T7419] __sys_socket+0x14d/0x260 [ 190.695481][ T7419] ? __pfx___sys_socket+0x10/0x10 [ 190.695513][ T7419] ? rcu_is_watching+0x12/0xc0 [ 190.695558][ T7419] __x64_sys_socket+0x72/0xb0 [ 190.695588][ T7419] ? lockdep_hardirqs_on+0x7c/0x110 [ 190.695631][ T7419] do_syscall_64+0xcd/0x260 [ 190.695680][ T7419] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.695709][ T7419] RIP: 0033:0x7fa92a18d169 [ 190.695734][ T7419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.695764][ T7419] RSP: 002b:00007fa92b03f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 190.695790][ T7419] RAX: ffffffffffffffda RBX: 00007fa92a3a5fa0 RCX: 00007fa92a18d169 [ 190.695810][ T7419] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 000000000000002b [ 190.695826][ T7419] RBP: 00007fa92a20e990 R08: 0000000000000000 R09: 0000000000000000 [ 190.695844][ T7419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 190.695861][ T7419] R13: 0000000000000000 R14: 00007fa92a3a5fa0 R15: 00007ffdac598478 [ 190.695899][ T7419] [ 191.335245][ T7431] netlink: zone id is out of range [ 192.196739][ T7445] netlink: 306 bytes leftover after parsing attributes in process `syz.3.375'. [ 192.444599][ T5849] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 192.455817][ T5849] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 192.483923][ T5849] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 192.495972][ T5849] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 192.508655][ T5849] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 193.026532][ T7448] chnl_net:caif_netlink_parms(): no params data found [ 193.571700][ T7448] bridge0: port 1(bridge_slave_0) entered blocking state [ 193.599341][ T7448] bridge0: port 1(bridge_slave_0) entered disabled state [ 193.625646][ T7448] bridge_slave_0: entered allmulticast mode [ 193.656782][ T7448] bridge_slave_0: entered promiscuous mode [ 193.684722][ T7448] bridge0: port 2(bridge_slave_1) entered blocking state [ 193.722300][ T7448] bridge0: port 2(bridge_slave_1) entered disabled state [ 193.734758][ T7448] bridge_slave_1: entered allmulticast mode [ 193.761533][ T7448] bridge_slave_1: entered promiscuous mode [ 193.859219][ T7471] netlink: zone id is out of range [ 193.866997][ T7448] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 193.895498][ T7448] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 194.054356][ T7477] netlink: 4 bytes leftover after parsing attributes in process `syz.1.385'. [ 194.061489][ T7448] team0: Port device team_slave_0 added [ 194.066069][ T7477] netlink: 354 bytes leftover after parsing attributes in process `syz.1.385'. [ 194.084300][ T7448] team0: Port device team_slave_1 added [ 194.183180][ T7448] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 194.194660][ T7448] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 194.222542][ T7448] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 194.236342][ T7448] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 194.243981][ T7448] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 194.271765][ T7448] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 194.330990][ T7448] hsr_slave_0: entered promiscuous mode [ 194.337961][ T7448] hsr_slave_1: entered promiscuous mode [ 194.344217][ T7448] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 194.352872][ T7448] Cannot create hsr debugfs directory [ 194.540013][ T7448] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 194.551619][ T7448] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 194.559444][ T5153] Bluetooth: hci4: command tx timeout [ 194.571151][ T7448] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 194.583939][ T7448] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 194.685540][ T7448] 8021q: adding VLAN 0 to HW filter on device bond0 [ 194.718385][ T7448] 8021q: adding VLAN 0 to HW filter on device team0 [ 194.732599][ T3022] bridge0: port 1(bridge_slave_0) entered blocking state [ 194.740498][ T3022] bridge0: port 1(bridge_slave_0) entered forwarding state [ 194.760342][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 194.767545][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 195.138484][ T7448] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 195.488366][ T7503] Console: switching to colour VGA+ 80x25 [ 196.015310][ T7448] veth0_vlan: entered promiscuous mode [ 196.061472][ T7448] veth1_vlan: entered promiscuous mode [ 196.081961][ T7514] netlink: zone id is out of range [ 196.139111][ T7448] veth0_macvtap: entered promiscuous mode [ 196.180288][ T7448] veth1_macvtap: entered promiscuous mode [ 196.264602][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 196.282265][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 196.292378][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 196.308365][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 196.336843][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 196.355515][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 196.374662][ T7448] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 196.588209][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 196.601018][ T7529] ceph: Failed to parse sending metrics switch value 'P^' [ 196.609679][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 196.629153][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 196.639966][ T5153] Bluetooth: hci4: command tx timeout [ 196.645575][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 196.655974][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 196.666740][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 196.678898][ T7448] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 196.694101][ T7448] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 196.703157][ T7448] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 196.712009][ T7448] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 196.721501][ T7448] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 196.746607][ T7529] Invalid ELF header magic: != ELF [ 197.278576][ T1103] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 197.311565][ T1103] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 197.421800][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 197.434098][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 197.564400][ T7539] FAULT_INJECTION: forcing a failure. [ 197.564400][ T7539] name failslab, interval 1, probability 0, space 0, times 0 [ 197.577428][ T7539] CPU: 1 UID: 0 PID: 7539 Comm: syz.2.400 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 197.577465][ T7539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 197.577482][ T7539] Call Trace: [ 197.577491][ T7539] [ 197.577502][ T7539] dump_stack_lvl+0x16c/0x1f0 [ 197.577560][ T7539] should_fail_ex+0x512/0x640 [ 197.577593][ T7539] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 197.577639][ T7539] should_failslab+0xc2/0x120 [ 197.577666][ T7539] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 197.577715][ T7539] ? alloc_file_pseudo+0x1b3/0x230 [ 197.577744][ T7539] ? alloc_empty_file+0x55/0x1e0 [ 197.577779][ T7539] alloc_empty_file+0x55/0x1e0 [ 197.577812][ T7539] alloc_file_clone+0x5f/0x110 [ 197.577849][ T7539] create_pipe_files+0x412/0x930 [ 197.577882][ T7539] do_pipe2+0xaf/0x1c0 [ 197.577909][ T7539] ? __pfx_do_pipe2+0x10/0x10 [ 197.577954][ T7539] __x64_sys_pipe+0x33/0x50 [ 197.577985][ T7539] do_syscall_64+0xcd/0x260 [ 197.578037][ T7539] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.578070][ T7539] RIP: 0033:0x7fa92a18d169 [ 197.578096][ T7539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 197.578128][ T7539] RSP: 002b:00007fa92b03f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 197.578158][ T7539] RAX: ffffffffffffffda RBX: 00007fa92a3a5fa0 RCX: 00007fa92a18d169 [ 197.578179][ T7539] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 197.578197][ T7539] RBP: 00007fa92a20e990 R08: 0000000000000000 R09: 0000000000000000 [ 197.578215][ T7539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 197.578233][ T7539] R13: 0000000000000000 R14: 00007fa92a3a5fa0 R15: 00007ffdac598478 [ 197.578273][ T7539] [ 197.863162][ T7544] netlink: 334 bytes leftover after parsing attributes in process `syz.4.373'. [ 198.065523][ T7551] netlink: zone id is out of range [ 198.073372][ T7549] netlink: 4 bytes leftover after parsing attributes in process `syz.4.404'. [ 198.108158][ T7549] netlink: 354 bytes leftover after parsing attributes in process `syz.4.404'. [ 198.718695][ T5153] Bluetooth: hci4: command tx timeout [ 199.547857][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.554541][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 200.058083][ T7589] bridge0: port 3(team0) entered blocking state [ 200.075236][ T7589] bridge0: port 3(team0) entered disabled state [ 200.095659][ T7589] team0: entered allmulticast mode [ 200.116528][ T7589] team_slave_0: entered allmulticast mode [ 200.137862][ T7589] team_slave_1: entered allmulticast mode [ 200.179778][ T7589] team0: entered promiscuous mode [ 200.205313][ T7589] team_slave_0: entered promiscuous mode [ 200.227432][ T7589] team_slave_1: entered promiscuous mode [ 200.228305][ T7596] netlink: zone id is out of range [ 200.234290][ T7589] bridge0: port 3(team0) entered blocking state [ 200.245007][ T7589] bridge0: port 3(team0) entered forwarding state [ 200.607727][ T7600] netlink: 4 bytes leftover after parsing attributes in process `syz.3.416'. [ 200.671965][ T7601] netlink: 354 bytes leftover after parsing attributes in process `syz.3.416'. [ 200.797900][ T5153] Bluetooth: hci4: command tx timeout [ 203.238117][ T7627] netlink: 4 bytes leftover after parsing attributes in process `syz.4.427'. [ 203.272323][ T7627] netlink: 354 bytes leftover after parsing attributes in process `syz.4.427'. [ 204.102206][ T7638] netlink: 'syz.1.425': attribute type 1 has an invalid length. [ 205.257509][ T7666] netlink: 8 bytes leftover after parsing attributes in process `syz.1.433'. [ 206.937988][ T7685] ceph: Failed to parse sending metrics switch value 'P^' [ 207.097593][ T7685] Invalid ELF header magic: != ELF [ 207.204879][ T7693] netlink: 'syz.2.437': attribute type 1 has an invalid length. [ 207.495287][ T7692] netlink: 4 bytes leftover after parsing attributes in process `syz.1.439'. [ 207.595978][ T7676] netlink: 'syz.3.436': attribute type 1 has an invalid length. [ 207.983144][ T7692] netlink: 198 bytes leftover after parsing attributes in process `syz.1.439'. [ 209.311603][ T7725] usbip-vudc usbip-vudc.0: gadget not bound [ 213.219895][ T7763] random: crng reseeded on system resumption [ 213.245571][ T7757] Invalid ELF header magic: != ELF [ 214.165850][ T7775] netlink: 4 bytes leftover after parsing attributes in process `syz.3.456'. [ 214.196517][ T7775] netlink: 354 bytes leftover after parsing attributes in process `syz.3.456'. [ 215.144761][ T7793] can: request_module (can-proto-3) failed. [ 217.106033][ T7820] netlink: 4 bytes leftover after parsing attributes in process `syz.4.470'. [ 217.131472][ T7820] netlink: 354 bytes leftover after parsing attributes in process `syz.4.470'. [ 218.008787][ T7822] netlink: 'syz.1.472': attribute type 1 has an invalid length. [ 218.820209][ T7859] netlink: 4 bytes leftover after parsing attributes in process `syz.2.480'. [ 218.997557][ T7865] netlink: 354 bytes leftover after parsing attributes in process `syz.2.480'. [ 219.542172][ T7872] FAULT_INJECTION: forcing a failure. [ 219.542172][ T7872] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 219.580956][ T7872] CPU: 0 UID: 0 PID: 7872 Comm: syz.4.484 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 219.581000][ T7872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 219.581024][ T7872] Call Trace: [ 219.581034][ T7872] [ 219.581045][ T7872] dump_stack_lvl+0x16c/0x1f0 [ 219.581096][ T7872] should_fail_ex+0x512/0x640 [ 219.581138][ T7872] _copy_from_user+0x2e/0xd0 [ 219.581179][ T7872] copy_msghdr_from_user+0x98/0x160 [ 219.581222][ T7872] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 219.581283][ T7872] ___sys_sendmsg+0xfe/0x1d0 [ 219.581327][ T7872] ? __pfx____sys_sendmsg+0x10/0x10 [ 219.581417][ T7872] __sys_sendmsg+0x16d/0x220 [ 219.581466][ T7872] ? __pfx___sys_sendmsg+0x10/0x10 [ 219.581530][ T7872] ? rcu_is_watching+0x12/0xc0 [ 219.581582][ T7872] do_syscall_64+0xcd/0x260 [ 219.581632][ T7872] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.581663][ T7872] RIP: 0033:0x7f8a5cf8d169 [ 219.581697][ T7872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 219.581732][ T7872] RSP: 002b:00007f8a5dd1d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 219.581760][ T7872] RAX: ffffffffffffffda RBX: 00007f8a5d1a5fa0 RCX: 00007f8a5cf8d169 [ 219.581786][ T7872] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003 [ 219.581810][ T7872] RBP: 00007f8a5dd1d090 R08: 0000000000000000 R09: 0000000000000000 [ 219.581829][ T7872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 219.581847][ T7872] R13: 0000000000000000 R14: 00007f8a5d1a5fa0 R15: 00007ffe1d024a68 [ 219.581887][ T7872] [ 219.988558][ T7876] netlink: 4 bytes leftover after parsing attributes in process `syz.4.486'. [ 220.002980][ T7876] netlink: 4 bytes leftover after parsing attributes in process `syz.4.486'. [ 220.682384][ T7874] netlink: 'syz.2.485': attribute type 1 has an invalid length. [ 221.496064][ T7895] netlink: 'syz.4.491': attribute type 2 has an invalid length. [ 221.601783][ T7905] netlink: zone id is out of range [ 222.447476][ T7930] netlink: 4 bytes leftover after parsing attributes in process `syz.1.503'. [ 222.467970][ T7931] netlink: zone id is out of range [ 222.474562][ T7930] netlink: 354 bytes leftover after parsing attributes in process `syz.1.503'. [ 222.920795][ T7947] netlink: 130 bytes leftover after parsing attributes in process `syz.4.508'. syzkaller syzkaller login: [ 223.353674][ T7943] netlink: 'syz.3.506': attribute type 1 has an invalid length. [ 223.374582][ T7967] netlink: 342 bytes leftover after parsing attributes in process `syz.1.512'. [ 223.403402][ T7967] netlink: 'syz.1.512': attribute type 2 has an invalid length. [ 223.422359][ T7967] netlink: 'syz.1.512': attribute type 3 has an invalid length. [ 223.438043][ T7967] netlink: 98 bytes leftover after parsing attributes in process `syz.1.512'. [ 223.646418][ T7970] netlink: zone id is out of range [ 223.778866][ T7975] FAULT_INJECTION: forcing a failure. [ 223.778866][ T7975] name failslab, interval 1, probability 0, space 0, times 0 [ 223.778924][ T7975] CPU: 0 UID: 0 PID: 7975 Comm: syz.2.516 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 223.778963][ T7975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 223.778982][ T7975] Call Trace: [ 223.778992][ T7975] [ 223.779004][ T7975] dump_stack_lvl+0x16c/0x1f0 [ 223.779056][ T7975] should_fail_ex+0x512/0x640 [ 223.779091][ T7975] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 223.779142][ T7975] should_failslab+0xc2/0x120 [ 223.779173][ T7975] __kmalloc_cache_noprof+0x6a/0x3e0 [ 223.779218][ T7975] ? device_create_groups_vargs+0x8a/0x270 [ 223.779263][ T7975] device_create_groups_vargs+0x8a/0x270 [ 223.779306][ T7975] device_create+0xed/0x130 [ 223.779343][ T7975] ? __pfx_device_create+0x10/0x10 [ 223.779382][ T7975] ? is_console_locked+0x9/0x20 [ 223.779428][ T7975] ? con_is_visible+0x65/0x150 [ 223.779470][ T7975] ? csi_J+0x54a/0xad0 [ 223.779527][ T7975] vcs_make_sysfs+0x32/0x80 [ 223.779571][ T7975] vc_allocate+0x501/0x880 [ 223.779623][ T7975] ? __pfx_vc_allocate+0x10/0x10 [ 223.779685][ T7975] con_install+0xa1/0x600 [ 223.779748][ T7975] ? __pfx_con_install+0x10/0x10 [ 223.779807][ T7975] ? __pfx_con_install+0x10/0x10 [ 223.779861][ T7975] tty_init_dev.part.0+0x99/0x500 [ 223.779896][ T7975] tty_open+0xa50/0xf90 [ 223.779936][ T7975] ? __pfx_tty_open+0x10/0x10 [ 223.779970][ T7975] ? chrdev_open+0x58c/0x6a0 [ 223.780028][ T7975] ? __pfx_tty_open+0x10/0x10 [ 223.780059][ T7975] chrdev_open+0x231/0x6a0 [ 223.780112][ T7975] ? __pfx_chrdev_open+0x10/0x10 [ 223.780164][ T7975] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 223.780220][ T7975] do_dentry_open+0x741/0x1c10 [ 223.780268][ T7975] ? __pfx_chrdev_open+0x10/0x10 [ 223.780329][ T7975] vfs_open+0x82/0x3f0 [ 223.780367][ T7975] path_openat+0x1e5e/0x2d40 [ 223.780432][ T7975] ? __pfx_path_openat+0x10/0x10 [ 223.780493][ T7975] do_filp_open+0x20b/0x470 [ 223.780543][ T7975] ? __pfx_do_filp_open+0x10/0x10 [ 223.780624][ T7975] ? alloc_fd+0x471/0x7d0 [ 223.780683][ T7975] do_sys_openat2+0x11b/0x1d0 [ 223.780717][ T7975] ? __pfx_do_sys_openat2+0x10/0x10 [ 223.780777][ T7975] __x64_sys_openat+0x174/0x210 [ 223.780814][ T7975] ? __pfx___x64_sys_openat+0x10/0x10 [ 223.780853][ T7975] ? rcu_is_watching+0x12/0xc0 [ 223.780919][ T7975] do_syscall_64+0xcd/0x260 [ 223.780970][ T7975] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.781002][ T7975] RIP: 0033:0x7fa92a18d169 [ 223.781027][ T7975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 223.781056][ T7975] RSP: 002b:00007fa92b03f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 223.781085][ T7975] RAX: ffffffffffffffda RBX: 00007fa92a3a5fa0 RCX: 00007fa92a18d169 [ 223.781105][ T7975] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 223.781125][ T7975] RBP: 00007fa92a20e990 R08: 0000000000000000 R09: 0000000000000000 [ 223.781142][ T7975] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 223.781160][ T7975] R13: 0000000000000000 R14: 00007fa92a3a5fa0 R15: 00007ffdac598478 [ 223.781199][ T7975] [ 223.891199][ T7987] netlink: 342 bytes leftover after parsing attributes in process `syz.1.517'. [ 224.338682][ T8003] netlink: 28 bytes leftover after parsing attributes in process `syz.4.520'. [ 224.897818][ T7975] tty tty26: ldisc open failed (-12), clearing slot 25 [ 224.906161][ T7999] tty tty1: ldisc open failed (-12), clearing slot 0 [ 226.769918][ T8049] netlink: 16 bytes leftover after parsing attributes in process `syz.4.533'. [ 227.706516][ T8073] netlink: zone id is out of range [ 228.390946][ T8100] netlink: zone id is out of range [ 230.261857][ T8150] sd 0:0:1:0: device reset [ 230.810707][ T8162] netlink: zone id is out of range [ 231.138010][ T8167] netlink: 4 bytes leftover after parsing attributes in process `syz.3.564'. [ 231.210660][ T8167] netlink: 354 bytes leftover after parsing attributes in process `syz.3.564'. [ 231.921473][ T8172] netlink: 'syz.2.565': attribute type 1 has an invalid length. [ 232.668500][ T8192] netlink: 338 bytes leftover after parsing attributes in process `syz.1.569'. [ 233.122449][ T8199] netlink: 20 bytes leftover after parsing attributes in process `syz.2.571'. [ 233.809404][ T8218] netlink: 4 bytes leftover after parsing attributes in process `syz.1.575'. [ 233.856061][ T8218] netlink: 354 bytes leftover after parsing attributes in process `syz.1.575'. [ 235.196152][ T8259] FAULT_INJECTION: forcing a failure. [ 235.196152][ T8259] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 235.217012][ T8259] CPU: 0 UID: 0 PID: 8259 Comm: syz.3.588 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 235.217060][ T8259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 235.217079][ T8259] Call Trace: [ 235.217089][ T8259] [ 235.217101][ T8259] dump_stack_lvl+0x16c/0x1f0 [ 235.217155][ T8259] should_fail_ex+0x512/0x640 [ 235.217199][ T8259] should_fail_alloc_page+0xe7/0x130 [ 235.217234][ T8259] prepare_alloc_pages+0x3c2/0x610 [ 235.217282][ T8259] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 235.217336][ T8259] ? __pfx_stack_trace_save+0x10/0x10 [ 235.217380][ T8259] ? stack_depot_save_flags+0x28/0xa50 [ 235.217430][ T8259] ? kasan_save_stack+0x42/0x60 [ 235.217476][ T8259] ? kasan_save_stack+0x33/0x60 [ 235.217521][ T8259] ? kasan_save_track+0x14/0x30 [ 235.217577][ T8259] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 235.217628][ T8259] ? copy_page_range+0x411a/0x5ec0 [ 235.217666][ T8259] ? kernel_clone+0xfc/0x960 [ 235.217712][ T8259] ? do_syscall_64+0xcd/0x260 [ 235.217758][ T8259] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 235.217815][ T8259] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 235.217853][ T8259] ? policy_nodemask+0xea/0x4e0 [ 235.217909][ T8259] alloc_pages_mpol+0x1fb/0x550 [ 235.217942][ T8259] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 235.217972][ T8259] ? cgroup_rstat_updated+0x2a/0xb20 [ 235.218024][ T8259] alloc_pages_noprof+0x131/0x390 [ 235.218057][ T8259] pte_alloc_one+0x19/0x380 [ 235.218099][ T8259] __pte_alloc+0x6d/0x3c0 [ 235.218132][ T8259] ? __pfx___pte_alloc+0x10/0x10 [ 235.218166][ T8259] ? _raw_spin_unlock+0x28/0x50 [ 235.218206][ T8259] ? __pmd_alloc+0x3c2/0x870 [ 235.218248][ T8259] copy_page_range+0x39a7/0x5ec0 [ 235.218335][ T8259] ? __pfx_copy_page_range+0x10/0x10 [ 235.218379][ T8259] ? mas_store+0x93a/0x10c0 [ 235.218409][ T8259] ? __pfx___might_resched+0x10/0x10 [ 235.218464][ T8259] ? __pfx_mas_store+0x10/0x10 [ 235.218491][ T8259] ? __vma_enter_locked+0x163/0x3f0 [ 235.218540][ T8259] ? down_write+0x14d/0x200 [ 235.218602][ T8259] copy_process+0x862b/0x91a0 [ 235.218683][ T8259] ? __pfx_copy_process+0x10/0x10 [ 235.218735][ T8259] ? try_to_wake_up+0xa2f/0x1680 [ 235.218784][ T8259] ? plist_check_head+0xa3/0x150 [ 235.218820][ T8259] ? find_held_lock+0x2b/0x80 [ 235.218867][ T8259] ? wake_up_q+0xb0/0x160 [ 235.218903][ T8259] ? do_raw_spin_unlock+0x172/0x230 [ 235.218948][ T8259] kernel_clone+0xfc/0x960 [ 235.218996][ T8259] ? __pfx_futex_wake+0x10/0x10 [ 235.219026][ T8259] ? __pfx_kernel_clone+0x10/0x10 [ 235.219100][ T8259] __do_sys_clone+0xce/0x120 [ 235.219148][ T8259] ? __pfx___do_sys_clone+0x10/0x10 [ 235.219194][ T8259] ? __sys_connect+0xf1/0x170 [ 235.219251][ T8259] ? rcu_is_watching+0x12/0xc0 [ 235.219305][ T8259] do_syscall_64+0xcd/0x260 [ 235.219356][ T8259] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 235.219388][ T8259] RIP: 0033:0x7fdcd7b8d169 [ 235.219414][ T8259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 235.219444][ T8259] RSP: 002b:00007fdcd8a2afe8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 235.219474][ T8259] RAX: ffffffffffffffda RBX: 00007fdcd7da5fa0 RCX: 00007fdcd7b8d169 [ 235.219495][ T8259] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000001432a0091 [ 235.219513][ T8259] RBP: 00007fdcd7c0e990 R08: 0000000000000000 R09: 0000000000000000 [ 235.219532][ T8259] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 235.219560][ T8259] R13: 0000000000000000 R14: 00007fdcd7da5fa0 R15: 00007ffca928ae28 [ 235.219603][ T8259] [ 236.278113][ T8265] netlink: zone id is out of range [ 236.635425][ T8270] netlink: 'syz.3.593': attribute type 1 has an invalid length. [ 236.784932][ T8275] can: request_module (can-proto-3) failed. [ 237.650131][ T30] audit: type=1800 audit(4294982297.890:6): pid=8306 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.602" name=05 dev="tmpfs" ino=839 res=0 errno=0 [ 237.921432][ T8311] netlink: zone id is out of range [ 238.728939][ T8318] netlink: 28 bytes leftover after parsing attributes in process `syz.4.605'. [ 240.232579][ T8353] netlink: 'syz.1.610': attribute type 1 has an invalid length. [ 240.444323][ T8355] netlink: zone id is out of range [ 242.480592][ T8376] netlink: 4 bytes leftover after parsing attributes in process `syz.1.618'. [ 242.505888][ T8376] netlink: 354 bytes leftover after parsing attributes in process `syz.1.618'. [ 242.788851][ T8385] netlink: 28 bytes leftover after parsing attributes in process `syz.3.621'. [ 243.662068][ T8400] Invalid ELF header magic: != ELF [ 244.434875][ T8398] IPVS: length: 24 != 25769803800 [ 245.440764][ T8412] netlink: 'syz.1.627': attribute type 1 has an invalid length. [ 246.674801][ T8431] sg_write: data in/out 32732/16086 bytes for SCSI command 0x0-- guessing data in; [ 246.674801][ T8431] program syz.2.632 not setting count and/or reply_len properly [ 247.245637][ T8434] netlink: 504 bytes leftover after parsing attributes in process `syz.4.633'. [ 247.347439][ T8434] netlink: 504 bytes leftover after parsing attributes in process `syz.4.633'. [ 248.033235][ T8448] netlink: 4 bytes leftover after parsing attributes in process `syz.2.637'. [ 248.043055][ T8448] netlink: 354 bytes leftover after parsing attributes in process `syz.2.637'. [ 248.318207][ T8458] netlink: 'syz.3.638': attribute type 9 has an invalid length. [ 248.348180][ T8458] netlink: 330 bytes leftover after parsing attributes in process `syz.3.638'. [ 248.398617][ T8464] netlink: 'syz.3.638': attribute type 9 has an invalid length. [ 248.417239][ T8464] netlink: 330 bytes leftover after parsing attributes in process `syz.3.638'. [ 248.636441][ T8475] netlink: zone id is out of range [ 248.665998][ T8467] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000e: 0000 [#1] SMP KASAN PTI [ 248.677967][ T8467] KASAN: null-ptr-deref in range [0x0000000000000070-0x0000000000000077] [ 248.686431][ T8467] CPU: 0 UID: 0 PID: 8467 Comm: syz.2.639 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 248.698375][ T8467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 248.708483][ T8467] RIP: 0010:__mutex_lock+0x14f/0xb90 [ 248.713848][ T8467] Code: d0 7c 08 84 d2 0f 85 ab 07 00 00 8b 35 5a 49 44 0f 85 f6 75 29 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 60 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 93 07 00 00 48 3b 5b 60 0f 85 e0 01 00 00 bf 01 [ 248.733602][ T8467] RSP: 0018:ffffc90003807a80 EFLAGS: 00010202 [ 248.739724][ T8467] RAX: dffffc0000000000 RBX: 0000000000000010 RCX: 1ffffffff356babc [ 248.747741][ T8467] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000070 [ 248.755758][ T8467] RBP: ffffc90003807bc0 R08: ffffffff8a780e37 R09: ffffed100659fba8 [ 248.763776][ T8467] R10: ffffc90003807be0 R11: 0000000000000000 R12: dffffc0000000000 [ 248.771784][ T8467] R13: ffffc90003807b00 R14: 0000000000000000 R15: 1ffff92000700f5a [ 248.779779][ T8467] FS: 00007fa92b01e6c0(0000) GS:ffff8881249b9000(0000) knlGS:0000000000000000 [ 248.788733][ T8467] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 248.795332][ T8467] CR2: 0000001b30c07ff8 CR3: 000000003069a000 CR4: 00000000003526f0 [ 248.803328][ T8467] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 248.811315][ T8467] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 248.819332][ T8467] Call Trace: [ 248.822629][ T8467] [ 248.825599][ T8467] ? trace_kmem_cache_alloc+0x28/0xc0 [ 248.830994][ T8467] ? kmem_cache_alloc_node_noprof+0x225/0x3b0 [ 248.837092][ T8467] ? hci_devcd_register+0x47/0x170 [ 248.842240][ T8467] ? __pfx___mutex_lock+0x10/0x10 [ 248.847310][ T8467] ? __asan_memset+0x23/0x50 [ 248.851940][ T8467] ? __build_skb_around+0x278/0x3b0 [ 248.857168][ T8467] ? __alloc_skb+0x200/0x380 [ 248.861787][ T8467] ? __pfx___alloc_skb+0x10/0x10 [ 248.866758][ T8467] ? __pfx_vhci_coredump_hdr+0x10/0x10 [ 248.872265][ T8467] ? __pfx_vhci_coredump+0x10/0x10 [ 248.877428][ T8467] ? hci_devcd_register+0x47/0x170 [ 248.882575][ T8467] hci_devcd_register+0x47/0x170 [ 248.887544][ T8467] force_devcd_write+0x16c/0x340 [ 248.892500][ T8467] ? __pfx_force_devcd_write+0x10/0x10 [ 248.897985][ T8467] full_proxy_write+0x13c/0x200 [ 248.902857][ T8467] vfs_write+0x25c/0x1180 [ 248.907220][ T8467] ? __pfx_full_proxy_write+0x10/0x10 [ 248.912628][ T8467] ? __pfx___mutex_lock+0x10/0x10 [ 248.917777][ T8467] ? __pfx_vfs_write+0x10/0x10 [ 248.922605][ T8467] ? __fget_files+0x20e/0x3c0 [ 248.927319][ T8467] ksys_write+0x12a/0x240 [ 248.931678][ T8467] ? __pfx_ksys_write+0x10/0x10 [ 248.936559][ T8467] ? rcu_is_watching+0x12/0xc0 [ 248.941386][ T8467] do_syscall_64+0xcd/0x260 [ 248.945931][ T8467] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.951856][ T8467] RIP: 0033:0x7fa92a18d169 [ 248.956294][ T8467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.975921][ T8467] RSP: 002b:00007fa92b01e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 248.984367][ T8467] RAX: ffffffffffffffda RBX: 00007fa92a3a6080 RCX: 00007fa92a18d169 [ 248.992364][ T8467] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000006 [ 249.000350][ T8467] RBP: 00007fa92a20e990 R08: 0000000000000000 R09: 0000000000000000 [ 249.008335][ T8467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 249.016321][ T8467] R13: 0000000000000000 R14: 00007fa92a3a6080 R15: 00007ffdac598478 [ 249.024315][ T8467] [ 249.027348][ T8467] Modules linked in: [ 249.031356][ C0] vkms_vblank_simulate: vblank timer overrun [ 249.038706][ T8467] ---[ end trace 0000000000000000 ]--- [ 249.161603][ T8467] RIP: 0010:__mutex_lock+0x14f/0xb90 [ 249.203961][ T8467] Code: d0 7c 08 84 d2 0f 85 ab 07 00 00 8b 35 5a 49 44 0f 85 f6 75 29 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 60 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 93 07 00 00 48 3b 5b 60 0f 85 e0 01 00 00 bf 01 [ 249.223661][ C0] vkms_vblank_simulate: vblank timer overrun [ 249.397142][ T8467] RSP: 0018:ffffc90003807a80 EFLAGS: 00010202 [ 249.403280][ T8467] RAX: dffffc0000000000 RBX: 0000000000000010 RCX: 1ffffffff356babc [ 249.467148][ T8467] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000070 [ 249.501275][ T8467] RBP: ffffc90003807bc0 R08: ffffffff8a780e37 R09: ffffed100659fba8 [ 249.561472][ T8467] R10: ffffc90003807be0 R11: 0000000000000000 R12: dffffc0000000000 [ 249.612295][ T8467] R13: ffffc90003807b00 R14: 0000000000000000 R15: 1ffff92000700f5a [ 249.622760][ T8467] FS: 00007fa92b01e6c0(0000) GS:ffff888124ab9000(0000) knlGS:0000000000000000 [ 249.640119][ T8467] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 249.698903][ T8467] CR2: 000055c61da2f950 CR3: 000000003069a000 CR4: 00000000003526f0 [ 249.760075][ T8467] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 249.771053][ T8467] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 249.779508][ T8467] Kernel panic - not syncing: Fatal exception [ 249.785855][ T8467] Kernel Offset: disabled [ 249.790189][ T8467] Rebooting in 86400 seconds..